$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/89848d84-ccf0-40c8-b12a-ac4d8910d997.roa File: 89848d84-ccf0-40c8-b12a-ac4d8910d997.roa (raw, json) Hash identifier: Xjy+RmZOji8i1fP6oFJoebSqM6VFZGa7rbGQwQ9/RIQ= Subject key identifier: E9:9A:26:E4:4A:9B:E5:01:2D:96:6D:B1:E5:F4:4D:4D:64:52:73:F2 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 09D9C15FD25F20977839AA91C1D38F330DE63BE5 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/89848d84-ccf0-40c8-b12a-ac4d8910d997.roa Signing time: Tue 21 Oct 2025 12:20:08 +0000 ROA not before: Tue 21 Oct 2025 12:20:08 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:3a7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:d9:c1:5f:d2:5f:20:97:78:39:aa:91:c1:d3:8f:33:0d:e6:3b:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:20:08 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=f727bc01c426644bbe2d0e371fcfa9701698f7c9256e714a983c05c9579c89c0, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2b:7d:5d:d9:a7:4f:26:5c:bc:fd:f6:07:24: 3f:f7:3f:26:72:bf:f3:4d:15:2c:81:c2:48:56:a3: 2a:b8:a4:39:43:67:74:5c:68:fb:d4:7c:65:f9:44: 31:37:fe:5a:5a:c1:20:2b:fd:d5:93:c5:f3:96:fe: 4e:db:44:4a:0c:8f:32:8e:25:c7:5e:b2:e4:c3:4d: d8:9e:5d:99:2c:85:dc:84:68:0a:07:2a:6d:34:05: ad:e0:e4:2c:1c:6f:53:1d:96:d7:05:23:fd:e4:92: 12:18:74:8f:b7:02:25:b3:70:59:6d:91:a7:6f:cb: 92:58:c3:8f:29:6c:ba:b9:8b:4b:ae:0c:d3:27:01: 26:18:d9:3c:53:fa:b8:ae:9b:37:43:98:cf:03:68: b0:26:fb:35:76:37:58:bb:0c:4d:28:b9:cc:ad:bd: 7b:7f:0b:c2:40:ab:a6:b0:cc:3d:db:d8:d8:24:2c: 0e:b4:75:c7:39:6c:f5:1e:56:26:7f:f6:8b:4b:58: 8d:b5:87:c5:0a:a7:1c:01:18:22:f0:56:2d:22:a9: f5:4d:b8:ab:55:89:dd:4f:26:64:da:59:f9:68:37: d9:4a:3d:d1:ae:62:08:f2:f7:d1:3f:dc:8f:a4:cb: bd:5e:c3:e4:d2:2c:c7:30:4a:69:b1:ba:ea:93:8e: 02:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:9A:26:E4:4A:9B:E5:01:2D:96:6D:B1:E5:F4:4D:4D:64:52:73:F2 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/89848d84-ccf0-40c8-b12a-ac4d8910d997.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3a7::/48 Signature Algorithm: sha256WithRSAEncryption 5e:8e:f9:ad:fb:b2:39:08:99:c2:b9:4f:5a:fa:39:8a:73:62: 84:0f:1a:03:fd:0f:d5:88:3c:07:3b:d9:fe:cf:5a:a2:8d:8a: 0e:78:99:e5:1b:91:40:70:48:ff:1d:66:17:83:56:29:36:28: f6:76:f8:66:e2:67:27:e9:a2:59:ca:60:5f:1e:25:a4:ca:73: 33:9c:20:00:b4:1c:d0:10:cc:6a:71:ce:17:c9:7c:dd:db:93: 10:fb:ae:db:98:85:34:50:de:4a:2e:3d:e3:de:9a:75:39:4d: 94:0b:5d:e9:c0:39:50:d8:15:ce:49:83:69:ec:da:cf:cd:e3: a0:2a:5e:6d:c6:54:8c:90:ad:0c:c5:7d:e8:b3:57:2e:31:01: 23:a3:09:35:d9:d9:d2:08:61:63:ae:fc:d6:1e:26:2d:76:0b: b9:0e:4d:ed:0a:5c:58:e4:8a:e5:3b:15:d1:b5:11:0d:ae:26: 67:d5:e3:37:7b:ec:19:63:6c:de:e0:85:b5:a8:41:a0:1e:00: 7b:6f:22:1c:ae:65:00:f0:40:0d:0b:07:f9:7d:9e:da:9b:e7: 1d:a3:2b:13:75:af:44:cb:4c:a8:34:03:c4:42:16:80:02:8c: d0:21:93:73:38:9b:9a:64:f2:4b:57:31:f9:da:5a:7f:5a:f7: 03:72:d6:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCdnBX9JfIJd4OaqRwdOPMw3mO+UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTIyMDA4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzI3YmMwMWM0MjY2NDRiYmUyZDBlMzcxZmNmYTk3MDE2 OThmN2M5MjU2ZTcxNGE5ODNjMDVjOTU3OWM4OWMwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxK31d2adPJly8/fYHJD/3PyZyv/NNFSyBwkhWoyq4pDlD Z3RcaPvUfGX5RDE3/lpawSAr/dWTxfOW/k7bREoMjzKOJcdesuTDTdieXZkshdyE aAoHKm00Ba3g5Cwcb1MdltcFI/3kkhIYdI+3AiWzcFltkadvy5JYw48pbLq5i0uu DNMnASYY2TxT+riumzdDmM8DaLAm+zV2N1i7DE0oucytvXt/C8JAq6awzD3b2Ngk LA60dcc5bPUeViZ/9otLWI21h8UKpxwBGCLwVi0iqfVNuKtVid1PJmTaWfloN9lK PdGuYgjy99E/3I+ky71ew+TSLMcwSmmxuuqTjgJ3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6Zom5Eqb5QEtlm2x5fRNTWRSc/IwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg5ODQ4ZDg0LWNjZjAtNDBjOC1iMTJhLWFjNGQ4OTEwZDk5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA6cwDQYJKoZIhvcNAQELBQADggEBAF6O+a37sjkImcK5T1r6OYpz YoQPGgP9D9WIPAc72f7PWqKNig54meUbkUBwSP8dZheDVik2KPZ2+GbiZyfpolnK YF8eJaTKczOcIAC0HNAQzGpxzhfJfN3bkxD7rtuYhTRQ3kouPePemnU5TZQLXenA OVDYFc5Jg2ns2s/N46AqXm3GVIyQrQzFfeizVy4xASOjCTXZ2dIIYWOu/NYeJi12 C7kOTe0KXFjkiuU7FdG1EQ2uJmfV4zd77BljbN7ghbWoQaAeAHtvIhyuZQDwQA0L B/l9ntqb5x2jKxN1r0TLTKg0A8RCFoACjNAhk3M4m5pk8ktXMfnaWn9a9wNy1us= -----END CERTIFICATE-----Generated at Mon Nov 3 11:18:09 2025 by rpki-client