$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa File: 1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa (raw, json) Hash identifier: yidXfMH8g4Kpj+t7Jvdoh0B87KsaJTe+1CRp2K2MXRg= Subject key identifier: B8:50:18:ED:6F:53:54:59:AA:8A:81:F2:CB:76:70:0B:E5:5E:C9:61 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 2C6E86AE657AFCEFA6C9F306ED11DB1EF0F06F95 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa Signing time: Wed 08 Oct 2025 00:51:11 +0000 ROA not before: Wed 08 Oct 2025 00:51:11 +0000 ROA not after: Wed 12 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2620:108:d000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 27 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:6e:86:ae:65:7a:fc:ef:a6:c9:f3:06:ed:11:db:1e:f0:f0:6f:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Oct 8 00:51:11 2025 GMT Not After : Nov 12 23:59:59 2025 GMT Subject: serialNumber=2bf8a58b3d5ae35f74873d1083120855e0f1fb85d03b704e3dcd39aed05d058f, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:92:36:40:02:f1:ca:51:37:b8:2d:86:df:4d: 05:51:19:07:88:e7:98:ab:c3:2b:19:4f:e4:26:47: 0c:ca:a2:42:f8:78:41:48:14:70:1c:8d:ca:77:7a: 04:74:e3:f7:73:5e:b5:02:82:43:3c:b9:97:4d:d2: 51:fc:ad:9b:76:fe:9d:ed:4c:97:74:14:1e:e1:5b: f2:ef:ea:1b:6e:38:2e:b7:a1:d2:6a:5e:0e:b1:be: 44:c8:61:8a:cd:b0:1b:4a:7b:43:88:57:4e:26:5a: 19:93:d7:de:00:42:2c:b2:ad:d1:24:93:91:5d:51: 5a:aa:40:08:5a:34:92:8f:2c:4c:10:40:3c:86:4d: bf:6c:b5:f3:58:09:e6:d2:8f:8c:cf:1a:57:4c:ae: 73:8e:56:f5:a6:25:77:71:fd:1d:cd:f3:cc:07:1d: ff:e4:ec:92:6b:ae:b0:1a:a7:bb:9b:3c:60:1f:db: 84:46:5a:40:2d:78:af:8a:2e:a4:c8:cd:5d:b9:02: a6:d1:4c:ec:63:70:d3:72:7f:c4:63:0e:5b:bd:0f: e5:7f:92:1a:0d:7b:f9:1d:d4:57:5f:90:4b:d7:87: 83:d7:22:ce:9e:a0:9a:71:32:88:78:22:01:23:3b: 86:7f:d4:10:cc:b7:55:72:4a:68:51:44:ce:ec:62: 6f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:50:18:ED:6F:53:54:59:AA:8A:81:F2:CB:76:70:0B:E5:5E:C9:61 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:d000::/44 Signature Algorithm: sha256WithRSAEncryption 1c:68:06:b0:d8:03:b6:8f:27:3c:52:96:f1:b6:69:cb:ac:d0: 32:d0:7b:a6:5c:f3:b9:7a:58:39:f6:60:14:5f:db:c8:9d:b1: a0:c1:b1:f7:f4:3a:1b:82:73:ae:5d:27:5f:55:52:e9:95:b4: 30:f6:0b:ae:1f:30:aa:14:00:df:e2:aa:19:21:c9:84:c8:d7: 52:73:2a:d4:17:c1:f0:ff:cf:e8:3a:ff:da:a1:66:1a:db:3c: 25:7b:99:f1:79:cb:79:68:3b:79:ab:df:18:98:cb:3c:68:ad: f5:58:cc:11:1a:b5:13:12:48:d5:7c:7f:99:a8:7e:a7:10:6f: 0f:7c:3d:89:7d:a5:ef:30:d6:73:7e:2d:10:18:45:61:c7:88: 1a:05:a5:59:ca:07:18:8c:04:46:7d:19:6e:a9:5b:a3:77:02: d7:f1:4e:a8:94:07:cc:01:c0:4d:f6:ff:3c:ca:5a:e5:b3:d6: fe:0c:62:20:67:2d:0c:61:6e:53:16:33:08:fa:68:d0:2b:41: 8b:a3:e7:58:13:a0:fb:67:6d:e5:a5:1f:07:b8:12:7e:81:d8: f7:79:20:95:cd:38:d7:63:71:2f:33:14:bc:c5:57:1b:52:cf: 3a:11:62:07:82:52:e4:b7:04:72:4e:77:a8:57:6d:87:9c:6c: 19:d8:1d:88 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULG6GrmV6/O+myfMG7RHbHvDwb5UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUxMDA4MDA1MTExWhcNMjUxMTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmY4YTU4YjNkNWFlMzVmNzQ4NzNkMTA4MzEyMDg1NWUw ZjFmYjg1ZDAzYjcwNGUzZGNkMzlhZWQwNWQwNThmMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDakjZAAvHKUTe4LYbfTQVRGQeI55irwysZT+QmRwzKokL4 eEFIFHAcjcp3egR04/dzXrUCgkM8uZdN0lH8rZt2/p3tTJd0FB7hW/Lv6htuOC63 odJqXg6xvkTIYYrNsBtKe0OIV04mWhmT194AQiyyrdEkk5FdUVqqQAhaNJKPLEwQ QDyGTb9stfNYCebSj4zPGldMrnOOVvWmJXdx/R3N88wHHf/k7JJrrrAap7ubPGAf 24RGWkAteK+KLqTIzV25AqbRTOxjcNNyf8RjDlu9D+V/khoNe/kd1FdfkEvXh4PX Is6eoJpxMoh4IgEjO4Z/1BDMt1VySmhRRM7sYm+VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuFAY7W9TVFmqioHyy3ZwC+VeyWEwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzEzMDdhZDhlLWRmMGUtNGFiZS04ZjM3LTQ5NGRkYzM1NTRlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEI0AAwDQYJKoZIhvcNAQELBQADggEBABxoBrDYA7aPJzxSlvG2acus 0DLQe6Zc87l6WDn2YBRf28idsaDBsff0OhuCc65dJ19VUumVtDD2C64fMKoUAN/i qhkhyYTI11JzKtQXwfD/z+g6/9qhZhrbPCV7mfF5y3loO3mr3xiYyzxorfVYzBEa tRMSSNV8f5mofqcQbw98PYl9pe8w1nN+LRAYRWHHiBoFpVnKBxiMBEZ9GW6pW6N3 AtfxTqiUB8wBwE32/zzKWuWz1v4MYiBnLQxhblMWMwj6aNArQYuj51gToPtnbeWl Hwe4En6B2Pd5IJXNONdjcS8zFLzFVxtSzzoRYgeCUuS3BHJOd6hXbYecbBnYHYg= -----END CERTIFICATE-----Generated at Fri Oct 24 17:16:55 2025 by rpki-client