$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb75fc4b-0627-4c79-b591-308eee344e77.roa File: bb75fc4b-0627-4c79-b591-308eee344e77.roa (raw, json) Hash identifier: IUVCnGsOQPRQp6mStA9LOVPWANwNIGtRNtMxOc+hDLc= Subject key identifier: 73:4A:86:CA:54:F2:4E:49:98:C0:79:2C:F9:81:98:B0:8D:E1:BA:86 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4D0435C71B01AC895E55BF6C43B1B381A2294EA8 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb75fc4b-0627-4c79-b591-308eee344e77.roa Signing time: Tue 21 Oct 2025 12:30:22 +0000 ROA not before: Tue 21 Oct 2025 12:30:22 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:610::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:04:35:c7:1b:01:ac:89:5e:55:bf:6c:43:b1:b3:81:a2:29:4e:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:30:22 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=0c96ad28ef1e4d9372364bc5942c51fa7aea5dcbe7ba7562294d5f7a1b75b214, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:56:96:22:8c:2b:3e:de:02:9e:d9:dc:8f:c2: 93:ec:2e:2f:5e:84:2e:50:ad:59:83:2a:cd:56:7f: 27:c9:0e:2b:77:79:a5:f1:eb:c1:71:ef:55:e0:82: 08:76:6d:d4:ef:98:3a:a3:51:a6:7d:91:64:fb:12: ba:d6:2d:44:9b:94:fc:21:bd:db:71:6d:53:73:aa: 85:c5:15:da:62:8d:dc:11:16:82:59:f2:e7:c1:5c: 90:da:a8:a1:33:b8:11:e4:9b:d4:57:1c:98:f6:82: 9a:8d:7e:09:1a:85:eb:e9:7f:5e:55:64:af:6c:70: d7:d5:42:e7:c2:2d:3c:eb:02:84:f1:79:52:a4:dc: 33:7c:32:6b:96:da:a3:5a:5c:41:ad:70:a0:ba:18: c1:51:b9:45:f8:37:62:46:5e:6c:82:5c:26:8f:16: ad:f7:91:52:45:f2:48:c8:cc:5e:49:e6:2b:26:72: b2:f1:df:e0:2e:76:01:df:a7:13:f2:d0:92:a3:f7: 8c:a1:94:c0:ef:e0:36:4d:67:48:ac:0e:e7:00:51: c5:94:e7:45:4a:a3:ef:e5:d8:be:d2:6a:5e:d4:77: 75:cf:cf:f5:c2:7c:15:16:be:d7:27:b8:86:ee:8d: 06:04:7e:a3:36:97:21:6b:aa:d9:25:6b:a5:cb:57: f3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:4A:86:CA:54:F2:4E:49:98:C0:79:2C:F9:81:98:B0:8D:E1:BA:86 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb75fc4b-0627-4c79-b591-308eee344e77.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:610::/48 Signature Algorithm: sha256WithRSAEncryption 8c:66:bc:f9:13:b8:22:51:f8:83:12:75:44:14:af:f5:6a:dc: de:33:a8:6e:d9:c1:7c:01:9a:0b:17:c6:85:18:37:04:df:d0: c9:43:60:3a:ba:d7:c3:33:ef:02:43:22:88:d9:af:f0:1e:9c: ad:dc:ae:d0:9e:09:0c:ee:42:f9:99:71:93:02:ac:df:56:08: 09:77:5d:08:b2:99:f9:af:8f:7b:fd:60:c4:97:52:48:cd:19: 11:fc:dc:93:ea:6c:97:b5:e0:48:ce:55:d8:33:1b:23:cc:69: 3c:3e:0f:9d:51:53:a6:5b:ff:f4:a1:2c:ad:4e:d8:eb:89:99: fc:e0:9d:e7:f0:72:da:ca:84:da:05:0c:c2:44:9a:bc:47:d4: 47:47:a3:42:23:b0:13:16:c1:87:a4:f4:73:f5:f9:1a:59:7c: 2c:43:e9:96:c2:78:09:8f:64:81:12:2a:ee:0b:5d:96:64:16: a5:4b:74:a3:ea:f2:6c:a6:99:44:a8:16:69:7f:33:3d:7e:47: f2:9c:a7:45:b4:dc:eb:c7:c6:61:c9:a1:0f:6c:98:b2:d4:3d: cc:47:00:40:12:0f:4a:19:7d:29:b8:38:65:46:99:47:03:cb: a1:ee:2e:c0:47:f2:24:56:8d:b4:8c:ef:9f:df:88:ab:7b:2f: 5a:22:e2:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTQQ1xxsBrIleVb9sQ7GzgaIpTqgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTIzMDIyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzk2YWQyOGVmMWU0ZDkzNzIzNjRiYzU5NDJjNTFmYTdh ZWE1ZGNiZTdiYTc1NjIyOTRkNWY3YTFiNzViMjE0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtVpYijCs+3gKe2dyPwpPsLi9ehC5QrVmDKs1WfyfJDit3 eaXx68Fx71Xgggh2bdTvmDqjUaZ9kWT7ErrWLUSblPwhvdtxbVNzqoXFFdpijdwR FoJZ8ufBXJDaqKEzuBHkm9RXHJj2gpqNfgkahevpf15VZK9scNfVQufCLTzrAoTx eVKk3DN8MmuW2qNaXEGtcKC6GMFRuUX4N2JGXmyCXCaPFq33kVJF8kjIzF5J5ism crLx3+AudgHfpxPy0JKj94yhlMDv4DZNZ0isDucAUcWU50VKo+/l2L7Sal7Ud3XP z/XCfBUWvtcnuIbujQYEfqM2lyFrqtkla6XLV/PvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUc0qGylTyTkmYwHks+YGYsI3huoYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JiNzVmYzRiLTA2MjctNGM3OS1iNTkxLTMwOGVlZTM0NGU3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhAwDQYJKoZIhvcNAQELBQADggEBAIxmvPkTuCJR+IMSdUQUr/Vq 3N4zqG7ZwXwBmgsXxoUYNwTf0MlDYDq618Mz7wJDIojZr/AenK3crtCeCQzuQvmZ cZMCrN9WCAl3XQiymfmvj3v9YMSXUkjNGRH83JPqbJe14EjOVdgzGyPMaTw+D51R U6Zb//ShLK1O2OuJmfzgnefwctrKhNoFDMJEmrxH1EdHo0IjsBMWwYek9HP1+RpZ fCxD6ZbCeAmPZIESKu4LXZZkFqVLdKPq8mymmUSoFml/Mz1+R/Kcp0W03OvHxmHJ oQ9smLLUPcxHAEASD0oZfSm4OGVGmUcDy6HuLsBH8iRWjbSM75/fiKt7L1oi4p0= -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:17 2025 by rpki-client