$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa File: 2b35ab1a-8001-404a-9285-196aa943aa95.roa (raw, json) Hash identifier: 8h+b9Yi8sPmjeSd7a11bsIUY4radjqh5HDCYxiSuzj8= Subject key identifier: 2A:89:69:B1:03:63:E8:03:2E:98:D2:19:CA:B7:01:D1:00:2B:81:58 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6E511FA9671F97D3B005556C0F8F52DF887223DA Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa Signing time: Fri 26 Sep 2025 17:51:46 +0000 ROA not before: Fri 26 Sep 2025 17:51:46 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:387::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:51:1f:a9:67:1f:97:d3:b0:05:55:6c:0f:8f:52:df:88:72:23:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:51:46 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=26700d10b4b0638235bddae74e1bd70057b89c64de9b08801c0df2128593c3e5, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ee:c8:19:9d:f2:16:69:64:97:26:1c:d0:6d: 96:26:85:03:6f:e9:79:dd:86:5e:7e:90:a0:39:49: 3a:6a:39:4f:5d:00:69:56:ae:09:b3:ca:9a:12:8f: d4:0c:c0:ff:13:e2:0f:26:e3:df:13:c2:98:e0:80: ca:c1:01:12:25:df:80:69:8e:c4:1b:50:96:48:4b: 99:5c:87:bd:96:33:ce:c7:92:db:96:ad:98:8f:a1: 85:72:20:62:2f:07:cd:d3:75:2d:7b:80:cd:e1:11: 60:e7:16:09:c3:16:e2:93:93:cf:bd:be:f2:e6:78: 1f:e7:e9:18:96:c3:f5:df:79:83:d2:f0:f1:a2:5f: 53:00:35:a7:08:c0:d3:a8:d5:6a:7e:37:e3:61:b5: 6f:65:90:fb:c7:01:ad:09:3a:97:6b:56:c9:c6:84: 3d:c6:a9:66:e4:d2:38:42:cb:6c:cc:63:dc:c7:7c: ed:bc:8d:c7:b5:2a:16:e6:b4:a2:e0:5d:28:6d:de: 9a:9e:cb:88:34:57:98:de:86:1d:3a:2d:93:dc:52: 70:ab:58:cb:6c:db:ce:1f:56:fc:7b:d0:13:ef:7a: 0e:6d:e3:02:fc:63:27:0f:8a:dc:b2:04:fe:09:a7: f2:7d:da:4b:8e:58:c3:40:49:d7:8b:5c:a2:1e:7f: 4b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:89:69:B1:03:63:E8:03:2E:98:D2:19:CA:B7:01:D1:00:2B:81:58 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:387::/48 Signature Algorithm: sha256WithRSAEncryption 16:1d:fe:1d:5b:b5:9f:70:0f:7a:90:9e:dd:d2:8b:ed:5e:2a: 62:29:c6:53:1e:ef:0f:ed:80:48:cb:7a:cc:05:e7:5f:f7:99: 7b:10:ba:71:5a:be:da:43:84:ab:0f:9d:6b:16:48:86:12:01: 2e:0d:e2:b8:9c:c8:d0:66:61:50:10:ef:f7:53:e4:a8:26:8c: 54:32:00:26:f5:a2:2e:92:14:41:a2:62:e0:a6:ec:ed:da:9f: 3d:d7:e9:51:e0:51:f0:ab:dd:17:c1:a8:33:64:24:50:61:c2: db:0f:bf:3a:77:98:84:3b:24:a1:5c:18:65:06:e3:69:1f:ab: b9:b0:9b:30:4f:88:be:27:dc:56:89:cf:53:5b:de:e0:60:e9: 5c:79:6e:67:3b:a7:8a:22:88:30:34:16:44:ba:4d:a8:09:07: b7:dc:07:6b:72:12:c8:e0:e9:d4:f1:a7:7f:d4:c5:b8:7d:b8: b1:3c:43:9b:fe:e3:e0:82:be:8f:98:ef:4e:e5:c6:d6:74:ed: 00:7f:29:4b:a9:7f:a5:86:b6:11:de:b1:e0:86:02:39:98:dd: b7:00:c0:c8:5f:30:46:5f:27:7d:d3:39:30:d3:4b:77:4f:af: 55:97:cc:02:91:37:9b:8e:03:1d:86:91:c5:fc:29:a1:9e:78: 1e:5d:2a:3e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUblEfqWcfl9OwBVVsD49S34hyI9owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MTQ2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjcwMGQxMGI0YjA2MzgyMzViZGRhZTc0ZTFiZDcwMDU3 Yjg5YzY0ZGU5YjA4ODAxYzBkZjIxMjg1OTNjM2U1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC67sgZnfIWaWSXJhzQbZYmhQNv6Xndhl5+kKA5STpqOU9d AGlWrgmzypoSj9QMwP8T4g8m498TwpjggMrBARIl34BpjsQbUJZIS5lch72WM87H ktuWrZiPoYVyIGIvB83TdS17gM3hEWDnFgnDFuKTk8+9vvLmeB/n6RiWw/XfeYPS 8PGiX1MANacIwNOo1Wp+N+NhtW9lkPvHAa0JOpdrVsnGhD3GqWbk0jhCy2zMY9zH fO28jce1KhbmtKLgXSht3pqey4g0V5jehh06LZPcUnCrWMts284fVvx70BPveg5t 4wL8YycPityyBP4Jp/J92kuOWMNASdeLXKIef0slAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKolpsQNj6AMumNIZyrcB0QArgVgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJiMzVhYjFhLTgwMDEtNDA0YS05Mjg1LTE5NmFhOTQzYWE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA4cwDQYJKoZIhvcNAQELBQADggEBABYd/h1btZ9wD3qQnt3Si+1e KmIpxlMe7w/tgEjLeswF51/3mXsQunFavtpDhKsPnWsWSIYSAS4N4ricyNBmYVAQ 7/dT5KgmjFQyACb1oi6SFEGiYuCm7O3anz3X6VHgUfCr3RfBqDNkJFBhwtsPvzp3 mIQ7JKFcGGUG42kfq7mwmzBPiL4n3FaJz1Nb3uBg6Vx5bmc7p4oiiDA0FkS6TagJ B7fcB2tyEsjg6dTxp3/Uxbh9uLE8Q5v+4+CCvo+Y707lxtZ07QB/KUupf6WGthHe seCGAjmY3bcAwMhfMEZfJ33TOTDTS3dPr1WXzAKRN5uOAx2GkcX8KaGeeB5dKj4= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:43 2025 by rpki-client