$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/088d5754-cda4-4d89-86f5-f70a4d75e7fc.roa File: 088d5754-cda4-4d89-86f5-f70a4d75e7fc.roa (raw, json) Hash identifier: R8KHbaEGakT3s6mEe/tRn7NX+tfiBjCUF5rD/5u7H/E= Subject key identifier: B2:93:B1:E1:2A:B2:88:E6:F8:4D:52:8D:80:33:85:4C:69:2D:9F:63 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 17ABFDF5E27A21C5BED7D77D3DE7FD6DAA734B7E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/088d5754-cda4-4d89-86f5-f70a4d75e7fc.roa Signing time: Tue 04 Nov 2025 16:50:14 +0000 ROA not before: Tue 04 Nov 2025 16:50:14 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:64c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:ab:fd:f5:e2:7a:21:c5:be:d7:d7:7d:3d:e7:fd:6d:aa:73:4b:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 4 16:50:14 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=5480ad939fda27b625471ef6524522c2833c4b28804c86e6c22b6a6796e9765e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c3:cf:e3:07:5f:24:41:25:6d:bd:31:42:c3: 58:64:ad:dc:1c:ff:88:36:de:97:e9:0e:76:1f:f4: e6:98:c1:0b:d7:a3:95:4f:c8:25:24:9b:a2:7d:de: 6e:e6:df:07:41:aa:30:ff:89:88:69:56:0b:7c:6d: 8f:97:c1:00:3e:ef:8d:8d:7c:23:d5:31:02:b0:d4: 43:8e:4f:67:66:f3:da:ac:30:56:57:6f:73:8b:a4: 0e:dd:ea:a2:e1:90:3c:1d:c4:f9:60:8f:ac:8b:a1: 7d:24:ac:9e:4a:3a:6f:cf:78:4a:26:45:3e:c8:9b: e5:6c:02:8b:ab:b9:57:a5:4d:7b:83:07:df:70:c4: 2b:a5:bd:f5:da:d4:e0:15:d4:71:69:22:a2:46:aa: 3a:d2:1e:d3:9c:98:84:af:95:aa:c4:9b:a0:0d:69: b8:56:8f:b8:50:c1:67:7b:21:34:96:e3:e1:4e:52: 4e:57:e0:12:2a:52:b5:55:b8:29:69:5a:35:11:6c: 8d:0a:1d:c3:99:1f:84:98:21:e9:a7:ee:25:80:7c: dc:32:cc:a2:58:d8:12:46:46:da:58:17:84:e5:e5: ea:39:19:ac:48:01:c8:42:03:51:58:a5:8c:8b:a5: 0a:d1:72:3c:41:12:ae:28:f4:a2:6f:67:fa:2f:ce: 18:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:93:B1:E1:2A:B2:88:E6:F8:4D:52:8D:80:33:85:4C:69:2D:9F:63 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/088d5754-cda4-4d89-86f5-f70a4d75e7fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64c::/48 Signature Algorithm: sha256WithRSAEncryption 03:aa:8d:82:92:37:64:01:36:90:ad:35:84:ef:e9:23:fb:de: 75:77:fa:29:74:f4:d1:35:56:22:26:52:c0:57:99:04:0f:16: 79:51:8f:d6:66:02:dd:cd:15:8c:fa:75:28:f3:aa:99:82:f7: 75:15:97:88:4c:2e:b9:30:b2:0c:49:51:97:7b:23:62:43:4c: 2c:99:a7:11:5c:cc:e9:db:4a:fe:57:0f:27:c2:b7:55:e0:8c: 42:d8:eb:ad:a7:84:4d:7b:96:40:84:4a:fb:b0:a7:19:b3:94: b1:22:2b:ee:d3:3d:98:fe:3e:a8:7b:bd:30:94:c9:87:9b:20: 5c:34:8d:a9:bd:1c:fe:2e:ca:b9:f5:aa:9c:a9:0c:c5:f5:e3: 35:fa:54:8b:c7:19:bd:b1:78:11:f1:7d:67:09:f6:f6:4b:8a: d9:5b:24:ab:3c:87:58:f8:14:43:84:e6:22:20:0f:3d:1e:e1: 7f:fe:47:01:aa:cf:04:db:41:6e:a9:64:39:db:2c:5d:a6:dd: f2:37:ac:2f:e4:ed:cf:52:59:dd:b4:c9:7c:5b:ed:71:82:4e: 21:44:13:d8:cb:2f:a6:93:fd:a2:70:9e:a1:5d:94:a9:6d:a7: c2:6a:2c:c6:58:bd:5d:33:77:e2:73:ab:45:cd:03:8f:b2:f3: d0:16:3d:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF6v99eJ6IcW+19d9Pef9bapzS34wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTA0MTY1MDE0WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDgwYWQ5MzlmZGEyN2I2MjU0NzFlZjY1MjQ1MjJjMjgz M2M0YjI4ODA0Yzg2ZTZjMjJiNmE2Nzk2ZTk3NjVlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChw8/jB18kQSVtvTFCw1hkrdwc/4g23pfpDnYf9OaYwQvX o5VPyCUkm6J93m7m3wdBqjD/iYhpVgt8bY+XwQA+742NfCPVMQKw1EOOT2dm89qs MFZXb3OLpA7d6qLhkDwdxPlgj6yLoX0krJ5KOm/PeEomRT7Im+VsAouruVelTXuD B99wxCulvfXa1OAV1HFpIqJGqjrSHtOcmISvlarEm6ANabhWj7hQwWd7ITSW4+FO Uk5X4BIqUrVVuClpWjURbI0KHcOZH4SYIemn7iWAfNwyzKJY2BJGRtpYF4Tl5eo5 GaxIAchCA1FYpYyLpQrRcjxBEq4o9KJvZ/ovzhg3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUspOx4SqyiOb4TVKNgDOFTGktn2MwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzA4OGQ1NzU0LWNkYTQtNGQ4OS04NmY1LWY3MGE0ZDc1ZTdmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkwwDQYJKoZIhvcNAQELBQADggEBAAOqjYKSN2QBNpCtNYTv6SP7 3nV3+il09NE1ViImUsBXmQQPFnlRj9ZmAt3NFYz6dSjzqpmC93UVl4hMLrkwsgxJ UZd7I2JDTCyZpxFczOnbSv5XDyfCt1XgjELY662nhE17lkCESvuwpxmzlLEiK+7T PZj+Pqh7vTCUyYebIFw0jam9HP4uyrn1qpypDMX14zX6VIvHGb2xeBHxfWcJ9vZL itlbJKs8h1j4FEOE5iIgDz0e4X/+RwGqzwTbQW6pZDnbLF2m3fI3rC/k7c9SWd20 yXxb7XGCTiFEE9jLL6aT/aJwnqFdlKltp8JqLMZYvV0zd+Jzq0XNA4+y89AWPWE= -----END CERTIFICATE-----Generated at Wed Nov 5 13:21:27 2025 by rpki-client