$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f73b34f7-01b4-474f-a473-362785b20779.roa File: f73b34f7-01b4-474f-a473-362785b20779.roa (raw, json) Hash identifier: IGXsUUUwf2LTghQV9hKOO+kW0li/xdoJrJ31HutK4u0= Subject key identifier: 36:C4:CE:BD:B0:FC:C0:F6:A7:D1:F3:8B:C6:CF:07:27:69:60:89:BE Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1FB76B1B8FE694A53E518CEE8D0E6DEDB82C9C49 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f73b34f7-01b4-474f-a473-362785b20779.roa Signing time: Tue 04 Nov 2025 16:41:03 +0000 ROA not before: Tue 04 Nov 2025 16:41:03 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c1a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b7:6b:1b:8f:e6:94:a5:3e:51:8c:ee:8d:0e:6d:ed:b8:2c:9c:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 4 16:41:03 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=857eb2fc8120a4d99a9d5ff45b9eb68cd7968f2a48d6beded5cd23792cbb7e73, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fa:44:2b:5b:41:ca:02:3f:ca:4c:ba:59:4b: 6e:5c:d0:4c:de:d1:8b:6d:70:44:06:4f:ef:d3:0b: 8d:6a:f2:35:4b:cd:eb:7a:fc:a5:ac:86:ef:a2:cc: 7a:b9:a7:7d:f0:0a:5a:03:21:24:3c:bb:53:c3:39: 79:2d:19:e8:27:be:bd:c1:cd:46:6a:7b:d1:b5:37: 52:09:06:22:9b:c3:f8:c6:47:29:67:f5:a5:6c:0d: 2a:01:1c:ad:d2:c6:b5:9a:29:d5:7c:a7:65:ad:3a: ee:0c:84:e7:bd:04:f3:3c:30:12:40:47:b5:9c:cb: 2b:8b:51:76:d6:7b:ab:d3:94:39:c4:47:37:6b:e0: bc:d2:43:f5:bb:c7:d9:0b:7b:f6:f0:fc:49:01:6d: 76:8b:4c:d0:46:7d:c9:a2:da:d9:9f:86:d8:72:a6: 96:96:25:fd:06:4d:6e:20:e0:90:e0:5e:01:96:d8: e6:cb:8d:9d:aa:9f:bf:9b:61:1e:f3:49:59:01:1a: ac:b6:0f:1b:73:c2:42:91:94:ac:16:29:f8:0c:03: f4:0f:de:fe:63:3c:8a:38:b1:82:b5:9d:6d:63:23: b0:30:ea:7e:38:f8:05:51:6d:c5:6f:1e:d2:34:ff: df:83:bd:a1:0a:ce:f6:00:fb:7a:32:e8:8f:15:56: ea:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C4:CE:BD:B0:FC:C0:F6:A7:D1:F3:8B:C6:CF:07:27:69:60:89:BE X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f73b34f7-01b4-474f-a473-362785b20779.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1a::/48 Signature Algorithm: sha256WithRSAEncryption 42:53:b7:19:bc:c8:c7:ac:13:e3:7b:93:af:01:58:9f:11:10: b7:ff:78:5c:b5:0c:e1:b8:dc:91:29:14:30:e1:6a:02:b6:ce: 4f:c6:28:72:d1:68:15:ea:09:be:30:a4:4f:1c:e5:f8:57:42: 59:bc:4c:cf:8c:c3:b7:cc:cd:3e:ec:f1:ce:f3:ee:38:6b:a5: 20:2d:02:ff:bd:0b:bc:73:1f:b5:3a:12:d1:6c:a3:c6:0d:26: 3d:cc:f4:b4:00:12:24:93:f2:6c:fe:b9:3d:78:3f:a5:c6:04: f5:a7:a3:31:49:ae:dd:7f:4a:d4:44:9a:84:ab:09:e6:0b:af: b1:1c:b5:f3:8c:42:00:11:06:b8:47:66:1c:32:b4:6b:45:e2: f9:a0:e8:c0:9f:c7:af:a5:21:77:bc:31:cd:f7:5b:b7:c4:b6: 1b:ac:7b:33:a9:38:ac:db:38:3d:69:d2:92:a9:db:dc:9d:e9: e1:4f:b9:df:c7:8e:e3:66:d3:1c:60:74:a2:e8:19:49:d6:af: df:d4:95:f7:16:02:2f:f6:a1:e7:57:b6:b1:12:f8:70:17:6e: d8:25:b1:87:f9:62:3a:ab:ce:4d:ab:1d:f8:2d:bb:3a:43:31: 2f:aa:ad:55:72:a5:01:b7:7a:2e:87:8e:84:19:31:5b:7a:b6: 46:82:86:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUH7drG4/mlKU+UYzujQ5t7bgsnEkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTA0MTY0MTAzWhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTdlYjJmYzgxMjBhNGQ5OWE5ZDVmZjQ1YjllYjY4Y2Q3 OTY4ZjJhNDhkNmJlZGVkNWNkMjM3OTJjYmI3ZTczMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDe+kQrW0HKAj/KTLpZS25c0Eze0YttcEQGT+/TC41q8jVL zet6/KWshu+izHq5p33wCloDISQ8u1PDOXktGegnvr3BzUZqe9G1N1IJBiKbw/jG Ryln9aVsDSoBHK3SxrWaKdV8p2WtOu4MhOe9BPM8MBJAR7WcyyuLUXbWe6vTlDnE Rzdr4LzSQ/W7x9kLe/bw/EkBbXaLTNBGfcmi2tmfhthyppaWJf0GTW4g4JDgXgGW 2ObLjZ2qn7+bYR7zSVkBGqy2DxtzwkKRlKwWKfgMA/QP3v5jPIo4sYK1nW1jI7Aw 6n44+AVRbcVvHtI0/9+DvaEKzvYA+3oy6I8VVur7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNsTOvbD8wPan0fOLxs8HJ2lgib4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Y3M2IzNGY3LTAxYjQtNDc0Zi1hNDczLTM2Mjc4NWIyMDc3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBowDQYJKoZIhvcNAQELBQADggEBAEJTtxm8yMesE+N7k68BWJ8R ELf/eFy1DOG43JEpFDDhagK2zk/GKHLRaBXqCb4wpE8c5fhXQlm8TM+Mw7fMzT7s 8c7z7jhrpSAtAv+9C7xzH7U6EtFso8YNJj3M9LQAEiST8mz+uT14P6XGBPWnozFJ rt1/StREmoSrCeYLr7EctfOMQgARBrhHZhwytGtF4vmg6MCfx6+lIXe8Mc33W7fE thusezOpOKzbOD1p0pKp29yd6eFPud/HjuNm0xxgdKLoGUnWr9/UlfcWAi/2oedX trES+HAXbtglsYf5Yjqrzk2rHfgtuzpDMS+qrVVypQG3ei6HjoQZMVt6tkaChlA= -----END CERTIFICATE-----Generated at Wed Nov 5 07:09:19 2025 by rpki-client