$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa File: e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa (raw, json) Hash identifier: anvpvBFEV1hJaYiGz2jcb9/GIcSvcfqtfXugHnA7IaM= Subject key identifier: 4C:DF:8C:A4:E2:23:D6:3D:43:2F:6E:9B:8A:C2:90:1C:15:BF:71:82 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1D0769A032943B29A75A319DEA74F8F65C8DD1BE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa Signing time: Tue 04 Nov 2025 16:50:50 +0000 ROA not before: Tue 04 Nov 2025 16:50:50 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:07:69:a0:32:94:3b:29:a7:5a:31:9d:ea:74:f8:f6:5c:8d:d1:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 4 16:50:50 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=a49cf87d56dcb247a8a4bfbb004570228c0e7247fb93842fd9bbc1f97bad6cab, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2f:27:c0:9b:c3:51:79:cd:20:0c:f3:00:cd: e1:19:9c:97:5a:6c:0e:1d:0c:89:72:d6:58:51:93: 81:30:89:b8:cb:49:7a:e9:4c:31:48:96:b7:fd:f8: 90:0f:4d:f1:c7:bd:32:ec:99:03:98:a4:88:b9:be: 5a:07:fc:98:68:62:40:5d:75:1a:0a:59:a8:b2:70: 62:fb:9b:d8:18:65:9f:f4:82:d4:eb:09:62:4d:65: 45:01:30:3e:f7:00:90:35:ae:5b:c1:43:71:28:fe: 9e:9f:5d:57:9e:87:e2:37:32:0e:89:4f:4b:6b:a7: 3c:7c:2b:2e:ac:91:c2:2f:5b:e8:c7:a3:57:55:4f: 7b:49:33:5e:9c:ee:b9:d1:19:e8:8c:57:7b:75:7c: aa:93:5f:15:dc:e0:5f:c0:08:25:cf:88:01:38:b7: b6:70:b7:ec:03:55:c8:92:92:c1:dc:83:69:d8:6c: bd:9b:7b:96:2c:7e:cd:13:d2:5c:33:9c:af:d9:d1: bb:a3:6f:54:c4:2a:1a:09:ff:50:1a:53:cb:6b:ed: 59:fc:8d:52:82:43:72:10:4c:09:9b:60:d8:91:ee: 81:8a:90:98:7a:d9:92:b2:b9:b9:ed:77:c0:fa:18: 66:9b:0a:77:c6:45:0e:7b:7f:05:c1:3b:3d:e4:0d: 92:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:DF:8C:A4:E2:23:D6:3D:43:2F:6E:9B:8A:C2:90:1C:15:BF:71:82 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:94:11:48:bb:f5:a6:2d:1e:87:1e:44:bc:9e:09:c1:e2:19: c3:83:1e:47:73:ac:ff:7a:19:1e:df:1a:79:b9:e0:69:1b:10: 58:59:d7:61:65:09:ec:00:ae:f8:9e:e3:cd:81:4c:3c:e2:a0: 60:aa:dd:89:18:49:47:58:79:b4:68:7c:1e:16:fe:47:54:60: 07:f0:ff:3f:46:d6:c6:d2:67:f0:ba:bb:f2:58:e5:2c:24:c2: 42:c4:4b:aa:98:41:6b:37:40:19:49:5a:24:d8:19:88:d0:79: 74:d2:0c:ec:c0:c2:21:61:c0:b2:7a:35:2f:e0:b4:39:54:64: 71:3d:9c:cd:4a:55:6b:a7:56:07:51:f4:cf:7d:08:4c:77:96: df:b1:77:d7:21:8c:30:82:25:b4:ef:3d:4b:be:ec:71:ee:da: 60:41:8b:04:38:23:72:04:aa:8b:fb:ac:f2:56:c9:0f:11:fa: 53:a6:f0:03:c9:f0:10:19:9d:cf:3f:3b:e2:62:0f:43:0c:00: 2e:18:c2:9d:d5:fb:32:07:64:dd:db:32:85:91:b9:b8:ff:fd: cb:21:ad:ca:fb:62:25:67:f4:d5:67:76:9f:11:0e:26:86:d0: bd:e3:5b:08:3b:90:26:f4:61:1c:8a:d9:06:9d:70:4f:88:02: 32:6b:de:45 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHQdpoDKUOymnWjGd6nT49lyN0b4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTA0MTY1MDUwWhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDljZjg3ZDU2ZGNiMjQ3YThhNGJmYmIwMDQ1NzAyMjhj MGU3MjQ3ZmI5Mzg0MmZkOWJiYzFmOTdiYWQ2Y2FiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDLyfAm8NRec0gDPMAzeEZnJdabA4dDIly1lhRk4EwibjL SXrpTDFIlrf9+JAPTfHHvTLsmQOYpIi5vloH/JhoYkBddRoKWaiycGL7m9gYZZ/0 gtTrCWJNZUUBMD73AJA1rlvBQ3Eo/p6fXVeeh+I3Mg6JT0trpzx8Ky6skcIvW+jH o1dVT3tJM16c7rnRGeiMV3t1fKqTXxXc4F/ACCXPiAE4t7Zwt+wDVciSksHcg2nY bL2be5Ysfs0T0lwznK/Z0bujb1TEKhoJ/1AaU8tr7Vn8jVKCQ3IQTAmbYNiR7oGK kJh62ZKyubntd8D6GGabCnfGRQ57fwXBOz3kDZKNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTN+MpOIj1j1DL26bisKQHBW/cYIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U0MWJlM2NlLWVkMGUtNGM3ZS1hOWZkLTQxMTQ5MDFmYTQwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCtUjANBgkqhkiG9w0BAQsFAAOCAQEAjZQRSLv1pi0ehx5EvJ4JweIZw4Me R3Os/3oZHt8aebngaRsQWFnXYWUJ7ACu+J7jzYFMPOKgYKrdiRhJR1h5tGh8Hhb+ R1RgB/D/P0bWxtJn8Lq78ljlLCTCQsRLqphBazdAGUlaJNgZiNB5dNIM7MDCIWHA sno1L+C0OVRkcT2czUpVa6dWB1H0z30ITHeW37F31yGMMIIltO89S77sce7aYEGL BDgjcgSqi/us8lbJDxH6U6bwA8nwEBmdzz874mIPQwwALhjCndX7Mgdk3dsyhZG5 uP/9yyGtyvtiJWf01Wd2nxEOJobQveNbCDuQJvRhHIrZBp1wT4gCMmveRQ== -----END CERTIFICATE-----Generated at Wed Nov 5 14:06:27 2025 by rpki-client