$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa File: a3dc9780-ee42-4415-930a-4d78bbb4e531.roa (raw, json) Hash identifier: 9uc4DGQUpWZAEr8fVeMIzKo1RGr8gz3giWlvdLPh/mI= Subject key identifier: 9E:A1:6E:BE:01:B8:83:2A:1B:6A:67:56:22:00:9A:35:08:5A:01:01 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3589AD9A516BACCFBDB9969F82863FEF5254E8CE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa Signing time: Mon 06 Oct 2025 17:12:41 +0000 ROA not before: Mon 06 Oct 2025 17:12:41 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:89:ad:9a:51:6b:ac:cf:bd:b9:96:9f:82:86:3f:ef:52:54:e8:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:12:41 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=b38ee50e533f3a39b111ff7ad96ca77a1402cac1ef99782a15dae6a560d384a0, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:59:48:b4:ae:c3:c6:28:85:e8:f7:07:c6: 62:b9:8f:dc:3e:12:8c:ad:8b:21:c9:aa:bf:d3:e4: f7:08:74:b8:a0:b0:d4:8e:79:ff:0a:be:cc:75:69: 4a:c8:b3:a5:d6:03:45:50:ca:d7:f7:b0:ed:fa:95: 90:b1:e8:1a:66:ed:92:ba:d8:e4:c9:60:0d:69:54: bd:3e:2a:5b:e7:bd:cc:10:70:db:0a:5f:e1:66:cf: aa:05:8d:73:72:1b:09:db:a2:53:6a:da:06:34:9a: 80:85:fd:af:16:26:13:59:d9:8e:f1:d0:ed:21:f2: 71:10:7c:0e:c3:ca:ab:38:60:8f:2a:16:ae:8c:cd: 9c:65:09:47:d0:4e:10:d3:c8:40:01:fc:d3:5b:4c: f4:a8:1e:34:3f:24:21:60:67:2f:6c:bb:24:0f:2e: 48:c5:ba:1d:54:d3:52:a5:75:17:e2:72:3b:b7:e8: 18:af:33:77:ba:28:fe:e1:5d:e7:03:54:78:5a:f2: 92:ef:99:e2:06:79:ab:22:88:2a:14:59:45:18:8f: 9d:05:fb:e7:ae:0d:44:aa:3f:52:15:21:9e:d4:93: 48:09:9f:0e:16:3e:1a:12:38:1a:ae:a6:30:36:c5: 9d:de:5e:ef:ff:8d:56:44:96:54:5d:87:b6:67:75: 35:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A1:6E:BE:01:B8:83:2A:1B:6A:67:56:22:00:9A:35:08:5A:01:01 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c02::/48 Signature Algorithm: sha256WithRSAEncryption 7f:e1:83:8d:77:6d:7e:57:e4:85:b6:b4:0a:19:4d:88:05:47: 1a:d2:1f:b9:56:3d:61:97:1b:8d:78:67:a7:7a:d8:aa:de:dc: bf:d3:bd:bb:59:cd:24:53:f2:90:8c:c4:8c:79:c5:99:dc:c8: 08:31:aa:ec:f6:c5:0f:4b:70:9f:42:c0:9b:36:66:d2:0e:b8: 69:9a:04:9d:84:6c:e2:cb:f3:60:5e:54:f4:34:0b:71:4f:01: 1e:ca:79:8d:a3:a2:64:b5:2a:ff:18:9f:58:08:ea:56:f6:44: 4f:21:89:76:e1:b6:98:36:a8:a4:78:af:23:fc:e8:98:7f:3e: 94:37:d9:27:81:e7:c1:e4:84:ef:27:08:b6:e0:2f:16:db:24: 25:75:99:2a:7b:ca:ff:69:1c:ae:2f:56:64:51:a2:71:78:05: 5a:ee:b1:f7:96:a9:86:c4:aa:37:57:f5:6b:a5:74:68:11:89: ec:60:b8:5c:51:e6:0a:e9:59:bc:21:04:18:47:77:3f:6c:29: 15:5d:a4:b4:b6:9b:a3:85:a7:01:b4:c8:46:dc:30:9d:30:cb: cb:cd:9a:27:65:a7:ff:38:1a:db:56:ab:f6:fc:f0:f3:22:bd: bf:b2:6b:42:69:5c:e1:76:b6:15:0b:3a:53:62:09:d8:a6:20: 30:d0:51:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNYmtmlFrrM+9uZafgoY/71JU6M4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcxMjQxWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzhlZTUwZTUzM2YzYTM5YjExMWZmN2FkOTZjYTc3YTE0 MDJjYWMxZWY5OTc4MmExNWRhZTZhNTYwZDM4NGEwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3MllItK7DxiiF6PcHxmK5j9w+EoytiyHJqr/T5PcIdLig sNSOef8Kvsx1aUrIs6XWA0VQytf3sO36lZCx6Bpm7ZK62OTJYA1pVL0+KlvnvcwQ cNsKX+Fmz6oFjXNyGwnbolNq2gY0moCF/a8WJhNZ2Y7x0O0h8nEQfA7Dyqs4YI8q Fq6MzZxlCUfQThDTyEAB/NNbTPSoHjQ/JCFgZy9suyQPLkjFuh1U01KldRficju3 6BivM3e6KP7hXecDVHha8pLvmeIGeasiiCoUWUUYj50F++euDUSqP1IVIZ7Uk0gJ nw4WPhoSOBqupjA2xZ3eXu//jVZEllRdh7ZndTV5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnqFuvgG4gyobamdWIgCaNQhaAQEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2EzZGM5NzgwLWVlNDItNDQxNS05MzBhLTRkNzhiYmI0ZTUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAIwDQYJKoZIhvcNAQELBQADggEBAH/hg413bX5X5IW2tAoZTYgF RxrSH7lWPWGXG414Z6d62Kre3L/TvbtZzSRT8pCMxIx5xZncyAgxquz2xQ9LcJ9C wJs2ZtIOuGmaBJ2EbOLL82BeVPQ0C3FPAR7KeY2jomS1Kv8Yn1gI6lb2RE8hiXbh tpg2qKR4ryP86Jh/PpQ32SeB58HkhO8nCLbgLxbbJCV1mSp7yv9pHK4vVmRRonF4 BVrusfeWqYbEqjdX9WuldGgRiexguFxR5grpWbwhBBhHdz9sKRVdpLS2m6OFpwG0 yEbcMJ0wy8vNmidlp/84GttWq/b88PMivb+ya0JpXOF2thULOlNiCdimIDDQUXI= -----END CERTIFICATE-----Generated at Mon Oct 20 21:15:53 2025 by rpki-client