$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa File: 03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa (raw, json) Hash identifier: IDFx2uaXNkCXhfszOHrh7/CRo475wcOBEaK6STlax+c= Subject key identifier: 23:9E:CA:E8:06:0F:63:2F:3B:26:E7:E6:9A:F5:F6:8B:75:C3:4D:73 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1BAF99C06B601CEDC143EC65E467C7AED2EFD547 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa Signing time: Tue 04 Nov 2025 16:50:11 +0000 ROA not before: Tue 04 Nov 2025 16:50:11 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:af:99:c0:6b:60:1c:ed:c1:43:ec:65:e4:67:c7:ae:d2:ef:d5:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 4 16:50:11 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=ae146281f37e64368b5bb09ec6bd54905c84e8a2d6389100b3312cc17b1f8c00, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:80:89:30:86:0e:54:eb:e6:86:13:f5:9a:ac: 06:4f:3f:af:e1:2b:23:09:81:2e:3e:dc:be:b7:a5: 6f:8a:0a:21:24:64:78:0a:4e:30:06:d0:81:14:e5: fe:6b:cd:ef:ef:f2:ad:37:18:ae:68:2d:f9:7f:b0: 09:de:d6:12:b3:ef:77:5d:53:b8:f3:cf:27:31:ac: 63:6a:e6:c8:aa:8a:5d:47:f7:d5:e4:f6:51:07:10: 0a:39:03:e6:41:f6:1f:45:d0:6a:ed:0d:ad:7e:33: 2c:dd:8a:62:e7:5c:77:91:47:77:a4:64:31:98:50: 5c:a2:29:0b:a4:f5:a1:92:58:75:8c:bb:aa:bf:b1: 84:90:8a:25:83:07:6c:16:ce:42:02:a3:12:f0:5b: 66:04:c7:7a:ef:59:ef:6f:7c:3d:fa:20:96:46:c6: 78:dd:f3:2f:7b:3f:f3:b0:cd:4e:a3:9c:a4:f2:fb: d2:58:4d:68:f2:c8:59:2e:f3:cb:c1:56:97:e0:d5: da:8b:04:f0:70:ed:f8:77:39:f4:88:57:ee:61:44: 20:1a:8a:c2:3c:d1:f6:c4:b0:44:1d:4e:5c:2b:77: 3c:71:4b:4e:9c:dd:07:22:e0:40:a0:42:c0:02:15: 32:a1:eb:67:96:3f:56:37:ec:99:b1:a1:3a:0e:cb: 73:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9E:CA:E8:06:0F:63:2F:3B:26:E7:E6:9A:F5:F6:8B:75:C3:4D:73 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0d::/48 Signature Algorithm: sha256WithRSAEncryption 9d:b5:33:ac:8d:69:7b:0a:9f:2a:ee:76:25:71:d8:d6:31:cc: f5:ff:67:71:11:62:b0:2f:e8:54:d7:92:8a:2c:54:24:49:16: c9:76:7a:6c:1e:6e:df:e1:85:4a:7c:72:9d:3c:8a:ca:e5:c2: 48:01:ba:21:44:ce:dc:00:1f:2b:a5:6f:40:c0:de:34:14:4a: d7:d4:51:e1:9c:7f:b6:44:ca:95:7b:b1:3e:e1:84:32:4b:d1: 45:25:81:7d:fb:dc:2c:c0:08:48:25:1e:ec:45:bb:84:4f:d6: d1:67:de:a1:00:bb:35:85:96:33:81:46:57:05:39:7e:33:55: d5:81:b2:10:92:3d:fe:e7:81:25:8a:84:5e:8f:5c:2b:22:83: cc:18:dc:18:c3:8c:ab:64:1d:fa:e3:cd:de:0a:68:11:32:87: a3:22:35:24:eb:d0:62:3a:60:ee:da:2a:9c:af:44:6e:23:df: ba:27:23:c3:6d:88:63:5e:89:fd:08:27:0c:61:03:3b:0e:6a: 10:a6:ad:a6:af:51:d8:8f:7f:ea:36:63:31:85:d5:68:5e:e0: c7:00:32:0b:4a:f1:b4:5e:bf:07:72:72:42:b4:cd:8b:62:74: 9c:ca:c5:15:13:62:d8:68:e7:47:f2:fc:e5:84:11:ee:08:81: cf:c1:1b:89 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG6+ZwGtgHO3BQ+xl5GfHrtLv1UcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTA0MTY1MDExWhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTE0NjI4MWYzN2U2NDM2OGI1YmIwOWVjNmJkNTQ5MDVj ODRlOGEyZDYzODkxMDBiMzMxMmNjMTdiMWY4YzAwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvgIkwhg5U6+aGE/WarAZPP6/hKyMJgS4+3L63pW+KCiEk ZHgKTjAG0IEU5f5rze/v8q03GK5oLfl/sAne1hKz73ddU7jzzycxrGNq5siqil1H 99Xk9lEHEAo5A+ZB9h9F0GrtDa1+MyzdimLnXHeRR3ekZDGYUFyiKQuk9aGSWHWM u6q/sYSQiiWDB2wWzkICoxLwW2YEx3rvWe9vfD36IJZGxnjd8y97P/OwzU6jnKTy +9JYTWjyyFku88vBVpfg1dqLBPBw7fh3OfSIV+5hRCAaisI80fbEsEQdTlwrdzxx S06c3Qci4ECgQsACFTKh62eWP1Y37JmxoToOy3MPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUI57K6AYPYy87JufmmvX2i3XDTXMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAzZjVhOWQ2LWRkOTctNDdiNC04MDhkLTQ1MzZhZWE3YzAzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA0wDQYJKoZIhvcNAQELBQADggEBAJ21M6yNaXsKnyrudiVx2NYx zPX/Z3ERYrAv6FTXkoosVCRJFsl2emwebt/hhUp8cp08isrlwkgBuiFEztwAHyul b0DA3jQUStfUUeGcf7ZEypV7sT7hhDJL0UUlgX373CzACEglHuxFu4RP1tFn3qEA uzWFljOBRlcFOX4zVdWBshCSPf7ngSWKhF6PXCsig8wY3BjDjKtkHfrjzd4KaBEy h6MiNSTr0GI6YO7aKpyvRG4j37onI8NtiGNeif0IJwxhAzsOahCmraavUdiPf+o2 YzGF1Whe4McAMgtK8bRevwdyckK0zYtidJzKxRUTYtho50fy/OWEEe4Igc/BG4k= -----END CERTIFICATE-----Generated at Wed Nov 5 09:30:53 2025 by rpki-client