$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69755fd2-2bf9-468e-a4b8-8294aacd571a.roa File: 69755fd2-2bf9-468e-a4b8-8294aacd571a.roa (raw, json) Hash identifier: /Hglstt4cfTfrfXsUCX3eVo9UT1qaGBrLj82T1v+Bgs= Subject key identifier: 32:65:DF:2F:12:3F:65:D3:71:83:A3:36:8D:D3:86:8B:02:B7:4A:F5 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 26B68DD2433EB1272AE591A36521AE9F62C9E7FD Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69755fd2-2bf9-468e-a4b8-8294aacd571a.roa Signing time: Tue 04 Nov 2025 16:50:15 +0000 ROA not before: Tue 04 Nov 2025 16:50:15 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c08::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:b6:8d:d2:43:3e:b1:27:2a:e5:91:a3:65:21:ae:9f:62:c9:e7:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 4 16:50:15 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=5e6b1b0ecbb1e484c21dc93eb8472d7a696b868afa683e065aeff335c8b8b920, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fb:5c:c3:2f:ed:3d:4d:ef:f0:be:df:f7:a2: 8e:c4:a4:a5:77:da:8c:64:5d:63:8d:28:b8:b9:52: 66:43:e7:cc:02:ac:b7:ac:a6:a7:02:9b:eb:fe:a0: 68:c3:cc:31:1d:14:20:be:f3:37:36:14:40:ea:d3: 67:ee:01:54:61:13:cc:0d:d7:22:cb:06:17:d5:b9: e1:00:d8:97:22:66:6c:b9:32:bc:9a:dd:6c:4e:b7: e5:81:a0:85:c8:02:a9:85:b2:a0:b0:de:e7:88:ef: fd:72:e6:0d:d9:09:08:19:e2:68:fb:a5:06:16:0c: b8:dd:71:40:f2:aa:e0:d4:af:1c:8e:04:d4:2e:6c: 8b:10:15:4f:03:1f:57:42:dc:2d:a8:e6:84:b5:43: e8:55:f5:a8:37:eb:44:72:29:26:71:17:57:26:3b: 59:09:33:23:ed:ea:94:e9:6e:d6:06:0d:1e:a4:88: ac:07:fb:45:07:22:61:7d:bc:67:86:33:1d:31:4c: 78:b4:92:43:77:1b:d6:25:30:7d:56:19:73:15:02: f1:6b:3a:f1:02:6b:d0:e4:52:54:21:1c:4d:d1:45: aa:7c:a1:83:74:3c:3c:d2:96:be:ad:2b:5a:fc:27: b9:2a:4d:6f:a2:76:3c:bc:81:4b:f4:64:91:12:e9: ca:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:65:DF:2F:12:3F:65:D3:71:83:A3:36:8D:D3:86:8B:02:B7:4A:F5 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69755fd2-2bf9-468e-a4b8-8294aacd571a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c08::/48 Signature Algorithm: sha256WithRSAEncryption 15:5c:7d:ce:1e:90:4f:d6:df:be:5e:50:72:3d:04:d3:fb:cb: 05:37:d2:ad:48:21:c4:92:d5:ed:16:e6:26:52:0a:a3:83:c8: de:c8:9d:ff:93:af:9b:3c:e8:c1:ee:f8:5a:fa:b4:15:74:a7: f0:23:14:ff:d7:03:9a:4a:3f:67:6a:e3:0c:21:a1:a1:fa:70: 81:86:52:d2:41:2b:96:e6:ad:5f:80:cf:9a:f2:4c:33:32:e0: ac:2c:c9:5e:09:89:a7:a2:54:31:37:a4:e3:d0:03:24:9d:fb: c2:c9:6e:9c:7f:54:09:7a:74:05:63:1f:0f:67:a4:d7:0a:a4: 32:cd:d6:ed:65:b4:ad:e4:d5:ad:45:f2:2b:3a:c3:85:49:9c: 03:f2:d5:c3:af:9c:7e:31:cf:c3:df:d0:30:58:aa:97:13:27: 2d:bf:41:63:f1:32:2c:8c:92:b0:09:85:e4:73:7d:2e:14:f6: b1:05:15:f9:ad:a1:7b:2e:4a:46:3e:e8:46:52:6d:09:93:d6: 44:c7:d5:7d:a1:45:dc:06:cd:f3:90:c0:08:a9:4e:8c:db:5a: c4:72:e9:08:54:0f:bc:b8:6d:66:70:dd:56:d3:83:60:5a:e1: 1d:29:3a:ce:38:90:d5:53:66:21:da:09:6f:23:7f:f9:09:f0: eb:3b:a2:44 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJraN0kM+sScq5ZGjZSGun2LJ5/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTA0MTY1MDE1WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTZiMWIwZWNiYjFlNDg0YzIxZGM5M2ViODQ3MmQ3YTY5 NmI4NjhhZmE2ODNlMDY1YWVmZjMzNWM4YjhiOTIwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw+1zDL+09Te/wvt/3oo7EpKV32oxkXWONKLi5UmZD58wC rLespqcCm+v+oGjDzDEdFCC+8zc2FEDq02fuAVRhE8wN1yLLBhfVueEA2JciZmy5 Mrya3WxOt+WBoIXIAqmFsqCw3ueI7/1y5g3ZCQgZ4mj7pQYWDLjdcUDyquDUrxyO BNQubIsQFU8DH1dC3C2o5oS1Q+hV9ag360RyKSZxF1cmO1kJMyPt6pTpbtYGDR6k iKwH+0UHImF9vGeGMx0xTHi0kkN3G9YlMH1WGXMVAvFrOvECa9DkUlQhHE3RRap8 oYN0PDzSlr6tK1r8J7kqTW+idjy8gUv0ZJES6cpxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMmXfLxI/ZdNxg6M2jdOGiwK3SvUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzY5NzU1ZmQyLTJiZjktNDY4ZS1hNGI4LTgyOTRhYWNkNTcxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAgwDQYJKoZIhvcNAQELBQADggEBABVcfc4ekE/W375eUHI9BNP7 ywU30q1IIcSS1e0W5iZSCqODyN7Inf+Tr5s86MHu+Fr6tBV0p/AjFP/XA5pKP2dq 4wwhoaH6cIGGUtJBK5bmrV+Az5ryTDMy4KwsyV4JiaeiVDE3pOPQAySd+8LJbpx/ VAl6dAVjHw9npNcKpDLN1u1ltK3k1a1F8is6w4VJnAPy1cOvnH4xz8Pf0DBYqpcT Jy2/QWPxMiyMkrAJheRzfS4U9rEFFfmtoXsuSkY+6EZSbQmT1kTH1X2hRdwGzfOQ wAipTozbWsRy6QhUD7y4bWZw3VbTg2Ba4R0pOs44kNVTZiHaCW8jf/kJ8Os7okQ= -----END CERTIFICATE-----Generated at Wed Nov 5 05:41:47 2025 by rpki-client