$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0f6b659b-9df4-477a-a87b-b8bcd08d670e.roa File: 0f6b659b-9df4-477a-a87b-b8bcd08d670e.roa (raw, json) Hash identifier: 8y1Ez/yAONcgWmsotqLErjI3KB1oEIrhMAipnpKlGF0= Subject key identifier: C6:13:70:31:BC:36:91:6F:BC:BB:D6:7A:A1:4C:78:12:00:55:3E:90 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7CB48AD68E3C298EA1F9FCEB1E3FE9E96772B3AE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0f6b659b-9df4-477a-a87b-b8bcd08d670e.roa Signing time: Tue 04 Nov 2025 16:50:17 +0000 ROA not before: Tue 04 Nov 2025 16:50:17 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:402::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:b4:8a:d6:8e:3c:29:8e:a1:f9:fc:eb:1e:3f:e9:e9:67:72:b3:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 4 16:50:17 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=aab73c72754506729bc7b69f95091e9c47d01b13dfe1d11ae2b1182296fd4b0e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c5:9d:e4:d2:2d:87:a0:d7:d8:4a:d3:8e:e1: 7e:52:ed:0a:11:03:cc:c1:f5:dd:49:61:45:56:b1: a7:e1:51:b3:7b:5b:be:8e:e9:fb:b5:c9:ed:4f:8a: 50:5b:ce:e2:12:c1:79:92:29:d3:47:8e:27:92:ef: 4c:68:9e:ab:1a:0f:00:88:fc:71:a8:f6:7c:39:5c: b5:f7:e3:80:25:6f:35:35:81:ff:2c:1d:f7:8d:ea: 6c:30:91:67:5c:bc:a2:56:bf:c3:6b:73:6f:4d:a3: a5:30:d9:de:61:7b:0e:89:37:97:f8:36:29:c7:46: db:0c:31:ea:73:6f:f4:d0:ed:6a:f0:87:80:dc:7f: 84:13:16:c3:bb:f7:e5:52:6f:58:6c:fb:9e:d7:b8: dd:20:d7:2f:30:70:e8:79:35:88:2c:35:1a:9d:c7: 7e:0f:1f:b5:68:be:18:0b:c0:83:b8:3c:91:e5:67: 75:2e:fc:b0:00:fc:e2:33:cd:74:bf:9d:3e:29:9d: f5:17:88:f2:c7:af:2f:0f:a0:e8:59:b8:50:9e:d1: d7:7c:f6:59:97:cb:9b:88:db:87:69:93:31:e7:08: 0c:de:38:39:d2:18:9b:43:21:11:19:b9:87:e7:71: 00:bd:e2:9e:65:b5:f5:79:6a:f4:8f:8a:48:87:06: d5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:13:70:31:BC:36:91:6F:BC:BB:D6:7A:A1:4C:78:12:00:55:3E:90 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0f6b659b-9df4-477a-a87b-b8bcd08d670e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:402::/47 Signature Algorithm: sha256WithRSAEncryption 2e:ec:92:fd:35:ef:5d:9d:19:0b:6d:cf:7c:71:fd:b0:ce:64: 14:d8:3e:89:23:5d:a1:4c:e1:58:21:70:61:ad:d2:d8:49:c0: 8e:9f:40:c4:01:b9:51:d9:44:f7:30:1d:b4:76:d2:59:50:92: d3:4a:00:5a:33:1e:b7:07:2f:7a:83:bb:e9:5b:15:44:84:66: dd:e3:68:ff:b0:56:45:e9:00:43:66:c1:77:d1:bc:43:d2:9e: da:86:61:84:1e:b2:66:87:e1:ef:97:da:5b:e2:0c:a0:43:17: 11:09:d2:29:c2:83:b4:15:6a:f4:3c:73:a5:46:ec:e6:3e:c2: 14:da:9a:72:cf:1a:c4:db:bf:12:60:10:02:84:a7:88:56:d8: 5a:e6:96:73:15:04:48:a5:64:c7:50:83:5c:a7:f8:36:89:6b: 14:75:8c:d4:a6:b8:19:e2:c9:56:83:54:f6:02:6d:9e:7f:b7: 19:31:59:80:6a:22:c3:d4:7f:b7:6d:30:cc:bb:66:33:74:d7: 7d:2c:65:23:fa:12:27:95:f9:91:73:78:4f:99:54:fc:4e:3b: 40:23:a7:ef:85:e1:ca:1e:fb:2c:5b:eb:33:b6:0e:dd:4c:a8: 4f:38:3c:fe:4e:33:86:11:03:2e:ae:b0:be:51:6c:9a:d0:f2: cf:f3:a0:84 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfLSK1o48KY6h+fzrHj/p6Wdys64wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTA0MTY1MDE3WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWI3M2M3Mjc1NDUwNjcyOWJjN2I2OWY5NTA5MWU5YzQ3 ZDAxYjEzZGZlMWQxMWFlMmIxMTgyMjk2ZmQ0YjBlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7xZ3k0i2HoNfYStOO4X5S7QoRA8zB9d1JYUVWsafhUbN7 W76O6fu1ye1PilBbzuISwXmSKdNHjieS70xonqsaDwCI/HGo9nw5XLX344AlbzU1 gf8sHfeN6mwwkWdcvKJWv8Nrc29No6Uw2d5hew6JN5f4NinHRtsMMepzb/TQ7Wrw h4Dcf4QTFsO79+VSb1hs+57XuN0g1y8wcOh5NYgsNRqdx34PH7VovhgLwIO4PJHl Z3Uu/LAA/OIzzXS/nT4pnfUXiPLHry8PoOhZuFCe0dd89lmXy5uI24dpkzHnCAze ODnSGJtDIREZuYfncQC94p5ltfV5avSPikiHBtWpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxhNwMbw2kW+8u9Z6oUx4EgBVPpAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBmNmI2NTliLTlkZjQtNDc3YS1hODdiLWI4YmNkMDhkNjcwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmBZzABAIwDQYJKoZIhvcNAQELBQADggEBAC7skv01712dGQttz3xx/bDO ZBTYPokjXaFM4VghcGGt0thJwI6fQMQBuVHZRPcwHbR20llQktNKAFozHrcHL3qD u+lbFUSEZt3jaP+wVkXpAENmwXfRvEPSntqGYYQesmaH4e+X2lviDKBDFxEJ0inC g7QVavQ8c6VG7OY+whTamnLPGsTbvxJgEAKEp4hW2FrmlnMVBEilZMdQg1yn+DaJ axR1jNSmuBniyVaDVPYCbZ5/txkxWYBqIsPUf7dtMMy7ZjN0130sZSP6EieV+ZFz eE+ZVPxOO0Ajp++F4coe+yxb6zO2Dt1MqE84PP5OM4YRAy6usL5RbJrQ8s/zoIQ= -----END CERTIFICATE-----Generated at Wed Nov 5 14:06:43 2025 by rpki-client