$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/04a1d081-ae93-459e-88cf-fe92a8d30013.roa File: 04a1d081-ae93-459e-88cf-fe92a8d30013.roa (raw, json) Hash identifier: eAPjcwM3ijlsZckSoIrzqaw+70SgfKye5iD6wv40FBw= Subject key identifier: 1A:51:0B:AA:3E:07:E7:7B:C9:AC:9D:71:1D:DA:1F:A7:B1:F4:E0:4E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4541C12E632C837BA6E15CBA19E465FAA7154263 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/04a1d081-ae93-459e-88cf-fe92a8d30013.roa Signing time: Tue 21 Oct 2025 12:30:20 +0000 ROA not before: Tue 21 Oct 2025 12:30:20 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:546::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:41:c1:2e:63:2c:83:7b:a6:e1:5c:ba:19:e4:65:fa:a7:15:42:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:30:20 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=7852c41e7a75810d6a084212216af8b0a5c80ed5bfcf26947d9c35a39996f032, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:33:f3:8c:6b:56:28:d7:b7:86:0d:1d:62:7c: b4:e9:55:eb:77:6d:04:68:6f:d8:fc:c8:25:05:42: 1f:6a:99:2c:3b:4a:f9:91:2c:e9:7d:f0:11:90:c6: e5:b7:64:40:84:ff:d7:ee:29:da:d0:b5:78:2d:f2: 5d:b1:49:76:09:cf:89:57:c9:3d:31:cf:c5:f3:10: 71:a0:8d:f6:91:92:d8:76:ad:40:51:58:da:bf:c0: 6e:21:30:0f:75:4f:30:3f:60:a2:67:2a:50:c1:cc: 8f:c7:ea:1a:23:ac:c7:11:4f:1d:e4:b9:ce:73:c5: 17:b6:a9:e6:d7:4e:74:71:2b:d8:ab:d6:4a:52:48: 98:81:fc:d3:92:a5:f3:30:2f:61:c2:d1:b8:7f:e7: 7e:67:9f:c8:8a:78:e7:68:5e:d3:3f:3a:ea:f4:7f: e4:a2:34:c5:6a:0a:0a:31:b3:8c:b7:53:09:17:31: 3f:64:c9:6b:c2:41:f7:b5:e9:3a:0e:7a:c8:30:d6: 53:38:13:d2:a2:29:7e:ac:6b:e1:12:61:cb:be:a7: c8:1f:f9:3c:16:75:44:8d:e9:58:81:f1:08:7e:9b: 76:4b:22:80:d6:8b:4c:f6:82:0d:3d:40:ac:10:be: 53:0c:4c:93:b0:17:e5:ac:11:f4:85:29:be:b6:7a: b3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:51:0B:AA:3E:07:E7:7B:C9:AC:9D:71:1D:DA:1F:A7:B1:F4:E0:4E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/04a1d081-ae93-459e-88cf-fe92a8d30013.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:546::/48 Signature Algorithm: sha256WithRSAEncryption 7d:48:bd:f4:24:23:fa:17:bd:ed:d1:ba:1a:73:d1:2a:e8:9a: e6:cf:0c:4b:7b:3a:ae:aa:c1:eb:26:fa:14:79:da:be:a6:5f: 94:e2:bf:ba:f8:11:3d:19:ae:23:6e:7a:10:2b:6b:f8:51:71: 3a:75:db:73:5e:a8:c1:f3:32:00:b6:08:95:55:8a:53:9e:30: 1a:5c:f2:19:a3:dd:55:4e:a4:ed:f3:5f:d7:f6:ba:03:5a:e3: 23:ab:dc:4a:e6:b2:23:c0:d3:fe:04:67:e2:c1:28:9a:04:54: 0b:7b:27:5c:b0:8d:f0:f7:74:fd:bd:6e:a7:85:63:1d:1f:83: 36:f3:73:17:0f:93:1b:a0:2e:fc:7e:83:79:21:0c:33:8e:38: d5:82:0a:a1:5d:89:5c:54:08:22:c7:ea:a0:03:e9:60:e9:95: c9:13:f2:24:b2:9e:13:0a:0f:9a:bc:0b:8c:d4:f8:72:f0:b9: f9:22:95:43:cf:ab:27:53:4b:39:58:64:a4:5e:36:f2:ab:75: 5a:a6:a8:c1:f9:c4:3b:b8:66:63:ca:00:e6:f7:e4:c2:7c:e1: 9e:62:f1:f0:e2:53:2b:1d:8e:8e:9f:9b:79:73:f8:d4:d5:c2: 95:2f:fc:0f:b0:10:ec:42:f9:72:03:58:8b:0f:d2:f3:dd:ff: 76:af:2f:57 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURUHBLmMsg3um4Vy6GeRl+qcVQmMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTIzMDIwWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODUyYzQxZTdhNzU4MTBkNmEwODQyMTIyMTZhZjhiMGE1 YzgwZWQ1YmZjZjI2OTQ3ZDljMzVhMzk5OTZmMDMyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwM/OMa1Yo17eGDR1ifLTpVet3bQRob9j8yCUFQh9qmSw7 SvmRLOl98BGQxuW3ZECE/9fuKdrQtXgt8l2xSXYJz4lXyT0xz8XzEHGgjfaRkth2 rUBRWNq/wG4hMA91TzA/YKJnKlDBzI/H6hojrMcRTx3kuc5zxRe2qebXTnRxK9ir 1kpSSJiB/NOSpfMwL2HC0bh/535nn8iKeOdoXtM/Our0f+SiNMVqCgoxs4y3UwkX MT9kyWvCQfe16ToOesgw1lM4E9KiKX6sa+ESYcu+p8gf+TwWdUSN6ViB8Qh+m3ZL IoDWi0z2gg09QKwQvlMMTJOwF+WsEfSFKb62erPpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGlELqj4H53vJrJ1xHdofp7H04E4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzA0YTFkMDgxLWFlOTMtNDU5ZS04OGNmLWZlOTJhOGQzMDAxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUYwDQYJKoZIhvcNAQELBQADggEBAH1IvfQkI/oXve3Ruhpz0Sro mubPDEt7Oq6qwesm+hR52r6mX5Tiv7r4ET0ZriNuehAra/hRcTp123NeqMHzMgC2 CJVVilOeMBpc8hmj3VVOpO3zX9f2ugNa4yOr3ErmsiPA0/4EZ+LBKJoEVAt7J1yw jfD3dP29bqeFYx0fgzbzcxcPkxugLvx+g3khDDOOONWCCqFdiVxUCCLH6qAD6WDp lckT8iSynhMKD5q8C4zU+HLwufkilUPPqydTSzlYZKReNvKrdVqmqMH5xDu4ZmPK AOb35MJ84Z5i8fDiUysdjo6fm3lz+NTVwpUv/A+wEOxC+XIDWIsP0vPd/3avL1c= -----END CERTIFICATE-----Generated at Wed Oct 22 01:25:47 2025 by rpki-client