$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa File: 1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa (raw, json) Hash identifier: cgnywdV5CkmnFeiQuQg7c0gCAm2ngg/jSArws44RxmQ= Subject key identifier: DD:50:40:B8:60:0E:A0:89:25:52:CD:9C:20:3C:11:71:F5:3B:AB:DC Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 362B9D47BF40CA81A9B5870AA3BF80A51D8FB2A0 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa Signing time: Sun 02 Nov 2025 00:10:05 +0000 ROA not before: Sun 02 Nov 2025 00:10:05 +0000 ROA not after: Sun 07 Dec 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2620:108:d000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:2b:9d:47:bf:40:ca:81:a9:b5:87:0a:a3:bf:80:a5:1d:8f:b2:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Nov 2 00:10:05 2025 GMT Not After : Dec 7 23:59:59 2025 GMT Subject: serialNumber=b7dba2866bdcabdf1ef3154c87d5d11b929b026ed4f61eed678380313ce54569, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:67:f9:b2:66:0e:11:81:26:68:43:4a:79:31: a1:3e:53:c9:b9:ff:e6:88:6d:5c:31:ee:44:f7:65: 0c:ce:2a:67:ba:b5:65:5e:43:5b:58:34:16:03:e6: b8:fc:cd:fc:82:cc:43:ed:bd:af:3d:51:45:08:4c: 90:08:d0:84:a2:6f:56:26:f9:70:9c:d0:3b:af:c7: dd:0c:09:aa:74:cd:80:49:f4:e6:81:c1:3f:eb:e8: d1:7c:99:df:8c:ce:31:d8:61:e1:07:49:9e:a8:3a: 61:d4:21:9f:68:a5:de:4d:4f:67:b8:73:17:c4:4b: 52:b3:d8:79:52:57:5b:68:2b:00:eb:bf:3d:60:2b: 76:25:f6:f1:b9:ea:9b:21:88:ca:79:dc:f5:4e:0a: 74:66:32:a1:8b:ce:f4:fe:9c:73:32:2b:16:31:03: ed:f8:14:cf:3f:05:d2:ab:28:1a:c3:e5:44:b0:4b: e8:a3:66:4b:a4:a3:51:4a:48:ae:e6:fa:1e:20:68: ba:30:89:b5:f7:b1:d3:8d:db:21:49:d6:35:e9:af: d0:a0:32:44:63:37:24:cd:79:79:22:e8:18:a0:a6: 8d:e5:e6:31:0d:44:08:50:03:1e:b4:ad:fe:47:60: 8d:12:76:11:b0:5e:2a:c5:4d:96:fa:b6:c0:63:8e: bb:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:50:40:B8:60:0E:A0:89:25:52:CD:9C:20:3C:11:71:F5:3B:AB:DC X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:d000::/44 Signature Algorithm: sha256WithRSAEncryption 1d:55:70:b8:a6:96:c0:1b:a8:4d:c9:95:d1:e3:b1:0a:dc:dd: 0f:57:bd:07:4e:30:6a:ba:bb:cb:6d:05:18:2e:41:51:1d:85: a0:c9:17:68:a8:2d:79:7a:38:6b:70:a8:a7:7f:f9:d8:5b:a9: b1:f3:9f:01:e8:87:ea:3b:16:8b:81:b0:2b:87:3d:52:64:e1: a0:d7:cb:f2:5f:48:b9:80:e6:3b:dc:bb:eb:b1:2a:b4:03:28: 45:b9:62:b4:ba:0f:d5:93:6e:d8:ca:7f:4b:5b:c4:b9:41:bb: f9:dc:81:2b:ea:f2:47:4b:74:48:c2:c7:ad:83:d7:99:e5:db: 37:d9:81:b5:f5:33:08:ee:22:46:b8:fa:fa:a5:d7:83:48:a1: 0f:31:b9:04:3a:b9:b1:7a:0a:48:b1:9e:16:83:84:02:60:22: 5a:df:eb:f6:67:82:67:8e:d8:6b:c4:dd:76:1a:24:1d:3e:04: 7e:ff:10:dc:26:7f:27:10:cd:3e:32:98:17:56:9e:58:b8:f6: c9:7e:b0:e1:8f:30:84:18:cc:ba:09:5e:70:5b:28:35:6c:6a: 59:b8:de:02:80:32:2e:ab:e0:28:83:de:8d:e3:15:0d:28:fc: 04:c2:21:6f:45:e0:c1:63:e7:2c:61:92:ab:52:90:24:87:c3: fe:15:0e:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNiudR79AyoGptYcKo7+ApR2PsqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUxMTAyMDAxMDA1WhcNMjUxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiN2RiYTI4NjZiZGNhYmRmMWVmMzE1NGM4N2Q1ZDExYjky OWIwMjZlZDRmNjFlZWQ2NzgzODAzMTNjZTU0NTY5MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoZ/myZg4RgSZoQ0p5MaE+U8m5/+aIbVwx7kT3ZQzOKme6 tWVeQ1tYNBYD5rj8zfyCzEPtva89UUUITJAI0ISib1Ym+XCc0Duvx90MCap0zYBJ 9OaBwT/r6NF8md+MzjHYYeEHSZ6oOmHUIZ9opd5NT2e4cxfES1Kz2HlSV1toKwDr vz1gK3Yl9vG56pshiMp53PVOCnRmMqGLzvT+nHMyKxYxA+34FM8/BdKrKBrD5USw S+ijZkuko1FKSK7m+h4gaLowibX3sdON2yFJ1jXpr9CgMkRjNyTNeXki6Bigpo3l 5jENRAhQAx60rf5HYI0SdhGwXirFTZb6tsBjjrtPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3VBAuGAOoIklUs2cIDwRcfU7q9wwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzEzMDdhZDhlLWRmMGUtNGFiZS04ZjM3LTQ5NGRkYzM1NTRlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEI0AAwDQYJKoZIhvcNAQELBQADggEBAB1VcLimlsAbqE3JldHjsQrc 3Q9XvQdOMGq6u8ttBRguQVEdhaDJF2ioLXl6OGtwqKd/+dhbqbHznwHoh+o7FouB sCuHPVJk4aDXy/JfSLmA5jvcu+uxKrQDKEW5YrS6D9WTbtjKf0tbxLlBu/ncgSvq 8kdLdEjCx62D15nl2zfZgbX1MwjuIka4+vql14NIoQ8xuQQ6ubF6CkixnhaDhAJg Ilrf6/ZngmeO2GvE3XYaJB0+BH7/ENwmfycQzT4ymBdWnli49sl+sOGPMIQYzLoJ XnBbKDVsalm43gKAMi6r4CiD3o3jFQ0o/ATCIW9F4MFj5yxhkqtSkCSHw/4VDrc= -----END CERTIFICATE-----Generated at Wed Nov 5 03:05:13 2025 by rpki-client