$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d29b6497-5e29-4d74-9bc9-54ef6082f794.roa File: d29b6497-5e29-4d74-9bc9-54ef6082f794.roa (raw, json) Hash identifier: 2gOfazaESt8ic1gVFY6o3f37vQfb8fsranfYLkKQOV8= Subject key identifier: FE:84:C4:3B:D9:1B:9D:12:68:73:AC:F5:7B:BB:DB:EB:4C:29:00:7F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2A4747FE7BEC74D3BCDBB862BE2305E9615F5BA7 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d29b6497-5e29-4d74-9bc9-54ef6082f794.roa Signing time: Tue 21 Oct 2025 12:30:12 +0000 ROA not before: Tue 21 Oct 2025 12:30:12 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:308::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:47:47:fe:7b:ec:74:d3:bc:db:b8:62:be:23:05:e9:61:5f:5b:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:30:12 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=c9f4875241df31e4f5c4f08c95f9332398a0c4f8b2ab887ed963e5148c595bec, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:f0:85:e4:5a:f3:8d:02:f5:5c:cf:b7:9c: a7:cc:ca:68:4a:ac:c8:fe:17:3b:ee:0c:8c:45:0b: 7f:38:a7:50:63:1f:ec:3e:46:4f:5c:40:18:c1:f5: 2e:37:f6:81:1d:47:28:41:2e:5f:72:68:bf:1f:36: 73:c8:41:b5:2f:ba:5e:6e:d7:11:ef:b0:3c:95:39: 33:65:16:b0:d5:4c:12:a3:fa:38:b7:49:7f:b7:b1: a9:c4:af:f2:b5:bc:ca:3e:16:85:0e:6d:94:66:5d: 30:40:c7:f6:6f:b9:23:45:a8:33:12:8a:3a:20:a6: 5f:25:5a:5a:0a:a3:17:8b:e6:0e:94:21:63:a6:69: 22:f3:1b:28:af:12:0a:10:f1:02:b4:a6:47:8a:fc: 9e:c6:02:24:31:68:bb:fd:b8:95:fc:c0:c3:a6:89: aa:a8:f0:f9:68:5b:ee:9d:85:be:6f:93:2c:99:0d: 3d:9b:b6:76:9f:17:18:d2:7f:be:15:03:f1:2d:3d: 24:11:ba:4b:43:18:3f:20:64:f6:17:d6:be:46:bb: ee:ea:86:64:f3:e1:f4:05:f3:ba:80:a2:2d:b4:6d: 64:93:49:5c:07:35:b3:df:d7:2b:4e:f0:6a:42:be: 55:21:37:eb:2f:0b:39:a5:d0:c0:f0:8a:c5:34:3c: f0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:84:C4:3B:D9:1B:9D:12:68:73:AC:F5:7B:BB:DB:EB:4C:29:00:7F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d29b6497-5e29-4d74-9bc9-54ef6082f794.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:308::/48 Signature Algorithm: sha256WithRSAEncryption 99:33:e7:bf:ee:58:7d:30:7d:c5:77:c6:98:6e:ee:58:03:8d: f1:ef:e9:4c:d6:ff:9d:ee:9f:4a:ae:31:6c:e2:44:5a:47:09: b9:94:fd:97:08:73:df:a7:75:29:b5:df:98:6d:7f:5c:84:b3: 67:fc:4e:e7:3f:eb:aa:88:14:25:29:f9:94:a4:b3:e2:0d:d9: eb:97:06:93:a7:9a:fb:40:82:62:f3:d7:a6:fd:51:8d:43:5f: c7:6b:b2:c0:e8:55:c0:53:bf:ed:0e:13:e7:89:38:b1:a5:00: 0b:d9:c6:17:47:ff:74:e7:34:b5:3a:af:27:df:7a:70:7d:59: f3:45:01:1f:e4:eb:c6:11:ab:4f:f4:ef:1e:a7:eb:52:62:95: 8d:9a:be:ca:b6:7b:73:a4:15:16:af:c0:d1:78:a5:09:e4:9b: fe:b3:06:df:65:bc:02:0f:d3:fc:e6:60:56:6a:55:34:1b:9d: 74:5e:a1:47:52:d2:c0:05:e2:cc:16:c2:fc:c0:73:c6:8e:fd: 8c:eb:84:64:45:c8:09:26:a2:a9:d0:32:48:60:cc:0c:7b:cb: 21:1b:44:60:2b:55:ef:b6:aa:e7:96:5e:16:56:88:b6:d9:65: 8f:d7:87:03:6f:3c:3e:e5:5c:a7:ad:d0:a0:68:6a:80:a8:1c: 0c:e8:17:f5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKkdH/nvsdNO827hiviMF6WFfW6cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTIzMDEyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWY0ODc1MjQxZGYzMWU0ZjVjNGYwOGM5NWY5MzMyMzk4 YTBjNGY4YjJhYjg4N2VkOTYzZTUxNDhjNTk1YmVjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/w/CF5FrzjQL1XM+3nKfMymhKrMj+FzvuDIxFC384p1Bj H+w+Rk9cQBjB9S439oEdRyhBLl9yaL8fNnPIQbUvul5u1xHvsDyVOTNlFrDVTBKj +ji3SX+3sanEr/K1vMo+FoUObZRmXTBAx/ZvuSNFqDMSijogpl8lWloKoxeL5g6U IWOmaSLzGyivEgoQ8QK0pkeK/J7GAiQxaLv9uJX8wMOmiaqo8PloW+6dhb5vkyyZ DT2btnafFxjSf74VA/EtPSQRuktDGD8gZPYX1r5Gu+7qhmTz4fQF87qAoi20bWST SVwHNbPf1ytO8GpCvlUhN+svCzml0MDwisU0PPClAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/oTEO9kbnRJoc6z1e7vb60wpAH8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2QyOWI2NDk3LTVlMjktNGQ3NC05YmM5LTU0ZWY2MDgyZjc5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAwgwDQYJKoZIhvcNAQELBQADggEBAJkz57/uWH0wfcV3xphu7lgD jfHv6UzW/53un0quMWziRFpHCbmU/ZcIc9+ndSm135htf1yEs2f8Tuc/66qIFCUp +ZSks+IN2euXBpOnmvtAgmLz16b9UY1DX8drssDoVcBTv+0OE+eJOLGlAAvZxhdH /3TnNLU6ryffenB9WfNFAR/k68YRq0/07x6n61JilY2avsq2e3OkFRavwNF4pQnk m/6zBt9lvAIP0/zmYFZqVTQbnXReoUdS0sAF4swWwvzAc8aO/YzrhGRFyAkmoqnQ MkhgzAx7yyEbRGArVe+2queWXhZWiLbZZY/XhwNvPD7lXKet0KBoaoCoHAzoF/U= -----END CERTIFICATE-----Generated at Wed Nov 5 09:30:38 2025 by rpki-client