$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/90fb78db-2abf-4a4f-8217-d0c64f258f70.roa File: 90fb78db-2abf-4a4f-8217-d0c64f258f70.roa (raw, json) Hash identifier: HIYOpJtf+OR63NpwkvTYcDs6DusLASmxwIIRBDBXAYM= Subject key identifier: 55:AF:E3:47:37:7D:7C:91:F6:AE:BC:0F:22:E4:9B:08:92:A1:10:1D Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5A225BBF307EC1D816DC7D2BFBC8A49FE64AEC71 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/90fb78db-2abf-4a4f-8217-d0c64f258f70.roa Signing time: Fri 31 Oct 2025 01:30:14 +0000 ROA not before: Fri 31 Oct 2025 01:30:14 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:22:5b:bf:30:7e:c1:d8:16:dc:7d:2b:fb:c8:a4:9f:e6:4a:ec:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 31 01:30:14 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8032cd8f58d590b9fac2fba5a3e231265f4df1c97a7935ad88b1b24930e13005, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:11:bd:19:0b:e8:90:be:79:e2:69:f0:17:79: c0:c2:d9:c1:c3:2b:ab:6b:f3:09:80:ba:78:5b:a3: 8a:af:60:ab:31:5a:90:f5:da:02:a1:1c:9c:f2:38: 53:f3:c4:e0:fe:3d:ff:01:6a:8a:37:81:1b:25:58: 49:b3:84:e5:0d:d3:25:e6:3e:db:f8:eb:2f:22:5a: 26:46:3e:22:b6:13:aa:a9:23:f2:b5:a9:0e:0a:d2: a0:fd:0f:0b:d3:68:d5:9e:2a:19:1b:b3:65:8f:6a: 74:37:4d:9d:65:38:b6:4e:28:7a:48:92:63:1e:c4: 04:f9:e4:22:88:d5:71:c4:5b:6d:c7:50:d1:52:c7: 63:c8:7c:bd:bc:79:4f:7a:ab:12:83:9f:7b:3c:bb: 87:e0:77:11:2c:a7:f0:d7:2a:51:47:cf:a0:d0:cf: b0:3f:18:3b:04:0b:90:aa:72:a4:99:f1:2e:c7:30: 2b:3b:b0:16:6d:54:71:ae:3a:a4:07:c9:fe:9f:a4: 18:5b:da:bc:c2:7a:17:61:37:7b:a2:2c:9b:06:4e: 88:47:8d:d3:eb:d4:46:48:c7:8a:fd:15:ca:b5:f8: a0:a2:d8:8e:33:cb:c5:a4:06:c1:4b:42:7d:dc:a9: db:23:1c:ab:3a:ef:a3:d6:82:9e:7f:c4:ff:a8:e7: 15:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:AF:E3:47:37:7D:7C:91:F6:AE:BC:0F:22:E4:9B:08:92:A1:10:1D X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/90fb78db-2abf-4a4f-8217-d0c64f258f70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c01::/48 Signature Algorithm: sha256WithRSAEncryption 96:a6:c5:10:87:a9:a3:db:78:11:35:e1:bc:47:cb:91:92:90: fc:89:93:d3:1a:3a:e6:9c:d4:fd:82:18:e4:b8:56:1e:df:45: a5:7a:82:82:9b:3d:9a:c5:ba:54:4f:f6:11:54:d9:2b:fe:1f: 4f:c1:6c:70:65:a5:e8:76:36:6c:75:52:b6:28:76:60:1f:c2: f7:de:ed:99:2e:30:6d:a8:5f:b8:4c:ad:ce:ef:1f:d1:78:3b: 67:23:43:98:2d:08:d2:3e:ea:d1:0c:6c:b2:4f:27:08:de:6b: ee:81:e7:05:a0:a3:08:1f:87:8f:f2:be:2a:43:f5:07:d3:6c: a4:1b:73:9e:e0:2f:ae:28:f1:08:fd:c9:ff:8b:c1:31:c9:93: 92:f3:9f:2c:8c:5f:01:57:63:be:df:5e:76:ac:f3:0f:62:1c: 9d:55:c6:27:bf:f5:4a:de:d1:cc:1a:5c:8e:53:01:7f:27:7d: d2:a3:f0:c6:a3:9b:27:e9:35:1c:53:72:b5:c7:92:66:c5:10: 22:2d:ba:61:39:48:b8:41:39:ab:15:87:4d:22:73:bf:3f:88: 93:75:2c:6b:dd:64:3a:a5:ab:08:23:00:e0:d4:c2:3e:f6:cb: 43:f1:2e:b4:8d:92:ba:54:a5:ad:a8:f9:aa:7a:6d:29:5d:35: 35:94:03:7d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWiJbvzB+wdgW3H0r+8ikn+ZK7HEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDMxMDEzMDE0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDMyY2Q4ZjU4ZDU5MGI5ZmFjMmZiYTVhM2UyMzEyNjVm NGRmMWM5N2E3OTM1YWQ4OGIxYjI0OTMwZTEzMDA1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfEb0ZC+iQvnniafAXecDC2cHDK6tr8wmAunhbo4qvYKsx WpD12gKhHJzyOFPzxOD+Pf8Baoo3gRslWEmzhOUN0yXmPtv46y8iWiZGPiK2E6qp I/K1qQ4K0qD9DwvTaNWeKhkbs2WPanQ3TZ1lOLZOKHpIkmMexAT55CKI1XHEW23H UNFSx2PIfL28eU96qxKDn3s8u4fgdxEsp/DXKlFHz6DQz7A/GDsEC5CqcqSZ8S7H MCs7sBZtVHGuOqQHyf6fpBhb2rzCehdhN3uiLJsGTohHjdPr1EZIx4r9Fcq1+KCi 2I4zy8WkBsFLQn3cqdsjHKs676PWgp5/xP+o5xVPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVa/jRzd9fJH2rrwPIuSbCJKhEB0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzkwZmI3OGRiLTJhYmYtNGE0Zi04MjE3LWQwYzY0ZjI1OGY3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAEwDQYJKoZIhvcNAQELBQADggEBAJamxRCHqaPbeBE14bxHy5GS kPyJk9MaOuac1P2CGOS4Vh7fRaV6goKbPZrFulRP9hFU2Sv+H0/BbHBlpeh2Nmx1 UrYodmAfwvfe7ZkuMG2oX7hMrc7vH9F4O2cjQ5gtCNI+6tEMbLJPJwjea+6B5wWg owgfh4/yvipD9QfTbKQbc57gL64o8Qj9yf+LwTHJk5LznyyMXwFXY77fXnas8w9i HJ1Vxie/9Ure0cwaXI5TAX8nfdKj8MajmyfpNRxTcrXHkmbFECItumE5SLhBOasV h00ic78/iJN1LGvdZDqlqwgjAODUwj72y0PxLrSNkrpUpa2o+ap6bSldNTWUA30= -----END CERTIFICATE-----Generated at Mon Nov 3 11:18:47 2025 by rpki-client