$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa File: 0290dfd4-d635-41df-a146-3afba4f4dc86.roa (raw, json) Hash identifier: JIcXG4DMscE1rN/u94RAdv01Y12WoC4xe7PvRcjo3xU= Subject key identifier: E1:B1:92:ED:79:D1:1E:51:D4:E6:93:29:B9:FD:DB:0A:27:8E:53:15 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4D499CFBFB1A127365FB8AEDF3113D1FEBEAC5A0 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa Signing time: Fri 24 Oct 2025 00:20:07 +0000 ROA not before: Fri 24 Oct 2025 00:20:07 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:3b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:49:9c:fb:fb:1a:12:73:65:fb:8a:ed:f3:11:3d:1f:eb:ea:c5:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 24 00:20:07 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=cfb3ed1625c0d6cfa94eee1aa13fa4d9b6c43cab14dcccdd8887bb0a5d007b0d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e5:6d:9e:6d:f2:dc:b6:6c:8c:aa:8d:3b:35: c0:45:ca:c5:10:36:ee:84:66:3a:ec:ff:c4:ce:b1: 88:b6:12:5f:1c:fa:c1:0c:be:a4:67:b5:b2:2e:71: dc:c7:55:b0:3a:56:27:76:1b:c6:68:11:c4:a4:3c: 5f:f7:0a:a2:5c:e5:b2:22:a0:f1:49:a8:24:b0:97: 2c:69:b3:63:ac:eb:83:89:99:fc:5c:26:94:45:01: 37:c9:45:42:4f:ed:bf:74:9f:d8:e7:0c:52:1b:b6: 52:47:87:4f:35:cb:f3:46:35:2d:9b:55:91:1a:b2: 92:37:cc:1a:ba:c1:94:a8:df:1e:2a:60:f0:9d:2a: 0a:e1:ab:70:27:32:ff:85:52:5d:1d:88:2f:33:f8: 77:3e:70:22:58:ef:f3:5c:0d:e6:1a:bc:ce:53:b5: 67:ef:e5:43:1d:98:75:aa:47:70:71:8d:b6:7b:ce: 59:6c:64:f7:eb:01:f1:2c:71:22:b2:f7:97:9a:77: 70:2a:3a:70:64:0f:22:0e:aa:d3:5c:4f:bb:59:04: 79:06:b0:0c:5c:45:61:da:ad:fb:29:a0:93:ff:e1: 33:4c:09:7f:47:fc:48:2e:e1:e9:5a:ec:bf:7e:91: 0b:d6:df:59:27:11:0c:b3:03:79:57:fd:a0:7d:29: 9d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B1:92:ED:79:D1:1E:51:D4:E6:93:29:B9:FD:DB:0A:27:8E:53:15 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b4::/48 Signature Algorithm: sha256WithRSAEncryption 93:9d:a2:bb:88:59:3b:c6:a1:fa:a6:c3:2a:5c:b2:57:23:25: 58:70:7c:f3:f7:73:5b:72:1d:59:25:70:30:fe:94:a6:8f:f7: 30:00:ad:f4:84:b1:18:f7:fa:a9:5f:df:63:f6:2e:41:a2:28: ee:6e:75:67:b8:43:a1:e0:9a:69:cf:74:8f:07:66:16:eb:98: d0:35:ea:21:8f:e6:aa:61:4d:c4:b3:4c:9e:1f:43:fa:4e:6e: e0:34:94:11:c2:af:cf:08:12:6f:43:29:88:f3:b5:be:5c:b8: 5d:81:1c:31:0e:cf:06:22:1c:eb:48:28:f3:1f:45:92:45:d3: c5:74:74:2d:ad:f0:b3:4b:2b:85:ef:d4:63:bb:65:59:9c:ab: 97:f2:08:08:68:56:eb:6d:1c:bf:cf:4c:9a:a0:df:d4:d0:d4: 0c:82:bd:4b:0c:42:a3:08:07:64:36:ef:11:ae:a1:32:1f:03: 28:24:36:70:e2:10:ec:c1:8a:88:61:92:18:5f:a0:87:e9:84: da:05:10:6d:41:48:4d:04:e4:46:ac:8c:9b:14:d5:20:54:3a: f0:78:1e:d8:75:10:78:17:4f:38:9e:50:a5:44:45:f3:38:03: d6:5c:6d:0d:80:60:72:7e:3c:70:33:2a:a3:b5:4a:de:fe:0b: 73:b1:5e:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTUmc+/saEnNl+4rt8xE9H+vqxaAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDI0MDAyMDA3WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmIzZWQxNjI1YzBkNmNmYTk0ZWVlMWFhMTNmYTRkOWI2 YzQzY2FiMTRkY2NjZGQ4ODg3YmIwYTVkMDA3YjBkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB5W2ebfLctmyMqo07NcBFysUQNu6EZjrs/8TOsYi2El8c +sEMvqRntbIucdzHVbA6Vid2G8ZoEcSkPF/3CqJc5bIioPFJqCSwlyxps2Os64OJ mfxcJpRFATfJRUJP7b90n9jnDFIbtlJHh081y/NGNS2bVZEaspI3zBq6wZSo3x4q YPCdKgrhq3AnMv+FUl0diC8z+Hc+cCJY7/NcDeYavM5TtWfv5UMdmHWqR3BxjbZ7 zllsZPfrAfEscSKy95ead3AqOnBkDyIOqtNcT7tZBHkGsAxcRWHarfspoJP/4TNM CX9H/Egu4ela7L9+kQvW31knEQyzA3lX/aB9KZ3hAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4bGS7XnRHlHU5pMpuf3bCieOUxUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAyOTBkZmQ0LWQ2MzUtNDFkZi1hMTQ2LTNhZmJhNGY0ZGM4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA7QwDQYJKoZIhvcNAQELBQADggEBAJOdoruIWTvGofqmwypcslcj JVhwfPP3c1tyHVklcDD+lKaP9zAArfSEsRj3+qlf32P2LkGiKO5udWe4Q6HgmmnP dI8HZhbrmNA16iGP5qphTcSzTJ4fQ/pObuA0lBHCr88IEm9DKYjztb5cuF2BHDEO zwYiHOtIKPMfRZJF08V0dC2t8LNLK4Xv1GO7ZVmcq5fyCAhoVuttHL/PTJqg39TQ 1AyCvUsMQqMIB2Q27xGuoTIfAygkNnDiEOzBiohhkhhfoIfphNoFEG1BSE0E5Eas jJsU1SBUOvB4Hth1EHgXTzieUKVERfM4A9ZcbQ2AYHJ+PHAzKqO1St7+C3OxXtE= -----END CERTIFICATE-----Generated at Mon Nov 3 11:18:43 2025 by rpki-client