$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa File: 3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa (raw, json) Hash identifier: wFp1ibhI/h3ZeMMdPm0MvJK7z8pm3Bs7WvppN5L9Nm4= Subject key identifier: 6E:07:B0:B9:D3:3D:77:9A:E2:3D:89:34:83:B5:DF:31:26:63:B1:0D Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 218C6FACD7C7E363554BB343903AD9F4F0A814A3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa Signing time: Tue 21 Oct 2025 12:20:12 +0000 ROA not before: Tue 21 Oct 2025 12:20:12 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:8c:6f:ac:d7:c7:e3:63:55:4b:b3:43:90:3a:d9:f4:f0:a8:14:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:20:12 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=388763388c26d96a00e8ba38af655d6c9919bbd5f9553d647e99b5b03d6ba5c5, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:28:18:db:14:18:15:12:45:f2:ca:7e:0a:68: 4a:e5:a5:01:01:f1:3a:9b:e8:cf:3e:44:b9:5b:6f: 7a:c4:cd:a7:9c:35:bd:e0:d6:a0:80:05:ef:bb:2c: 90:5a:b1:b5:90:f5:92:79:67:72:d9:bd:28:c2:06: 25:b6:bb:24:06:18:e1:48:a4:d4:52:0f:da:7a:cd: 3a:a1:d4:9e:ab:01:be:1f:dd:5c:f1:1f:d0:e4:3d: 81:bf:0a:70:0e:39:9e:ad:1a:d0:db:71:f3:24:40: 97:f4:b8:77:9a:04:dc:1b:32:60:5d:01:ac:12:41: c2:98:a7:72:0a:60:87:8f:9d:41:e1:3c:ca:45:34: 13:67:83:17:38:94:10:9a:56:ea:20:ff:5d:c6:39: 67:d4:d7:b7:eb:58:af:46:34:0b:73:6a:05:08:8b: 76:51:54:22:5b:e5:ab:4a:a3:0a:b0:83:b6:cc:e2: ac:27:cd:83:2f:99:a0:0a:c5:d9:c1:59:1b:65:e0: d5:f1:22:19:7d:59:de:19:6a:4a:2b:eb:69:7e:24: 24:fa:ab:67:7b:4b:b0:9b:87:8a:a4:17:72:40:1b: 28:6e:62:cd:e8:5d:ed:e7:19:bf:de:c8:8a:ee:09: 0a:85:8d:e8:d7:a7:22:60:34:47:02:82:ff:5b:ea: dd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:07:B0:B9:D3:3D:77:9A:E2:3D:89:34:83:B5:DF:31:26:63:B1:0D X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption aa:b9:c5:ac:47:c2:16:89:5b:78:1f:61:0f:43:9a:92:0c:77: 9c:69:bd:c7:4f:25:76:8c:5a:87:a7:6e:39:c6:42:95:f1:3b: 17:e2:3b:c8:7e:d0:b4:1f:a8:46:f6:60:22:0f:da:75:f8:81: b4:fe:61:2f:20:20:af:96:50:37:5d:20:89:d8:b7:60:49:bc: 71:76:ae:71:05:6a:29:10:94:4d:22:86:e8:4b:77:7a:3c:c1: 50:84:29:6f:aa:6e:22:a0:71:5c:73:6b:03:88:59:5e:aa:85: dc:4c:34:a7:de:11:73:0d:cc:f8:05:64:fa:97:79:b9:a3:22: e4:ea:4f:37:61:31:48:4d:fa:58:a7:82:bc:f3:48:bb:3f:a5: ce:f7:9c:ec:a4:52:e4:29:17:45:b3:e8:dd:92:38:5b:c0:7a: 9a:f3:41:0c:cd:ad:26:4c:6c:90:50:3f:bb:a0:fc:68:86:9f: 17:55:39:27:8f:78:ea:80:85:67:5a:e7:d3:51:8f:8e:86:8e: 00:27:e1:6f:73:f8:22:c1:c6:a1:1a:78:ae:75:0e:9a:ff:36: 6f:ad:de:fe:8c:8a:ae:21:df:b4:27:fb:15:b5:70:06:ba:e9: 3b:d2:eb:5d:9a:46:df:ed:3e:f2:8f:e6:f2:86:e2:d6:56:5c: fd:d4:8c:3e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIYxvrNfH42NVS7NDkDrZ9PCoFKMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTIyMDEyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODg3NjMzODhjMjZkOTZhMDBlOGJhMzhhZjY1NWQ2Yzk5 MTliYmQ1Zjk1NTNkNjQ3ZTk5YjViMDNkNmJhNWM1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0KBjbFBgVEkXyyn4KaErlpQEB8Tqb6M8+RLlbb3rEzaec Nb3g1qCABe+7LJBasbWQ9ZJ5Z3LZvSjCBiW2uyQGGOFIpNRSD9p6zTqh1J6rAb4f 3VzxH9DkPYG/CnAOOZ6tGtDbcfMkQJf0uHeaBNwbMmBdAawSQcKYp3IKYIePnUHh PMpFNBNngxc4lBCaVuog/13GOWfU17frWK9GNAtzagUIi3ZRVCJb5atKowqwg7bM 4qwnzYMvmaAKxdnBWRtl4NXxIhl9Wd4Zakor62l+JCT6q2d7S7Cbh4qkF3JAGyhu Ys3oXe3nGb/eyIruCQqFjejXpyJgNEcCgv9b6t3lAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbgewudM9d5riPYk0g7XfMSZjsQ0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZWY5ZDNlLTJhZDItNGUzOC05MmZjLTVlYWI3NmE1Mzk1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAKq5xaxHwhaJW3gfYQ9DmpIM d5xpvcdPJXaMWoenbjnGQpXxOxfiO8h+0LQfqEb2YCIP2nX4gbT+YS8gIK+WUDdd IInYt2BJvHF2rnEFaikQlE0ihuhLd3o8wVCEKW+qbiKgcVxzawOIWV6qhdxMNKfe EXMNzPgFZPqXebmjIuTqTzdhMUhN+lingrzzSLs/pc73nOykUuQpF0Wz6N2SOFvA eprzQQzNrSZMbJBQP7ug/GiGnxdVOSePeOqAhWda59NRj46GjgAn4W9z+CLBxqEa eK51Dpr/Nm+t3v6Miq4h37Qn+xW1cAa66TvS612aRt/tPvKP5vKG4tZWXP3UjD4= -----END CERTIFICATE-----Generated at Wed Nov 5 07:08:40 2025 by rpki-client