$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa File: c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa (raw, json) Hash identifier: Urqu/7l3mbpIBOy/ldJUFPcqcHMCESzBNqW7dL2CZus= Subject key identifier: E0:10:12:55:70:D3:A5:24:FD:A4:3D:11:D1:55:CF:6B:C9:23:42:37 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 78F7B5B265F4BCA37AC08F0230B5749FFFE8E015 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa Signing time: Tue 21 Oct 2025 12:30:17 +0000 ROA not before: Tue 21 Oct 2025 12:30:17 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:399::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:f7:b5:b2:65:f4:bc:a3:7a:c0:8f:02:30:b5:74:9f:ff:e8:e0:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:30:17 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=eb18fbbcdea9c48cdca610fd5162269487d0fad7d169f61e63941610dd916e92, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dd:6f:2d:25:50:16:be:5f:a9:01:27:2d:c3: f4:f3:cd:4a:ed:27:b7:3d:31:2a:67:37:de:8f:ef: 7e:21:8e:df:2a:e0:b3:ce:42:7b:ea:8f:cd:da:9d: 8a:a4:f3:ae:88:d5:38:5d:50:be:1d:9a:0b:61:c4: 82:52:f0:29:ae:df:42:0c:d2:0b:0b:b3:be:24:79: 2a:a5:d3:b7:d3:94:ea:fc:9a:14:92:39:9c:18:52: 07:79:02:fd:1d:36:44:5d:4f:be:cd:e6:73:ad:b5: 06:8c:ac:c6:4b:bd:cc:12:6b:62:56:c3:a2:d1:1d: 48:07:bc:60:e5:f1:7e:7b:f1:fa:29:a3:be:b3:bd: 59:9b:82:32:e9:9b:6e:e4:4e:d3:7e:23:30:b6:85: b6:7e:86:f1:57:d2:b5:6b:17:96:a0:4f:46:07:d0: a5:c3:04:84:b4:fd:a5:29:ed:30:25:9a:d4:ff:91: a2:33:ed:0d:07:6b:f7:5c:a1:cf:ee:45:db:c1:13: 71:ec:ac:bd:0b:8f:89:e4:5a:47:d3:d0:09:39:31: 3a:f2:50:0c:35:55:57:70:e6:f3:ef:13:d1:28:49: 54:ed:3e:e7:51:aa:f1:54:79:79:96:94:48:6b:3d: 87:ca:5e:3c:f2:e8:5c:07:c6:c5:55:42:b5:91:4c: c6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:10:12:55:70:D3:A5:24:FD:A4:3D:11:D1:55:CF:6B:C9:23:42:37 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:399::/48 Signature Algorithm: sha256WithRSAEncryption 2c:e5:fb:37:c6:58:c1:1e:24:4d:41:5d:e1:8d:86:87:0b:05: 71:ee:4d:c2:38:0e:4f:7b:11:69:51:52:63:eb:0c:8d:20:05: 0f:6c:8d:da:73:2a:fc:20:fe:bd:60:2b:1c:72:e2:b4:aa:fd: 29:18:0c:c1:6a:c6:67:f6:44:d5:03:6d:83:17:45:9a:77:09: 47:7f:84:78:71:e0:81:0c:8f:b1:6d:9c:15:8c:5a:d0:4b:1c: 8f:cc:46:2c:52:f4:60:75:fc:e2:12:3c:af:0d:51:8f:bd:9d: 87:c5:24:a6:4a:3b:dd:0b:85:0c:77:95:1d:f4:25:3e:33:25: 8a:bd:ec:60:ba:28:a2:05:b3:94:4f:13:59:35:07:00:4e:46: a6:f8:2b:49:52:74:ac:6c:00:34:a3:09:29:59:2e:f4:47:a2: 53:95:79:26:51:23:cb:a0:2b:ef:3b:c9:e0:f4:d3:ea:1b:b3: 0a:db:69:e7:27:17:b0:91:b1:fb:7f:f8:54:7b:7b:4c:39:e7: 68:45:1e:ca:19:af:c4:e5:bd:cb:d6:6f:fd:76:8d:d1:d9:25: f8:ab:e0:09:c1:56:28:ab:dc:a1:02:88:31:3b:24:56:78:7f: 8f:73:fb:98:0d:78:59:40:8b:06:0a:2b:13:61:54:dd:d6:08: bc:2e:40:5c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUePe1smX0vKN6wI8CMLV0n//o4BUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTIzMDE3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjE4ZmJiY2RlYTljNDhjZGNhNjEwZmQ1MTYyMjY5NDg3 ZDBmYWQ3ZDE2OWY2MWU2Mzk0MTYxMGRkOTE2ZTkyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN3W8tJVAWvl+pASctw/TzzUrtJ7c9MSpnN96P734hjt8q 4LPOQnvqj83anYqk866I1ThdUL4dmgthxIJS8Cmu30IM0gsLs74keSql07fTlOr8 mhSSOZwYUgd5Av0dNkRdT77N5nOttQaMrMZLvcwSa2JWw6LRHUgHvGDl8X578fop o76zvVmbgjLpm27kTtN+IzC2hbZ+hvFX0rVrF5agT0YH0KXDBIS0/aUp7TAlmtT/ kaIz7Q0Ha/dcoc/uRdvBE3HsrL0Lj4nkWkfT0Ak5MTryUAw1VVdw5vPvE9EoSVTt PudRqvFUeXmWlEhrPYfKXjzy6FwHxsVVQrWRTMb7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4BASVXDTpST9pD0R0VXPa8kjQjcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2MzY2ZjODExLTIzNzktNDBkMC05MTFkLWJlYTBiYTJiOWMzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5kwDQYJKoZIhvcNAQELBQADggEBACzl+zfGWMEeJE1BXeGNhocL BXHuTcI4Dk97EWlRUmPrDI0gBQ9sjdpzKvwg/r1gKxxy4rSq/SkYDMFqxmf2RNUD bYMXRZp3CUd/hHhx4IEMj7FtnBWMWtBLHI/MRixS9GB1/OISPK8NUY+9nYfFJKZK O90LhQx3lR30JT4zJYq97GC6KKIFs5RPE1k1BwBORqb4K0lSdKxsADSjCSlZLvRH olOVeSZRI8ugK+87yeD00+obswrbaecnF7CRsft/+FR7e0w552hFHsoZr8TlvcvW b/12jdHZJfir4AnBViir3KECiDE7JFZ4f49z+5gNeFlAiwYKKxNhVN3WCLwuQFw= -----END CERTIFICATE-----Generated at Wed Nov 5 07:44:40 2025 by rpki-client