$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5befdd2f-22ab-473f-936e-ffcd9943d082.roa File: 5befdd2f-22ab-473f-936e-ffcd9943d082.roa (raw, json) Hash identifier: vra2oqr2lBhDKWP7FE+09HsYSoiGOo3FeUHpuyRg3uA= Subject key identifier: B5:F5:15:3A:4D:D8:4B:A1:F1:AA:FA:DD:AE:53:BC:82:D5:01:F4:FB Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 369A0F306C1BC52F9D925675561FDFCBC401F99E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5befdd2f-22ab-473f-936e-ffcd9943d082.roa Signing time: Tue 21 Oct 2025 12:20:04 +0000 ROA not before: Tue 21 Oct 2025 12:20:04 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:310::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:9a:0f:30:6c:1b:c5:2f:9d:92:56:75:56:1f:df:cb:c4:01:f9:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:20:04 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=aa77b0525647e1f6fc3da6a74fa411ad78529e25b68945b1323703d7fcb9026b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:09:7b:ee:5a:db:43:39:4d:5c:d4:8c:c5:16: 8d:93:be:23:81:d5:6f:6e:3c:e0:58:94:1e:7d:fb: a5:93:61:39:26:5e:f3:3d:a1:d5:f5:2c:1d:76:a9: 3d:30:2f:76:f3:cd:2a:ef:29:6f:e9:0f:41:26:1b: 47:95:a2:ec:76:5c:36:e8:6a:90:3c:55:88:f6:0c: 4a:32:b7:6c:e3:e0:91:ca:98:96:81:53:9e:6b:eb: e2:4e:34:df:55:b9:c5:00:65:4b:16:66:e5:31:77: 70:f5:44:54:16:fa:2d:8e:2b:ab:45:d9:c4:12:8e: 55:d3:79:2e:a1:74:18:fa:b1:ea:03:49:0e:25:84: a3:7d:37:a9:14:56:1e:c6:1b:77:99:f2:c0:16:49: 5a:98:11:72:c1:85:dc:d8:30:c3:d4:c3:d7:53:1a: e4:f2:4b:4b:f1:b9:c7:45:ef:60:c0:f1:4e:1b:71: ce:5b:3c:ba:8d:26:a3:b4:4e:fe:6f:cc:b5:4a:a5: 6e:3e:4c:f6:6e:33:2f:72:68:0e:ec:cf:54:31:1e: 99:4d:2c:28:d8:75:d1:08:b1:93:a5:8f:7c:b5:41: 30:57:8d:92:d7:c4:33:45:be:a1:43:86:a5:78:64: a4:b5:b3:fe:dc:11:f5:db:8e:09:b2:dc:99:ff:e5: 62:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F5:15:3A:4D:D8:4B:A1:F1:AA:FA:DD:AE:53:BC:82:D5:01:F4:FB X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5befdd2f-22ab-473f-936e-ffcd9943d082.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:310::/48 Signature Algorithm: sha256WithRSAEncryption 48:bf:44:27:28:50:b2:e9:d6:bf:3c:6f:8f:92:45:a1:6c:89: 96:95:36:97:36:9f:24:1c:f4:74:dd:b4:3e:6b:62:85:e4:6d: 1a:ba:09:03:96:3a:8f:c6:1c:be:25:d8:67:d3:b1:2d:f6:34: 50:ac:ae:b1:93:13:48:82:64:81:db:7b:fd:db:39:cd:9c:e6: 92:19:ec:e5:cb:b9:87:45:2b:6a:02:ab:33:a1:e3:94:18:64: 97:a6:54:b5:c3:fc:42:8f:5a:20:8f:6e:62:1c:9a:68:70:a8: 30:b5:a1:84:95:ba:66:b5:22:ce:8e:ef:c7:a6:4d:d1:6a:d9: 40:26:a8:49:ef:c2:4e:54:60:ad:42:c4:fa:7c:ad:1c:d7:37: 3f:f6:02:0c:f8:e3:5e:1b:4f:ec:32:0d:f2:c8:1f:c8:c8:67: 9b:40:5c:92:32:8f:8b:08:c6:ac:06:1e:39:61:89:d6:89:5f: 95:23:d0:2b:a1:fa:3f:22:19:19:cc:7d:4c:f1:38:1e:4a:a4: 83:ce:ea:64:3d:02:b8:e8:a6:86:00:d0:3e:45:ed:7a:ff:d8: 9f:af:8d:82:25:c2:26:37:c8:e2:0f:49:1b:9a:1c:98:c9:5a: a6:c9:f3:cb:77:ea:32:c9:d0:90:22:31:c9:4f:95:7c:14:c9: 30:ab:76:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNpoPMGwbxS+dklZ1Vh/fy8QB+Z4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTIyMDA0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTc3YjA1MjU2NDdlMWY2ZmMzZGE2YTc0ZmE0MTFhZDc4 NTI5ZTI1YjY4OTQ1YjEzMjM3MDNkN2ZjYjkwMjZiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGCXvuWttDOU1c1IzFFo2TviOB1W9uPOBYlB59+6WTYTkm XvM9odX1LB12qT0wL3bzzSrvKW/pD0EmG0eVoux2XDboapA8VYj2DEoyt2zj4JHK mJaBU55r6+JONN9VucUAZUsWZuUxd3D1RFQW+i2OK6tF2cQSjlXTeS6hdBj6seoD SQ4lhKN9N6kUVh7GG3eZ8sAWSVqYEXLBhdzYMMPUw9dTGuTyS0vxucdF72DA8U4b cc5bPLqNJqO0Tv5vzLVKpW4+TPZuMy9yaA7sz1QxHplNLCjYddEIsZOlj3y1QTBX jZLXxDNFvqFDhqV4ZKS1s/7cEfXbjgmy3Jn/5WKtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtfUVOk3YS6HxqvrdrlO8gtUB9PswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzViZWZkZDJmLTIyYWItNDczZi05MzZlLWZmY2Q5OTQzZDA4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAxAwDQYJKoZIhvcNAQELBQADggEBAEi/RCcoULLp1r88b4+SRaFs iZaVNpc2nyQc9HTdtD5rYoXkbRq6CQOWOo/GHL4l2GfTsS32NFCsrrGTE0iCZIHb e/3bOc2c5pIZ7OXLuYdFK2oCqzOh45QYZJemVLXD/EKPWiCPbmIcmmhwqDC1oYSV uma1Is6O78emTdFq2UAmqEnvwk5UYK1CxPp8rRzXNz/2Agz4414bT+wyDfLIH8jI Z5tAXJIyj4sIxqwGHjlhidaJX5Uj0Cuh+j8iGRnMfUzxOB5KpIPO6mQ9ArjopoYA 0D5F7Xr/2J+vjYIlwiY3yOIPSRuaHJjJWqbJ88t36jLJ0JAiMclPlXwUyTCrdrM= -----END CERTIFICATE-----Generated at Wed Nov 5 09:30:54 2025 by rpki-client