$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/88d05d2c-791d-492a-9697-f4c4a592c57a.roa File: 88d05d2c-791d-492a-9697-f4c4a592c57a.roa (raw, json) Hash identifier: oNS6U9KvaO5NGwFnd20UrT4r+fqE7eiaPjm+40n6b5I= Subject key identifier: 0A:C5:7E:79:89:09:2E:F8:21:6F:DB:D1:1B:89:59:84:DF:2F:C9:9D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 761C5F7054C0FF3EA7E0FAE640B2979C0B1DE4C1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/88d05d2c-791d-492a-9697-f4c4a592c57a.roa Signing time: Tue 21 Oct 2025 00:20:02 +0000 ROA not before: Tue 21 Oct 2025 00:20:02 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:5201::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 25 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:1c:5f:70:54:c0:ff:3e:a7:e0:fa:e6:40:b2:97:9c:0b:1d:e4:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 21 00:20:02 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=c4497478597b340c579313177b16ba63b4c450a94f6f6b42ad946e6c9162b599, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8e:e2:f7:27:a3:c4:eb:0a:9b:24:8e:36:b6: 06:36:37:60:bb:28:5e:ba:b0:e4:a4:cf:3b:8f:34: c2:bb:e3:43:b9:95:c4:cf:78:87:78:f9:8a:27:3c: f2:2d:50:20:ad:70:c8:b4:1e:2e:de:d9:1b:34:ba: 63:5c:f1:96:a3:c1:0d:45:31:ec:3e:d8:a5:e8:5b: ef:ee:45:52:14:53:71:23:95:16:22:94:a5:7c:f5: aa:f9:74:a3:c0:87:b4:61:50:7f:72:65:7b:a5:c4: b8:da:6f:cd:51:59:93:f5:90:24:96:e8:a4:48:a0: a0:fd:14:46:cb:cc:4b:32:9e:26:38:0f:a4:e4:15: 1f:05:75:ba:02:06:6f:ae:a2:18:39:d5:46:6f:22: 40:ae:f0:c9:66:59:59:c6:6d:97:b1:9e:16:81:de: 0b:d7:26:c2:5f:2f:e3:eb:fa:ba:51:ce:b4:91:49: e5:3a:ce:31:3e:1f:00:a9:ad:e8:45:e4:ba:3c:86: 07:0d:db:19:d7:a1:73:37:bf:49:28:7d:5c:28:b3: 93:1c:02:a4:10:40:c7:3c:aa:75:0a:18:e5:82:81: ec:e2:46:e9:eb:74:b8:c8:e0:b0:b1:10:2e:da:f1: a7:fa:41:db:d7:15:53:3a:13:d0:9f:84:4c:5c:55: 65:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C5:7E:79:89:09:2E:F8:21:6F:DB:D1:1B:89:59:84:DF:2F:C9:9D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/88d05d2c-791d-492a-9697-f4c4a592c57a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:5201::/48 Signature Algorithm: sha256WithRSAEncryption 0f:3c:60:1d:55:43:b7:1c:61:95:b1:f4:95:8e:66:73:e6:4b: 1e:94:7f:b2:2e:b7:f5:eb:e8:22:cc:ea:71:43:a1:94:d7:b9: fe:1c:58:a6:f4:a9:62:ea:28:a9:51:96:c5:9a:15:f7:b6:a3: 0e:1e:81:4f:6d:0a:33:7f:6c:bc:fe:7a:5b:3c:f8:7a:1c:0a: dd:41:89:58:d5:ea:f3:bd:d4:0a:b1:33:0e:db:8b:7e:a9:53: ab:05:b2:d7:bb:18:8f:9b:2d:08:7b:e4:11:28:05:62:8c:59: 71:86:e6:c5:71:4f:9b:e1:88:81:44:d0:dc:d9:29:f3:7d:70: d7:1c:d6:c5:1c:17:1a:38:27:a9:d2:2e:2f:e0:75:7c:ea:95: cd:91:df:a9:16:98:86:84:7f:40:b0:44:7d:a4:d0:cd:86:5e: c4:00:f5:60:4b:0a:d8:51:a4:4e:b4:fd:57:60:29:7f:bc:76: 57:41:ec:13:f8:c0:e7:b9:3b:6c:29:3b:ea:11:70:1a:ff:bc: 37:98:bd:8c:7e:fb:48:8e:d3:e2:72:7c:d8:54:c3:32:b6:4b: da:8e:35:cd:a9:d4:39:9c:c0:ac:ca:90:18:bc:6e:7d:0e:be: 0b:06:53:44:42:32:02:ce:96:92:16:ac:1f:9c:b1:7f:59:5f: 0e:a4:88:93 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdhxfcFTA/z6n4PrmQLKXnAsd5MEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDIxMDAyMDAyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDQ5NzQ3ODU5N2IzNDBjNTc5MzEzMTc3YjE2YmE2M2I0 YzQ1MGE5NGY2ZjZiNDJhZDk0NmU2YzkxNjJiNTk5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1juL3J6PE6wqbJI42tgY2N2C7KF66sOSkzzuPNMK740O5 lcTPeId4+YonPPItUCCtcMi0Hi7e2Rs0umNc8ZajwQ1FMew+2KXoW+/uRVIUU3Ej lRYilKV89ar5dKPAh7RhUH9yZXulxLjab81RWZP1kCSW6KRIoKD9FEbLzEsyniY4 D6TkFR8FdboCBm+uohg51UZvIkCu8MlmWVnGbZexnhaB3gvXJsJfL+Pr+rpRzrSR SeU6zjE+HwCprehF5Lo8hgcN2xnXoXM3v0kofVwos5McAqQQQMc8qnUKGOWCgezi RunrdLjI4LCxEC7a8af6QdvXFVM6E9CfhExcVWW9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCsV+eYkJLvghb9vRG4lZhN8vyZ0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg4ZDA1ZDJjLTc5MWQtNDkyYS05Njk3LWY0YzRhNTkyYzU3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAUgEwDQYJKoZIhvcNAQELBQADggEBAA88YB1VQ7ccYZWx9JWOZnPm Sx6Uf7Iut/Xr6CLM6nFDoZTXuf4cWKb0qWLqKKlRlsWaFfe2ow4egU9tCjN/bLz+ els8+HocCt1BiVjV6vO91AqxMw7bi36pU6sFste7GI+bLQh75BEoBWKMWXGG5sVx T5vhiIFE0NzZKfN9cNcc1sUcFxo4J6nSLi/gdXzqlc2R36kWmIaEf0CwRH2k0M2G XsQA9WBLCthRpE60/VdgKX+8dldB7BP4wOe5O2wpO+oRcBr/vDeYvYx++0iO0+Jy fNhUwzK2S9qONc2p1DmcwKzKkBi8bn0OvgsGU0RCMgLOlpIWrB+csX9ZXw6kiJM= -----END CERTIFICATE-----Generated at Fri Oct 24 08:27:06 2025 by rpki-client