$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa File: 07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa (raw, json) Hash identifier: kb7FEkieLIeFsNP7kWfbMlypoZtu6DyigueSpD4/QPU= Subject key identifier: CD:CE:40:EE:43:0C:C4:BA:6F:C4:BB:09:85:22:B6:C3:E2:2A:F1:00 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 11184C4325AA24FF8EBC71D9D923377083F65212 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa Signing time: Tue 21 Oct 2025 12:40:21 +0000 ROA not before: Tue 21 Oct 2025 12:40:21 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:18:4c:43:25:aa:24:ff:8e:bc:71:d9:d9:23:37:70:83:f6:52:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:40:21 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=3f12ddce23a9838f9e0349dc1d53ff7caf3cae7209ccdab3d9fdc2fe7a999ee2, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:97:c0:cd:07:87:a0:64:e4:35:08:09:67:35: b3:54:f1:50:ab:10:44:6a:df:49:25:de:cc:3a:bf: 83:9b:4a:38:3e:d8:d9:2f:ce:cb:78:10:83:97:93: 3e:f6:79:59:c1:17:0f:a3:fa:4f:c7:8f:2f:84:7e: ab:41:39:6f:e8:b2:bd:0f:c0:6c:0d:99:28:08:e2: 72:9b:33:d9:b0:4b:b8:0f:7f:e6:05:65:95:a2:7b: 96:47:1b:68:63:1d:21:00:20:b5:d7:6b:cb:3b:d1: 07:aa:b5:ec:b0:c1:d4:e1:c3:c4:53:e8:39:aa:07: eb:32:f7:d9:6e:0b:5d:a5:80:16:3d:97:e5:a0:52: 2e:76:c1:d5:12:87:6c:ab:13:df:4a:58:d0:55:8a: ff:f2:40:b5:04:25:69:ce:3e:e2:7b:a0:43:44:91: b0:a2:97:49:9c:82:9f:eb:2a:9f:f4:e9:d3:f5:d8: 24:64:d3:60:cd:80:ed:81:00:ad:99:4d:9f:a5:8c: fb:b4:54:8a:07:9f:cb:ea:f6:a3:d1:8e:85:bc:0e: 56:50:0e:b6:d0:23:5a:50:18:97:d9:bc:44:4e:1e: ee:d1:03:c0:4b:9c:18:3b:8c:e7:3f:14:9f:e6:4b: ab:68:6a:ac:ce:b0:ad:e3:18:57:ef:5c:f8:68:e0: 7c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:CE:40:EE:43:0C:C4:BA:6F:C4:BB:09:85:22:B6:C3:E2:2A:F1:00 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 12:74:81:bd:a1:ef:cc:46:32:6f:0a:55:56:5c:4e:e4:f6:47: ea:72:1f:d9:2c:57:01:9e:39:2b:20:59:0b:78:c1:4b:b4:16: 79:45:0c:9e:45:3e:28:10:43:e8:ac:4f:63:09:87:f8:42:ce: e8:20:c6:8a:84:d8:ca:15:25:aa:e5:f8:e9:41:28:8e:18:d3: 8e:3a:6c:66:7a:0a:9d:7d:09:d9:ec:bc:94:9f:67:82:f4:e3: 2f:52:71:ce:1a:84:35:a4:6f:3c:13:ec:8e:9d:07:5a:57:59: 34:ca:ef:d8:8f:10:c0:df:d0:9a:2e:f4:1e:e4:98:4a:dc:dd: bc:55:62:57:39:60:ca:ec:79:fb:cd:41:4f:ef:10:c4:82:40: 47:81:80:f1:4d:20:64:41:2c:3e:e7:b1:0d:d7:c3:e1:e3:a4: 06:f7:10:41:3e:73:2f:10:0d:6a:38:88:ac:c1:45:64:4c:88: 08:52:18:51:1c:63:6c:8f:31:66:c1:b9:5a:c2:41:1c:e1:18: 9d:99:35:05:19:67:f2:f2:21:4a:f1:32:fc:7d:8e:fb:8c:a3: b0:ab:fd:2a:db:e0:6b:45:39:3e:e0:35:9b:bd:03:54:f3:f5: 53:bc:18:ea:c9:3f:e6:57:5f:da:bb:71:47:dd:f7:a0:93:e7: ff:39:72:3e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUERhMQyWqJP+OvHHZ2SM3cIP2UhIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTI0MDIxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjEyZGRjZTIzYTk4MzhmOWUwMzQ5ZGMxZDUzZmY3Y2Fm M2NhZTcyMDljY2RhYjNkOWZkYzJmZTdhOTk5ZWUyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCl8DNB4egZOQ1CAlnNbNU8VCrEERq30kl3sw6v4ObSjg+ 2Nkvzst4EIOXkz72eVnBFw+j+k/Hjy+EfqtBOW/osr0PwGwNmSgI4nKbM9mwS7gP f+YFZZWie5ZHG2hjHSEAILXXa8s70QeqteywwdThw8RT6DmqB+sy99luC12lgBY9 l+WgUi52wdUSh2yrE99KWNBViv/yQLUEJWnOPuJ7oENEkbCil0mcgp/rKp/06dP1 2CRk02DNgO2BAK2ZTZ+ljPu0VIoHn8vq9qPRjoW8DlZQDrbQI1pQGJfZvEROHu7R A8BLnBg7jOc/FJ/mS6toaqzOsK3jGFfvXPho4HyBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzc5A7kMMxLpvxLsJhSK2w+Iq8QAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzA3YzlhYmZlLWI1YzMtNDI5MS1hZjVmLTNlYWEzMWIxMWFkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBABJ0gb2h78xGMm8KVVZcTuT2 R+pyH9ksVwGeOSsgWQt4wUu0FnlFDJ5FPigQQ+isT2MJh/hCzuggxoqE2MoVJarl +OlBKI4Y0446bGZ6Cp19CdnsvJSfZ4L04y9Scc4ahDWkbzwT7I6dB1pXWTTK79iP EMDf0Jou9B7kmErc3bxVYlc5YMrsefvNQU/vEMSCQEeBgPFNIGRBLD7nsQ3Xw+Hj pAb3EEE+cy8QDWo4iKzBRWRMiAhSGFEcY2yPMWbBuVrCQRzhGJ2ZNQUZZ/LyIUrx Mvx9jvuMo7Cr/Srb4GtFOT7gNZu9A1Tz9VO8GOrJP+ZXX9q7cUfd96CT5/85cj4= -----END CERTIFICATE-----Generated at Mon Nov 3 11:18:45 2025 by rpki-client