$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa File: 462f61ba-5748-496a-8795-61c32daf9775.roa (raw, json) Hash identifier: a81Sh+XYVKmfBwsZEG+tclvmxSAcMs1peb+huSSBnAc= Subject key identifier: C1:63:CE:D4:17:29:0D:57:B0:F2:B8:DF:D8:96:CC:2F:9B:B6:57:64 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1D5875EE2DA316E41A6FB1FDBB4A78EA19639FF0 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa Signing time: Mon 06 Oct 2025 17:20:07 +0000 ROA not before: Mon 06 Oct 2025 17:20:07 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c17::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:58:75:ee:2d:a3:16:e4:1a:6f:b1:fd:bb:4a:78:ea:19:63:9f:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:20:07 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=bf420c668ba170eb5da75d9c43cb221044e1a122c44469621b7a2e09d54586be, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:26:59:44:ea:21:91:b8:a0:84:2c:00:fa:c1: 39:45:e7:b2:c8:89:33:28:bc:b2:2f:d2:f3:64:fd: 7c:e0:aa:c3:27:e8:4a:ec:67:c4:1e:51:27:e6:89: 78:9a:72:ba:c5:32:db:90:8e:af:f8:67:0c:de:2a: a5:5f:ac:00:01:9b:08:23:0e:95:d7:cd:de:08:6d: d2:ad:8c:f3:37:5c:43:e6:f5:93:dc:a5:32:69:6e: 4e:d2:0f:6d:98:af:af:50:2d:49:04:f7:5b:46:6e: ea:40:e0:8f:a7:dd:ee:eb:a3:44:47:c3:4b:51:14: 98:cf:ce:23:4f:02:3c:e9:d0:19:80:35:4e:db:ba: 2c:a7:48:e7:b2:20:24:bf:b6:31:f7:e8:d2:37:ff: 60:f5:b6:52:af:fe:bf:f5:4d:64:e7:9d:ed:0b:94: 06:a6:f2:a2:6d:45:83:2c:ef:de:63:ff:82:ce:4c: 90:74:c6:02:ea:54:ba:3a:90:2b:34:9b:d4:e1:45: ef:05:3b:50:03:65:f0:91:da:59:01:3d:b6:8e:2d: 72:13:4f:ee:f3:95:5f:63:68:e1:79:9a:23:2c:42: 4d:95:f9:ea:c6:60:3f:24:6c:90:c7:17:74:a5:27: d8:ae:3b:fb:6c:21:69:8c:52:60:5f:30:c8:73:98: 9a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:63:CE:D4:17:29:0D:57:B0:F2:B8:DF:D8:96:CC:2F:9B:B6:57:64 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c17::/48 Signature Algorithm: sha256WithRSAEncryption 4d:ba:41:5c:fc:3a:93:a2:e7:e2:f8:e0:b2:c3:6f:83:aa:ac: 58:8d:4e:ac:4b:f6:12:0e:56:da:4f:25:03:ba:94:19:49:ff: 8f:0a:ee:27:1f:8d:a7:c3:69:cc:b5:f0:a5:5c:fc:5d:ed:7b: fb:80:1e:13:4a:5d:d8:b1:38:22:00:07:46:b2:e9:da:2c:92: df:c0:43:8e:4e:46:62:ab:4e:a7:f2:44:ca:de:fa:16:de:73: 34:f9:79:35:8e:a5:cf:8c:c8:a2:27:40:de:8b:14:68:e9:cc: d6:96:17:b6:fc:7b:e8:2a:8a:d5:c2:2b:06:77:40:97:16:21: 58:8b:b2:15:2e:47:66:42:1d:cd:9d:e3:9b:74:17:00:bd:b7: 36:80:a5:3d:20:b5:41:e2:48:cf:3b:eb:40:92:a4:d2:ed:a2: 58:7b:47:c5:04:18:eb:88:30:9b:fb:df:c6:c9:d9:1b:84:19: da:a4:14:2d:24:07:db:22:d5:6a:91:1b:d0:21:c4:6b:e5:c9: c5:98:06:c3:29:84:3b:d3:32:34:06:1e:c3:4d:df:03:b6:8a: ed:94:b4:ff:74:c2:a6:4b:0c:5c:d9:57:3f:dd:64:5d:f9:60: 08:d3:96:a4:5b:63:5c:ef:78:a4:b1:76:3f:73:a3:59:18:c8: 0a:f1:92:03 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHVh17i2jFuQab7H9u0p46hljn/AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcyMDA3WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjQyMGM2NjhiYTE3MGViNWRhNzVkOWM0M2NiMjIxMDQ0 ZTFhMTIyYzQ0NDY5NjIxYjdhMmUwOWQ1NDU4NmJlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMJllE6iGRuKCELAD6wTlF57LIiTMovLIv0vNk/XzgqsMn 6ErsZ8QeUSfmiXiacrrFMtuQjq/4ZwzeKqVfrAABmwgjDpXXzd4IbdKtjPM3XEPm 9ZPcpTJpbk7SD22Yr69QLUkE91tGbupA4I+n3e7ro0RHw0tRFJjPziNPAjzp0BmA NU7buiynSOeyICS/tjH36NI3/2D1tlKv/r/1TWTnne0LlAam8qJtRYMs795j/4LO TJB0xgLqVLo6kCs0m9ThRe8FO1ADZfCR2lkBPbaOLXITT+7zlV9jaOF5miMsQk2V +erGYD8kbJDHF3SlJ9iuO/tsIWmMUmBfMMhzmJq7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwWPO1BcpDVew8rjf2JbML5u2V2QwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQ2MmY2MWJhLTU3NDgtNDk2YS04Nzk1LTYxYzMyZGFmOTc3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBcwDQYJKoZIhvcNAQELBQADggEBAE26QVz8OpOi5+L44LLDb4Oq rFiNTqxL9hIOVtpPJQO6lBlJ/48K7icfjafDacy18KVc/F3te/uAHhNKXdixOCIA B0ay6doskt/AQ45ORmKrTqfyRMre+hbeczT5eTWOpc+MyKInQN6LFGjpzNaWF7b8 e+gqitXCKwZ3QJcWIViLshUuR2ZCHc2d45t0FwC9tzaApT0gtUHiSM8760CSpNLt olh7R8UEGOuIMJv738bJ2RuEGdqkFC0kB9si1WqRG9AhxGvlycWYBsMphDvTMjQG HsNN3wO2iu2UtP90wqZLDFzZVz/dZF35YAjTlqRbY1zveKSxdj9zo1kYyArxkgM= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:22 2025 by rpki-client