$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d2fc0e5b-2e29-4e55-816d-71608136958a.roa File: d2fc0e5b-2e29-4e55-816d-71608136958a.roa (raw, json) Hash identifier: gCMiqHOF0skiDpjMjycPVMDsFaWmhICTSFQGyB0NEVk= Subject key identifier: 4F:D2:F6:C2:13:8E:8D:B0:F5:43:56:96:B7:AB:71:AC:91:69:4B:86 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 497C66B98C6BC8182D64F0089BDACF829690BA64 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d2fc0e5b-2e29-4e55-816d-71608136958a.roa Signing time: Thu 30 Oct 2025 21:13:43 +0000 ROA not before: Thu 30 Oct 2025 21:13:43 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:15d2::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:7c:66:b9:8c:6b:c8:18:2d:64:f0:08:9b:da:cf:82:96:90:ba:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 21:13:43 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=f932fbc0a81b56369f8f039842b226fb323a0ba7a5a8d73205a5edcf9a07dbbc, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c1:f5:92:a3:49:6b:da:9b:9a:d9:ed:b0:6f: b6:b5:df:b1:f7:fe:e0:0b:6b:ff:a5:fa:92:8f:a9: dd:2d:db:71:50:73:b8:75:15:fa:fc:3b:3f:d6:0d: 69:92:39:3a:ec:5d:6b:fc:47:ef:a8:60:65:9e:97: b8:e9:6f:5b:60:dd:82:b8:9d:23:ad:bb:46:ce:2f: 5f:5b:a4:43:6d:15:37:f0:bd:ce:03:a7:1b:63:2a: 4a:fd:e0:58:6f:e9:36:b9:83:9e:df:27:36:40:73: 2a:f4:7e:77:ed:14:b4:b2:c1:74:8d:63:ef:08:6d: f8:ae:62:d2:21:f2:66:c4:d3:47:15:09:35:47:72: 35:8e:e0:27:59:49:90:c4:9c:4f:b4:89:71:e2:3c: dc:2e:09:56:9f:ef:34:09:a3:bd:43:f6:3f:3b:af: ac:02:21:c4:6d:31:01:aa:09:7c:ec:a7:a0:99:51: 5a:ec:9b:37:12:d2:2d:1a:a0:ed:1b:53:57:89:b1: 44:52:d3:59:62:fc:77:8f:e8:75:93:14:d6:45:2a: 54:57:24:72:f1:f1:a2:98:05:88:0f:72:7a:a9:23: 45:c8:16:52:b6:46:9f:99:5e:f2:94:cd:c7:75:ea: b7:d6:43:6d:1b:a9:d2:ac:20:8c:7f:4d:80:05:5d: de:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D2:F6:C2:13:8E:8D:B0:F5:43:56:96:B7:AB:71:AC:91:69:4B:86 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d2fc0e5b-2e29-4e55-816d-71608136958a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:15d2::/47 Signature Algorithm: sha256WithRSAEncryption 62:c3:d2:17:2c:11:9d:23:71:52:20:54:1a:7d:75:43:3d:39: 03:e7:79:a6:22:93:8e:b3:8b:02:d5:d7:be:bb:1b:a6:c2:99: d6:23:45:91:ad:30:49:7c:bf:d2:d6:7a:6d:cc:25:9b:ef:9a: 33:0f:ad:a3:d2:e4:c5:ce:0a:5e:be:99:e5:bb:bd:c6:32:26: 64:67:b5:8c:af:4c:df:d5:fa:03:b9:08:ef:c4:15:aa:00:d6: 02:f4:ba:a5:7b:ba:6e:b6:a4:f6:a5:e5:52:8a:c5:5e:58:49: dc:6c:0f:50:63:9c:f9:82:4f:2d:58:95:7f:35:32:84:29:ec: 53:80:43:99:11:8c:2a:38:3e:da:12:fb:30:bb:c5:62:4d:ae: 28:1a:98:2c:ac:5b:06:b6:db:9b:8f:6d:9c:59:aa:a8:57:17: 58:af:26:c8:ad:0f:71:09:26:cf:85:3a:91:44:c1:8b:1d:55: d9:da:93:be:c3:17:1d:92:84:93:eb:2b:d2:f1:90:a8:99:5a: fe:ae:df:8a:4d:a8:d1:7e:bf:14:9d:e6:b9:07:fd:a7:28:dc: b7:9f:ce:44:5c:e4:37:be:38:55:5a:bb:8d:ac:35:32:83:bf: 09:8a:40:75:e5:d8:25:7c:63:6c:2e:9d:2a:56:f3:9d:76:0b: 68:0d:63:43 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSXxmuYxryBgtZPAIm9rPgpaQumQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjExMzQzWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTMyZmJjMGE4MWI1NjM2OWY4ZjAzOTg0MmIyMjZmYjMy M2EwYmE3YTVhOGQ3MzIwNWE1ZWRjZjlhMDdkYmJjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiwfWSo0lr2pua2e2wb7a137H3/uALa/+l+pKPqd0t23FQ c7h1Ffr8Oz/WDWmSOTrsXWv8R++oYGWel7jpb1tg3YK4nSOtu0bOL19bpENtFTfw vc4DpxtjKkr94Fhv6Ta5g57fJzZAcyr0fnftFLSywXSNY+8IbfiuYtIh8mbE00cV CTVHcjWO4CdZSZDEnE+0iXHiPNwuCVaf7zQJo71D9j87r6wCIcRtMQGqCXzsp6CZ UVrsmzcS0i0aoO0bU1eJsURS01li/HeP6HWTFNZFKlRXJHLx8aKYBYgPcnqpI0XI FlK2Rp+ZXvKUzcd16rfWQ20bqdKsIIx/TYAFXd73AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUT9L2whOOjbD1Q1aWt6txrJFpS4YwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2QyZmMwZTViLTJlMjktNGU1NS04MTZkLTcxNjA4MTM2OTU4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAFdIwDQYJKoZIhvcNAQELBQADggEBAGLD0hcsEZ0jcVIgVBp9dUM9 OQPneaYik46ziwLV1767G6bCmdYjRZGtMEl8v9LWem3MJZvvmjMPraPS5MXOCl6+ meW7vcYyJmRntYyvTN/V+gO5CO/EFaoA1gL0uqV7um62pPal5VKKxV5YSdxsD1Bj nPmCTy1YlX81MoQp7FOAQ5kRjCo4PtoS+zC7xWJNrigamCysWwa225uPbZxZqqhX F1ivJsitD3EJJs+FOpFEwYsdVdnak77DFx2ShJPrK9LxkKiZWv6u34pNqNF+vxSd 5rkH/aco3LefzkRc5De+OFVau42sNTKDvwmKQHXl2CV8Y2wunSpW8512C2gNY0M= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:41 2025 by rpki-client