$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: u1E/e43tyumNDVM0loWTsibb0swpHZMyALTgI55rB3M= Subject key identifier: 51:5D:46:3E:15:E1:4A:A0:9A:0B:9D:05:AE:60:9D:0A:DC:07:4E:88 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 076C184A13BFC0F6363DF3DF932962FA0B28F9EF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Tue 21 Oct 2025 12:40:21 +0000 ROA not before: Tue 21 Oct 2025 12:40:21 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:6c:18:4a:13:bf:c0:f6:36:3d:f3:df:93:29:62:fa:0b:28:f9:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:40:21 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=9027c61d8329897fa289ea61bbfacda66bffddb9e8c560bd32d6d208c797f3b2, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d6:33:56:0a:c4:85:98:7a:b9:6a:c2:f6:08: bf:0f:96:8a:50:f3:3f:e1:ef:41:70:b0:72:b2:1d: 28:50:85:6e:45:d8:84:ec:ef:5d:37:22:a0:78:6e: 79:16:1d:00:5c:46:cf:48:52:08:0f:d9:68:37:c2: f8:dc:a2:69:d2:8e:62:e1:cb:03:80:76:48:31:06: 13:c3:f8:76:cd:c1:f4:11:7f:48:90:0d:98:c5:dd: 26:53:ff:36:58:7a:3d:96:e3:8e:7e:dd:ae:d8:db: 3b:5f:4d:96:4f:9e:b2:8a:c3:a9:c1:9f:fe:38:c7: f8:3b:6d:ed:c6:81:c0:c5:4e:6d:46:c4:79:a1:4a: f7:90:46:d9:04:6c:69:be:76:d1:42:e1:b3:40:51: b3:02:18:a5:b2:38:80:99:68:37:b6:d8:55:09:5b: ec:46:ac:18:ec:b0:67:56:ac:40:90:18:30:4e:92: 84:aa:27:39:04:6d:b7:75:37:9d:29:f6:44:7a:5e: c8:c9:50:19:b0:73:12:40:30:c6:c2:9b:d8:0e:fc: db:f8:7e:03:22:32:02:d1:47:bb:74:cf:d0:ef:9b: 7b:b1:42:f0:17:22:35:cc:4c:64:53:63:0b:bc:d3: f1:f5:66:e2:5c:2b:79:84:44:3d:f2:13:67:0f:c2: df:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:5D:46:3E:15:E1:4A:A0:9A:0B:9D:05:AE:60:9D:0A:DC:07:4E:88 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 0f:3f:40:78:78:12:ca:81:19:7a:53:a4:1d:be:3b:ac:49:56: f2:90:1b:56:d5:88:f0:33:75:08:1e:65:67:57:5d:bd:fe:b1: 26:84:2b:9d:fe:bf:ee:77:ed:4e:d4:81:94:f8:34:5c:09:e7: 41:36:fc:30:57:e7:a1:56:5c:05:9c:ad:aa:db:70:57:1e:57: ac:92:f4:5b:18:5d:e0:4b:99:07:03:6f:a0:aa:ab:dd:ab:e1: 37:0e:de:bb:e1:d0:dd:02:2c:d3:ff:39:97:49:41:f1:0a:cd: 87:5b:ed:f1:6f:4c:43:ae:dd:8c:69:c7:6e:b0:2f:f0:4c:34: dc:87:fd:31:04:f4:42:73:47:e6:6f:65:db:75:14:9e:cf:e0: d2:0e:03:1f:53:f9:f2:10:f9:81:56:d8:c7:48:7d:57:ea:ef: 3a:b0:15:02:7a:e3:dc:13:cf:e4:f1:40:c2:9d:09:35:25:17: 04:bc:d1:34:04:19:56:5d:be:42:10:7e:78:d4:e5:41:bb:5e: 3a:c9:cc:f8:51:45:01:15:e9:8c:c3:7a:9f:bb:44:25:d1:b1: c7:be:f6:c1:0c:13:0d:b2:55:4c:0d:4c:4d:55:40:08:19:64: 48:8f:63:26:a5:8b:08:4b:f7:47:d2:3b:00:76:e8:d4:00:cb: af:03:4b:90 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUB2wYShO/wPY2PfPfkyli+gso+e8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTI0MDIxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDI3YzYxZDgzMjk4OTdmYTI4OWVhNjFiYmZhY2RhNjZi ZmZkZGI5ZThjNTYwYmQzMmQ2ZDIwOGM3OTdmM2IyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC31jNWCsSFmHq5asL2CL8PlopQ8z/h70FwsHKyHShQhW5F 2ITs7103IqB4bnkWHQBcRs9IUggP2Wg3wvjcomnSjmLhywOAdkgxBhPD+HbNwfQR f0iQDZjF3SZT/zZYej2W445+3a7Y2ztfTZZPnrKKw6nBn/44x/g7be3GgcDFTm1G xHmhSveQRtkEbGm+dtFC4bNAUbMCGKWyOICZaDe22FUJW+xGrBjssGdWrECQGDBO koSqJzkEbbd1N50p9kR6XsjJUBmwcxJAMMbCm9gO/Nv4fgMiMgLRR7t0z9Dvm3ux QvAXIjXMTGRTYwu80/H1ZuJcK3mERD3yE2cPwt8tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUV1GPhXhSqCaC50FrmCdCtwHTogwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAA8/QHh4EsqBGXpTpB2+O6xJ VvKQG1bViPAzdQgeZWdXXb3+sSaEK53+v+537U7UgZT4NFwJ50E2/DBX56FWXAWc rarbcFceV6yS9FsYXeBLmQcDb6Cqq92r4TcO3rvh0N0CLNP/OZdJQfEKzYdb7fFv TEOu3Yxpx26wL/BMNNyH/TEE9EJzR+ZvZdt1FJ7P4NIOAx9T+fIQ+YFW2MdIfVfq 7zqwFQJ649wTz+TxQMKdCTUlFwS80TQEGVZdvkIQfnjU5UG7XjrJzPhRRQEV6YzD ep+7RCXRsce+9sEMEw2yVUwNTE1VQAgZZEiPYyaliwhL90fSOwB26NQAy68DS5A= -----END CERTIFICATE-----Generated at Mon Nov 3 11:18:37 2025 by rpki-client