$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa File: abd82657-873c-4247-976a-fa627e8bd542.roa (raw, json) Hash identifier: 64h3T83HnAKd+HsAU/3X5HC7mkgLiCDyvf/PgZqXR6Q= Subject key identifier: E3:2A:DA:D8:81:87:D6:1F:30:B7:28:9A:C7:6E:11:36:56:2B:09:D1 Certificate issuer: /CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Certificate serial: 295480E9A5CF7819AD9EC4FCB65BEDC90E59EBA1 Authority key identifier: 53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa Signing time: Sat 01 Nov 2025 00:00:01 +0000 ROA not before: Sat 01 Nov 2025 00:00:01 +0000 ROA not after: Sat 06 Dec 2025 23:59:59 +0000 asID: 54113 IP address blocks: 2606:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:54:80:e9:a5:cf:78:19:ad:9e:c4:fc:b6:5b:ed:c9:0e:59:eb:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Validity Not Before: Nov 1 00:00:01 2025 GMT Not After : Dec 6 23:59:59 2025 GMT Subject: serialNumber=a845bcdcdaef372ab2c03f44ca2d74fe8d7969ff56dc4500c72a67179120b912, CN=2c2421b9-0ce5-48c5-ac23-91a5565f7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:aa:61:9d:c8:d1:6e:fb:7f:a2:94:d8:a6: a6:34:51:cb:bd:ee:9e:41:a2:34:a2:ce:90:a6:37: ba:ca:89:f2:ac:0c:94:ce:d0:9d:f6:b8:95:d0:d2: 9d:97:55:21:5d:77:a2:30:a1:a7:4f:5c:a8:fd:9d: 0d:0a:2a:9b:d6:45:22:36:4a:27:43:c0:16:ed:18: f9:a3:24:9e:e9:0c:64:27:3a:bb:24:24:25:3c:af: 1e:0e:2d:a3:30:2b:4f:44:e7:be:e4:38:39:b8:0f: d5:75:16:04:94:0a:7d:20:00:7a:61:16:75:c6:77: f7:b7:2c:97:0d:26:ec:6a:13:29:78:b6:2b:1f:58: 23:35:16:07:8d:ab:43:2e:73:9c:1c:75:73:4c:98: 9d:39:be:cf:07:c5:08:72:04:7a:55:3f:42:a6:5c: 3f:74:63:cc:ea:9b:68:39:94:71:d5:57:74:a8:6c: 4a:6d:f1:d6:6b:47:04:34:88:7e:62:ce:93:44:6a: 90:be:8d:d5:be:bd:de:ec:40:0e:f7:50:b7:85:dc: 08:7e:9e:93:81:5e:2a:49:4f:1a:86:43:23:b9:b0: f4:c4:97:3e:f4:57:bd:b5:ea:03:4e:d9:69:d2:eb: be:27:55:4d:44:17:77:c1:4c:19:56:0d:7b:1c:e2: 08:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:2A:DA:D8:81:87:D6:1F:30:B7:28:9A:C7:6E:11:36:56:2B:09:D1 X509v3 Authority Key Identifier: keyid:53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 15:a8:75:70:74:2d:08:30:eb:e5:ea:15:35:51:6b:f9:c3:c1: 10:5b:07:6c:b0:a6:a9:7a:c0:7e:77:c1:5d:d5:9f:2b:fc:dc: dc:12:9a:2a:6e:14:6e:f6:53:20:9e:50:00:2c:d8:d9:03:2c: ba:73:b1:ba:be:ab:6f:c4:cf:26:55:d0:4f:bd:8e:a0:47:26: e8:9e:fe:ea:75:f3:fa:a0:60:6d:af:c3:37:de:9e:44:72:35: 33:f6:66:fb:ff:66:1c:64:4d:1d:95:a2:3d:b2:10:30:5a:1a: 