$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/84ac7714-eba5-4f7d-a5ee-79b6eed77b7e.roa File: 84ac7714-eba5-4f7d-a5ee-79b6eed77b7e.roa (raw, json) Hash identifier: WXmC7KPFdcoI9r1ovEwYP7vXp96YBPOdALTif6D3Hjg= Subject key identifier: 16:2A:02:3A:7A:A8:A3:FF:1E:2A:D0:7F:8C:E5:D0:19:13:58:A4:EB Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0AF0C7A8CB62CBCB49F08405F5BC5692C1B9D246 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/84ac7714-eba5-4f7d-a5ee-79b6eed77b7e.roa Signing time: Fri 26 Sep 2025 17:52:53 +0000 ROA not before: Fri 26 Sep 2025 17:52:53 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c40::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f0:c7:a8:cb:62:cb:cb:49:f0:84:05:f5:bc:56:92:c1:b9:d2:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:52:53 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=ca5c82bfceb4eccb7d2740a53b77776937535ca72c132dc5017c19006a5eefea, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3b:2b:d2:52:a5:c7:48:7a:81:e7:1f:30:cf: 03:55:db:af:b4:b7:0b:3d:0a:a4:85:58:7d:34:14: 37:3f:d7:68:aa:3b:d7:95:80:e1:56:2a:55:80:6e: a6:6d:30:fb:8b:ed:9b:7e:73:5c:db:59:1e:8a:2b: 55:1f:68:5a:f0:5f:57:a1:b6:1e:0f:5d:c3:1d:48: bc:ce:34:ed:1d:c4:64:63:2d:b7:6b:7e:53:2f:c2: 79:35:d0:d9:2d:92:f3:42:28:4e:56:0a:ba:6c:10: 23:90:fc:23:5e:4e:18:37:41:0e:54:50:2a:e7:10: 97:a5:99:29:a2:ac:37:ec:46:57:b2:ab:21:b9:7d: db:fe:af:d4:b0:b4:ce:c2:d4:7f:fe:52:16:78:75: 6e:f0:14:ec:27:7b:d1:6a:98:1e:b8:0a:b0:19:b6: 65:4a:21:aa:94:c7:59:25:4f:61:ef:5d:33:7e:4b: 2f:3c:af:b3:78:0f:7c:c4:95:09:92:2a:42:09:83: 97:06:5f:44:b4:30:bd:06:4b:84:e5:91:e5:3a:0d: 5d:14:f3:f9:01:3a:fc:25:e1:ac:41:56:cc:80:c4: 63:e7:50:96:9f:23:6b:67:8e:2f:8e:b3:4e:7f:5d: b9:50:41:30:fc:f0:4c:90:e0:22:e9:02:b2:51:6b: 55:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:2A:02:3A:7A:A8:A3:FF:1E:2A:D0:7F:8C:E5:D0:19:13:58:A4:EB X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/84ac7714-eba5-4f7d-a5ee-79b6eed77b7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c40::/45 Signature Algorithm: sha256WithRSAEncryption 45:3e:06:0c:89:e1:ac:64:4c:69:8e:79:19:6a:55:5f:33:57: 4a:d8:86:93:68:59:e5:7a:73:70:ee:02:a8:d4:6b:a5:e6:5d: 57:37:3d:d0:ed:0b:d9:e2:18:37:bc:f6:6f:0a:66:ec:95:fc: ae:bb:3f:50:8e:bf:fd:4d:1a:1c:84:27:d1:bc:9c:98:41:a1: 61:57:60:1e:62:f0:7d:e8:a0:91:66:cb:f8:06:21:21:e6:ee: 39:6b:c4:11:8b:8e:97:77:67:cd:f4:ed:09:46:e0:57:54:78: 77:59:bf:30:2d:5a:fa:71:78:3c:c5:a3:10:79:07:ec:f2:3f: 5f:0a:83:41:e7:5f:9c:5b:b9:76:1c:cb:a1:9d:74:ab:b1:d0: 63:45:a6:a0:6b:1c:9c:27:cc:b0:7d:2d:f5:7f:42:66:e4:af: 8d:77:e4:02:9f:28:dd:73:56:15:f6:2a:1d:66:20:20:d7:eb: 4f:57:a2:b5:c4:44:91:70:07:81:ff:2e:0d:af:f4:41:9c:c7: ad:e8:b2:59:cc:7b:72:97:b1:af:7d:76:f0:f7:0c:36:74:00: e0:ca:0b:db:72:28:92:44:23:d7:2a:a8:d5:d6:14:5e:24:77: 81:57:d1:73:6f:a6:91:b7:f0:67:82:e5:64:e8:ff:9e:7f:4a: 93:13:fc:2d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCvDHqMtiy8tJ8IQF9bxWksG50kYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MjUzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTVjODJiZmNlYjRlY2NiN2QyNzQwYTUzYjc3Nzc2OTM3 NTM1Y2E3MmMxMzJkYzUwMTdjMTkwMDZhNWVlZmVhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzOyvSUqXHSHqB5x8wzwNV26+0tws9CqSFWH00FDc/12iq O9eVgOFWKlWAbqZtMPuL7Zt+c1zbWR6KK1UfaFrwX1ehth4PXcMdSLzONO0dxGRj LbdrflMvwnk10NktkvNCKE5WCrpsECOQ/CNeThg3QQ5UUCrnEJelmSmirDfsRley qyG5fdv+r9SwtM7C1H/+UhZ4dW7wFOwne9FqmB64CrAZtmVKIaqUx1klT2HvXTN+ Sy88r7N4D3zElQmSKkIJg5cGX0S0ML0GS4TlkeU6DV0U8/kBOvwl4axBVsyAxGPn UJafI2tnji+Os05/XblQQTD88EyQ4CLpArJRa1WJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFioCOnqoo/8eKtB/jOXQGRNYpOswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg0YWM3NzE0LWViYTUtNGY3ZC1hNWVlLTc5YjZlZWQ3N2I3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmBZzADEAwDQYJKoZIhvcNAQELBQADggEBAEU+BgyJ4axkTGmOeRlqVV8z V0rYhpNoWeV6c3DuAqjUa6XmXVc3PdDtC9niGDe89m8KZuyV/K67P1COv/1NGhyE J9G8nJhBoWFXYB5i8H3ooJFmy/gGISHm7jlrxBGLjpd3Z8307QlG4FdUeHdZvzAt WvpxeDzFoxB5B+zyP18Kg0HnX5xbuXYcy6GddKux0GNFpqBrHJwnzLB9LfV/Qmbk r4135AKfKN1zVhX2Kh1mICDX609XorXERJFwB4H/Lg2v9EGcx63oslnMe3KXsa99 dvD3DDZ0AODKC9tyKJJEI9cqqNXWFF4kd4FX0XNvppG38GeC5WTo/55/SpMT/C0= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:57 2025 by rpki-client