$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e59813d-926c-4866-9022-8b9ec2fee201.roa File: 0e59813d-926c-4866-9022-8b9ec2fee201.roa (raw, json) Hash identifier: vNHRhs3QpM+8IiKB4WrNIGEPbo8aRTdNv288D7hK51o= Subject key identifier: A3:19:0B:24:ED:EF:02:34:11:F6:CC:84:A1:C9:77:B5:1A:CF:56:9C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3BB8DC317F0A3DCE8F77B49F055E4AEEEE0AE498 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e59813d-926c-4866-9022-8b9ec2fee201.roa Signing time: Fri 24 Oct 2025 00:10:05 +0000 ROA not before: Fri 24 Oct 2025 00:10:05 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2631:0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b8:dc:31:7f:0a:3d:ce:8f:77:b4:9f:05:5e:4a:ee:ee:0a:e4:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 24 00:10:05 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=df94c5753d6b3e0273e8ad9e2bdfee3b9751d72c77020dbfc1b91cbadce25be7, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:52:81:ab:a4:ef:70:9c:61:e7:82:c5:45:6b: 89:da:53:3c:ac:91:b2:02:50:58:0c:eb:43:2b:8e: d9:27:ff:c9:46:74:7b:13:e6:3e:a5:5a:00:bc:83: e2:83:6c:3f:ab:6d:12:81:63:91:6c:47:e1:33:61: 59:30:04:2e:cf:45:c7:3a:73:c2:3e:f6:93:5a:bb: 57:6f:3a:f2:2e:11:9c:59:f4:17:67:de:1f:4f:62: fc:f2:1b:25:ca:c7:de:f2:4c:4f:a5:15:4a:e0:73: b4:0b:65:05:0b:26:30:8c:32:2a:ea:eb:5e:f5:e2: e4:04:cb:e6:c4:1e:29:a1:4e:2a:7c:d7:0f:13:53: c6:80:e3:d5:dd:bb:93:13:53:aa:75:82:e0:8c:0e: 1c:f2:60:2c:60:1c:37:73:ef:c2:24:6f:5a:90:4d: 07:f5:ea:b1:fd:53:3b:e6:7f:ea:d4:7b:e5:fa:08: be:2a:5f:62:63:8b:1e:ef:87:05:1d:e0:45:91:b1: 18:36:a9:77:73:e7:2b:16:ad:fc:d7:e7:19:c2:33: 75:82:6b:77:77:f7:b4:55:02:f7:42:49:7d:ca:cf: 47:b2:3f:13:d5:32:40:06:42:af:0f:77:7e:32:07: 75:87:22:96:4d:61:44:89:63:e3:56:18:31:ed:35: 70:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:19:0B:24:ED:EF:02:34:11:F6:CC:84:A1:C9:77:B5:1A:CF:56:9C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e59813d-926c-4866-9022-8b9ec2fee201.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2631:0:1::/48 Signature Algorithm: sha256WithRSAEncryption 6d:95:e5:c7:38:ec:6f:fa:4b:a9:e7:68:d4:61:c7:af:b9:00: f5:37:de:6a:bb:bc:cf:63:fa:f7:46:a7:ce:0b:a5:8b:3a:0b: 4b:61:e8:da:42:b4:80:cd:da:03:89:6e:9f:ac:d2:ac:2a:f5: 53:ee:db:a9:41:a4:58:d7:cc:f8:ef:98:3f:47:3b:7c:67:86: fd:b4:c6:be:64:ab:d1:23:da:be:bf:88:ba:1d:c2:05:ae:f3: 73:fb:e7:64:46:4c:b9:3b:58:43:72:3a:c4:bb:90:1a:1d:5b: 2c:4d:04:b4:28:c2:00:15:3d:f4:2a:50:61:6c:0e:e3:c2:e2: e0:0b:6b:c5:37:d8:74:6b:42:06:48:37:49:1c:c8:1a:53:20: 5d:a5:3b:d2:bc:74:0d:21:05:c6:da:1b:e8:18:a1:47:ba:8b: 01:2d:4d:e1:6f:38:5b:3a:4f:6d:4d:5b:eb:f5:7c:bb:d4:62: 5b:a8:65:f0:c1:64:88:29:8a:80:54:68:ad:af:89:f2:46:e2: 1c:64:f7:ed:37:0c:a0:5b:9b:dc:dd:1c:5e:81:0d:ce:2a:1a: f8:fa:06:ea:ef:c0:4e:c4:0e:2c:ed:9c:a5:5f:bc:64:77:23: ee:ca:1f:71:65:c9:a0:78:3c:ed:21:8c:c2:03:a3:08:0c:44: 9d:83:66:c9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO7jcMX8KPc6Pd7SfBV5K7u4K5JgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDI0MDAxMDA1WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjk0YzU3NTNkNmIzZTAyNzNlOGFkOWUyYmRmZWUzYjk3 NTFkNzJjNzcwMjBkYmZjMWI5MWNiYWRjZTI1YmU3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6UoGrpO9wnGHngsVFa4naUzyskbICUFgM60Mrjtkn/8lG dHsT5j6lWgC8g+KDbD+rbRKBY5FsR+EzYVkwBC7PRcc6c8I+9pNau1dvOvIuEZxZ 9Bdn3h9PYvzyGyXKx97yTE+lFUrgc7QLZQULJjCMMirq61714uQEy+bEHimhTip8 1w8TU8aA49Xdu5MTU6p1guCMDhzyYCxgHDdz78Ikb1qQTQf16rH9Uzvmf+rUe+X6 CL4qX2Jjix7vhwUd4EWRsRg2qXdz5ysWrfzX5xnCM3WCa3d397RVAvdCSX3Kz0ey PxPVMkAGQq8Pd34yB3WHIpZNYUSJY+NWGDHtNXBtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoxkLJO3vAjQR9syEocl3tRrPVpwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBlNTk4MTNkLTkyNmMtNDg2Ni05MDIyLThiOWVjMmZlZTIwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmMQAAAAEwDQYJKoZIhvcNAQELBQADggEBAG2V5cc47G/6S6nnaNRhx6+5 APU33mq7vM9j+vdGp84LpYs6C0th6NpCtIDN2gOJbp+s0qwq9VPu26lBpFjXzPjv mD9HO3xnhv20xr5kq9Ej2r6/iLodwgWu83P752RGTLk7WENyOsS7kBodWyxNBLQo wgAVPfQqUGFsDuPC4uALa8U32HRrQgZIN0kcyBpTIF2lO9K8dA0hBcbaG+gYoUe6 iwEtTeFvOFs6T21NW+v1fLvUYluoZfDBZIgpioBUaK2vifJG4hxk9+03DKBbm9zd HF6BDc4qGvj6BurvwE7EDiztnKVfvGR3I+7KH3FlyaB4PO0hjMIDowgMRJ2DZsk= -----END CERTIFICATE-----Generated at Wed Nov 5 05:39:04 2025 by rpki-client