$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa File: c91e5573-a757-4c6b-9000-0403e0e4fa00.roa (raw, json) Hash identifier: d/URC1CyqkzYLiKEgWSPBp0BZ/9nQ4f/uskC0PNi3bk= Subject key identifier: 7D:B3:32:99:D0:76:B3:6E:D3:F2:28:20:23:85:CA:B9:35:5F:D5:4D Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7102B236DBA4B719F6200BC27072C38CB4C2C6A5 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa Signing time: Tue 21 Oct 2025 12:40:13 +0000 ROA not before: Tue 21 Oct 2025 12:40:13 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:544::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:02:b2:36:db:a4:b7:19:f6:20:0b:c2:70:72:c3:8c:b4:c2:c6:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:40:13 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=b211b51bb2c61e01579edef376089a8f802c12bdf09ec144446233f57b402b89, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:40:bd:dd:8e:97:ed:28:a3:1b:91:43:92:c1: 9c:34:df:d9:88:14:f3:09:79:0e:b1:67:33:d2:e1: c1:c5:62:65:6a:15:05:37:0c:f7:58:7a:9b:52:f2: c1:60:52:1e:f8:3a:9d:5d:f5:03:34:30:19:be:c3: 23:0e:3f:9f:37:d3:40:38:e1:e7:61:27:21:31:5f: 8e:94:da:ef:b4:f5:d2:73:b9:99:a2:f2:6e:37:8b: fa:1d:38:57:81:ee:24:de:a7:76:76:8a:7c:a9:5c: a3:c9:f3:05:52:40:95:30:92:cd:33:f5:e1:5b:57: 7a:cd:04:52:f1:01:3e:b0:7a:3e:52:c3:f5:95:85: b5:f3:61:e6:47:18:6b:47:ce:a8:1c:94:7b:23:5a: d9:2b:64:c7:f8:24:0c:ea:11:ff:d7:2c:a2:7e:b2: 3e:69:46:f6:ff:7c:d9:5d:04:a1:ff:b0:2b:b8:a0: e3:2d:6b:89:e5:57:f6:3e:7f:68:13:ce:ba:ae:5c: cc:60:7a:de:80:d5:17:3d:1a:ec:4a:89:e3:fc:10: c8:1e:14:ab:51:a2:0f:64:0b:b1:71:62:88:8c:7a: 31:53:f8:4b:73:59:64:a2:1e:4f:42:b9:61:88:ad: 62:24:2a:1f:a1:f1:58:35:c1:21:6b:59:c7:cd:45: 07:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B3:32:99:D0:76:B3:6E:D3:F2:28:20:23:85:CA:B9:35:5F:D5:4D X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:544::/48 Signature Algorithm: sha256WithRSAEncryption 02:73:ce:12:d6:6c:48:2e:ae:4f:43:98:03:1e:11:86:98:24: 34:ac:0e:db:0a:1e:73:b5:ad:c6:cd:3c:87:1f:5c:7b:72:32: 6e:bd:2d:2a:23:84:9d:dc:c3:d5:3f:15:a1:86:70:26:f8:df: 8a:7f:d4:73:4d:3d:ab:07:c5:ef:1b:b6:50:bc:b1:5d:ca:87: 96:17:fd:83:97:2a:91:c0:bf:fb:00:b1:0b:17:66:7f:0e:01: 5e:1d:74:81:be:cc:f4:21:fd:b9:bc:23:dc:5a:95:c4:31:f8: d7:41:e2:b1:56:bc:8f:66:88:27:4f:90:a7:b3:06:3f:ca:d9: 1a:e5:5f:91:ea:cf:76:2a:41:08:50:6b:af:6b:de:c2:d4:64: 27:9f:fa:fb:ed:cc:c7:7d:2e:ba:ca:65:10:6e:82:ed:1c:69: 23:8f:4c:4d:14:8b:79:73:29:7e:77:80:ba:e4:7d:0b:4a:0e: 31:fc:bb:b0:94:92:af:68:f2:df:6a:b8:3a:dc:b7:14:af:c9: 95:b4:36:2a:0e:85:e6:f3:69:a7:20:15:03:16:36:ef:32:8a: ec:e5:0b:d7:9e:80:73:0a:30:26:1f:31:12:bc:c1:91:78:ea: 4a:f7:4e:bf:8a:96:a8:8c:5d:a1:d6:c5:b9:3d:10:f9:aa:cb: ab:82:20:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcQKyNtuktxn2IAvCcHLDjLTCxqUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTI0MDEzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjExYjUxYmIyYzYxZTAxNTc5ZWRlZjM3NjA4OWE4Zjgw MmMxMmJkZjA5ZWMxNDQ0NDYyMzNmNTdiNDAyYjg5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaQL3djpftKKMbkUOSwZw039mIFPMJeQ6xZzPS4cHFYmVq FQU3DPdYeptS8sFgUh74Op1d9QM0MBm+wyMOP58300A44edhJyExX46U2u+09dJz uZmi8m43i/odOFeB7iTep3Z2inypXKPJ8wVSQJUwks0z9eFbV3rNBFLxAT6wej5S w/WVhbXzYeZHGGtHzqgclHsjWtkrZMf4JAzqEf/XLKJ+sj5pRvb/fNldBKH/sCu4 oOMta4nlV/Y+f2gTzrquXMxget6A1Rc9GuxKieP8EMgeFKtRog9kC7FxYoiMejFT +EtzWWSiHk9CuWGIrWIkKh+h8Vg1wSFrWcfNRQfFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfbMymdB2s27T8iggI4XKuTVf1U0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M5MWU1NTczLWE3NTctNGM2Yi05MDAwLTA0MDNlMGU0ZmEwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUQwDQYJKoZIhvcNAQELBQADggEBAAJzzhLWbEgurk9DmAMeEYaY JDSsDtsKHnO1rcbNPIcfXHtyMm69LSojhJ3cw9U/FaGGcCb434p/1HNNPasHxe8b tlC8sV3Kh5YX/YOXKpHAv/sAsQsXZn8OAV4ddIG+zPQh/bm8I9xalcQx+NdB4rFW vI9miCdPkKezBj/K2RrlX5Hqz3YqQQhQa69r3sLUZCef+vvtzMd9LrrKZRBugu0c aSOPTE0Ui3lzKX53gLrkfQtKDjH8u7CUkq9o8t9quDrctxSvyZW0NioOhebzaacg FQMWNu8yiuzlC9eegHMKMCYfMRK8wZF46kr3Tr+KlqiMXaHWxbk9EPmqy6uCIMQ= -----END CERTIFICATE-----Generated at Mon Nov 3 11:18:26 2025 by rpki-client