$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0e389254-682a-49dc-8f48-9e1c009e2b94.roa File: 0e389254-682a-49dc-8f48-9e1c009e2b94.roa (raw, json) Hash identifier: R45dhO/WlhiloIRirzuyhjNY2fl4ZNFSbGKFGarniIQ= Subject key identifier: 5D:1D:6C:2C:AB:10:AF:35:D7:4E:BB:ED:FC:AD:E4:B5:A8:DA:5A:70 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 28A0BA2CFCE6C05B201198C84475133DAF66AA3B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0e389254-682a-49dc-8f48-9e1c009e2b94.roa Signing time: Mon 06 Oct 2025 17:13:06 +0000 ROA not before: Mon 06 Oct 2025 17:13:06 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:64c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:a0:ba:2c:fc:e6:c0:5b:20:11:98:c8:44:75:13:3d:af:66:aa:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:13:06 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=f16c762d9ddbf09f63c671c5dcaae6a8dd88de6f956f1cc50ac844b9cc1b92bf, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e0:5d:fd:d2:06:27:e8:24:fd:3d:8b:81:91: 3d:63:43:54:37:c0:2d:6c:e1:66:1f:04:0b:40:5d: da:05:cd:89:be:25:b4:67:24:4e:54:de:1b:e6:30: ed:90:6e:81:07:ae:47:ea:85:ab:a7:e3:ac:83:df: 84:86:ec:7b:e0:7e:ac:e2:5a:6b:af:2e:93:5e:31: 5d:49:b9:b7:fb:32:d3:cc:12:d0:aa:0e:3a:58:b8: fa:62:05:a9:62:4a:ed:b7:a7:84:31:36:37:72:e5: 3b:56:97:08:01:d3:00:0e:9b:41:2a:66:a4:6a:a0: 91:39:99:ac:d0:bb:a4:d3:a4:27:ad:39:b8:a4:2a: fe:32:f0:99:3d:bf:26:1d:53:70:5b:c8:ff:a6:e6: 98:f9:a1:6d:92:79:73:d4:8d:94:9a:ef:84:9a:d5: 4b:39:fc:59:1a:c2:f1:19:b5:01:cc:80:23:d8:78: 90:7f:b8:e0:96:03:04:97:98:85:c2:84:af:6c:a4: d9:13:7e:73:a9:c3:55:1a:37:5c:61:28:bf:e4:48: bf:92:49:5b:c7:af:03:71:6b:a7:ff:02:81:3c:f6: d7:c1:7e:b3:81:c9:0d:25:cd:0f:a1:e9:bf:b5:cb: 40:71:59:7c:d5:d7:79:be:b1:61:9c:d3:47:04:1d: 25:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:1D:6C:2C:AB:10:AF:35:D7:4E:BB:ED:FC:AD:E4:B5:A8:DA:5A:70 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0e389254-682a-49dc-8f48-9e1c009e2b94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64c::/48 Signature Algorithm: sha256WithRSAEncryption 3e:d7:ac:cd:70:44:b2:94:e4:51:0d:75:b6:3b:20:c5:d8:64: 6d:32:bb:af:35:2c:36:ae:55:af:2c:b3:a7:9e:27:35:95:a9: e8:a6:ab:40:c9:ca:e8:67:cd:57:00:7b:5b:7c:3f:df:9f:9c: 4a:e5:dd:2a:db:e5:52:94:5d:44:36:d6:79:ce:51:b8:d8:8e: 95:a0:37:c7:31:13:23:dc:43:cf:f9:45:ff:c7:de:2f:b1:d9: e1:c6:a7:b4:3c:fc:f9:66:a7:1e:6f:00:c2:e7:38:e9:26:42: 8e:ef:63:21:f4:4e:ad:81:96:d9:b7:42:1e:cb:3d:8f:22:f3: 17:66:2e:9a:e0:04:d3:98:40:d4:b4:1e:9a:54:90:ac:f6:8c: f9:ca:c7:8c:18:c6:2e:94:95:52:93:d9:a7:3a:1c:5f:ac:68: 71:a7:0c:06:45:02:44:9b:0a:8d:10:f4:ec:36:56:24:89:67: cf:78:eb:ea:ab:85:df:03:69:52:67:04:32:d5:ba:9e:bb:64: 80:9c:a7:24:54:86:25:ea:93:ba:d3:6b:1b:f6:b1:cf:92:fb: 0d:ab:76:c7:9e:c1:1d:df:6e:b3:92:6f:ca:8f:94:70:4c:83: a6:c1:f9:3b:91:50:10:38:de:3f:36:bc:9a:0b:78:3a:b6:5d: f9:d0:f0:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKKC6LPzmwFsgEZjIRHUTPa9mqjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcxMzA2WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTZjNzYyZDlkZGJmMDlmNjNjNjcxYzVkY2FhZTZhOGRk ODhkZTZmOTU2ZjFjYzUwYWM4NDRiOWNjMWI5MmJmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC04F390gYn6CT9PYuBkT1jQ1Q3wC1s4WYfBAtAXdoFzYm+ JbRnJE5U3hvmMO2QboEHrkfqhaun46yD34SG7HvgfqziWmuvLpNeMV1Jubf7MtPM EtCqDjpYuPpiBaliSu23p4QxNjdy5TtWlwgB0wAOm0EqZqRqoJE5mazQu6TTpCet ObikKv4y8Jk9vyYdU3BbyP+m5pj5oW2SeXPUjZSa74Sa1Us5/FkawvEZtQHMgCPY eJB/uOCWAwSXmIXChK9spNkTfnOpw1UaN1xhKL/kSL+SSVvHrwNxa6f/AoE89tfB frOByQ0lzQ+h6b+1y0BxWXzV13m+sWGc00cEHSXxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXR1sLKsQrzXXTrvt/K3ktajaWnAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBlMzg5MjU0LTY4MmEtNDlkYy04ZjQ4LTllMWMwMDllMmI5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkwwDQYJKoZIhvcNAQELBQADggEBAD7XrM1wRLKU5FENdbY7IMXY ZG0yu681LDauVa8ss6eeJzWVqeimq0DJyuhnzVcAe1t8P9+fnErl3Srb5VKUXUQ2 1nnOUbjYjpWgN8cxEyPcQ8/5Rf/H3i+x2eHGp7Q8/Plmpx5vAMLnOOkmQo7vYyH0 Tq2Bltm3Qh7LPY8i8xdmLprgBNOYQNS0HppUkKz2jPnKx4wYxi6UlVKT2ac6HF+s aHGnDAZFAkSbCo0Q9Ow2ViSJZ8946+qrhd8DaVJnBDLVup67ZICcpyRUhiXqk7rT axv2sc+S+w2rdseewR3fbrOSb8qPlHBMg6bB+TuRUBA43j82vJoLeDq2XfnQ8C8= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:45 2025 by rpki-client