$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa File: cd3025ff-3653-4276-a530-1fa2eed87e53.roa (raw, json) Hash identifier: SJTzc63a7LkyUJRAPd+BY1X9u50cLHIdmmIUVjWDaqc= Subject key identifier: E7:DB:BA:19:DB:D9:99:89:F6:CE:4C:76:4C:2D:47:7B:B6:3B:EE:88 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 652C2D44681E91C2F2E62416BA92086EC8BC909F Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa Signing time: Fri 31 Oct 2025 00:00:19 +0000 ROA not before: Fri 31 Oct 2025 00:00:19 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:2c:2d:44:68:1e:91:c2:f2:e6:24:16:ba:92:08:6e:c8:bc:90:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Oct 31 00:00:19 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=61ba33a7b0df81fc1695b50c917a535f1ff0f63b3fceb285035ac8fcef901e68, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bf:e0:cf:fa:14:55:a6:29:92:4d:09:9e:3f: ae:ca:cb:c1:00:84:a1:79:b7:65:76:78:e5:a4:09: b7:c1:67:20:f9:fc:81:50:e9:e8:ca:7d:aa:de:54: 9d:5f:2f:60:b2:da:fb:ad:25:09:1d:c3:32:bc:d4: 21:af:b9:0c:91:03:8b:37:c7:65:0d:b8:aa:1f:d1: 45:c5:c6:f0:98:a4:2f:11:6b:e4:f3:bc:f7:c9:24: 9a:e4:7c:9d:a3:1e:96:3a:fa:d3:29:dd:f6:ab:ab: 69:fd:31:c4:ed:8b:0d:01:be:7d:92:e2:74:22:91: 20:e3:d5:af:33:a6:b9:a3:0c:dc:b1:88:ea:ab:87: 00:c7:aa:a4:97:f5:8b:8a:9d:f2:3b:06:bc:99:fa: 4f:32:66:83:2c:60:1a:15:e0:08:b1:67:53:1b:a2: 8c:95:ab:b5:a9:5b:a3:4b:66:f2:38:00:84:53:99: 31:51:9b:38:7b:34:7a:a5:f4:32:ae:2b:85:1e:1d: b1:03:cf:7e:7f:46:65:e8:d2:72:4c:aa:37:65:00: 55:f1:e0:f0:6d:4d:67:81:74:d5:75:6b:1c:03:d3: 53:ca:34:83:ea:4f:fc:f1:6a:9d:ba:fb:ab:13:36: 1c:c8:d3:39:85:5b:91:48:05:fc:6d:df:6d:b8:e0: 0d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DB:BA:19:DB:D9:99:89:F6:CE:4C:76:4C:2D:47:7B:B6:3B:EE:88 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/44 Signature Algorithm: sha256WithRSAEncryption 81:60:17:04:8a:73:7b:a5:e2:06:39:3b:e5:c5:1a:a1:d9:64: 05:06:1e:c0:10:93:f5:4c:f7:32:ca:f9:14:a0:96:93:f7:bc: 0f:85:d2:0b:ee:bb:a9:86:7e:db:63:16:6b:cf:fb:4a:ef:88: 57:6a:ee:4c:8f:a9:c9:c2:f8:19:3d:9c:86:80:81:5f:b9:27: 86:07:99:b6:0b:88:d1:b7:d5:b1:e5:06:60:8b:d0:d2:71:e3: ab:a7:af:bb:2d:6e:71:6c:92:5c:9a:68:b6:ab:12:83:6e:d6: c9:7c:87:3e:04:7d:d9:81:41:f9:30:4d:a4:b1:de:96:eb:7e: 4f:1c:75:8b:18:36:a3:18:4a:30:ae:f9:00:95:fe:b2:9c:ea: 2f:a9:48:fd:d5:76:2a:7f:1a:09:2a:85:35:f0:d5:d8:8e:70: 6e:e3:80:d8:2d:46:2c:02:c0:6e:97:01:11:e9:b1:26:a5:15: bc:85:0b:41:68:54:7f:b7:c6:45:1e:c9:02:78:1b:aa:fd:db: 49:c3:96:06:26:ef:74:a8:99:77:3d:0d:2f:19:00:d5:c1:cf: 96:63:61:59:3f:c1:7b:3f:1f:a4:74:5f:2b:01:f8:b7:bd:ab: b1:95:70:b6:f1:bd:ff:90:49:82:e0:00:63:15:0d:a7:4c:54: c0:2c:ff:22 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZSwtRGgekcLy5iQWupIIbsi8kJ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUxMDMxMDAwMDE5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWJhMzNhN2IwZGY4MWZjMTY5NWI1MGM5MTdhNTM1ZjFm ZjBmNjNiM2ZjZWIyODUwMzVhYzhmY2VmOTAxZTY4MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOv+DP+hRVpimSTQmeP67Ky8EAhKF5t2V2eOWkCbfBZyD5 /IFQ6ejKfareVJ1fL2Cy2vutJQkdwzK81CGvuQyRA4s3x2UNuKof0UXFxvCYpC8R a+TzvPfJJJrkfJ2jHpY6+tMp3farq2n9McTtiw0Bvn2S4nQikSDj1a8zprmjDNyx iOqrhwDHqqSX9YuKnfI7BryZ+k8yZoMsYBoV4AixZ1MbooyVq7WpW6NLZvI4AIRT mTFRmzh7NHql9DKuK4UeHbEDz35/RmXo0nJMqjdlAFXx4PBtTWeBdNV1axwD01PK NIPqT/zxap26+6sTNhzI0zmFW5FIBfxt32244A1JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU59u6GdvZmYn2zkx2TC1He7Y77ogwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2NkMzAyNWZmLTM2NTMtNDI3Ni1hNTMwLTFmYTJlZWQ4N2U1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBAIFgFwSKc3ul4gY5O+XFGqHZ ZAUGHsAQk/VM9zLK+RSglpP3vA+F0gvuu6mGfttjFmvP+0rviFdq7kyPqcnC+Bk9 nIaAgV+5J4YHmbYLiNG31bHlBmCL0NJx46unr7stbnFsklyaaLarEoNu1sl8hz4E fdmBQfkwTaSx3pbrfk8cdYsYNqMYSjCu+QCV/rKc6i+pSP3Vdip/GgkqhTXw1diO cG7jgNgtRiwCwG6XARHpsSalFbyFC0FoVH+3xkUeyQJ4G6r920nDlgYm73SomXc9 DS8ZANXBz5ZjYVk/wXs/H6R0XysB+Le9q7GVcLbxvf+QSYLgAGMVDadMVMAs/yI= -----END CERTIFICATE-----Generated at Wed Nov 5 21:09:46 2025 by rpki-client