$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b3e6a182-09eb-4cdc-a074-d9c1ca01fad9.roa File: b3e6a182-09eb-4cdc-a074-d9c1ca01fad9.roa (raw, json) Hash identifier: d+Qdfo0LanmVEzkFrMYmmJTI4jo8lBi7bg0iSMlzwok= Subject key identifier: 2B:0D:DF:4E:DE:2C:9C:21:F4:AD:C7:F8:58:87:D5:BE:75:D2:E0:EF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 42D512CF94A7A64280D2DEFA757A76B1F89F91DE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b3e6a182-09eb-4cdc-a074-d9c1ca01fad9.roa Signing time: Mon 29 Sep 2025 15:23:39 +0000 ROA not before: Mon 29 Sep 2025 15:23:39 +0000 ROA not after: Mon 03 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:3b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d5:12:cf:94:a7:a6:42:80:d2:de:fa:75:7a:76:b1:f8:9f:91:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 29 15:23:39 2025 GMT Not After : Nov 3 23:59:59 2025 GMT Subject: serialNumber=ea7ed2bbbdd2adde3e708f67e3b64104b18cdf4d29f12972bab1ac09a95d4dd0, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:41:ba:14:08:e6:15:72:dd:49:5a:f1:be:d7: d5:d5:f2:8c:f3:7a:f6:1d:ab:95:50:54:40:d3:05: a6:47:67:36:9f:2e:06:79:e4:9f:f1:24:a2:50:e6: c2:01:33:d9:b0:ae:f1:5e:aa:73:c7:24:df:55:2a: 81:09:e4:6e:25:6d:47:80:8f:0f:52:b6:3b:91:74: 5b:84:d1:b9:91:58:c4:9b:cb:57:dc:7f:7c:11:43: cd:66:38:1b:91:31:09:bc:10:62:da:07:aa:81:65: 83:cd:d5:83:ee:f0:75:4c:a6:0d:d5:7b:d5:4d:8a: 30:8b:86:1f:31:5a:3b:f8:7e:0f:a7:5d:d2:b1:72: fc:71:25:58:74:be:b7:ec:5a:b0:e3:37:d2:21:6d: d1:3c:00:22:e4:84:80:94:5b:78:9c:ad:ef:bf:a4: b3:05:46:22:d8:fd:ca:e9:44:8f:39:84:03:3e:1b: dc:ee:bb:4d:c6:1f:dd:51:e3:6c:1b:0f:5c:b4:de: e0:00:dc:66:9f:57:91:c7:42:aa:53:d9:16:8b:be: a2:bc:e8:b2:f8:06:13:e0:41:80:85:82:b1:69:53: 68:8f:5e:6c:af:81:ae:2d:a5:16:4f:be:71:25:a3: 57:36:6a:65:cc:f2:a5:b9:95:27:3b:87:75:16:af: 25:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:0D:DF:4E:DE:2C:9C:21:F4:AD:C7:F8:58:87:D5:BE:75:D2:E0:EF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b3e6a182-09eb-4cdc-a074-d9c1ca01fad9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b4::/48 Signature Algorithm: sha256WithRSAEncryption 45:53:cd:8a:4b:91:8a:79:18:c4:79:5d:1f:72:ba:26:c7:22: ce:56:14:6e:7a:80:01:6f:90:35:74:bd:33:49:90:2d:1c:b9: 43:87:6a:9f:54:7c:20:20:df:b5:16:93:cd:9a:fb:90:36:39: 97:1a:99:34:5a:44:78:2b:2d:31:08:d2:48:2e:c5:9c:3f:64: a5:50:04:47:6e:2d:46:f7:80:39:22:d6:10:9e:48:53:f6:d1: ac:a9:43:25:64:92:ac:a5:2c:8d:ce:d9:04:74:87:b1:67:3c: 99:cc:da:d1:d9:c8:3f:68:37:33:60:11:f7:1c:5c:6f:42:90: 20:a5:6b:6e:2a:c6:62:76:b7:e5:1f:e6:3c:0d:a8:ec:0c:5d: 19:6b:10:b6:7b:ab:73:78:5b:bd:1a:56:f5:4b:88:34:c1:66: b9:5e:f7:27:56:7a:7a:78:7d:84:2e:8c:bf:57:c2:33:c0:82: 1c:6a:97:e5:44:5e:ef:72:bb:f1:62:f7:89:85:7b:7f:8f:1a: 35:a6:25:4d:81:a9:16:a9:55:83:f1:52:3b:ba:12:be:a5:b1: cc:c4:c9:1f:d6:60:50:fa:76:4c:c1:02:49:47:c7:1f:b7:dc: 50:c2:94:35:3d:1a:b6:8f:16:7c:bb:ff:43:34:38:5b:db:47: 15:d5:46:45 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQtUSz5SnpkKA0t76dXp2sfifkd4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI5MTUyMzM5WhcNMjUxMTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTdlZDJiYmJkZDJhZGRlM2U3MDhmNjdlM2I2NDEwNGIx OGNkZjRkMjlmMTI5NzJiYWIxYWMwOWE5NWQ0ZGQwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUQboUCOYVct1JWvG+19XV8ozzevYdq5VQVEDTBaZHZzaf LgZ55J/xJKJQ5sIBM9mwrvFeqnPHJN9VKoEJ5G4lbUeAjw9StjuRdFuE0bmRWMSb y1fcf3wRQ81mOBuRMQm8EGLaB6qBZYPN1YPu8HVMpg3Ve9VNijCLhh8xWjv4fg+n XdKxcvxxJVh0vrfsWrDjN9IhbdE8ACLkhICUW3icre+/pLMFRiLY/crpRI85hAM+ G9zuu03GH91R42wbD1y03uAA3GafV5HHQqpT2RaLvqK86LL4BhPgQYCFgrFpU2iP Xmyvga4tpRZPvnElo1c2amXM8qW5lSc7h3UWryVzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKw3fTt4snCH0rcf4WIfVvnXS4O8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IzZTZhMTgyLTA5ZWItNGNkYy1hMDc0LWQ5YzFjYTAxZmFkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA7QwDQYJKoZIhvcNAQELBQADggEBAEVTzYpLkYp5GMR5XR9yuibH Is5WFG56gAFvkDV0vTNJkC0cuUOHap9UfCAg37UWk82a+5A2OZcamTRaRHgrLTEI 0kguxZw/ZKVQBEduLUb3gDki1hCeSFP20aypQyVkkqylLI3O2QR0h7FnPJnM2tHZ yD9oNzNgEfccXG9CkCCla24qxmJ2t+Uf5jwNqOwMXRlrELZ7q3N4W70aVvVLiDTB Zrle9ydWenp4fYQujL9XwjPAghxql+VEXu9yu/Fi94mFe3+PGjWmJU2BqRapVYPx Uju6Er6lsczEyR/WYFD6dkzBAklHxx+33FDClDU9GraPFny7/0M0OFvbRxXVRkU= -----END CERTIFICATE-----Generated at Wed Oct 8 23:10:26 2025 by rpki-client