$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa File: d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa (raw, json) Hash identifier: EBanPziNTAfnv7JuCAA102SfAx/nso+sRyBNgzOoxAo= Subject key identifier: 59:99:30:00:C5:F3:D2:00:77:FD:63:87:78:30:18:D8:70:18:A1:D1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2B29B0938C4B56A6592287E2058EC3894F96D8E7 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa Signing time: Fri 24 Oct 2025 00:20:07 +0000 ROA not before: Fri 24 Oct 2025 00:20:07 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:3b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:29:b0:93:8c:4b:56:a6:59:22:87:e2:05:8e:c3:89:4f:96:d8:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 24 00:20:07 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=9ab92a34f4f75b41aa8bf8ed024e06cb55211cdb2132ceb8ebe60cc55f024e6c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c5:9c:85:bb:29:0c:40:5a:9f:0d:fa:5a:79: c0:65:ff:7e:37:16:5c:79:54:ff:46:df:2d:26:62: b4:67:71:62:ba:04:ef:f4:a4:d0:4b:47:6b:f6:ad: a1:77:0b:1f:f0:4c:dc:1c:00:a4:75:01:88:7e:14: e6:50:51:f8:55:52:e3:c5:22:03:e2:82:e2:ff:13: 38:cc:32:da:f6:57:52:b9:85:a2:77:31:60:3b:aa: 17:58:9c:69:26:3d:a0:31:14:29:e5:56:8c:75:cf: e5:a5:eb:5c:e6:9b:15:54:78:27:10:f1:41:88:e4: 97:bc:dd:47:2c:25:44:01:da:88:c4:cc:9e:4f:f1: ff:cc:fc:54:16:dd:e4:81:07:db:1f:33:b4:d7:9d: 19:6d:f5:92:67:00:57:a4:67:2a:09:fd:44:b1:4c: 41:a3:79:c7:7a:8b:94:bf:e2:98:f5:d0:03:9d:9a: 3b:a7:40:7f:61:48:a1:2e:09:b3:b9:6f:58:93:1d: c9:d7:04:86:a2:88:f1:61:e4:0f:e7:94:6e:e7:be: b5:be:71:c1:cd:b2:0e:31:d7:f8:52:3b:c5:ab:03: 24:7f:38:68:af:5c:7c:1b:5e:00:b6:0e:33:cf:87: f1:39:82:bb:bb:ee:2c:fd:eb:75:26:ed:f8:ea:4f: ea:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:99:30:00:C5:F3:D2:00:77:FD:63:87:78:30:18:D8:70:18:A1:D1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b4::/48 Signature Algorithm: sha256WithRSAEncryption 9d:33:3d:c6:01:46:26:1f:6e:29:44:f6:6a:eb:31:9c:cc:7c: 9b:89:9a:fe:48:d2:b1:02:45:52:1e:97:16:48:dd:d8:7f:6a: 13:d9:d5:f0:58:e4:72:a9:e0:61:f3:ed:02:e3:13:fb:ab:e1: 3c:52:0b:7e:a3:ec:d9:0b:1c:40:dc:61:b0:1a:38:c9:ab:e5: 85:8d:d8:11:48:fe:50:57:48:56:d2:7b:5c:39:1c:5a:90:79: 99:97:aa:f6:92:a2:ad:e3:58:3f:33:76:64:fa:b4:a0:bc:7f: d2:4d:9c:86:51:41:ff:77:c0:56:13:57:52:3e:13:41:d8:95: c4:f1:cc:78:14:75:bd:6e:3a:c4:27:a4:5d:9b:7d:e2:5f:58: 29:e0:d7:12:c0:15:f3:bc:ef:7b:5b:49:86:ce:40:9d:24:89: b7:b5:8c:57:3e:66:61:97:1f:f9:b3:55:cf:88:4a:fd:3d:d9: fe:11:34:75:d7:35:a6:a9:b2:08:51:bf:90:90:42:8a:a6:96: 20:73:20:9e:54:a7:3c:c9:71:78:42:a3:d0:d0:40:aa:11:7c: ca:6c:7d:36:cf:e2:6c:7a:37:46:7e:aa:ce:9a:f0:a1:76:33: 33:16:86:23:65:b3:45:4e:a5:4b:63:8f:86:15:72:a7:c5:8b: 9c:4a:28:f3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKymwk4xLVqZZIofiBY7DiU+W2OcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDI0MDAyMDA3WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWI5MmEzNGY0Zjc1YjQxYWE4YmY4ZWQwMjRlMDZjYjU1 MjExY2RiMjEzMmNlYjhlYmU2MGNjNTVmMDI0ZTZjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDexZyFuykMQFqfDfpaecBl/343Flx5VP9G3y0mYrRncWK6 BO/0pNBLR2v2raF3Cx/wTNwcAKR1AYh+FOZQUfhVUuPFIgPiguL/EzjMMtr2V1K5 haJ3MWA7qhdYnGkmPaAxFCnlVox1z+Wl61zmmxVUeCcQ8UGI5Je83UcsJUQB2ojE zJ5P8f/M/FQW3eSBB9sfM7TXnRlt9ZJnAFekZyoJ/USxTEGjecd6i5S/4pj10AOd mjunQH9hSKEuCbO5b1iTHcnXBIaiiPFh5A/nlG7nvrW+ccHNsg4x1/hSO8WrAyR/ OGivXHwbXgC2DjPPh/E5gru77iz963Um7fjqT+pRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWZkwAMXz0gB3/WOHeDAY2HAYodEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q5ZTBmMGIxLWQ2ZDEtNDIyZC1hNjY0LTA0ODZjNzg1ZGI0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA7QwDQYJKoZIhvcNAQELBQADggEBAJ0zPcYBRiYfbilE9mrrMZzM fJuJmv5I0rECRVIelxZI3dh/ahPZ1fBY5HKp4GHz7QLjE/ur4TxSC36j7NkLHEDc YbAaOMmr5YWN2BFI/lBXSFbSe1w5HFqQeZmXqvaSoq3jWD8zdmT6tKC8f9JNnIZR Qf93wFYTV1I+E0HYlcTxzHgUdb1uOsQnpF2bfeJfWCng1xLAFfO873tbSYbOQJ0k ibe1jFc+ZmGXH/mzVc+ISv092f4RNHXXNaapsghRv5CQQoqmliBzIJ5UpzzJcXhC o9DQQKoRfMpsfTbP4mx6N0Z+qs6a8KF2MzMWhiNls0VOpUtjj4YVcqfFi5xKKPM= -----END CERTIFICATE-----Generated at Mon Nov 3 11:18:38 2025 by rpki-client