$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa File: 42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa (raw, json) Hash identifier: EynwIT66RVES5u5gW32x4+gY1CbC51a+8rz4hgIjHAY= Subject key identifier: F0:DF:3B:8D:37:36:82:15:3C:ED:F8:22:37:00:2C:36:C6:E4:5F:66 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3CE6A7BE6A9A201DA7C79016850C81071AB1EB57 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa Signing time: Tue 21 Oct 2025 12:40:14 +0000 ROA not before: Tue 21 Oct 2025 12:40:14 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:547::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e6:a7:be:6a:9a:20:1d:a7:c7:90:16:85:0c:81:07:1a:b1:eb:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:40:14 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=a905f65483eef239a2b33029ee7cb9e4096fd6bb0203d46e31bfc3d14cee0b6d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:aa:24:e5:8b:25:ce:25:51:00:71:49:7d:f3: 1d:38:4e:ac:31:f3:17:64:98:a6:58:10:b1:22:58: 87:9d:09:6c:55:9e:42:9c:00:3f:26:a7:d2:d7:e4: 50:3b:23:92:4f:2e:f8:93:b3:44:5e:b5:b2:00:77: c6:7b:55:b3:4f:c3:18:da:45:5c:4b:e1:12:6b:87: 11:78:b4:64:14:1b:9b:c0:08:c7:db:c6:a4:4e:0b: 90:b5:b6:3b:29:e4:5a:cb:83:9d:58:b3:84:e0:3e: e6:81:3b:f6:b8:84:6a:2f:96:49:5e:80:04:26:9a: 89:b2:0c:d2:23:8b:bc:52:c5:a7:a0:d0:89:37:f0: 91:b3:73:95:da:f7:d4:2a:16:fb:03:20:26:3b:54: 79:80:e7:10:bc:eb:68:86:3f:fb:80:04:9b:0d:af: 1d:13:0f:88:49:75:0b:8a:9e:d0:7f:6c:e0:e4:e7: 73:d4:fa:bf:7a:52:0d:85:30:06:21:36:32:93:f3: 18:95:1d:c1:2e:6c:12:84:2e:d5:97:1b:70:02:ba: 86:03:e6:72:9d:01:73:6c:d0:85:0d:66:c2:52:9c: f7:24:e8:71:f5:89:ed:65:55:07:d9:f0:34:ea:c1: d9:94:3e:69:b8:4c:a6:62:ee:3e:8a:31:99:ae:45: 36:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DF:3B:8D:37:36:82:15:3C:ED:F8:22:37:00:2C:36:C6:E4:5F:66 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:547::/48 Signature Algorithm: sha256WithRSAEncryption 51:58:0f:38:ba:f3:b9:63:12:12:49:0a:73:1e:36:97:3a:59: 81:a9:54:1d:3d:45:73:d6:91:45:5f:52:52:dd:fa:a1:0a:95: 88:95:b1:60:4a:88:59:bc:f2:71:8a:a2:f8:bb:1d:59:4b:87: 62:98:cf:92:93:62:77:23:48:d1:ee:e7:86:11:31:d9:b8:c1: 3c:e9:00:95:cf:b8:70:37:06:eb:34:ee:67:60:d8:4f:be:f2: 34:6e:4d:46:9e:76:f1:f4:3b:ae:5a:50:31:8a:76:e0:1b:c6: 44:12:86:10:30:a5:1c:63:00:7c:67:06:f0:78:8e:2c:78:9a: e9:06:4b:d8:58:6b:ee:07:a3:f5:5f:3f:3f:2a:45:20:9a:db: 24:2c:92:cd:24:bf:75:fa:de:2e:38:91:c0:e9:1a:18:62:43: 73:9f:2a:26:05:73:44:5c:ed:9d:e1:56:a9:e3:1e:8b:43:0f: b1:6d:46:ef:3d:84:15:98:61:8b:ff:38:db:d9:87:3d:2b:cc: 72:31:02:7a:bd:97:28:03:ed:e7:e7:6f:49:aa:62:a2:b2:dd: b1:e9:80:60:8f:d5:42:0d:56:a5:db:30:07:06:13:5b:2e:8f: 9f:80:6c:2b:f2:da:70:7d:b9:da:e6:b2:da:42:f2:51:45:ab: 77:9c:31:f6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPOanvmqaIB2nx5AWhQyBBxqx61cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTI0MDE0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTA1ZjY1NDgzZWVmMjM5YTJiMzMwMjllZTdjYjllNDA5 NmZkNmJiMDIwM2Q0NmUzMWJmYzNkMTRjZWUwYjZkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXqiTliyXOJVEAcUl98x04Tqwx8xdkmKZYELEiWIedCWxV nkKcAD8mp9LX5FA7I5JPLviTs0RetbIAd8Z7VbNPwxjaRVxL4RJrhxF4tGQUG5vA CMfbxqROC5C1tjsp5FrLg51Ys4TgPuaBO/a4hGovlklegAQmmomyDNIji7xSxaeg 0Ik38JGzc5Xa99QqFvsDICY7VHmA5xC862iGP/uABJsNrx0TD4hJdQuKntB/bODk 53PU+r96Ug2FMAYhNjKT8xiVHcEubBKELtWXG3ACuoYD5nKdAXNs0IUNZsJSnPck 6HH1ie1lVQfZ8DTqwdmUPmm4TKZi7j6KMZmuRTblAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8N87jTc2ghU87fgiNwAsNsbkX2YwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQyYjFjZmQ5LWY2MTMtNGU2OC1iNGM2LTQ2OGU1ZDUwYjljNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUcwDQYJKoZIhvcNAQELBQADggEBAFFYDzi687ljEhJJCnMeNpc6 WYGpVB09RXPWkUVfUlLd+qEKlYiVsWBKiFm88nGKovi7HVlLh2KYz5KTYncjSNHu 54YRMdm4wTzpAJXPuHA3Bus07mdg2E++8jRuTUaedvH0O65aUDGKduAbxkQShhAw pRxjAHxnBvB4jix4mukGS9hYa+4Ho/VfPz8qRSCa2yQsks0kv3X63i44kcDpGhhi Q3OfKiYFc0Rc7Z3hVqnjHotDD7FtRu89hBWYYYv/ONvZhz0rzHIxAnq9lygD7efn b0mqYqKy3bHpgGCP1UINVqXbMAcGE1suj5+AbCvy2nB9udrmstpC8lFFq3ecMfY= -----END CERTIFICATE-----Generated at Mon Nov 3 11:24:50 2025 by rpki-client