$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa File: bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa (raw, json) Hash identifier: Qj3tkKF3ELNwcbSwSEH78/7BBkab3fzTSiLutWiKkAc= Subject key identifier: 76:6E:C6:B5:7C:EC:B4:61:8F:9B:D8:9F:21:7A:15:B2:02:0F:15:48 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 37C308900E04BEEC1880DFB709C6EF92806C6CCF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa Signing time: Tue 21 Oct 2025 12:20:13 +0000 ROA not before: Tue 21 Oct 2025 12:20:13 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:c3:08:90:0e:04:be:ec:18:80:df:b7:09:c6:ef:92:80:6c:6c:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:20:13 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=47d68c645111935852f07ab831582fd6f9fc10c55877b3f60b75df8b7d631146, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e4:58:a1:f3:fc:b9:cc:1a:03:8b:61:04:4c: 87:ab:82:30:36:c6:f2:de:b3:be:e5:0a:6b:56:58: a0:d4:15:59:9a:8d:1a:60:4f:b8:f7:4f:e3:02:97: 43:98:7e:7c:30:db:dc:45:b4:5c:45:d8:6a:30:dd: 9a:49:89:e7:bc:02:df:21:59:62:0d:71:ca:6c:86: f2:51:7b:fa:f3:5d:ab:7a:ba:b1:da:c7:d9:c0:76: 4e:bb:3c:a8:61:2c:19:f1:16:7b:f1:bb:4a:20:43: 37:f1:74:4a:45:a6:86:4f:ae:38:ce:a7:1c:a9:ad: c5:d0:23:a6:e6:80:b8:bb:a4:3f:0f:07:cb:05:b2: d0:b5:22:34:28:79:94:ca:64:87:d1:0b:e9:44:89: 35:8d:ab:0a:70:87:c1:c1:c0:4f:6c:b8:0c:9d:cb: 56:9a:8e:7e:f6:0d:95:f5:55:5d:ec:12:90:bf:5a: 8a:b1:25:7c:0d:52:b4:d7:a5:c2:53:0b:de:4a:56: 38:7d:2f:c3:48:f3:ef:23:ac:51:92:7c:6c:81:8b: b0:6a:68:ae:d1:47:e5:5a:9c:1a:60:c7:e4:01:e8: 72:96:73:c0:b1:88:04:d4:23:54:c3:e6:11:c3:3c: fb:74:ea:d5:5a:25:77:e7:53:a8:c8:00:02:c1:fa: ff:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6E:C6:B5:7C:EC:B4:61:8F:9B:D8:9F:21:7A:15:B2:02:0F:15:48 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 1c:99:49:a9:f0:25:9f:7c:e0:4c:b6:fc:83:86:d4:74:a8:12: 9e:ff:de:df:f3:ac:71:eb:56:74:e9:f8:55:0b:1c:cb:c0:1d: 0e:76:e7:cc:74:cd:c2:09:0d:46:75:fc:33:96:c4:98:e9:72: 91:cc:d4:25:f1:e3:c0:16:b7:52:56:3b:99:e0:49:4b:33:a2: 52:66:71:fe:bc:dd:97:8a:c7:0d:74:4b:75:25:7a:38:41:36: 93:0c:53:82:29:32:07:7b:4f:07:f6:a5:6b:44:38:ff:cb:e7: 88:57:7d:6c:b5:0f:46:83:46:fa:9e:42:e4:29:90:8d:7f:9c: 23:55:c8:b1:2f:1e:17:fc:56:1a:86:f0:3b:6b:a1:2d:e0:f7: df:4c:a5:6f:00:92:f5:88:44:d0:9b:ea:82:e3:95:85:13:af: 6a:0f:9d:85:ea:48:f6:f2:52:07:ee:dc:e0:ff:2e:8d:ae:14: 93:11:f2:64:b7:1e:4c:04:a1:d3:f9:53:4b:c8:d4:bc:38:a1: 49:a0:fe:ad:15:d9:a7:dc:a7:0b:30:c5:b2:fa:99:46:a4:26: 97:bc:56:78:30:dc:9e:ba:df:fc:b9:c6:92:46:ab:ba:c2:91: 1d:18:c9:13:14:30:b5:12:40:b3:86:65:11:fa:d1:02:26:18: 52:91:35:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN8MIkA4EvuwYgN+3CcbvkoBsbM8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTIyMDEzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2Q2OGM2NDUxMTE5MzU4NTJmMDdhYjgzMTU4MmZkNmY5 ZmMxMGM1NTg3N2IzZjYwYjc1ZGY4YjdkNjMxMTQ2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp5Fih8/y5zBoDi2EETIergjA2xvLes77lCmtWWKDUFVma jRpgT7j3T+MCl0OYfnww29xFtFxF2Gow3ZpJiee8At8hWWINccpshvJRe/rzXat6 urHax9nAdk67PKhhLBnxFnvxu0ogQzfxdEpFpoZPrjjOpxyprcXQI6bmgLi7pD8P B8sFstC1IjQoeZTKZIfRC+lEiTWNqwpwh8HBwE9suAydy1aajn72DZX1VV3sEpC/ WoqxJXwNUrTXpcJTC95KVjh9L8NI8+8jrFGSfGyBi7BqaK7RR+VanBpgx+QB6HKW c8CxiATUI1TD5hHDPPt06tVaJXfnU6jIAALB+v/pAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdm7GtXzstGGPm9ifIXoVsgIPFUgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JiNWFmNzU3LTFiZGMtNDhmOS1iYzIwLWM3NGZkNDkwOTZhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAByZSanwJZ984Ey2/IOG1HSo Ep7/3t/zrHHrVnTp+FULHMvAHQ5258x0zcIJDUZ1/DOWxJjpcpHM1CXx48AWt1JW O5ngSUszolJmcf683ZeKxw10S3UlejhBNpMMU4IpMgd7Twf2pWtEOP/L54hXfWy1 D0aDRvqeQuQpkI1/nCNVyLEvHhf8VhqG8DtroS3g999MpW8AkvWIRNCb6oLjlYUT r2oPnYXqSPbyUgfu3OD/Lo2uFJMR8mS3HkwEodP5U0vI1Lw4oUmg/q0V2afcpwsw xbL6mUakJpe8Vngw3J663/y5xpJGq7rCkR0YyRMUMLUSQLOGZRH60QImGFKRNcQ= -----END CERTIFICATE-----Generated at Mon Nov 3 11:18:42 2025 by rpki-client