$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cb40c895-927e-4f68-8639-9605effa3351.roa File: cb40c895-927e-4f68-8639-9605effa3351.roa (raw, json) Hash identifier: U03V63E7tYIBQlqcwGiIaZeELmdrXGzwYEDV+J8VXUw= Subject key identifier: DF:9A:D7:F7:7B:69:45:AF:3A:78:EA:F6:44:A1:BC:DB:EE:17:52:60 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6603E244D382A3100D8DBC961FE9472496E8AE4A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cb40c895-927e-4f68-8639-9605effa3351.roa Signing time: Fri 31 Oct 2025 05:14:06 +0000 ROA not before: Fri 31 Oct 2025 05:14:06 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1798::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:03:e2:44:d3:82:a3:10:0d:8d:bc:96:1f:e9:47:24:96:e8:ae:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:14:06 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=3f80948ab062115f0d57eb883af4308ba156c919bcea0239b3f22652acfe4b95, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:25:c6:8f:1d:04:73:09:88:a1:bd:dc:18:a8: c9:4b:0d:7f:40:ef:e9:a8:10:56:c2:78:85:a7:60: c3:0d:21:77:73:51:35:42:65:ee:8b:52:d7:00:1e: 98:c0:1e:97:87:a4:60:2b:2c:c6:8d:ac:c5:48:e8: 62:78:8c:69:4f:fe:8c:db:ec:67:24:ef:aa:f3:fc: 0f:d1:ee:d4:b1:8b:47:8c:16:02:4a:05:08:ef:d7: f7:aa:ce:a6:50:c4:68:54:05:e9:51:e1:d4:59:54: af:36:af:52:77:76:3c:e8:1d:e2:c1:77:03:87:ed: 84:85:a0:d4:bc:30:94:9f:73:a0:c2:74:10:82:53: 6d:0a:d4:3a:c1:6a:39:1f:63:63:1d:d9:5b:08:d8: c9:9d:20:c9:38:65:81:57:fd:f3:dd:5a:56:23:8b: 69:db:34:00:b0:95:8d:10:d3:1d:1f:31:67:7c:9f: f8:5c:29:fd:ce:95:ed:10:a3:d3:1e:18:cd:04:18: b1:3f:36:eb:dc:ad:dc:b4:ec:0c:3a:b8:44:db:83: 6d:85:c7:82:fc:6e:44:a2:75:24:99:03:6e:db:ce: 67:bf:b6:ab:98:11:ee:13:66:12:3d:82:0d:c5:62: fe:5e:94:ce:17:48:ec:57:f3:44:58:18:25:ca:82: 32:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:9A:D7:F7:7B:69:45:AF:3A:78:EA:F6:44:A1:BC:DB:EE:17:52:60 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cb40c895-927e-4f68-8639-9605effa3351.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1798::/45 Signature Algorithm: sha256WithRSAEncryption 5d:3b:8b:fa:47:2a:4e:e6:8a:58:0f:ce:78:cc:74:35:0a:21: af:79:ef:58:5d:f4:46:09:50:fd:65:70:c0:07:ca:3f:29:ac: 93:5b:30:05:05:98:c2:aa:c5:0a:a6:ec:62:89:2b:9f:da:27: ee:0e:42:30:17:d7:67:05:fb:57:32:48:04:b2:7b:27:a0:f7: a1:27:38:04:e1:62:c2:d4:31:c8:9a:a6:a5:7b:32:9d:90:62: 0b:88:f3:ab:75:4d:79:ce:93:cc:28:95:c4:b3:e3:51:ae:d3: 32:d7:14:7b:1f:9f:03:9e:c8:36:c4:93:2a:56:fa:da:06:22: 5e:3d:d7:ce:99:8d:c0:22:fe:77:0d:4a:f6:70:ee:af:2d:3b: e6:6f:35:6b:e7:cf:4e:b7:c2:6c:65:1b:90:e5:ba:31:6e:2f: 33:9d:25:bb:00:61:ff:bc:43:28:14:99:ea:75:c5:43:38:46: 62:f6:80:75:81:90:ef:9b:fe:82:44:30:14:5b:7a:1f:7a:6e: 0a:0d:a8:a5:7f:21:45:16:61:e7:3b:ee:35:4b:70:91:55:15: 72:09:a4:c2:0a:fd:23:4c:1f:b8:73:76:93:7c:f8:55:a2:82: d4:31:07:48:76:54:14:25:8d:d9:6f:49:02:98:f1:87:cc:a6: cb:8f:00:f6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZgPiRNOCoxANjbyWH+lHJJborkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUxNDA2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjgwOTQ4YWIwNjIxMTVmMGQ1N2ViODgzYWY0MzA4YmEx NTZjOTE5YmNlYTAyMzliM2YyMjY1MmFjZmU0Yjk1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClJcaPHQRzCYihvdwYqMlLDX9A7+moEFbCeIWnYMMNIXdz UTVCZe6LUtcAHpjAHpeHpGArLMaNrMVI6GJ4jGlP/ozb7Gck76rz/A/R7tSxi0eM FgJKBQjv1/eqzqZQxGhUBelR4dRZVK82r1J3djzoHeLBdwOH7YSFoNS8MJSfc6DC dBCCU20K1DrBajkfY2Md2VsI2MmdIMk4ZYFX/fPdWlYji2nbNACwlY0Q0x0fMWd8 n/hcKf3Ole0Qo9MeGM0EGLE/Nuvcrdy07Aw6uETbg22Fx4L8bkSidSSZA27bzme/ tquYEe4TZhI9gg3FYv5elM4XSOxX80RYGCXKgjIjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU35rX93tpRa86eOr2RKG82+4XUmAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NiNDBjODk1LTkyN2UtNGY2OC04NjM5LTk2MDVlZmZhMzM1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAF5gwDQYJKoZIhvcNAQELBQADggEBAF07i/pHKk7milgPznjMdDUK Ia9571hd9EYJUP1lcMAHyj8prJNbMAUFmMKqxQqm7GKJK5/aJ+4OQjAX12cF+1cy SASyeyeg96EnOAThYsLUMciapqV7Mp2QYguI86t1TXnOk8wolcSz41Gu0zLXFHsf nwOeyDbEkypW+toGIl49186ZjcAi/ncNSvZw7q8tO+ZvNWvnz063wmxlG5DlujFu LzOdJbsAYf+8QygUmep1xUM4RmL2gHWBkO+b/oJEMBRbeh96bgoNqKV/IUUWYec7 7jVLcJFVFXIJpMIK/SNMH7hzdpN8+FWigtQxB0h2VBQljdlvSQKY8YfMpsuPAPY= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:22 2025 by rpki-client