$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf434fca-a200-4d35-8b0c-cedb444bf015.roa File: cf434fca-a200-4d35-8b0c-cedb444bf015.roa (raw, json) Hash identifier: eVXgA7qSy9d9EzjC8jADigQN4ZpfVoQghBLXWecBC9A= Subject key identifier: 12:86:B8:E6:6E:DD:1C:58:74:A6:DD:72:89:E3:92:8F:4E:D9:04:C5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 224EF1811CAB9C46010CE1E1ECCFA55273B2CE30 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf434fca-a200-4d35-8b0c-cedb444bf015.roa Signing time: Thu 30 Oct 2025 22:23:49 +0000 ROA not before: Thu 30 Oct 2025 22:23:49 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1cae::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:4e:f1:81:1c:ab:9c:46:01:0c:e1:e1:ec:cf:a5:52:73:b2:ce:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:23:49 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=a48e2f0e61247587631b3831ecc50c62470b0a016abf73931e35afaf94db4f5b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:23:76:81:3e:f3:56:ca:6c:8f:51:55:a4:ee: 36:f2:d2:41:b8:f7:35:92:3c:73:ed:6e:9a:c4:91: 14:82:af:c0:23:a9:57:a6:33:d9:8c:30:e3:73:e5: 20:b9:7b:69:f6:c8:e2:11:e0:14:c4:f1:b6:56:67: dc:6d:bc:b4:f4:0c:48:79:b2:47:cb:fd:a2:de:05: 30:dc:3a:94:10:14:da:61:77:b0:b7:f0:67:db:17: 87:90:51:09:6a:04:1d:e1:ad:9a:2d:3a:5b:5e:d1: b9:66:98:7a:c3:e8:c7:b0:1a:0e:84:ba:49:77:b4: 26:da:89:8c:02:1f:0d:dc:f0:67:1c:d9:33:37:e4: ae:84:31:2d:58:77:42:84:d6:30:7d:8d:fc:5d:76: 7a:db:d1:e5:84:f3:da:11:88:b6:71:0f:85:2f:a3: 46:50:ea:fc:9a:de:21:5f:f0:f9:8e:cf:72:b2:73: 61:39:08:4b:38:6d:45:e5:45:15:53:9b:b9:cd:c7: 7b:72:69:d0:38:5b:08:65:0c:1d:ab:f8:0f:c6:22: 81:43:90:42:42:8b:d6:d8:6f:5e:37:c4:f5:2e:93: 6d:d9:73:b0:b6:ea:5e:6f:6a:a8:85:10:c4:b3:dd: f9:a3:d2:ab:a0:ce:ab:f9:18:64:d0:42:b2:82:26: 20:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:86:B8:E6:6E:DD:1C:58:74:A6:DD:72:89:E3:92:8F:4E:D9:04:C5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf434fca-a200-4d35-8b0c-cedb444bf015.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1cae::/47 Signature Algorithm: sha256WithRSAEncryption b7:c5:4a:e0:37:83:8e:59:ba:1c:34:43:4a:25:dd:8d:c5:cb: 02:13:8c:dd:66:df:cb:63:33:4e:86:d7:8f:43:9b:b2:6c:21: 23:8f:a8:0f:ea:2e:6b:00:b8:20:97:41:88:5f:02:55:d3:b3: bf:06:d7:53:f1:62:56:b8:85:ad:00:19:dc:ee:fd:85:07:75: 29:4a:a8:58:77:c2:2d:79:6c:b1:81:db:69:62:6d:b0:18:28: bc:8e:e7:3e:4d:4d:c2:cf:64:e3:e9:39:fb:7d:b7:de:d9:27: a0:87:93:cf:c9:dd:df:22:bf:14:65:cb:aa:94:be:af:30:9c: 35:d5:ce:35:19:fa:fe:28:e6:d9:dc:1e:97:47:d4:fa:49:a7: ff:64:c3:df:23:1d:53:9d:cc:7f:e7:f4:1c:10:41:65:95:a3: 86:c9:87:ab:ce:7f:1c:72:f8:b0:54:1e:fa:51:ab:71:e8:23: 05:47:ff:9a:99:85:43:ce:30:86:b3:58:c9:e4:fe:0c:7d:f0: 3c:99:58:b9:13:f8:10:48:f1:d0:a5:c3:68:94:5f:4f:36:39: 28:a9:f7:88:9c:fb:cc:bc:24:2e:bf:b6:0b:aa:62:85:53:43: 3f:2a:6d:f8:9e:54:58:c3:83:02:84:52:20:a9:c4:bb:e7:a8: ff:0d:7a:34 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIk7xgRyrnEYBDOHh7M+lUnOyzjAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIyMzQ5WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDhlMmYwZTYxMjQ3NTg3NjMxYjM4MzFlY2M1MGM2MjQ3 MGIwYTAxNmFiZjczOTMxZTM1YWZhZjk0ZGI0ZjViMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmI3aBPvNWymyPUVWk7jby0kG49zWSPHPtbprEkRSCr8Aj qVemM9mMMONz5SC5e2n2yOIR4BTE8bZWZ9xtvLT0DEh5skfL/aLeBTDcOpQQFNph d7C38GfbF4eQUQlqBB3hrZotOlte0blmmHrD6MewGg6Eukl3tCbaiYwCHw3c8Gcc 2TM35K6EMS1Yd0KE1jB9jfxddnrb0eWE89oRiLZxD4Uvo0ZQ6vya3iFf8PmOz3Ky c2E5CEs4bUXlRRVTm7nNx3tyadA4WwhlDB2r+A/GIoFDkEJCi9bYb143xPUuk23Z c7C26l5vaqiFEMSz3fmj0qugzqv5GGTQQrKCJiDbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEoa45m7dHFh0pt1yieOSj07ZBMUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NmNDM0ZmNhLWEyMDAtNGQzNS04YjBjLWNlZGI0NDRiZjAxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAHK4wDQYJKoZIhvcNAQELBQADggEBALfFSuA3g45Zuhw0Q0ol3Y3F ywITjN1m38tjM06G149Dm7JsISOPqA/qLmsAuCCXQYhfAlXTs78G11PxYla4ha0A Gdzu/YUHdSlKqFh3wi15bLGB22libbAYKLyO5z5NTcLPZOPpOft9t97ZJ6CHk8/J 3d8ivxRly6qUvq8wnDXVzjUZ+v4o5tncHpdH1PpJp/9kw98jHVOdzH/n9BwQQWWV o4bJh6vOfxxy+LBUHvpRq3HoIwVH/5qZhUPOMIazWMnk/gx98DyZWLkT+BBI8dCl w2iUX082OSip94ic+8y8JC6/tguqYoVTQz8qbfieVFjDgwKEUiCpxLvnqP8NejQ= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:42 2025 by rpki-client