$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c059320-6aba-4b07-80cf-75b922c5db5b.roa File: 0c059320-6aba-4b07-80cf-75b922c5db5b.roa (raw, json) Hash identifier: 497YW3WOfvHw4g5xqYnbN3wIIAoS0u+6XOCcl5JFFJM= Subject key identifier: 85:F3:32:A8:8A:36:25:8E:7C:49:0F:0D:91:68:4B:E5:94:CF:D4:9C Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 34C84411D9939E1506B6D135C04132096E8EA894 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c059320-6aba-4b07-80cf-75b922c5db5b.roa Signing time: Tue 21 Oct 2025 12:40:49 +0000 ROA not before: Tue 21 Oct 2025 12:40:49 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c48::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c8:44:11:d9:93:9e:15:06:b6:d1:35:c0:41:32:09:6e:8e:a8:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:40:49 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=bf2926a83104203c0e8f00c026c9f9460f28acd98ac0154238737547b47dfa79, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:b5:01:aa:ce:e7:e5:91:26:85:46:d1:99:bc: 74:99:15:b5:9e:8d:d9:0c:31:65:78:2d:bb:9b:78: b0:26:f9:e4:e5:81:ed:3c:fd:05:92:b4:87:98:71: 8e:44:a5:3e:09:ce:fa:a5:37:fa:87:50:00:35:04: 36:0f:a6:44:6c:e4:95:6b:de:af:8e:18:90:a8:da: 63:a1:47:a6:2d:bd:e1:09:5d:be:96:10:a4:bb:bb: a9:aa:80:82:33:dd:3a:02:4b:d6:39:73:2a:09:69: 4c:ff:98:89:8c:7a:2c:bf:de:05:c9:bf:ef:a2:c0: 3d:b4:5c:95:1c:27:70:bf:be:ae:f0:13:91:6f:42: 18:72:c1:77:c6:95:a4:2e:82:bb:0c:27:b2:bc:64: 1a:3e:64:80:84:c5:25:d4:cf:b9:61:e3:48:50:cd: a6:6a:28:fa:28:f9:94:b6:ca:a1:a4:23:b1:d4:65: 86:98:78:8a:79:55:e7:fe:ed:b2:bd:cc:56:36:a8: 58:19:13:b7:23:4c:96:44:40:80:24:9e:36:ed:a4: c1:33:e6:89:ac:41:eb:4a:36:80:f1:22:51:ab:70: 20:08:ae:3b:5a:fe:a2:e0:b6:00:0b:c2:42:58:8e: f7:ac:a8:00:7c:20:91:d2:dd:58:a4:60:f0:5c:53: f6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F3:32:A8:8A:36:25:8E:7C:49:0F:0D:91:68:4B:E5:94:CF:D4:9C X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c059320-6aba-4b07-80cf-75b922c5db5b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c48::/45 Signature Algorithm: sha256WithRSAEncryption 97:42:78:c3:fd:75:99:ed:5d:24:3c:2c:86:46:be:36:41:3d: d4:13:ab:20:a4:88:76:59:79:b9:7a:e6:4e:6c:97:c6:2d:34: f6:42:d3:1a:72:ba:8d:a9:cf:55:c8:91:c1:54:ae:df:98:bb: 05:db:a6:1e:cf:62:a6:a9:72:92:bb:53:3d:29:67:8f:5c:01: 43:cb:18:02:48:7e:3e:bb:ab:e5:3b:be:28:b8:4e:6d:1f:ae: 54:8c:1f:44:67:7b:bc:1f:6d:1d:74:f1:f7:ea:ce:ff:dd:17: 47:96:ad:9a:d6:7b:e0:cc:47:44:1e:63:0b:8d:5a:09:a1:ca: b2:7e:cb:f6:7b:3b:1b:52:df:ff:21:d1:1f:26:b3:2f:21:ae: 10:04:bd:de:f5:d7:fd:0e:fc:cd:87:d8:cc:4f:a7:ab:c2:90: 18:77:c2:08:21:0b:d6:8c:a0:d8:ec:74:e2:62:01:10:31:09: 7f:25:43:44:b8:76:c8:ce:3c:e2:e6:6f:15:85:4e:02:1a:d1: a9:65:f3:8d:a6:20:10:fe:d0:c5:e0:99:f2:bd:70:3e:fa:02: eb:24:38:f4:e3:48:7f:86:c1:8d:75:c8:ea:0f:04:62:d6:87: a3:a3:22:7a:9f:ac:b0:6c:92:dc:aa:60:c2:38:47:a5:87:24: a0:e1:b0:47 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNMhEEdmTnhUGttE1wEEyCW6OqJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTI0MDQ5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjI5MjZhODMxMDQyMDNjMGU4ZjAwYzAyNmM5Zjk0NjBm MjhhY2Q5OGFjMDE1NDIzODczNzU0N2I0N2RmYTc5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEtQGqzuflkSaFRtGZvHSZFbWejdkMMWV4LbubeLAm+eTl ge08/QWStIeYcY5EpT4JzvqlN/qHUAA1BDYPpkRs5JVr3q+OGJCo2mOhR6YtveEJ Xb6WEKS7u6mqgIIz3ToCS9Y5cyoJaUz/mImMeiy/3gXJv++iwD20XJUcJ3C/vq7w E5FvQhhywXfGlaQugrsMJ7K8ZBo+ZICExSXUz7lh40hQzaZqKPoo+ZS2yqGkI7HU ZYaYeIp5Vef+7bK9zFY2qFgZE7cjTJZEQIAknjbtpMEz5omsQetKNoDxIlGrcCAI rjta/qLgtgALwkJYjvesqAB8IJHS3VikYPBcU/bXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhfMyqIo2JY58SQ8NkWhL5ZTP1JwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBjMDU5MzIwLTZhYmEtNGIwNy04MGNmLTc1YjkyMmM1ZGI1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmBZzADEgwDQYJKoZIhvcNAQELBQADggEBAJdCeMP9dZntXSQ8LIZGvjZB PdQTqyCkiHZZebl65k5sl8YtNPZC0xpyuo2pz1XIkcFUrt+YuwXbph7PYqapcpK7 Uz0pZ49cAUPLGAJIfj67q+U7vii4Tm0frlSMH0Rne7wfbR108ffqzv/dF0eWrZrW e+DMR0QeYwuNWgmhyrJ+y/Z7OxtS3/8h0R8msy8hrhAEvd711/0O/M2H2MxPp6vC kBh3wgghC9aMoNjsdOJiARAxCX8lQ0S4dsjOPOLmbxWFTgIa0all842mIBD+0MXg mfK9cD76AuskOPTjSH+GwY11yOoPBGLWh6OjInqfrLBsktyqYMI4R6WHJKDhsEc= -----END CERTIFICATE-----Generated at Wed Nov 5 07:43:25 2025 by rpki-client