$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa File: 277fb1fb-3655-4c68-80f2-1f4160a003be.roa (raw, json) Hash identifier: BuYcsCqarmGRBNNXywGtTMSrGogJdVJ8KrqAcL637MA= Subject key identifier: 2B:25:32:BF:90:C0:2C:50:77:A0:D7:45:1B:85:56:D7:FB:5B:82:37 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 622CC64321713B009FB031DC087F2ECBD03E2BF7 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa Signing time: Fri 26 Sep 2025 17:50:19 +0000 ROA not before: Fri 26 Sep 2025 17:50:19 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:398::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:2c:c6:43:21:71:3b:00:9f:b0:31:dc:08:7f:2e:cb:d0:3e:2b:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:50:19 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=53858c50a8026dd1fe7298fcf3b07e7ac0a90d7687c3b7dcd33afa9f5799aafb, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bc:17:09:bb:dc:10:41:84:13:66:ff:ed:d6: d4:8e:ec:96:8e:ad:83:58:de:c3:bf:1b:77:7c:de: fe:0a:59:65:78:e2:87:74:63:63:2d:94:38:d6:ba: 57:21:f7:eb:81:a4:84:59:ad:6e:79:b5:32:a1:d8: 72:86:00:cf:0a:fc:60:ac:b5:9a:9d:d8:b1:47:e7: ed:54:3a:a0:37:b3:c1:3b:7c:e2:b4:99:b2:10:42: 61:da:0f:ff:ea:49:50:08:a6:4a:aa:2f:e2:74:54: 64:18:74:91:13:51:26:97:30:1c:98:fa:22:6b:d8: 15:10:34:7b:e5:45:1f:ef:b7:bc:af:5c:00:e8:21: 32:7e:64:55:d7:3b:14:c3:7b:05:5b:1e:92:51:88: 88:8f:f4:f9:28:fd:88:95:4b:91:79:aa:ae:95:ca: 12:9c:02:46:eb:ec:d3:b3:c1:d0:87:ac:5d:16:d7: 1b:5a:4d:ea:12:2c:da:b2:b7:02:f5:8b:aa:20:27: 6f:c8:9f:69:02:93:4c:7e:df:21:15:5d:c5:87:17: fe:63:b2:b6:6c:c9:ec:e9:13:f3:0a:7d:ab:2e:4c: 89:7a:e4:f1:65:f3:05:15:0f:15:57:41:83:44:fa: c8:79:ec:50:d6:39:a2:50:25:05:99:ba:29:3a:a3: ae:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:25:32:BF:90:C0:2C:50:77:A0:D7:45:1B:85:56:D7:FB:5B:82:37 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:398::/48 Signature Algorithm: sha256WithRSAEncryption 1e:ca:83:fb:b9:42:c9:cc:87:80:49:f1:e9:4f:ad:da:e9:69: 7a:b6:25:db:dc:01:91:dd:62:0b:ef:db:aa:ae:ab:e1:d0:2f: 99:a7:a5:9e:fe:0e:0e:69:ff:8f:a3:f7:ce:38:c1:44:7c:8a: 1f:fd:4c:08:cb:fc:df:75:71:df:2e:68:c0:f1:cf:e0:15:63: 8a:a5:26:0e:98:6d:c9:62:7e:f2:93:05:3e:c0:f4:eb:db:2c: 99:e0:75:e6:a6:d5:bd:ae:38:53:8d:48:10:80:a5:b4:c5:41: ad:47:b7:a7:59:d2:2d:9b:82:7d:04:e5:c9:dd:67:9b:4f:fa: 45:5c:7c:ca:08:af:f7:3b:65:37:1e:89:1f:d2:c0:7c:aa:13: 26:fd:c3:77:6a:e4:9f:79:c4:b1:02:7a:d8:35:9e:5c:0e:a1: 33:f2:c2:75:30:98:9d:4a:81:57:66:33:67:a9:23:3f:ee:04: d6:a0:82:c9:f8:c3:70:d1:9d:45:42:b5:a1:a6:ec:5e:b1:d0: ba:7f:51:73:83:de:c1:d2:ca:e7:5c:5f:e9:29:38:82:d3:35: 7d:87:97:3b:11:03:0e:70:50:7b:9d:f9:62:e8:cf:ea:fe:27: fd:00:7f:f6:a5:d3:9f:4e:db:14:52:48:e8:18:75:2a:cf:ad: 00:73:6f:35 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYizGQyFxOwCfsDHcCH8uy9A+K/cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MDE5WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Mzg1OGM1MGE4MDI2ZGQxZmU3Mjk4ZmNmM2IwN2U3YWMw YTkwZDc2ODdjM2I3ZGNkMzNhZmE5ZjU3OTlhYWZiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAvBcJu9wQQYQTZv/t1tSO7JaOrYNY3sO/G3d83v4KWWV4 4od0Y2MtlDjWulch9+uBpIRZrW55tTKh2HKGAM8K/GCstZqd2LFH5+1UOqA3s8E7 fOK0mbIQQmHaD//qSVAIpkqqL+J0VGQYdJETUSaXMByY+iJr2BUQNHvlRR/vt7yv XADoITJ+ZFXXOxTDewVbHpJRiIiP9Pko/YiVS5F5qq6VyhKcAkbr7NOzwdCHrF0W 1xtaTeoSLNqytwL1i6ogJ2/In2kCk0x+3yEVXcWHF/5jsrZsyezpE/MKfasuTIl6 5PFl8wUVDxVXQYNE+sh57FDWOaJQJQWZuik6o65VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKyUyv5DALFB3oNdFG4VW1/tbgjcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzI3N2ZiMWZiLTM2NTUtNGM2OC04MGYyLTFmNDE2MGEwMDNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5gwDQYJKoZIhvcNAQELBQADggEBAB7Kg/u5QsnMh4BJ8elPrdrp aXq2JdvcAZHdYgvv26quq+HQL5mnpZ7+Dg5p/4+j9844wUR8ih/9TAjL/N91cd8u aMDxz+AVY4qlJg6YbclifvKTBT7A9OvbLJngdeam1b2uOFONSBCApbTFQa1Ht6dZ 0i2bgn0E5cndZ5tP+kVcfMoIr/c7ZTceiR/SwHyqEyb9w3dq5J95xLECetg1nlwO oTPywnUwmJ1KgVdmM2epIz/uBNaggsn4w3DRnUVCtaGm7F6x0Lp/UXOD3sHSyudc X+kpOILTNX2HlzsRAw5wUHud+WLoz+r+J/0Af/al059O2xRSSOgYdSrPrQBzbzU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:53 2025 by rpki-client