$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3d91fd95-199d-41dd-9b67-db7495ce3d1c.roa File: 3d91fd95-199d-41dd-9b67-db7495ce3d1c.roa (raw, json) Hash identifier: e6FvrkeXRTo3FDCz90WpqtE96Qwwya9xGSn5NGX6UjA= Subject key identifier: AB:E4:E8:31:C3:CB:D5:89:D1:B1:BD:7D:AF:2E:21:A3:1E:82:6A:4F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 399C69ABA53043EF4534EDDAF234461DE15FE5D7 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3d91fd95-199d-41dd-9b67-db7495ce3d1c.roa Signing time: Fri 26 Sep 2025 17:52:48 +0000 ROA not before: Fri 26 Sep 2025 17:52:48 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c24::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:9c:69:ab:a5:30:43:ef:45:34:ed:da:f2:34:46:1d:e1:5f:e5:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:52:48 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=4695262c1ac021105ee46af9801983ae8d4e2200358ae04eaffcb191d9ec6d0d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ae:33:c3:a8:3a:e6:07:a3:ed:2c:d7:c6:b3: 26:10:0f:50:35:2f:a3:7e:78:8d:15:5b:4a:94:a0: 57:c5:53:49:52:54:1a:8b:37:e6:da:34:05:b2:e5: d1:d6:7d:4e:70:f5:ef:e8:49:0b:90:d0:74:14:87: 02:38:19:57:f9:07:b3:3c:e4:3a:a8:14:06:6d:be: 40:98:ee:ca:82:00:46:1d:99:81:8f:58:4d:85:6e: 09:54:00:fe:69:c6:37:5e:d2:03:87:34:93:6f:5e: b7:d3:7f:8a:97:36:8e:d8:3d:da:db:ab:0e:32:2a: f2:00:af:4e:7d:91:05:9e:3a:56:05:64:17:2f:0c: 9f:a0:97:e7:1e:42:1e:11:90:0c:a2:ef:b4:86:57: 16:04:14:c0:fa:a7:77:54:9e:cb:04:b2:7b:0b:79: f4:7b:06:c9:b0:bc:04:c5:cb:65:3e:8a:b1:35:05: c1:60:19:98:39:4a:8d:86:45:1a:c9:2d:47:af:b0: b2:4d:5c:a8:96:fe:ba:f0:9f:5c:a0:3f:3f:e8:41: c5:12:11:d6:b5:d4:4e:f7:68:f7:84:cf:19:66:81: a1:d6:4c:1a:d2:1e:5e:1d:06:83:19:da:95:4b:63: c6:13:c7:40:64:6b:a5:54:20:f5:a9:98:db:21:b7: 01:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E4:E8:31:C3:CB:D5:89:D1:B1:BD:7D:AF:2E:21:A3:1E:82:6A:4F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3d91fd95-199d-41dd-9b67-db7495ce3d1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c24::/46 Signature Algorithm: sha256WithRSAEncryption 65:62:b0:f4:6f:e4:8e:de:83:27:eb:80:4d:62:cc:6b:26:7e: 63:e1:f4:ca:27:87:45:08:86:60:0c:d5:b6:a0:2a:d6:7f:9b: 6a:05:37:2c:ee:e7:1f:f1:80:e4:3b:7f:71:b9:ab:89:2b:93: 8f:f8:45:73:cc:22:33:f9:50:f6:8b:00:49:d5:a8:0e:72:e1: 78:bb:01:87:62:62:1a:30:69:d6:34:6a:82:b7:76:e4:33:8a: 6c:80:83:b8:05:ed:dc:90:1c:c5:1c:49:85:e0:f4:75:4e:89: fa:c2:e1:b5:f7:58:9e:93:53:c9:26:2c:65:cd:f0:de:af:87: e1:4a:6b:28:50:8f:bb:d3:65:ad:58:8d:4d:7a:17:68:80:cc: 7f:7e:bf:c6:63:47:d5:ed:de:50:ac:9a:0a:32:9e:d7:4f:1e: 9d:0e:5c:6c:0d:b5:6c:ed:4d:72:99:26:be:2d:23:9b:fd:0c: 6f:23:ab:ca:8d:7e:41:5b:e1:82:b1:0a:b4:4a:c1:3f:b7:5a: 33:85:d0:a5:21:82:95:a0:f8:a0:8f:1a:a2:69:fb:39:aa:b3: 43:a5:4c:ac:f6:6e:f7:e5:e6:91:77:c9:a1:56:0b:8a:fb:9a: c7:82:37:d1:a1:63:9b:16:58:be:f8:05:9e:7b:80:5a:a3:af: 36:72:67:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOZxpq6UwQ+9FNO3a8jRGHeFf5dcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MjQ4WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0Njk1MjYyYzFhYzAyMTEwNWVlNDZhZjk4MDE5ODNhZThk NGUyMjAwMzU4YWUwNGVhZmZjYjE5MWQ5ZWM2ZDBkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCprjPDqDrmB6PtLNfGsyYQD1A1L6N+eI0VW0qUoFfFU0lS VBqLN+baNAWy5dHWfU5w9e/oSQuQ0HQUhwI4GVf5B7M85DqoFAZtvkCY7sqCAEYd mYGPWE2FbglUAP5pxjde0gOHNJNvXrfTf4qXNo7YPdrbqw4yKvIAr059kQWeOlYF ZBcvDJ+gl+ceQh4RkAyi77SGVxYEFMD6p3dUnssEsnsLefR7BsmwvATFy2U+irE1 BcFgGZg5So2GRRrJLUevsLJNXKiW/rrwn1ygPz/oQcUSEda11E73aPeEzxlmgaHW TBrSHl4dBoMZ2pVLY8YTx0Bka6VUIPWpmNshtwGvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUq+ToMcPL1YnRsb19ry4hox6Cak8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNkOTFmZDk1LTE5OWQtNDFkZC05YjY3LWRiNzQ5NWNlM2QxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImBZzADCQwDQYJKoZIhvcNAQELBQADggEBAGVisPRv5I7egyfrgE1izGsm fmPh9Monh0UIhmAM1bagKtZ/m2oFNyzu5x/xgOQ7f3G5q4krk4/4RXPMIjP5UPaL AEnVqA5y4Xi7AYdiYhowadY0aoK3duQzimyAg7gF7dyQHMUcSYXg9HVOifrC4bX3 WJ6TU8kmLGXN8N6vh+FKayhQj7vTZa1YjU16F2iAzH9+v8ZjR9Xt3lCsmgoyntdP Hp0OXGwNtWztTXKZJr4tI5v9DG8jq8qNfkFb4YKxCrRKwT+3WjOF0KUhgpWg+KCP GqJp+zmqs0OlTKz2bvfl5pF3yaFWC4r7mseCN9GhY5sWWL74BZ57gFqjrzZyZ1o= -----END CERTIFICATE-----Generated at Wed Oct 8 21:34:27 2025 by rpki-client