$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c7a94034-ee03-4096-9660-7f8a861830a8.roa File: c7a94034-ee03-4096-9660-7f8a861830a8.roa (raw, json) Hash identifier: aX6u1792angpLM/7xQEIEYvJzLGSXpawzHzf9VkJbuQ= Subject key identifier: F7:04:1E:BC:47:03:2D:62:BD:7B:DC:6C:EF:B5:56:28:0D:51:67:69 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0DBE227F1B0C0F114122304413A7F58EFD26E0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c7a94034-ee03-4096-9660-7f8a861830a8.roa Signing time: Thu 30 Oct 2025 22:25:36 +0000 ROA not before: Thu 30 Oct 2025 22:25:36 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1d1a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:be:22:7f:1b:0c:0f:11:41:22:30:44:13:a7:f5:8e:fd:26:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:25:36 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=c3fb64d515b4b09ef31e079eaccc3dbdd698206c60af2517605abd3f5695bbd4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ee:f8:71:1f:c9:96:25:e1:c6:18:43:37:84: c9:8c:3c:11:16:97:52:e6:44:84:ee:04:48:47:6f: 7e:f9:6f:05:ca:60:46:04:4d:26:f4:b1:69:30:84: 13:14:b5:c9:95:c1:6d:c4:74:f7:06:ba:a6:2c:8c: 20:da:3a:a6:a5:10:07:f2:6d:af:28:7a:66:1d:c3: df:06:cc:f3:9d:5b:0b:e7:fb:23:1f:f8:25:a8:3f: b5:8e:ee:f6:8d:a4:0f:18:ad:62:7a:90:d9:11:0a: 7f:71:88:7f:64:f5:84:77:eb:5a:c7:00:1c:13:e7: 79:63:ba:55:d3:33:68:11:e3:b5:d4:4b:72:ff:de: 6c:2e:12:65:1a:7a:b0:00:84:a3:81:82:d0:5d:e5: f8:83:a4:33:c7:7e:cc:1f:91:c4:dc:3a:8f:59:9c: b4:4f:23:2d:7d:07:ad:eb:a2:5c:af:70:bc:c3:c6: 21:c3:17:20:b6:e9:cd:0a:84:df:04:a4:e7:ba:f6: c1:7a:d1:05:4f:ec:11:0f:db:19:9e:d6:4b:42:72: 99:64:77:d5:64:76:75:d6:da:62:2a:45:01:9e:a3: d7:8e:b6:87:0a:1f:bd:ba:5e:68:42:8d:dc:f7:3b: 6b:24:b6:5d:32:28:4d:bf:bb:b7:1a:46:38:7d:90: ca:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:04:1E:BC:47:03:2D:62:BD:7B:DC:6C:EF:B5:56:28:0D:51:67:69 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c7a94034-ee03-4096-9660-7f8a861830a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1d1a::/47 Signature Algorithm: sha256WithRSAEncryption 3a:8b:34:21:0d:23:4f:c8:d9:e4:8a:b9:ca:01:ce:da:76:4d: 27:01:95:bf:ad:56:67:f0:d7:1c:65:ea:2c:84:26:7b:9e:55: d8:a9:d4:0c:ab:30:be:74:a3:23:6e:e7:c8:78:77:d4:51:87: b5:f6:38:57:4a:8e:7c:80:6e:a6:68:c1:a5:88:bd:78:f8:e5: 16:c1:58:82:3d:b1:dc:69:54:f1:c0:80:af:8f:43:8d:19:62: a3:42:4a:af:e4:10:33:c7:9b:66:07:97:e1:4e:bd:0a:1b:cf: 26:b9:cc:bd:61:ee:12:94:47:3d:01:5d:92:16:a1:68:4f:d1: 53:5d:15:b0:48:e8:ab:20:7b:9c:fb:2d:b5:e1:cb:af:ec:70: d6:46:6b:2f:2f:6d:a5:a3:e6:7b:05:57:30:72:1c:97:88:06: 6b:b4:76:4e:95:eb:df:98:86:d4:1d:e7:2b:ca:d3:cb:f0:72: c7:41:20:b0:9a:be:08:01:1c:d7:0e:19:10:46:68:37:00:5c: 8f:2f:37:fa:e7:40:58:ab:62:59:c1:63:35:93:eb:fb:8c:ed: ed:2b:a3:a3:2a:33:38:42:e4:99:d9:71:21:c6:af:aa:5e:f7: 63:bd:79:ad:1b:b5:d7:ff:74:67:f7:01:88:6c:a1:fe:fc:13: ee:00:28:43 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITDb4ifxsMDxFBIjBEE6f1jv0m4DANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzAyMjI1MzZaFw0yNTEyMDQyMzU5NTla MHoxSTBHBgNVBAUTQGMzZmI2NGQ1MTViNGIwOWVmMzFlMDc5ZWFjY2MzZGJkZDY5 ODIwNmM2MGFmMjUxNzYwNWFiZDNmNTY5NWJiZDQxLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJru+HEfyZYl4cYYQzeEyYw8ERaXUuZEhO4ESEdvfvlvBcpg RgRNJvSxaTCEExS1yZXBbcR09wa6piyMINo6pqUQB/Jtryh6Zh3D3wbM851bC+f7 Ix/4Jag/tY7u9o2kDxitYnqQ2REKf3GIf2T1hHfrWscAHBPneWO6VdMzaBHjtdRL cv/ebC4SZRp6sACEo4GC0F3l+IOkM8d+zB+RxNw6j1mctE8jLX0HreuiXK9wvMPG IcMXILbpzQqE3wSk57r2wXrRBU/sEQ/bGZ7WS0JymWR31WR2ddbaYipFAZ6j1462 hwofvbpeaEKN3Pc7ayS2XTIoTb+7txpGOH2QyqUCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBT3BB68RwMtYr173GzvtVYoDVFnaTAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvYzdhOTQwMzQtZWUwMy00MDk2LTk2NjAtN2Y4YTg2MTgzMGE4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHASYAkAAdGjANBgkqhkiG9w0BAQsFAAOCAQEAOos0IQ0jT8jZ5Iq5ygHO2nZN JwGVv61WZ/DXHGXqLIQme55V2KnUDKswvnSjI27nyHh31FGHtfY4V0qOfIBupmjB pYi9ePjlFsFYgj2x3GlU8cCAr49DjRlio0JKr+QQM8ebZgeX4U69ChvPJrnMvWHu EpRHPQFdkhahaE/RU10VsEjoqyB7nPstteHLr+xw1kZrLy9tpaPmewVXMHIcl4gG a7R2TpXr35iG1B3nK8rTy/Byx0EgsJq+CAEc1w4ZEEZoNwBcjy83+udAWKtiWcFj NZPr+4zt7SujoyozOELkmdlxIcavql73Y715rRu11/90Z/cBiGyh/vwT7gAoQw== -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:46 2025 by rpki-client