$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/7da7eb3f-5bb5-4bf8-8430-50e8291f4d1e.roa File: 7da7eb3f-5bb5-4bf8-8430-50e8291f4d1e.roa (raw, json) Hash identifier: tKT0vmZKcIrTNsSNYqVCXLrVrY1HPWtv/VAEpmi5w1s= Subject key identifier: 99:A3:08:F3:67:7A:67:FD:0B:DD:A9:7A:2C:2F:10:6A:3E:E5:A7:20 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 489941193E163C0619B4F033D33557CBCB6D3F1E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/7da7eb3f-5bb5-4bf8-8430-50e8291f4d1e.roa Signing time: Mon 06 Oct 2025 17:20:02 +0000 ROA not before: Mon 06 Oct 2025 17:20:02 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:8140:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:99:41:19:3e:16:3c:06:19:b4:f0:33:d3:35:57:cb:cb:6d:3f:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 6 17:20:02 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=28af5454c31d7ed5e5560c777d4600874e0c9ca3803829d8aa47a9a95e3f233f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0a:f1:01:7b:1b:a6:3f:2d:c5:c6:8d:ad:f6: 85:41:f9:4b:93:00:b4:41:dc:43:07:d1:4f:1a:9a: fb:2b:c0:e1:2e:d2:f1:8a:05:68:97:fe:c7:f7:eb: 9a:d2:d7:0e:ce:a2:fa:08:04:b0:0e:fe:00:91:43: 3a:7f:17:af:e2:3e:81:50:bf:3d:a0:fe:58:57:06: 19:9e:fa:3c:b8:4d:fc:1a:dc:1e:ce:0b:92:25:e1: ee:1d:f5:13:bf:92:b2:31:44:f1:9d:8a:03:a8:1b: 7f:27:d4:a5:86:c2:e2:f2:ea:26:a0:0c:ca:82:97: e5:fe:86:53:e3:5f:0b:32:79:f8:8a:11:29:a3:fa: 9a:4e:75:52:4a:7d:af:c5:f1:a6:8d:51:0a:b8:83: 1f:07:bc:f9:14:e6:84:90:ee:73:0f:0b:d6:95:cc: 75:fe:a7:a0:60:87:9b:a2:3f:07:4e:63:de:36:51: d8:40:e2:9b:0d:ed:41:67:ff:73:cb:39:e4:a2:96: 74:d6:67:97:48:96:7f:32:50:a3:2c:05:3c:6c:08: ed:5e:44:f7:48:40:0f:6c:d4:c5:c6:63:44:d1:43: 8c:be:f2:bf:92:f6:f1:33:ba:c2:f3:3f:ba:63:e1: 0c:e0:fe:41:bb:bb:ce:20:48:20:81:a8:af:b0:dc: 81:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A3:08:F3:67:7A:67:FD:0B:DD:A9:7A:2C:2F:10:6A:3E:E5:A7:20 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/7da7eb3f-5bb5-4bf8-8430-50e8291f4d1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140:500::/40 Signature Algorithm: sha256WithRSAEncryption 8f:8b:c4:21:14:90:b1:de:c2:78:55:5a:4b:5d:57:c8:e2:0f: 3d:41:ca:ce:19:23:57:ad:71:c6:36:8d:63:2a:6b:2e:03:cf: 7e:4c:ba:11:97:8b:ad:03:91:47:4d:73:76:0f:86:4d:a5:92: b3:79:c1:71:2a:56:f3:56:42:7e:05:c5:36:28:cb:4c:83:0e: 30:1c:f8:51:2d:f6:45:9d:11:80:bb:7f:44:ca:5b:54:b1:ad: 64:e0:ed:2b:d2:0a:b4:36:a9:17:e6:a8:a4:b6:35:d2:7f:44: 2f:82:4b:ec:e3:17:bf:88:80:33:a7:6f:11:89:67:e8:0d:b0: f5:20:e1:7c:e4:88:38:a3:13:e0:d3:45:9d:1a:f7:d8:f4:43: d4:2d:30:7c:12:b5:bf:0a:c0:24:bf:91:d8:b1:e0:ea:c3:9f: 70:76:1e:f4:17:ee:ea:b8:e2:bf:81:f5:ee:6d:78:b6:45:09: a3:a0:ba:8e:dc:ff:80:cd:db:1f:8f:69:7e:90:87:5d:8e:5a: 7f:01:ce:ef:b2:c9:8b:98:78:25:f3:73:47:76:41:ae:ec:e4: 20:8d:72:ad:49:90:55:48:0f:86:e5:33:c7:5e:c9:cb:a1:f7: 21:ac:14:84:5d:2e:63:18:07:fb:ac:57:4a:a4:0c:9b:ed:44: ad:e6:a7:c9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSJlBGT4WPAYZtPAz0zVXy8ttPx4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDA2MTcyMDAyWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGFmNTQ1NGMzMWQ3ZWQ1ZTU1NjBjNzc3ZDQ2MDA4NzRl MGM5Y2EzODAzODI5ZDhhYTQ3YTlhOTVlM2YyMzNmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2CvEBexumPy3Fxo2t9oVB+UuTALRB3EMH0U8amvsrwOEu 0vGKBWiX/sf365rS1w7OovoIBLAO/gCRQzp/F6/iPoFQvz2g/lhXBhme+jy4Tfwa 3B7OC5Il4e4d9RO/krIxRPGdigOoG38n1KWGwuLy6iagDMqCl+X+hlPjXwsyefiK ESmj+ppOdVJKfa/F8aaNUQq4gx8HvPkU5oSQ7nMPC9aVzHX+p6Bgh5uiPwdOY942 UdhA4psN7UFn/3PLOeSilnTWZ5dIln8yUKMsBTxsCO1eRPdIQA9s1MXGY0TRQ4y+ 8r+S9vEzusLzP7pj4Qzg/kG7u84gSCCBqK+w3IFzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUmaMI82d6Z/0L3al6LC8Qaj7lpyAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzdkYTdlYjNmLTViYjUtNGJmOC04NDMwLTUwZTgyOTFmNGQxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBoFABTANBgkqhkiG9w0BAQsFAAOCAQEAj4vEIRSQsd7CeFVaS11XyOIP PUHKzhkjV61xxjaNYyprLgPPfky6EZeLrQORR01zdg+GTaWSs3nBcSpW81ZCfgXF NijLTIMOMBz4US32RZ0RgLt/RMpbVLGtZODtK9IKtDapF+aopLY10n9EL4JL7OMX v4iAM6dvEYln6A2w9SDhfOSIOKMT4NNFnRr32PRD1C0wfBK1vwrAJL+R2LHg6sOf cHYe9Bfu6rjiv4H17m14tkUJo6C6jtz/gM3bH49pfpCHXY5afwHO77LJi5h4JfNz R3ZBruzkII1yrUmQVUgPhuUzx17Jy6H3IawUhF0uYxgH+6xXSqQMm+1EreanyQ== -----END CERTIFICATE-----Generated at Wed Oct 8 19:45:21 2025 by rpki-client