$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa File: 403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa (raw, json) Hash identifier: N4oYNJHco6o+/pDL2PB5XGvJ+k6c8oGkPgLTuaWpGB4= Subject key identifier: 44:32:27:FC:BB:A9:AA:06:5B:4E:4D:F0:0D:74:F2:41:79:20:24:32 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0A0B12B862AA498C5CE5FEAA6DB1EEF22717293C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa Signing time: Fri 31 Oct 2025 01:30:20 +0000 ROA not before: Fri 31 Oct 2025 01:30:20 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:0b:12:b8:62:aa:49:8c:5c:e5:fe:aa:6d:b1:ee:f2:27:17:29:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 31 01:30:20 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=60241317e498545adf913e14df9f58477adc26c0568a557a938b45c93d849e58, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4e:14:ba:5a:4f:00:ec:b6:59:93:6c:e6:6b: 0c:f9:50:38:a8:f9:fc:1d:b1:50:47:a3:c0:c0:51: ed:c3:6d:4d:90:d8:37:cc:b2:d6:38:79:2e:b8:76: cb:a1:7a:2e:a7:37:e3:3b:23:b0:e2:ec:c1:58:ec: fb:e9:b5:bd:17:f4:f6:c7:92:24:c1:7b:d9:d8:49: 5d:a0:09:9e:03:a1:14:ef:86:4e:4c:71:9c:a4:e5: e6:cb:f3:38:a5:15:ea:7c:ea:9c:12:f9:ca:98:eb: 73:d5:1c:fc:a1:c6:91:a1:33:01:47:ff:f0:b2:9f: 60:fa:8c:b7:df:e8:ca:17:4f:8c:b9:2b:c0:c6:eb: 93:f7:5a:17:cb:b8:ba:68:ce:50:9e:05:9c:75:2d: 60:6a:f1:cc:7b:1d:f5:ba:d6:ac:b2:84:07:9b:ed: 7e:97:9d:79:f5:c3:28:82:a2:3d:e4:e4:d1:5b:1e: 98:8a:10:2e:be:bb:71:f6:ab:53:53:5d:1f:fd:ed: 18:58:8e:89:08:37:35:49:38:a6:4a:86:c7:24:17: 61:d8:04:78:bc:f9:87:6c:3f:c7:23:c0:c0:7d:2a: 0b:2e:91:ce:fa:c2:81:99:0e:25:e0:d5:9a:7e:0a: e2:16:04:78:1b:76:0f:44:41:ca:fb:1b:04:5f:96: 29:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:32:27:FC:BB:A9:AA:06:5B:4E:4D:F0:0D:74:F2:41:79:20:24:32 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0b::/48 Signature Algorithm: sha256WithRSAEncryption a2:70:d4:a7:f0:ae:c2:87:81:d0:01:a4:40:02:a8:2f:13:b9: 6c:d3:6d:61:72:a8:3e:a1:f2:1b:13:05:ce:fb:e0:99:10:f5: f6:0a:47:8b:a7:5b:cf:49:b2:7e:55:e9:d1:06:c6:7c:e6:45: 4f:4f:40:c8:c3:fb:0d:1a:3d:9f:d3:53:61:6d:b8:a8:52:96: ec:5c:b9:7a:3e:b9:1b:e6:25:34:54:77:36:23:6d:72:88:32: 1b:66:62:84:e4:ea:f5:b2:79:6e:56:7d:22:cc:0b:f6:6f:35: 25:47:93:b4:6a:e6:54:83:b4:8f:27:d2:05:6a:4f:f8:77:e0: cd:ee:d2:f1:5e:9a:f6:1b:88:91:ea:6f:33:04:20:90:c2:4b: 80:83:49:54:fe:0e:4a:ce:10:ec:18:04:9d:06:21:32:60:31: 21:62:e7:d3:e3:5a:c0:ba:13:81:bb:28:bb:5e:f0:15:6b:cd: a4:97:2c:f5:c8:2e:cd:6d:d1:30:6f:49:7a:98:6e:c7:4f:5b: 7c:51:5e:af:a3:1d:1a:ef:55:da:d5:54:b5:a6:f9:30:a2:88: 29:45:cc:db:ee:36:60:db:b8:30:1a:5d:48:4d:d2:ac:51:d8: 13:68:18:f2:65:25:42:66:fa:db:bd:fa:11:83:de:1f:48:ce: 5f:1f:65:52 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCgsSuGKqSYxc5f6qbbHu8icXKTwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDMxMDEzMDIwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDI0MTMxN2U0OTg1NDVhZGY5MTNlMTRkZjlmNTg0Nzdh ZGMyNmMwNTY4YTU1N2E5MzhiNDVjOTNkODQ5ZTU4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrThS6Wk8A7LZZk2zmawz5UDio+fwdsVBHo8DAUe3DbU2Q 2DfMstY4eS64dsuhei6nN+M7I7Di7MFY7Pvptb0X9PbHkiTBe9nYSV2gCZ4DoRTv hk5McZyk5ebL8zilFep86pwS+cqY63PVHPyhxpGhMwFH//Cyn2D6jLff6MoXT4y5 K8DG65P3WhfLuLpozlCeBZx1LWBq8cx7HfW61qyyhAeb7X6XnXn1wyiCoj3k5NFb HpiKEC6+u3H2q1NTXR/97RhYjokINzVJOKZKhsckF2HYBHi8+YdsP8cjwMB9Kgsu kc76woGZDiXg1Zp+CuIWBHgbdg9EQcr7GwRflilHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURDIn/LupqgZbTk3wDXTyQXkgJDIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQwMzYyMmQ5LWE2NjQtNGE4NS04YTlmLTVlMGNlNGNkNDcyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAswDQYJKoZIhvcNAQELBQADggEBAKJw1KfwrsKHgdABpEACqC8T uWzTbWFyqD6h8hsTBc774JkQ9fYKR4unW89Jsn5V6dEGxnzmRU9PQMjD+w0aPZ/T U2FtuKhSluxcuXo+uRvmJTRUdzYjbXKIMhtmYoTk6vWyeW5WfSLMC/ZvNSVHk7Rq 5lSDtI8n0gVqT/h34M3u0vFemvYbiJHqbzMEIJDCS4CDSVT+DkrOEOwYBJ0GITJg MSFi59PjWsC6E4G7KLte8BVrzaSXLPXILs1t0TBvSXqYbsdPW3xRXq+jHRrvVdrV VLWm+TCiiClFzNvuNmDbuDAaXUhN0qxR2BNoGPJlJUJm+tu9+hGD3h9Izl8fZVI= -----END CERTIFICATE-----Generated at Wed Nov 5 09:30:33 2025 by rpki-client