$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9c7fec7-2de3-46b2-8429-754062e5a324.roa File: d9c7fec7-2de3-46b2-8429-754062e5a324.roa (raw, json) Hash identifier: U+OMTGpzy7u8rEum9FV0jhIhuFYjz7dADWDMzjHY/EI= Subject key identifier: 79:98:CE:E4:AE:21:18:5F:97:8E:8A:72:D9:6A:30:8E:76:EB:FA:E4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 76B6786237380A7DECACED560A73F2A635AD5FBB Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9c7fec7-2de3-46b2-8429-754062e5a324.roa Signing time: Thu 30 Oct 2025 22:53:40 +0000 ROA not before: Thu 30 Oct 2025 22:53:40 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2982::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b6:78:62:37:38:0a:7d:ec:ac:ed:56:0a:73:f2:a6:35:ad:5f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:53:40 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=67f835db302eaac1a3908e3d3a169ee1d65a9dc46febdebebee706393304ae2b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:5f:86:b6:1a:4a:65:64:e6:68:06:6d:b9:ad: 05:05:9f:96:4e:3c:2c:60:f4:67:7a:5b:59:3a:17: 30:fe:f0:ae:9a:ff:b8:62:86:06:0a:72:04:15:9e: e4:31:34:99:8c:dd:ef:fb:23:4a:e9:f5:7f:4b:83: 27:c7:6a:01:67:95:2b:11:42:f0:0f:75:3c:ef:fe: c9:8f:54:e2:62:23:e7:81:13:8f:78:f9:18:f0:fa: 72:68:9b:20:3f:aa:d4:72:3a:7f:03:37:23:fb:cd: b4:4b:1e:44:a9:7b:24:10:18:46:a0:5e:ad:d4:18: 70:6b:bd:48:42:c3:3c:2f:28:f7:ee:d5:07:e9:3d: a3:26:d5:0d:73:50:a4:86:c4:2c:c4:a3:e7:4c:0e: d1:55:cc:92:f9:12:47:60:f6:2b:5c:a4:69:eb:77: 73:3d:97:36:f1:2c:e4:35:5f:4d:cc:3d:e8:5a:9e: ba:47:7a:0f:13:74:f8:e2:35:06:1b:af:a7:7e:65: 36:a0:10:fd:eb:7c:4d:ce:be:9b:ac:1c:c0:e1:46: 3c:63:c0:32:65:d9:64:dc:46:6f:e2:2f:7c:d4:d5: 81:3c:ce:fb:e9:80:67:dd:48:38:30:16:a9:11:08: bc:57:40:cb:25:ca:f1:7f:f0:ab:9f:f6:7e:07:44: ae:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:98:CE:E4:AE:21:18:5F:97:8E:8A:72:D9:6A:30:8E:76:EB:FA:E4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9c7fec7-2de3-46b2-8429-754062e5a324.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2982::/47 Signature Algorithm: sha256WithRSAEncryption c0:50:dc:46:2a:95:59:b0:68:01:28:2a:d3:07:dd:5d:a0:f6: 57:42:70:80:b1:30:44:4d:7a:9d:75:d1:f5:ef:07:85:2a:d9: c6:a9:96:97:13:7d:a7:86:c3:a7:03:bc:9a:60:94:22:6c:e0: 4c:cd:a7:b2:34:9c:5f:9d:51:5a:01:6e:51:7e:ea:24:26:1f: eb:28:4e:f3:bc:c1:b9:50:63:72:55:a3:ae:cc:c7:47:1f:3e: 17:5a:67:53:45:cd:96:ca:7c:ae:9a:3c:25:b8:b0:cb:24:d3: 58:82:fe:85:76:3b:35:74:06:d4:71:0f:0a:e9:44:0e:05:f3: ec:2c:54:ce:ba:f5:45:90:d5:2a:d4:37:86:81:25:5a:e3:e4: 0d:46:81:86:b4:ab:9b:45:30:0d:76:91:ae:5b:9a:80:43:16: 13:be:cb:bd:b6:70:78:30:ad:88:9d:07:1b:00:62:06:9b:68: b7:e0:c1:f8:18:32:cc:66:02:20:7a:46:08:23:f6:a8:c9:ea: 8e:c5:67:24:83:10:8e:d4:d8:0b:91:f3:1c:16:81:ae:e9:01: c0:80:30:75:9f:07:04:32:d2:f6:cf:73:7e:23:d2:db:12:e7: b7:a1:39:d0:30:e9:7f:49:68:8e:f5:da:3e:40:54:08:49:9d: 20:ac:c6:c5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdrZ4Yjc4Cn3srO1WCnPypjWtX7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjI1MzQwWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2Y4MzVkYjMwMmVhYWMxYTM5MDhlM2QzYTE2OWVlMWQ2 NWE5ZGM0NmZlYmRlYmViZWU3MDYzOTMzMDRhZTJiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSX4a2GkplZOZoBm25rQUFn5ZOPCxg9Gd6W1k6FzD+8K6a /7hihgYKcgQVnuQxNJmM3e/7I0rp9X9LgyfHagFnlSsRQvAPdTzv/smPVOJiI+eB E494+Rjw+nJomyA/qtRyOn8DNyP7zbRLHkSpeyQQGEagXq3UGHBrvUhCwzwvKPfu 1QfpPaMm1Q1zUKSGxCzEo+dMDtFVzJL5Ekdg9itcpGnrd3M9lzbxLOQ1X03MPeha nrpHeg8TdPjiNQYbr6d+ZTagEP3rfE3OvpusHMDhRjxjwDJl2WTcRm/iL3zU1YE8 zvvpgGfdSDgwFqkRCLxXQMslyvF/8Kuf9n4HRK4PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeZjO5K4hGF+Xjopy2Wowjnbr+uQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Q5YzdmZWM3LTJkZTMtNDZiMi04NDI5LTc1NDA2MmU1YTMyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKYIwDQYJKoZIhvcNAQELBQADggEBAMBQ3EYqlVmwaAEoKtMH3V2g 9ldCcICxMERNep110fXvB4Uq2caplpcTfaeGw6cDvJpglCJs4EzNp7I0nF+dUVoB blF+6iQmH+soTvO8wblQY3JVo67Mx0cfPhdaZ1NFzZbKfK6aPCW4sMsk01iC/oV2 OzV0BtRxDwrpRA4F8+wsVM669UWQ1SrUN4aBJVrj5A1GgYa0q5tFMA12ka5bmoBD FhO+y722cHgwrYidBxsAYgabaLfgwfgYMsxmAiB6Rggj9qjJ6o7FZySDEI7U2AuR 8xwWga7pAcCAMHWfBwQy0vbPc34j0tsS57ehOdAw6X9JaI712j5AVAhJnSCsxsU= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:47 2025 by rpki-client