$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa File: da1fbb90-a595-4798-8d13-e5183edbf500.roa (raw, json) Hash identifier: MqeOaedncpwJVBHEFULqxS46rbQtlMWlwRlg473S7pA= Subject key identifier: 71:3C:A7:B7:BC:CD:8C:AE:40:61:41:A1:F1:01:B8:C3:1B:FB:E0:DB Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 073B2A6344BC0C1305ACCEAFAB08F9AB43A5A92C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa Signing time: Fri 31 Oct 2025 01:30:08 +0000 ROA not before: Fri 31 Oct 2025 01:30:08 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3b:2a:63:44:bc:0c:13:05:ac:ce:af:ab:08:f9:ab:43:a5:a9:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 31 01:30:08 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=460aadffc8cb10ddd83818cb06b207d77648d9c2dd9150d00f8913c3ca5cd69c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:72:a5:d6:23:32:41:2f:86:6a:45:9e:49:5a: 3a:93:82:7b:b2:2b:7d:2d:34:b8:80:34:7e:32:ed: 34:6b:18:66:31:b6:ed:f4:db:84:59:15:ab:14:3b: 1c:83:f2:e2:b8:5f:d9:37:04:7b:b4:bf:58:df:b2: b2:cc:4f:5e:3a:f3:28:f0:bd:12:ec:9e:83:30:40: a9:f4:7a:27:45:50:c4:27:b6:34:63:68:43:4b:ea: 60:d7:a6:fe:a4:d3:db:b4:ce:74:df:e1:ef:e4:81: ad:8f:d3:ec:68:c9:f8:2d:4a:36:14:45:da:5f:8c: 71:8b:76:92:14:e9:e8:4c:14:1d:20:58:80:9b:b0: 07:92:94:57:5b:13:04:38:f7:12:2b:44:d9:ea:29: d9:72:2b:dc:b4:d8:d6:51:cf:6c:6c:a4:a7:2b:36: 1a:7d:22:a0:be:f5:64:a7:12:7d:ba:c9:27:a7:79: 90:a9:c2:6e:68:62:8f:4f:59:be:6b:21:9e:a9:3a: b0:ee:b3:b2:e5:52:6f:25:53:06:83:b6:ca:b2:53: 2d:bd:51:b5:fe:ab:16:09:9e:4b:70:9e:d7:4f:fa: c9:15:a3:a2:72:7e:0d:bc:e1:7b:85:55:1d:0b:db: 96:a9:fe:89:a5:4f:e3:b4:12:61:aa:d8:1f:82:7b: a4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3C:A7:B7:BC:CD:8C:AE:40:61:41:A1:F1:01:B8:C3:1B:FB:E0:DB X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 7e:d8:22:7d:64:b7:8e:09:0a:08:91:24:1b:f8:97:54:e1:dd: 43:33:bf:e4:ad:2d:a6:f3:7c:0a:25:62:ab:99:eb:d6:1a:5b: da:bc:76:d0:a7:04:f2:f6:05:d7:6c:47:33:7c:d6:d7:28:fd: 86:5b:01:8d:7e:54:66:d3:1c:65:ba:8e:ca:13:51:b2:20:9c: 57:fa:59:9f:15:be:c0:9f:4e:58:10:67:71:d1:86:91:3d:15: 40:5c:8b:0f:21:c1:f5:c9:ee:e6:a5:6c:24:ff:91:a8:3d:b5: 34:77:d5:3f:06:1d:29:7a:76:fa:77:ed:8b:17:1a:6e:2b:ee: 26:75:cb:14:e1:e6:13:1a:a6:ca:d7:a8:61:16:39:8a:17:27: 43:c0:1a:d2:3f:6f:f4:27:27:95:65:bf:67:dc:93:1f:ef:57: 01:74:8b:c9:00:28:35:76:1a:e1:62:79:86:7e:cb:7e:a3:67: 22:ba:ef:c0:df:12:3e:6a:5e:f7:27:91:73:b1:6d:d2:26:64: 14:ff:30:a0:a9:57:0f:65:ca:2b:12:2a:19:58:d6:88:9b:b6: 4f:24:83:5f:d8:d8:ef:bd:67:33:2a:0b:54:53:94:40:7b:65: 90:71:91:59:ff:33:bf:7d:d2:a0:24:c4:d0:06:57:60:ba:d6: 0d:ba:ad:f7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBzsqY0S8DBMFrM6vqwj5q0OlqSwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDMxMDEzMDA4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjBhYWRmZmM4Y2IxMGRkZDgzODE4Y2IwNmIyMDdkNzc2 NDhkOWMyZGQ5MTUwZDAwZjg5MTNjM2NhNWNkNjljMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJcqXWIzJBL4ZqRZ5JWjqTgnuyK30tNLiANH4y7TRrGGYx tu3024RZFasUOxyD8uK4X9k3BHu0v1jfsrLMT1468yjwvRLsnoMwQKn0eidFUMQn tjRjaENL6mDXpv6k09u0znTf4e/kga2P0+xoyfgtSjYURdpfjHGLdpIU6ehMFB0g WICbsAeSlFdbEwQ49xIrRNnqKdlyK9y02NZRz2xspKcrNhp9IqC+9WSnEn26ySen eZCpwm5oYo9PWb5rIZ6pOrDus7LlUm8lUwaDtsqyUy29UbX+qxYJnktwntdP+skV o6Jyfg284XuFVR0L25ap/omlT+O0EmGq2B+Ce6Q5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcTynt7zNjK5AYUGh8QG4wxv74NswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RhMWZiYjkwLWE1OTUtNDc5OC04ZDEzLWU1MTgzZWRiZjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBAH7YIn1kt44JCgiRJBv4l1Th 3UMzv+StLabzfAolYquZ69YaW9q8dtCnBPL2BddsRzN81tco/YZbAY1+VGbTHGW6 jsoTUbIgnFf6WZ8VvsCfTlgQZ3HRhpE9FUBciw8hwfXJ7ualbCT/kag9tTR31T8G HSl6dvp37YsXGm4r7iZ1yxTh5hMapsrXqGEWOYoXJ0PAGtI/b/QnJ5Vlv2fckx/v VwF0i8kAKDV2GuFieYZ+y36jZyK678DfEj5qXvcnkXOxbdImZBT/MKCpVw9lyisS KhlY1oibtk8kg1/Y2O+9ZzMqC1RTlEB7ZZBxkVn/M7990qAkxNAGV2C61g26rfc= -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:11 2025 by rpki-client