$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c8560206-4c68-46a6-834e-4971768d50f8.roa File: c8560206-4c68-46a6-834e-4971768d50f8.roa (raw, json) Hash identifier: HEEQFp/wCkHAAYPuPgEMUwOLMrnW7EErgzdO3t22VMA= Subject key identifier: E4:DF:96:DE:F6:FE:B4:47:E5:A6:3C:BE:A3:22:D4:8E:B8:37:15:9A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 137BE14BDE8536A357F432B7B59146C33B65AF2E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c8560206-4c68-46a6-834e-4971768d50f8.roa Signing time: Thu 13 Nov 2025 01:50:45 +0000 ROA not before: Thu 13 Nov 2025 01:50:45 +0000 ROA not after: Thu 18 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:7b:e1:4b:de:85:36:a3:57:f4:32:b7:b5:91:46:c3:3b:65:af:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 13 01:50:45 2025 GMT Not After : Dec 18 23:59:59 2025 GMT Subject: serialNumber=afdcd58a868764daffca922b98664646f77cb1293fc7fd8b739ca8f6cc8752f6, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:27:0f:e4:bd:a2:c8:37:a8:4c:61:6e:73:87: 8b:73:35:fb:7e:0e:c6:fd:e3:a9:ed:e6:64:94:86: ba:ff:61:57:e0:e9:ff:3f:fb:1e:4f:b9:72:29:67: b4:21:2c:8b:ed:39:80:8b:c8:bd:bf:cb:7c:e3:47: 2a:be:82:51:e1:af:38:49:ac:ae:40:73:d5:10:9f: 03:f2:57:20:9b:fb:02:e2:fb:ca:89:4e:4c:20:bb: cb:6f:ea:35:9a:90:dc:8f:cd:c0:e6:43:cc:dd:64: aa:cf:bd:41:41:f0:6b:3f:3c:04:52:23:7a:4e:99: f6:f6:e2:77:9e:2e:a4:19:84:8d:a4:69:25:dd:ba: 8e:38:96:a8:92:0b:e5:14:a3:6b:22:c9:04:0d:a9: 43:10:75:48:18:29:4f:a7:9b:1a:96:45:a8:55:6d: 2f:07:6a:94:22:b1:c2:27:92:e0:07:75:11:18:d5: f6:df:8a:bb:4c:89:86:af:72:b4:b4:b9:11:dd:fa: 0f:86:ee:76:e4:1b:6e:22:1b:da:02:d3:5d:f6:a8: 2e:83:7d:e7:16:c0:e4:47:de:18:3a:9f:32:f8:22: a0:df:a5:4f:aa:04:bb:33:18:8e:72:04:57:26:1a: 0e:75:cc:0f:f3:17:18:71:da:84:f5:4e:40:83:a9: 3b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DF:96:DE:F6:FE:B4:47:E5:A6:3C:BE:A3:22:D4:8E:B8:37:15:9A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c8560206-4c68-46a6-834e-4971768d50f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 97:26:7b:8f:5d:c0:c9:c3:93:d6:bf:f6:82:6a:a8:50:76:b6: f3:e0:b6:df:9d:27:1e:5e:fc:39:fc:aa:a0:0e:6f:3a:8d:43: fc:5d:77:1b:e5:6a:eb:38:c2:34:39:9e:4f:0f:a7:4c:e4:e5: ed:e9:59:02:c6:5d:18:78:48:25:c6:f9:5a:cb:b7:98:84:67: 1b:df:6f:fa:4d:d6:05:a0:c3:62:0c:51:66:d9:28:a0:c7:f4: 5e:45:4c:13:df:40:6d:34:c2:1f:df:38:c2:18:03:9f:bf:88: 41:df:2a:0c:fd:26:2e:57:4b:e9:97:89:d7:49:ff:cd:f9:77: f2:45:52:18:0e:5e:b7:a9:61:69:a1:27:a4:2f:17:2a:61:59: 03:1c:06:88:08:81:09:77:b0:0a:34:ba:82:d5:4e:8b:78:3b: 0e:f8:65:ca:b5:f0:01:f7:3e:c4:c8:47:8b:60:c6:b6:f6:c3: 68:69:d0:83:8e:5c:c5:26:be:d9:19:8f:15:fb:4c:41:6e:61: 35:a3:e5:88:08:33:da:cc:70:10:89:e9:19:d0:eb:17:f8:37: be:ef:dd:bb:74:a8:43:54:3e:ab:4d:f7:9d:5d:d3:aa:d0:27: e1:4d:f1:f2:e2:97:ee:ea:1e:08:5c:ee:4e:32:50:1d:8e:be: 0e:e8:e0:d0 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUE3vhS96FNqNX9DK3tZFGwztlry4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTEzMDE1MDQ1WhcNMjUxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZmRjZDU4YTg2ODc2NGRhZmZjYTkyMmI5ODY2NDY0NmY3 N2NiMTI5M2ZjN2ZkOGI3MzljYThmNmNjODc1MmY2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDJw/kvaLIN6hMYW5zh4tzNft+Dsb946nt5mSUhrr/YVfg 6f8/+x5PuXIpZ7QhLIvtOYCLyL2/y3zjRyq+glHhrzhJrK5Ac9UQnwPyVyCb+wLi +8qJTkwgu8tv6jWakNyPzcDmQ8zdZKrPvUFB8Gs/PARSI3pOmfb24neeLqQZhI2k aSXduo44lqiSC+UUo2siyQQNqUMQdUgYKU+nmxqWRahVbS8HapQiscInkuAHdREY 1fbfirtMiYavcrS0uRHd+g+G7nbkG24iG9oC0132qC6DfecWwORH3hg6nzL4IqDf pU+qBLszGI5yBFcmGg51zA/zFxhx2oT1TkCDqTsxAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU5N+W3vb+tEflpjy+oyLUjrg3FZowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2M4NTYwMjA2LTRjNjgtNDZhNi04MzRlLTQ5NzE3NjhkNTBmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQCXJnuPXcDJw5PWv/aCaqhQdrbz 4LbfnSceXvw5/KqgDm86jUP8XXcb5WrrOMI0OZ5PD6dM5OXt6VkCxl0YeEglxvla y7eYhGcb32/6TdYFoMNiDFFm2Sigx/ReRUwT30BtNMIf3zjCGAOfv4hB3yoM/SYu V0vpl4nXSf/N+XfyRVIYDl63qWFpoSekLxcqYVkDHAaICIEJd7AKNLqC1U6LeDsO +GXKtfAB9z7EyEeLYMa29sNoadCDjlzFJr7ZGY8V+0xBbmE1o+WICDPazHAQiekZ 0OsX+De+7927dKhDVD6rTfedXdOq0CfhTfHy4pfu6h4IXO5OMlAdjr4O6ODQ -----END CERTIFICATE-----Generated at Tue Nov 18 05:47:56 2025 by rpki-client