$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/91d3d8ea-8280-4f13-9d3e-db15c03ae61c.roa File: 91d3d8ea-8280-4f13-9d3e-db15c03ae61c.roa (raw, json) Hash identifier: xEt0ON6U81ClGeQD44wYnONvOp7qF1K7P8b/NUfY01w= Subject key identifier: 04:02:90:D5:6F:89:F7:39:79:B2:01:4D:52:4A:F7:9A:12:51:B0:95 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6DEE7D9CCC4F26F9BF6DC14D015CABE490D1DF41 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/91d3d8ea-8280-4f13-9d3e-db15c03ae61c.roa Signing time: Mon 06 Oct 2025 17:20:28 +0000 ROA not before: Mon 06 Oct 2025 17:20:28 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c1e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ee:7d:9c:cc:4f:26:f9:bf:6d:c1:4d:01:5c:ab:e4:90:d1:df:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:20:28 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=a621860ee9873c9409260be88e1bf9863995884cf1641dee5879cc3ee7aa4fe2, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1d:e3:9d:53:15:50:31:20:bd:46:15:6a:7d: 81:2c:6e:ab:34:8d:d8:85:05:9e:f4:54:35:c2:46: 60:01:53:00:7e:7a:a4:ff:9d:3f:53:20:27:a6:6e: d7:ff:2b:41:3e:02:f1:6a:d8:3d:e4:be:cf:49:75: a1:46:26:e3:e9:49:24:27:e3:42:70:f9:fc:08:55: 52:e2:fa:ec:fc:48:33:a7:dc:c2:b2:a1:a0:8c:85: c1:41:05:5e:1f:4c:07:65:00:e0:3f:2b:dc:65:c2: 9a:26:a1:b4:93:75:5b:0c:14:85:0f:d5:b5:0b:9c: 31:b6:03:2b:33:50:cd:82:a9:b6:22:91:6d:cd:cf: 76:7a:2a:ef:fb:c2:bb:93:bc:e9:09:90:12:fe:0c: 9f:b7:88:c1:b3:d4:d8:66:53:b2:12:57:94:a7:f2: 74:eb:49:a4:7d:0f:d3:86:2e:a1:1d:05:7c:ae:6f: 10:2c:cd:4f:ce:03:2b:54:cb:b9:39:bd:ce:d9:33: 81:34:4d:91:2c:86:49:c7:27:64:86:2a:58:86:ed: 8b:3f:e1:44:4d:f3:56:6f:5d:79:51:fa:97:66:23: d0:2f:9b:2f:9a:ac:70:7d:e4:95:19:49:b2:be:c1: 21:ad:ba:ba:eb:e6:2b:c3:00:88:9e:ae:79:87:23: e8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:02:90:D5:6F:89:F7:39:79:B2:01:4D:52:4A:F7:9A:12:51:B0:95 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/91d3d8ea-8280-4f13-9d3e-db15c03ae61c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1e::/48 Signature Algorithm: sha256WithRSAEncryption 0b:38:d4:0e:25:c7:ed:01:2d:e9:bc:cd:2b:65:7f:92:0b:f1: 55:f0:cd:22:2e:52:56:1e:1a:ee:08:f2:c5:8c:ea:cb:c5:ae: ab:0c:11:f0:0b:4b:b9:81:36:51:ec:0b:09:31:e5:72:2a:4f: 5b:a8:8d:85:31:1f:b1:0d:ba:4d:4b:e0:37:9f:9f:e9:2a:f5: 13:44:88:01:f0:5e:fd:13:6e:98:9b:23:a1:7e:fc:12:16:56: 98:73:b7:7d:53:0e:f9:4b:af:bf:d3:3e:0c:4a:ec:f5:8d:88: 67:42:1d:4e:0c:fd:f0:08:7c:89:b2:41:b9:ca:2e:4a:5b:c2: d9:37:83:6c:4d:e8:ce:0c:49:00:63:37:3a:7e:f7:14:ad:4c: 5f:e3:62:57:8e:6e:a3:3b:6f:31:92:57:be:0e:e2:a3:78:e7: 63:7d:96:b8:2e:7d:62:35:4d:c5:01:92:51:4e:fd:e0:60:b8: a5:25:48:59:de:9f:90:2f:da:c6:46:c3:8e:0c:ff:ad:f5:98: d8:5f:c7:84:a2:47:7d:a7:cc:e6:0a:b7:63:dc:bb:16:2e:c3: ca:32:97:33:42:fa:c5:05:04:2b:ed:3f:0b:1a:cc:3e:7e:53: 71:10:fe:90:48:41:e6:ae:99:cb:53:08:45:d2:00:d8:92:03: 5f:44:d4:6a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbe59nMxPJvm/bcFNAVyr5JDR30EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcyMDI4WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjIxODYwZWU5ODczYzk0MDkyNjBiZTg4ZTFiZjk4NjM5 OTU4ODRjZjE2NDFkZWU1ODc5Y2MzZWU3YWE0ZmUyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVHeOdUxVQMSC9RhVqfYEsbqs0jdiFBZ70VDXCRmABUwB+ eqT/nT9TICembtf/K0E+AvFq2D3kvs9JdaFGJuPpSSQn40Jw+fwIVVLi+uz8SDOn 3MKyoaCMhcFBBV4fTAdlAOA/K9xlwpomobSTdVsMFIUP1bULnDG2AyszUM2CqbYi kW3Nz3Z6Ku/7wruTvOkJkBL+DJ+3iMGz1NhmU7ISV5Sn8nTrSaR9D9OGLqEdBXyu bxAszU/OAytUy7k5vc7ZM4E0TZEshknHJ2SGKliG7Ys/4URN81ZvXXlR+pdmI9Av my+arHB95JUZSbK+wSGturrr5ivDAIiernmHI+gxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBAKQ1W+J9zl5sgFNUkr3mhJRsJUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzkxZDNkOGVhLTgyODAtNGYxMy05ZDNlLWRiMTVjMDNhZTYxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADB4wDQYJKoZIhvcNAQELBQADggEBAAs41A4lx+0BLem8zStlf5IL 8VXwzSIuUlYeGu4I8sWM6svFrqsMEfALS7mBNlHsCwkx5XIqT1uojYUxH7ENuk1L 4Defn+kq9RNEiAHwXv0TbpibI6F+/BIWVphzt31TDvlLr7/TPgxK7PWNiGdCHU4M /fAIfImyQbnKLkpbwtk3g2xN6M4MSQBjNzp+9xStTF/jYleObqM7bzGSV74O4qN4 52N9lrgufWI1TcUBklFO/eBguKUlSFnen5Av2sZGw44M/631mNhfx4SiR32nzOYK t2PcuxYuw8oylzNC+sUFBCvtPwsazD5+U3EQ/pBIQeaumctTCEXSANiSA19E1Go= -----END CERTIFICATE-----Generated at Wed Oct 8 21:19:38 2025 by rpki-client