$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ce035316-a06e-4b49-a04d-0f1a5ca31246.roa File: ce035316-a06e-4b49-a04d-0f1a5ca31246.roa (raw, json) Hash identifier: Fn5pc2zXPH5XT5aYXg72hFEq+8NE2Du4E/eNdLu/cR0= Subject key identifier: A3:CD:8B:5C:B3:56:9A:25:44:70:88:F4:94:63:39:83:D3:81:31:B3 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1433D18C6DCA7B590325ACA1134BE8FB09AC203E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ce035316-a06e-4b49-a04d-0f1a5ca31246.roa Signing time: Tue 04 Nov 2025 16:41:30 +0000 ROA not before: Tue 04 Nov 2025 16:41:30 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:33:d1:8c:6d:ca:7b:59:03:25:ac:a1:13:4b:e8:fb:09:ac:20:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 4 16:41:30 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=2e32d4b53e38a25997b7d19d201f4ad54d27b0e2b9e2d3fb9039b9acc827eb1f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4f:1d:3a:23:71:9d:e8:49:bd:58:46:bf:07: 3b:6d:40:75:77:af:8f:54:24:3c:ae:7f:d6:33:bd: 18:85:2b:08:2f:33:60:17:93:f8:e6:39:eb:cd:f9: b2:0f:a5:10:6a:b0:aa:9a:a2:88:57:85:36:c5:46: 0c:24:83:0c:0f:02:8f:35:6e:42:3e:9f:3d:fc:c3: 03:f5:d4:3a:57:37:f8:40:1d:ab:76:6d:ad:f3:4a: bd:48:27:99:61:56:65:ec:0f:b7:a5:59:a5:30:68: c6:59:fb:d6:12:f3:09:72:72:69:5f:9a:0d:e0:f3: 48:e5:29:78:7a:ed:2e:7b:9e:23:f4:16:d0:1d:d9: 01:6d:f4:32:d4:63:cb:a5:a7:cd:d6:a7:3f:ec:d2: dd:28:fd:4b:fa:f9:47:ab:d2:97:be:79:68:0d:30: 51:fe:ae:3d:1f:a9:8f:72:8e:f9:da:f1:a2:ed:44: 88:81:a5:8f:4c:c9:12:c0:b9:59:e7:83:b6:14:1b: a8:9f:cd:41:75:79:09:b3:68:c4:10:9d:25:76:30: a9:28:64:3e:97:9c:6c:31:f1:68:b2:fd:fe:9a:45: 99:d1:71:75:cf:ee:91:a5:03:03:34:4d:59:28:06: 2e:c2:97:91:2e:00:60:6e:51:42:8b:8c:36:9a:82: 9c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CD:8B:5C:B3:56:9A:25:44:70:88:F4:94:63:39:83:D3:81:31:B3 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ce035316-a06e-4b49-a04d-0f1a5ca31246.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c18::/48 Signature Algorithm: sha256WithRSAEncryption 24:14:c4:2e:6d:94:6c:f7:76:a4:f5:fe:d3:13:5f:05:8b:f1: a1:5a:71:24:a2:15:77:78:88:10:f9:d8:f7:61:8c:4c:44:b6: fd:8d:34:ef:dc:b7:d4:dc:4d:6b:ab:c5:96:9b:37:09:0b:46: 65:1b:c8:be:19:c9:53:91:de:6d:81:c2:81:de:69:b4:91:78: a9:87:17:2c:76:9b:50:d7:a7:7c:ec:63:9d:00:a1:f5:52:0d: 5e:74:e8:57:ed:d2:e2:05:f5:07:ee:01:6d:81:2d:a3:98:33: aa:c7:44:55:3a:ad:2a:29:75:f8:7f:64:7d:d0:f0:cb:53:b6: a2:dd:44:83:82:c0:9b:2e:a0:d0:33:f5:1e:f5:c3:23:69:7d: fb:ae:b7:96:73:9e:b3:15:b4:24:2b:71:12:c2:32:83:77:11: c2:f0:f9:be:78:bf:76:a2:37:d2:bf:22:09:f6:c4:74:e1:41: 4e:e7:ce:66:42:29:54:62:9b:5d:d3:38:f0:09:25:7e:1e:2a: b7:10:b1:50:76:aa:e8:9e:eb:74:83:82:00:e2:55:e9:4a:a5: d6:52:24:5e:b5:16:5d:42:27:a3:ef:a9:9f:8f:cd:04:60:e9: 76:ad:f2:d7:20:1d:58:ce:90:14:d5:31:f3:f2:9f:88:eb:2d: a3:e2:c2:bb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFDPRjG3Ke1kDJayhE0vo+wmsID4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTA0MTY0MTMwWhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTMyZDRiNTNlMzhhMjU5OTdiN2QxOWQyMDFmNGFkNTRk MjdiMGUyYjllMmQzZmI5MDM5YjlhY2M4MjdlYjFmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2Tx06I3Gd6Em9WEa/BzttQHV3r49UJDyuf9YzvRiFKwgv M2AXk/jmOevN+bIPpRBqsKqaoohXhTbFRgwkgwwPAo81bkI+nz38wwP11DpXN/hA Hat2ba3zSr1IJ5lhVmXsD7elWaUwaMZZ+9YS8wlycmlfmg3g80jlKXh67S57niP0 FtAd2QFt9DLUY8ulp83Wpz/s0t0o/Uv6+Uer0pe+eWgNMFH+rj0fqY9yjvna8aLt RIiBpY9MyRLAuVnng7YUG6ifzUF1eQmzaMQQnSV2MKkoZD6XnGwx8Wiy/f6aRZnR cXXP7pGlAwM0TVkoBi7Cl5EuAGBuUUKLjDaagpw1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUo82LXLNWmiVEcIj0lGM5g9OBMbMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2NlMDM1MzE2LWEwNmUtNGI0OS1hMDRkLTBmMWE1Y2EzMTI0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBgwDQYJKoZIhvcNAQELBQADggEBACQUxC5tlGz3dqT1/tMTXwWL 8aFacSSiFXd4iBD52PdhjExEtv2NNO/ct9TcTWurxZabNwkLRmUbyL4ZyVOR3m2B woHeabSReKmHFyx2m1DXp3zsY50AofVSDV506Fft0uIF9QfuAW2BLaOYM6rHRFU6 rSopdfh/ZH3Q8MtTtqLdRIOCwJsuoNAz9R71wyNpffuut5ZznrMVtCQrcRLCMoN3 EcLw+b54v3aiN9K/Ign2xHThQU7nzmZCKVRim13TOPAJJX4eKrcQsVB2quie63SD ggDiVelKpdZSJF61Fl1CJ6PvqZ+PzQRg6Xat8tcgHVjOkBTVMfPyn4jrLaPiwrs= -----END CERTIFICATE-----Generated at Wed Nov 5 21:10:01 2025 by rpki-client