9f:b8:22:a2:f3:cc:26:a8:ff:d0:ee:d7:06:4f:d0:26:40:cc: 4d:61:1b:c5:30:ec:32:c0:3d:55:f9:b6:ab:c8:73:1d:f5:2b: ac:f7:58:36:dd:e1:d1:b8:27:4f:2f:4f:e8:1f:62:61:21:4d: e9:5f:28:58:23:10:a5:8b:9e:22:54:40:bd:3d:56:0f:5c:06: 4f:61:10:77:1f:42:b1:e7:4a:b4:90:36:49:f3:f7:b8:5e:ad: ce:43:dc:16:43:1b:be:e2:5f:fe:47:38:4d:e1:0a:97:67:84: 63:8d:38:3b:cb:27:36:ae:20:b5:dd:cd:55:29:9c:a6:32:ac: fc:34:5a:1c:73:7d:14:5d:68:68:f8:5c:32:e3:41:92:d2:21: 9e:a9:44:60 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUKVSA6aXPeBmtnsT8tlvtyQ5Z66EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjMwNTMwMzQwODgxMTU2YzJlMTRhZmVmOWQ2MTk2MjI3 ZTJjNjAzNWEwOWVmMGQyNTcwHhcNMjUxMTAxMDAwMDAxWhcNMjUxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODQ1YmNkY2RhZWYzNzJhYjJjMDNmNDRjYTJkNzRmZThk Nzk2OWZmNTZkYzQ1MDBjNzJhNjcxNzkxMjBiOTEyMS0wKwYDVQQDEyQyYzI0MjFi OS0wY2U1LTQ4YzUtYWMyMy05MWE1NTY1ZjdhZmMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkwKphncjRbvt/opTYpqY0Ucu97p5BojSizpCmN7rKifKs DJTO0J32uJXQ0p2XVSFdd6IwoadPXKj9nQ0KKpvWRSI2SidDwBbtGPmjJJ7pDGQn OrskJCU8rx4OLaMwK09E577kODm4D9V1FgSUCn0gAHphFnXGd/e3LJcNJuxqEyl4 tisfWCM1FgeNq0Muc5wcdXNMmJ05vs8HxQhyBHpVP0KmXD90Y8zqm2g5lHHVV3So bEpt8dZrRwQ0iH5izpNEapC+jdW+vd7sQA73ULeF3Ah+npOBXipJTxqGQyO5sPTE lz70V7216gNO2WnS674nVU1EF3fBTBlWDXsc4gjXAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU4yra2IGH1h8wtyiax24RNlYrCdEwHwYDVR0jBBgwFoAUU+6gKbpu763K tNB3mJ3V7UdVtnAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8zMTQ1ZWJmZi1k Yzg0LTQ1YTktYjc2OS1lZmJhYWY1Nzc5ZTMvYjMwNTMwMzQwODgxMTU2YzJlMTRh ZmVmOWQ2MTk2MjI3ZTJjNjAzNWEwOWVmMGQyNTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNzFlNTIzNmYtYzZmMS00OTI4LWExYjktOGRl ZjA5YzA2MDg1L2FiZDgyNjU3LTg3M2MtNDI0Ny05NzZhLWZhNjI3ZThiZDU0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzcxZTUyMzZmLWM2ZjEtNDkyOC1hMWI5 LThkZWYwOWMwNjA4NS9nUlZzTGhTdjc1MWhsaUotTEdBMW9KN3cwbGMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBizAMA0GCSqGSIb3DQEBCwUAA4IBAQAVqHVwdC0IMOvl6hU1UWv5w8EQ WwdssKapesB+d8Fd1Z8r/NzcEpoqbhRu9lMgnlAALNjZAyy6c7G6vqtvxM8mVdBP vY6gRybonv7qdfP6oGBtr8M33p5EcjUz9mb7/2YcZE0dlaI9shAwWhqfuCKi88wm qP/Q7tcGT9AmQMxNYRvFMOwywD1V+baryHMd9Sus91g23eHRuCdPL0/oH2JhIU3p XyhYIxCli54iVEC9PVYPXAZPYRB3H0Kx50q0kDZJ8/e4Xq3OQ9wWQxu+4l/+RzhN 4QqXZ4RjjTg7yyc2riC13c1VKZymMqz8NFocc30UXWho+Fwy40GS0iGeqURg -----END CERTIFICATE-----Generated at Wed Nov 5 04:44:24 2025 by rpki-client