$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7024778f-df37-4401-8278-42efb73eb5f9.roa File: 7024778f-df37-4401-8278-42efb73eb5f9.roa (raw, json) Hash identifier: 3vDL/xxyQyGniVb4phNfJ5zsoCigFUCr8hFvKfnuhDk= Subject key identifier: 3B:DE:C6:7B:FC:48:9E:54:CC:FE:B0:F7:E9:3B:A3:B0:50:83:0D:DF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 66700D488FC9594FEC1E49BB0A3A3CC3D591E2AD Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7024778f-df37-4401-8278-42efb73eb5f9.roa Signing time: Mon 06 Oct 2025 17:12:43 +0000 ROA not before: Mon 06 Oct 2025 17:12:43 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c03::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:70:0d:48:8f:c9:59:4f:ec:1e:49:bb:0a:3a:3c:c3:d5:91:e2:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:12:43 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=885e5d1bd45f43610d569e97480a7c0ecea8956729e3c52124dd38afa1c5beb2, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:82:2d:75:d6:ef:96:91:20:e2:c3:72:25:51: 71:49:65:70:73:ff:6f:be:9b:71:3d:8a:b3:05:b2: 12:18:22:65:ef:90:0b:6c:a3:d2:c4:61:8d:3f:82: d1:ef:44:9e:4b:10:77:7a:b1:b2:a8:75:d9:b9:08: 62:97:12:99:d7:5d:fc:ba:c0:b1:30:75:14:1a:34: e4:c4:6a:79:50:fd:eb:56:e5:e9:00:73:34:51:96: 6a:37:44:9c:32:cd:2a:46:b9:ab:64:34:6f:c1:87: 19:f4:7b:53:da:27:9e:7d:90:19:97:8d:3d:21:04: 5d:8a:a5:ac:50:f5:1f:30:27:fa:cd:d3:54:e6:b5: 66:79:0f:d4:a9:c1:cb:ee:7c:36:e8:c4:45:a3:d5: f9:8e:4a:f2:7b:05:09:75:c2:5c:a7:e8:20:48:f7: 8e:e7:9e:a3:03:04:50:fd:7d:e9:64:b5:c9:42:4c: 4f:fb:d8:1a:02:b8:46:e4:1d:f3:d0:e3:31:5b:97: fb:f0:27:b2:c9:c1:83:4c:1d:b0:b9:a4:f2:b0:f1: eb:6c:9f:f0:1b:73:57:6f:97:80:32:28:58:f9:47: 39:7c:27:c9:99:2d:25:56:19:92:b1:ed:44:08:f3: c5:19:40:16:0b:1c:9c:7b:7c:b5:f5:70:47:6a:4e: 90:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:DE:C6:7B:FC:48:9E:54:CC:FE:B0:F7:E9:3B:A3:B0:50:83:0D:DF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7024778f-df37-4401-8278-42efb73eb5f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c03::/48 Signature Algorithm: sha256WithRSAEncryption 7e:41:79:0d:c4:03:f0:e6:57:87:cf:6c:09:a8:5e:12:24:55: 9b:64:13:8a:2b:b5:97:67:94:23:ec:11:02:07:65:58:26:5f: bd:9f:a9:77:e2:19:f2:ad:d5:81:40:48:d9:da:ff:46:46:2a: 14:60:8a:f1:f5:e6:f2:4f:22:8d:47:33:50:6c:4a:7c:ba:71: 9f:c2:ff:f9:18:a4:75:20:3f:92:2e:cd:9f:55:96:64:de:51: 15:77:87:7f:91:ee:49:bd:c4:00:f4:08:d8:8e:d2:9e:b2:9e: af:40:fa:99:79:f4:a9:55:e7:50:1b:5a:62:b9:0c:de:84:e5: ee:06:e3:7d:3a:94:3f:6d:e3:b9:0b:a6:1f:b7:17:0a:5d:f2: ef:ee:13:29:54:21:a4:95:cf:be:77:cf:d2:e2:07:36:66:6c: 0e:04:29:81:ae:4b:db:c6:22:de:17:0b:be:8d:70:60:d5:0f: c3:84:0c:07:1d:f9:a4:96:ce:ca:63:aa:ac:1b:f7:7c:00:24: 05:06:3b:50:71:b8:5b:54:3a:89:d6:f4:5e:00:b6:61:d6:ef: d7:fb:70:8f:a0:eb:89:58:71:d8:dd:3d:ff:15:81:d9:7a:44: 12:3d:b8:71:35:60:99:38:b2:73:a1:47:ee:95:67:90:b2:34: da:f2:b3:48 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZnANSI/JWU/sHkm7Cjo8w9WR4q0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcxMjQzWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODVlNWQxYmQ0NWY0MzYxMGQ1NjllOTc0ODBhN2MwZWNl YTg5NTY3MjllM2M1MjEyNGRkMzhhZmExYzViZWIyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOgi111u+WkSDiw3IlUXFJZXBz/2++m3E9irMFshIYImXv kAtso9LEYY0/gtHvRJ5LEHd6sbKoddm5CGKXEpnXXfy6wLEwdRQaNOTEanlQ/etW 5ekAczRRlmo3RJwyzSpGuatkNG/Bhxn0e1PaJ559kBmXjT0hBF2KpaxQ9R8wJ/rN 01TmtWZ5D9SpwcvufDboxEWj1fmOSvJ7BQl1wlyn6CBI947nnqMDBFD9felktclC TE/72BoCuEbkHfPQ4zFbl/vwJ7LJwYNMHbC5pPKw8etsn/Abc1dvl4AyKFj5Rzl8 J8mZLSVWGZKx7UQI88UZQBYLHJx7fLX1cEdqTpCLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUO97Ge/xInlTM/rD36TujsFCDDd8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzcwMjQ3NzhmLWRmMzctNDQwMS04Mjc4LTQyZWZiNzNlYjVmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAMwDQYJKoZIhvcNAQELBQADggEBAH5BeQ3EA/DmV4fPbAmoXhIk VZtkE4ortZdnlCPsEQIHZVgmX72fqXfiGfKt1YFASNna/0ZGKhRgivH15vJPIo1H M1BsSny6cZ/C//kYpHUgP5IuzZ9VlmTeURV3h3+R7km9xAD0CNiO0p6ynq9A+pl5 9KlV51AbWmK5DN6E5e4G4306lD9t47kLph+3Fwpd8u/uEylUIaSVz753z9LiBzZm bA4EKYGuS9vGIt4XC76NcGDVD8OEDAcd+aSWzspjqqwb93wAJAUGO1BxuFtUOonW 9F4AtmHW79f7cI+g64lYcdjdPf8Vgdl6RBI9uHE1YJk4snOhR+6VZ5CyNNrys0g= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:51 2025 by rpki-client