$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa File: e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa (raw, json) Hash identifier: rvd1RatUq2ASYzZ8j6VnS0V3Ow4UeOPDZ1sCsCQIQ08= Subject key identifier: 9F:AB:BD:0B:3D:52:86:0F:26:71:1E:59:67:DD:AB:06:E3:72:BC:67 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1FD5BB3EB4AAB0FDCA1DE1B88ED1C21B2CE5B853 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa Signing time: Fri 10 Oct 2025 17:04:47 +0000 ROA not before: Fri 10 Oct 2025 17:04:47 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d5:bb:3e:b4:aa:b0:fd:ca:1d:e1:b8:8e:d1:c2:1b:2c:e5:b8:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 10 17:04:47 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=3df057219f0cb88b314916e3662d84089cabd2f8d4d0d0f7fc9f2bd077342130, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:39:6f:fb:b6:29:4e:6f:c1:1c:51:4e:02:c1: a2:7a:3e:55:a0:f9:57:af:50:59:15:4a:98:9e:f5: b7:5b:2b:d7:c7:37:19:36:a8:ed:47:49:ca:19:98: 20:6e:7d:3f:e9:a5:fc:5f:91:d8:65:33:e4:2f:4c: bb:29:72:e5:ae:d0:20:ee:2c:05:7f:2e:5f:46:7c: a6:63:f5:65:71:54:a4:43:43:d8:c9:ec:af:30:90: ec:b7:6f:09:dd:44:4c:c0:36:c5:e3:2b:ed:8a:9f: 4d:3d:31:7f:ce:33:bd:41:16:87:1f:e3:e3:3a:b2: 3d:e0:d1:22:e5:ec:70:c0:aa:8b:32:58:cb:6b:ab: b8:82:96:2f:08:c0:b8:68:9d:94:d1:65:6b:98:e6: 7e:b6:c8:b7:03:07:88:15:07:97:02:2d:2f:38:fb: ac:10:00:c5:c4:2c:c0:0b:c3:91:c8:d1:a3:86:29: 66:96:59:28:8f:e8:e7:06:96:c8:e6:96:4d:61:e7: b2:3e:44:f9:32:cc:15:f6:f8:d3:6d:b8:5a:a1:24: 59:9a:5d:24:18:51:80:f9:3a:db:e6:8b:67:ee:1b: 70:4b:68:37:d6:95:1c:d4:9f:d0:65:fe:76:eb:ac: 52:7b:51:1e:a2:3b:9e:71:a2:7f:11:5f:c5:ca:ab: 46:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:AB:BD:0B:3D:52:86:0F:26:71:1E:59:67:DD:AB:06:E3:72:BC:67 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 32:cd:76:e4:3e:60:c4:2a:cd:00:db:3b:d5:38:76:d5:a6:a3: 83:4a:e8:1f:de:bd:5c:d9:56:07:bc:aa:c0:8d:2f:97:b4:8e: e3:bf:d1:a6:c6:e2:4b:f6:59:84:6e:a4:32:8d:5a:29:e2:b5: 16:60:ee:b6:1a:fc:78:d2:22:14:3e:db:57:30:40:9f:ee:f2: 01:37:97:00:27:e8:54:a7:d6:61:52:08:7a:65:49:32:48:5c: bd:22:4f:a7:75:84:27:04:c1:8e:2e:62:e6:4a:2e:49:26:3d: a7:cc:25:5e:c3:54:62:34:3b:d1:f2:b1:06:b9:0c:ab:d0:67: 34:a5:f6:17:e3:20:6b:f6:f4:63:1d:26:6c:5c:49:1f:84:cf: cc:19:89:db:6f:e5:a9:be:f0:f8:5e:91:0b:88:98:42:d8:c8: 84:9a:70:32:41:f6:3b:27:5c:b2:64:b8:6b:71:d3:06:4d:08: bc:24:83:51:66:db:2e:0e:32:c4:db:b5:65:24:fe:f3:85:3e: 56:04:3f:d7:29:36:5a:63:3c:27:ac:cd:61:18:83:37:cc:0f: cf:07:78:1b:64:83:30:a3:ae:18:23:aa:6a:75:48:1f:29:a5: 30:c0:5c:78:b1:44:24:90:c8:c6:f5:bc:52:83:a2:7c:f7:e6: 9a:15:88:88 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH9W7PrSqsP3KHeG4jtHCGyzluFMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDEwMTcwNDQ3WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZGYwNTcyMTlmMGNiODhiMzE0OTE2ZTM2NjJkODQwODlj YWJkMmY4ZDRkMGQwZjdmYzlmMmJkMDc3MzQyMTMwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXOW/7tilOb8EcUU4CwaJ6PlWg+VevUFkVSpie9bdbK9fH Nxk2qO1HScoZmCBufT/ppfxfkdhlM+QvTLspcuWu0CDuLAV/Ll9GfKZj9WVxVKRD Q9jJ7K8wkOy3bwndREzANsXjK+2Kn009MX/OM71BFocf4+M6sj3g0SLl7HDAqosy WMtrq7iCli8IwLhonZTRZWuY5n62yLcDB4gVB5cCLS84+6wQAMXELMALw5HI0aOG KWaWWSiP6OcGlsjmlk1h57I+RPkyzBX2+NNtuFqhJFmaXSQYUYD5Otvmi2fuG3BL aDfWlRzUn9Bl/nbrrFJ7UR6iO55xon8RX8XKq0aVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUn6u9Cz1Shg8mcR5ZZ92rBuNyvGcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U0MWJlM2NlLWVkMGUtNGM3ZS1hOWZkLTQxMTQ5MDFmYTQwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCtUjANBgkqhkiG9w0BAQsFAAOCAQEAMs125D5gxCrNANs71Th21aajg0ro H969XNlWB7yqwI0vl7SO47/RpsbiS/ZZhG6kMo1aKeK1FmDuthr8eNIiFD7bVzBA n+7yATeXACfoVKfWYVIIemVJMkhcvSJPp3WEJwTBji5i5kouSSY9p8wlXsNUYjQ7 0fKxBrkMq9BnNKX2F+Mga/b0Yx0mbFxJH4TPzBmJ22/lqb7w+F6RC4iYQtjIhJpw MkH2OydcsmS4a3HTBk0IvCSDUWbbLg4yxNu1ZST+84U+VgQ/1yk2WmM8J6zNYRiD N8wPzwd4G2SDMKOuGCOqanVIHymlMMBceLFEJJDIxvW8UoOifPfmmhWIiA== -----END CERTIFICATE-----Generated at Mon Nov 3 11:18:41 2025 by rpki-client