$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa File: b135e8de-4e6c-4d15-87c3-51709cb5a460.roa (raw, json) Hash identifier: 06ldCndQLNDUwSqaf2+pWd5KwQQX4zrxfW2t+YrRzbI= Subject key identifier: 91:A2:03:F9:25:5C:BF:40:ED:A4:6E:8A:AB:99:43:B0:B4:B7:D3:0F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 21818DBE32DCA8B9E2758FB39B1E9420241944B1 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa Signing time: Fri 26 Sep 2025 17:50:26 +0000 ROA not before: Fri 26 Sep 2025 17:50:26 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:39c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:81:8d:be:32:dc:a8:b9:e2:75:8f:b3:9b:1e:94:20:24:19:44:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:50:26 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=2acb82b2a85d6d51fa755ef803dde93e208b5bdcef7394fb42b68558cff497cd, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a6:f6:17:ec:06:2a:90:ef:e3:13:b2:a5:55: d8:a3:db:74:5a:9c:42:e1:e1:39:eb:f4:b8:ee:44: b4:52:16:39:e4:a9:86:68:6a:d3:ca:21:46:ef:76: 48:de:a6:6b:15:66:30:08:c6:dc:7b:3d:3b:6b:0b: 50:f2:df:0c:5b:16:c3:32:d4:42:f4:bb:36:af:cf: ef:2e:49:67:7c:71:b8:06:c5:84:0d:93:4b:27:20: af:5a:13:f8:86:05:aa:de:51:8a:d3:f0:c3:62:7a: 1e:64:d3:0b:28:b7:f1:f6:c3:e9:0e:c5:be:3e:0c: 75:74:5f:dd:c4:46:bc:38:da:28:1b:c8:0e:71:82: aa:97:d5:cd:90:64:40:61:e4:0d:e5:e7:c8:e7:38: 90:f6:28:d2:7c:67:20:28:9e:06:93:0a:64:3a:11: 8e:31:93:9c:e6:e1:74:c2:4f:e2:78:0c:53:ad:9c: d3:af:04:7c:98:3c:ec:9e:46:16:02:d0:c2:46:9b: dd:17:b2:da:30:d7:2a:26:a4:2f:e2:71:23:93:ad: c2:e5:2a:11:36:09:ad:0d:81:7b:41:30:bc:c6:07: b4:51:54:26:bf:78:25:63:72:29:8a:0c:45:5a:14: 4a:eb:25:35:04:4f:43:41:95:fe:38:35:c9:32:9c: ff:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:A2:03:F9:25:5C:BF:40:ED:A4:6E:8A:AB:99:43:B0:B4:B7:D3:0F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:39c::/48 Signature Algorithm: sha256WithRSAEncryption 03:07:fb:92:d5:c9:e2:a5:6a:e6:e4:11:df:f4:16:d6:2a:d0: 05:00:30:61:ab:bd:b7:3d:02:9a:06:df:e0:f9:c6:fb:ba:10: fa:c8:cb:01:b5:32:63:1a:5c:d9:1b:9e:70:49:e4:d4:fd:2b: d8:6d:08:7d:fd:de:1b:49:67:11:53:ea:70:fb:9e:0e:56:74: 46:b1:97:b0:b8:80:56:7a:2a:f1:90:5c:0a:be:c9:5e:a2:fb: d7:6f:b3:48:36:ba:7e:a7:cc:b6:69:76:fd:b6:17:d3:eb:3c: 38:ac:4d:ce:f2:a4:39:49:61:63:d4:b0:42:e1:a3:cc:f4:6c: 2b:b4:2b:29:8c:02:70:3b:30:cc:00:76:5b:29:e6:53:e4:ce: 13:8e:62:6b:ea:c0:d2:80:f1:28:26:55:3d:87:00:c2:54:61: 85:51:e4:d6:1b:8c:b1:3d:7f:2c:ec:2a:bb:f0:a8:8a:64:ff: c3:7c:0f:85:60:3d:d2:c6:23:5e:6a:39:17:89:0d:de:8c:f0: 54:80:4b:2d:b0:2f:46:98:c0:14:8e:9b:e3:bb:6a:8b:3f:82: 35:13:42:e9:95:3a:72:7d:ed:fb:56:f4:14:78:d3:69:50:1f: 1a:2c:cf:d6:86:80:1d:75:42:04:8c:13:41:de:4e:3a:e0:63: c1:34:71:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIYGNvjLcqLnidY+zmx6UICQZRLEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MDI2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWNiODJiMmE4NWQ2ZDUxZmE3NTVlZjgwM2RkZTkzZTIw OGI1YmRjZWY3Mzk0ZmI0MmI2ODU1OGNmZjQ5N2NkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCepvYX7AYqkO/jE7KlVdij23RanELh4Tnr9LjuRLRSFjnk qYZoatPKIUbvdkjepmsVZjAIxtx7PTtrC1Dy3wxbFsMy1EL0uzavz+8uSWd8cbgG xYQNk0snIK9aE/iGBareUYrT8MNieh5k0wsot/H2w+kOxb4+DHV0X93ERrw42igb yA5xgqqX1c2QZEBh5A3l58jnOJD2KNJ8ZyAongaTCmQ6EY4xk5zm4XTCT+J4DFOt nNOvBHyYPOyeRhYC0MJGm90Xstow1yompC/icSOTrcLlKhE2Ca0NgXtBMLzGB7RR VCa/eCVjcimKDEVaFErrJTUET0NBlf44NckynP9HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkaID+SVcv0DtpG6Kq5lDsLS30w8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IxMzVlOGRlLTRlNmMtNGQxNS04N2MzLTUxNzA5Y2I1YTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5wwDQYJKoZIhvcNAQELBQADggEBAAMH+5LVyeKlaubkEd/0FtYq 0AUAMGGrvbc9ApoG3+D5xvu6EPrIywG1MmMaXNkbnnBJ5NT9K9htCH393htJZxFT 6nD7ng5WdEaxl7C4gFZ6KvGQXAq+yV6i+9dvs0g2un6nzLZpdv22F9PrPDisTc7y pDlJYWPUsELho8z0bCu0KymMAnA7MMwAdlsp5lPkzhOOYmvqwNKA8SgmVT2HAMJU YYVR5NYbjLE9fyzsKrvwqIpk/8N8D4VgPdLGI15qOReJDd6M8FSASy2wL0aYwBSO m+O7aos/gjUTQumVOnJ97ftW9BR402lQHxosz9aGgB11QgSME0HeTjrgY8E0cXI= -----END CERTIFICATE-----Generated at Mon Oct 20 16:31:42 2025 by rpki-client