$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/00a20eb1-4ba3-4e14-b587-1b2f0ebdc6ec.roa File: 00a20eb1-4ba3-4e14-b587-1b2f0ebdc6ec.roa (raw, json) Hash identifier: Wvcnw73gd6eS65HsJDylbajBwUOohQekl57fBtMZD3g= Subject key identifier: 89:A0:0D:31:E8:5C:63:F7:CE:49:31:F2:28:FA:AD:3D:88:24:E9:AF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 11964A4159B00FC82C88D4B92339AA8531748CAE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/00a20eb1-4ba3-4e14-b587-1b2f0ebdc6ec.roa Signing time: Tue 04 Nov 2025 16:50:46 +0000 ROA not before: Tue 04 Nov 2025 16:50:46 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:c14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:96:4a:41:59:b0:0f:c8:2c:88:d4:b9:23:39:aa:85:31:74:8c:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 4 16:50:46 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=19e6264705703a183a9097bee4439aae74955047391173f7415610b3908fa97a, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:18:be:ef:dd:a6:b1:55:9f:19:3c:85:38:c8: 74:b7:46:16:19:17:fc:ee:7b:5f:cf:4f:7f:e9:c0: 40:75:95:2e:e9:02:51:44:1e:d1:6f:3f:1f:57:90: f0:64:a7:f4:68:fa:10:c0:d2:e8:3a:a7:cc:c3:c1: 52:f2:12:0b:ad:f2:c4:d1:be:56:46:e2:9b:c5:c8: 18:57:e0:e1:f0:07:9b:9b:e1:5a:7c:0d:ac:4a:33: 57:33:c7:b3:80:a9:09:12:12:e5:78:bf:52:97:f7: 80:b1:97:40:5f:9b:e0:f6:1a:22:bb:9a:cf:61:29: a1:55:a8:95:00:e7:62:64:c0:fc:51:51:4d:31:46: ec:69:ec:4e:b6:9d:7c:39:58:39:8e:9f:70:92:31: 41:10:67:45:64:e5:95:35:3b:fe:3f:49:43:ba:6c: 88:a6:4f:49:a5:9c:26:08:28:55:6d:a3:8d:df:db: bf:70:87:2e:c1:1e:eb:76:54:a1:4e:18:5b:7c:79: 45:db:bd:60:73:f1:c4:01:56:28:86:d5:ae:7f:e9: 9d:4f:78:f9:bb:a9:84:41:bf:dd:fc:22:2b:56:ac: 0d:db:07:80:fe:24:43:6a:e9:55:e2:d2:f2:67:de: 80:bc:18:de:76:0a:59:36:a9:f9:98:61:06:88:55: d2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A0:0D:31:E8:5C:63:F7:CE:49:31:F2:28:FA:AD:3D:88:24:E9:AF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/00a20eb1-4ba3-4e14-b587-1b2f0ebdc6ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c14::/48 Signature Algorithm: sha256WithRSAEncryption 4d:a7:9e:de:8b:3e:0b:b9:e2:bf:5e:dd:4d:30:0b:e1:29:32: de:da:f7:c9:8c:4f:1f:20:77:94:c0:a6:98:eb:5e:b1:53:ea: 17:40:12:47:6a:c1:39:2a:fe:e1:d8:3b:9f:16:ca:d7:70:d9: 04:b5:a6:68:a7:67:a0:5a:ad:58:eb:d3:c5:d4:fa:a9:47:fb: 90:26:00:6a:ca:b8:a7:43:97:f2:b5:00:0f:fa:1f:ef:23:54: b4:fd:a5:40:bf:3f:0d:60:4b:c9:d5:26:a8:7c:ef:d6:1a:bb: b0:e7:b0:f7:1f:40:29:b0:6e:60:a8:c2:ec:f4:84:8c:5c:f0: ac:e1:9d:16:0e:78:59:ab:ca:11:90:45:70:56:48:a1:c5:d1: c2:6e:a7:c7:b2:13:cd:bc:9b:51:1c:1a:e0:10:cd:e0:1b:43: 4f:a4:10:9e:c7:f8:6c:5f:bc:a8:a8:92:bf:fd:ba:67:72:0b: 60:18:5f:ea:a0:2d:67:ff:c6:b2:f0:d8:95:82:51:71:8e:1e: 7d:83:4d:82:cd:2c:55:70:9f:b5:b1:07:79:c6:dc:11:43:d1: ac:8e:f6:f1:bd:2b:3b:0a:d4:f8:a8:27:26:9c:03:a7:c8:bd: ca:fe:2d:b6:61:53:28:32:37:ba:9f:9a:36:7d:5e:02:5e:e8: 7a:ae:88:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEZZKQVmwD8gsiNS5IzmqhTF0jK4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTA0MTY1MDQ2WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWU2MjY0NzA1NzAzYTE4M2E5MDk3YmVlNDQzOWFhZTc0 OTU1MDQ3MzkxMTczZjc0MTU2MTBiMzkwOGZhOTdhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtGL7v3aaxVZ8ZPIU4yHS3RhYZF/zue1/PT3/pwEB1lS7p AlFEHtFvPx9XkPBkp/Ro+hDA0ug6p8zDwVLyEgut8sTRvlZG4pvFyBhX4OHwB5ub 4Vp8DaxKM1czx7OAqQkSEuV4v1KX94Cxl0Bfm+D2GiK7ms9hKaFVqJUA52JkwPxR UU0xRuxp7E62nXw5WDmOn3CSMUEQZ0Vk5ZU1O/4/SUO6bIimT0mlnCYIKFVto43f 279why7BHut2VKFOGFt8eUXbvWBz8cQBViiG1a5/6Z1PePm7qYRBv938IitWrA3b B4D+JENq6VXi0vJn3oC8GN52Clk2qfmYYQaIVdLdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiaANMehcY/fOSTHyKPqtPYgk6a8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAwYTIwZWIxLTRiYTMtNGUxNC1iNTg3LTFiMmYwZWJkYzZlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBQwDQYJKoZIhvcNAQELBQADggEBAE2nnt6LPgu54r9e3U0wC+Ep Mt7a98mMTx8gd5TAppjrXrFT6hdAEkdqwTkq/uHYO58Wytdw2QS1pminZ6BarVjr 08XU+qlH+5AmAGrKuKdDl/K1AA/6H+8jVLT9pUC/Pw1gS8nVJqh879Yau7DnsPcf QCmwbmCowuz0hIxc8KzhnRYOeFmryhGQRXBWSKHF0cJup8eyE828m1EcGuAQzeAb Q0+kEJ7H+GxfvKiokr/9umdyC2AYX+qgLWf/xrLw2JWCUXGOHn2DTYLNLFVwn7Wx B3nG3BFD0ayO9vG9KzsK1PioJyacA6fIvcr+LbZhUygyN7qfmjZ9XgJe6HquiAU= -----END CERTIFICATE-----Generated at Wed Nov 5 23:41:59 2025 by rpki-client