$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa File: e7874585-f99e-4906-afcf-7069fe104b33.roa (raw, json) Hash identifier: QzWa1SK1gBFr58pOwd1r8qM/hIS/8LnXOiNzVElL8xg= Subject key identifier: D5:0C:41:79:0D:B1:42:2B:C5:0C:F0:F3:68:75:BB:1F:15:B2:1F:82 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 7ADDA39E596BCC9A80F6AE08E845FE97513D7B81 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa Signing time: Fri 31 Oct 2025 00:00:20 +0000 ROA not before: Fri 31 Oct 2025 00:00:20 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:300f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:dd:a3:9e:59:6b:cc:9a:80:f6:ae:08:e8:45:fe:97:51:3d:7b:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Oct 31 00:00:20 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=94eadcaf57cd47e8c00262ea031cbdc2cf5e8b8ee4acd408bbad80ea72c64dcf, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:33:be:15:92:99:80:67:e4:36:f4:7a:6d:7e: 19:bd:6d:66:be:5a:65:8a:28:7b:71:d0:49:65:30: a9:12:b6:ff:21:cc:f2:cb:cc:ff:e9:0c:cb:4d:d5: a4:55:f0:3a:ba:3c:8d:08:c3:e6:75:6a:ab:41:55: c2:50:55:21:41:d9:a0:1d:66:0b:1f:ac:01:2a:dd: 5c:35:a7:de:2b:68:5c:94:ab:55:93:b9:32:f9:82: 5d:f0:27:b8:0a:21:b0:50:8b:82:e9:29:a6:28:7a: 58:30:63:21:9b:5d:a5:da:70:20:4b:c9:ce:0c:63: 92:0d:4c:bc:f2:b3:49:94:24:dc:5f:b3:87:2d:df: e1:7e:96:8b:1f:45:96:49:02:b3:35:4d:11:87:f7: 21:d2:68:41:27:be:59:46:f5:04:46:d9:97:1c:ee: 5e:e1:64:bd:42:0e:a7:d9:41:ca:16:08:46:56:02: bc:be:cf:0b:4f:e7:ef:50:44:ca:ab:c1:b5:39:bc: d0:be:5f:76:86:05:ae:05:72:d9:d7:b4:3f:65:52: 68:13:e0:b9:20:a0:26:9f:36:ff:2b:8f:66:ad:40: 67:65:77:17:5d:ad:27:a2:57:5c:d1:1e:b3:43:df: 9f:c7:cb:da:71:a6:b3:7a:01:d1:e7:f3:d5:ec:1f: 4e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0C:41:79:0D:B1:42:2B:C5:0C:F0:F3:68:75:BB:1F:15:B2:1F:82 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:300f::/48 Signature Algorithm: sha256WithRSAEncryption 24:ea:2c:f9:b8:13:03:ed:18:34:88:d7:0d:3a:02:ab:f7:ab: 05:8f:05:57:25:62:41:5e:34:d9:6a:c2:96:1d:5d:04:2a:9b: 07:ae:54:67:ce:78:91:40:ec:14:e1:60:6f:63:ef:09:bb:78: 22:5a:5e:60:40:aa:8a:ef:83:7d:dc:79:a9:9d:42:37:55:cd: 67:05:5d:2a:5a:91:a4:5a:22:2c:21:e4:b6:87:7b:11:40:ee: 7e:66:fc:6d:ca:2f:b1:14:c4:82:1c:a5:e9:5e:f1:94:a3:00: 3f:23:d9:19:5c:3f:60:49:d0:f3:26:3e:c7:e7:0c:09:3a:5a: 79:4c:d1:d2:07:f4:9b:4a:84:27:ce:1d:bc:7c:70:a1:b3:e5: b1:ab:f9:b5:d7:0a:b9:fd:d3:4a:28:06:a7:4b:d7:5f:73:72: b8:fc:6a:bf:6e:b9:50:51:33:42:d9:e6:3f:37:98:95:79:3f: 88:77:c7:c9:6e:90:e4:fc:5d:f7:7b:90:9b:37:aa:1f:5c:96: d9:30:c6:68:42:70:fe:c8:a6:79:55:ea:a1:9c:d6:cc:73:05: e1:d2:f6:8d:68:89:d5:92:80:75:23:0c:c5:5b:5f:b8:2a:47: f1:94:83:ec:81:8c:0a:fd:6b:9f:4e:eb:6e:6c:ea:08:8a:16: af:50:6c:8b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUet2jnllrzJqA9q4I6EX+l1E9e4EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUxMDMxMDAwMDIwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGVhZGNhZjU3Y2Q0N2U4YzAwMjYyZWEwMzFjYmRjMmNm NWU4YjhlZTRhY2Q0MDhiYmFkODBlYTcyYzY0ZGNmMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSM74VkpmAZ+Q29Hptfhm9bWa+WmWKKHtx0EllMKkStv8h zPLLzP/pDMtN1aRV8Dq6PI0Iw+Z1aqtBVcJQVSFB2aAdZgsfrAEq3Vw1p94raFyU q1WTuTL5gl3wJ7gKIbBQi4LpKaYoelgwYyGbXaXacCBLyc4MY5INTLzys0mUJNxf s4ct3+F+losfRZZJArM1TRGH9yHSaEEnvllG9QRG2Zcc7l7hZL1CDqfZQcoWCEZW Ary+zwtP5+9QRMqrwbU5vNC+X3aGBa4FctnXtD9lUmgT4LkgoCafNv8rj2atQGdl dxddrSeiV1zRHrND35/Hy9pxprN6AdHn89XsH04VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1QxBeQ2xQivFDPDzaHW7HxWyH4IwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2U3ODc0NTg1LWY5OWUtNDkwNi1hZmNmLTcwNjlmZTEwNGIzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMA8wDQYJKoZIhvcNAQELBQADggEBACTqLPm4EwPtGDSI1w06Aqv3 qwWPBVclYkFeNNlqwpYdXQQqmweuVGfOeJFA7BThYG9j7wm7eCJaXmBAqorvg33c eamdQjdVzWcFXSpakaRaIiwh5LaHexFA7n5m/G3KL7EUxIIcpele8ZSjAD8j2Rlc P2BJ0PMmPsfnDAk6WnlM0dIH9JtKhCfOHbx8cKGz5bGr+bXXCrn900ooBqdL119z crj8ar9uuVBRM0LZ5j83mJV5P4h3x8lukOT8Xfd7kJs3qh9cltkwxmhCcP7IpnlV 6qGc1sxzBeHS9o1oidWSgHUjDMVbX7gqR/GUg+yBjAr9a59O625s6giKFq9QbIs= -----END CERTIFICATE-----Generated at Wed Nov 5 09:36:43 2025 by rpki-client