$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa File: b135e8de-4e6c-4d15-87c3-51709cb5a460.roa (raw, json) Hash identifier: RDgS0jhfEiADQkmKPmemPN0DV2D/4dnSzz6aUgw0sQA= Subject key identifier: 79:2A:ED:2E:0C:C3:97:41:27:3D:9A:EC:1D:76:D2:62:51:DA:3A:4E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2A3A1CCF563F4D0E4B5A38CAE8C67F271824969F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa Signing time: Tue 21 Oct 2025 12:40:11 +0000 ROA not before: Tue 21 Oct 2025 12:40:11 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:39c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:3a:1c:cf:56:3f:4d:0e:4b:5a:38:ca:e8:c6:7f:27:18:24:96:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:40:11 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=d0a43473b449c789744adc10bd1318d0cc338270f3b3eece57299b77a62bddf9, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0b:46:76:c5:ad:39:5e:d2:1a:43:8c:97:f5: 48:bc:83:6f:68:7a:f6:0f:6a:a3:89:f8:26:91:7a: eb:6d:7c:b0:08:6a:6b:3c:dc:e8:f7:b8:c3:95:20: 1a:c1:e5:70:a3:72:ae:2b:7e:f1:06:e4:5b:ba:1a: 50:8b:03:b5:14:d4:21:49:e8:79:98:ec:c7:d4:f9: 79:f7:af:ae:2e:d8:c9:f0:a2:2d:a8:72:4e:ad:0d: 83:12:f3:6f:15:76:1b:48:0a:a0:15:6e:f5:d7:45: 19:fb:c3:68:57:0d:ec:c3:32:aa:e4:3f:c1:ee:69: 97:bb:54:ba:33:68:be:f8:3d:85:17:ef:59:cb:5e: fe:c7:39:2a:80:31:50:a1:8b:f9:65:74:d7:f6:17: c0:a1:67:23:04:71:b8:d9:78:b4:07:2b:a6:2d:2f: 1d:ed:03:c8:7f:28:d3:0d:ce:57:c5:01:00:5f:6c: df:4f:96:ee:e5:ae:0c:de:13:5d:8f:6d:ef:a3:33: 4d:c0:d7:5e:c3:be:2c:3e:1b:00:79:a8:de:bf:4f: 47:c9:58:a6:d6:16:39:d1:ac:96:17:1b:90:5f:0f: df:ac:63:5f:b2:d6:42:e6:e3:09:47:a4:7b:cc:a6: cf:a3:2c:13:54:0c:20:8d:96:35:6e:71:b8:df:68: 0b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:2A:ED:2E:0C:C3:97:41:27:3D:9A:EC:1D:76:D2:62:51:DA:3A:4E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:39c::/48 Signature Algorithm: sha256WithRSAEncryption 8d:bf:72:7e:64:29:6f:97:4d:fc:94:9a:ee:a9:7c:0f:de:95: 89:62:f3:66:22:83:c4:90:3f:f6:9e:82:e2:71:07:66:ea:d1: b9:06:95:45:cb:35:c2:b0:fc:d8:eb:67:20:62:3a:05:15:c9: 1d:9a:df:8b:0f:d8:29:8e:a8:aa:ef:9d:d9:0c:ce:7e:cf:11: 88:2a:dc:f4:02:26:78:ca:20:c2:7c:50:d5:82:96:a6:67:30: 55:20:11:33:32:4c:fb:eb:09:a3:b7:23:0d:49:37:7e:de:72: 97:df:d5:ee:b5:93:4b:ce:2f:9e:d0:66:4d:81:02:78:9a:a0: a0:73:61:da:67:fe:a0:f0:bf:4d:27:e9:db:cc:4a:fd:db:2d: 4e:f6:99:bd:6a:98:3b:81:7c:ea:1b:40:37:cf:df:0b:ce:06: 59:f2:2b:51:ed:17:ff:ea:a4:90:e9:59:f1:48:03:10:de:48: 54:df:a7:be:b4:1a:f8:b8:20:1b:a8:ec:79:cc:c3:0a:8f:dd: 64:eb:86:e6:0e:1d:39:cb:ec:65:eb:62:f1:37:8f:0a:35:8d: 27:7d:94:0c:ca:dc:56:ed:cb:ff:a4:6a:3f:0c:0d:b1:9a:3b: 12:91:13:ec:8f:11:9e:87:e4:3d:dc:bd:ee:44:fd:8a:98:9f: 65:64:0b:78 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKjocz1Y/TQ5LWjjK6MZ/Jxgklp8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTI0MDExWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMGE0MzQ3M2I0NDljNzg5NzQ0YWRjMTBiZDEzMThkMGNj MzM4MjcwZjNiM2VlY2U1NzI5OWI3N2E2MmJkZGY5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClC0Z2xa05XtIaQ4yX9Ui8g29oevYPaqOJ+CaReuttfLAI ams83Oj3uMOVIBrB5XCjcq4rfvEG5Fu6GlCLA7UU1CFJ6HmY7MfU+Xn3r64u2Mnw oi2ock6tDYMS828VdhtICqAVbvXXRRn7w2hXDezDMqrkP8HuaZe7VLozaL74PYUX 71nLXv7HOSqAMVChi/lldNf2F8ChZyMEcbjZeLQHK6YtLx3tA8h/KNMNzlfFAQBf bN9Plu7lrgzeE12Pbe+jM03A117Dviw+GwB5qN6/T0fJWKbWFjnRrJYXG5BfD9+s Y1+y1kLm4wlHpHvMps+jLBNUDCCNljVucbjfaAvZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeSrtLgzDl0EnPZrsHXbSYlHaOk4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IxMzVlOGRlLTRlNmMtNGQxNS04N2MzLTUxNzA5Y2I1YTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5wwDQYJKoZIhvcNAQELBQADggEBAI2/cn5kKW+XTfyUmu6pfA/e lYli82Yig8SQP/aeguJxB2bq0bkGlUXLNcKw/NjrZyBiOgUVyR2a34sP2CmOqKrv ndkMzn7PEYgq3PQCJnjKIMJ8UNWClqZnMFUgETMyTPvrCaO3Iw1JN37ecpff1e61 k0vOL57QZk2BAniaoKBzYdpn/qDwv00n6dvMSv3bLU72mb1qmDuBfOobQDfP3wvO BlnyK1HtF//qpJDpWfFIAxDeSFTfp760Gvi4IBuo7HnMwwqP3WTrhuYOHTnL7GXr YvE3jwo1jSd9lAzK3Fbty/+kaj8MDbGaOxKRE+yPEZ6H5D3cve5E/YqYn2VkC3g= -----END CERTIFICATE-----Generated at Wed Nov 5 05:40:34 2025 by rpki-client