$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/be3a1cc1-a6ab-4fd0-8ddb-3b8fc9a4cd35.roa File: be3a1cc1-a6ab-4fd0-8ddb-3b8fc9a4cd35.roa (raw, json) Hash identifier: 1aAmrMipUawOqIH/9SBRV1PGc0wtMB7tcMfHEPMPbnY= Subject key identifier: 2E:AE:7C:1B:F6:24:8C:F3:99:CE:4B:1A:81:05:14:51:BE:C2:B7:DB Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 41AB44086396108C1187A51E2334A3388D90E148 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/be3a1cc1-a6ab-4fd0-8ddb-3b8fc9a4cd35.roa Signing time: Mon 03 Nov 2025 11:06:42 +0000 ROA not before: Mon 03 Nov 2025 11:06:42 +0000 ROA not after: Mon 08 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2631::/24 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ab:44:08:63:96:10:8c:11:87:a5:1e:23:34:a3:38:8d:90:e1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 3 11:06:42 2025 GMT Not After : Dec 8 23:59:59 2025 GMT Subject: serialNumber=4510e1a1d126a08e75682d25f3e0ab2db9a3ac226918ac5bf52ec42f6ef4bd95, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:71:cb:8d:d8:ca:b7:f5:63:e8:83:70:bf:1e: 75:c8:64:1f:e3:d8:02:73:c8:94:da:4a:1a:cc:cb: 14:74:78:4e:8e:eb:ef:94:ad:fe:e4:3d:2b:4c:0f: b8:a4:91:c9:5b:5d:b3:2a:b6:ed:64:ae:94:36:43: 33:e5:23:98:e8:8e:f6:99:87:37:5b:8f:f0:18:3e: 90:72:7e:82:79:78:37:b3:b0:e0:43:68:0d:4b:06: ba:26:de:b5:14:b9:9b:1f:2d:dd:17:68:f2:cf:55: b4:58:6e:ac:4d:7c:ed:b4:ca:8d:5a:a7:06:90:d1: 6a:dc:ff:44:c9:af:58:03:d0:52:d5:de:09:c9:68: 0e:a3:e2:c8:1d:3b:45:59:4b:56:23:f9:ee:7d:fb: ed:d0:ef:46:95:16:8e:03:ed:26:9c:ae:43:16:3c: 22:f2:ad:35:81:c7:98:4a:8b:a7:b5:fe:6f:d1:4f: 64:92:cd:18:9a:05:a8:76:76:c8:e0:70:5f:cd:3e: 6b:3e:f7:0d:7d:cd:b8:eb:3e:54:88:06:a9:b2:ce: 69:5e:f7:51:50:25:32:1f:2d:79:74:d4:ee:cf:d6: 2e:6b:a2:20:da:df:bd:21:ae:fa:7e:bd:3d:f9:e9: 1f:10:76:39:c2:35:e0:39:a8:1f:61:12:d0:b4:91: f3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:AE:7C:1B:F6:24:8C:F3:99:CE:4B:1A:81:05:14:51:BE:C2:B7:DB X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/be3a1cc1-a6ab-4fd0-8ddb-3b8fc9a4cd35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2631::/24 Signature Algorithm: sha256WithRSAEncryption 78:f1:1d:78:37:fa:79:22:43:2c:72:3c:5f:5b:10:9c:73:84: 35:3c:68:e6:bd:e5:bb:4f:2c:df:f3:92:87:b5:15:f4:ab:35: 90:cf:16:0c:14:cc:ad:94:8e:b5:f9:cd:f1:92:19:3b:4b:81: 66:45:5b:e6:c3:8e:a2:7b:f2:48:5a:59:ff:9e:31:f7:f9:04: 56:89:59:eb:66:74:2a:f8:59:b3:bc:13:a8:82:0c:f4:f3:f2: 83:d6:f4:e2:4c:cb:7b:fc:6a:02:16:87:5e:df:fe:fa:82:88: c4:35:eb:b8:e2:fc:97:57:1b:b5:81:39:49:8c:aa:af:f5:7e: 91:8a:14:fc:31:87:7e:c4:91:98:fb:68:5c:47:00:45:44:d0: c8:31:54:6b:59:62:6c:1d:d5:4e:c9:8c:c8:ff:a3:30:69:81: 15:a1:e3:36:6c:1b:76:26:bc:16:d2:a9:fc:33:4c:30:2c:dd: 49:f4:7c:95:2d:8a:51:69:ba:d2:8a:1a:17:8d:33:ea:bc:64: a3:26:44:51:7f:46:25:aa:b1:eb:b5:ae:fa:08:57:c6:bb:90: a3:94:77:da:d9:3e:0e:a1:61:bb:f3:65:40:ad:f2:12:a7:fc: c0:32:02:ff:42:9e:6a:57:ed:16:02:f1:02:de:e3:66:74:60: c4:2f:35:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQatECGOWEIwRh6UeIzSjOI2Q4UgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTAzMTEwNjQyWhcNMjUxMjA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTEwZTFhMWQxMjZhMDhlNzU2ODJkMjVmM2UwYWIyZGI5 YTNhYzIyNjkxOGFjNWJmNTJlYzQyZjZlZjRiZDk1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5ccuN2Mq39WPog3C/HnXIZB/j2AJzyJTaShrMyxR0eE6O 6++Urf7kPStMD7ikkclbXbMqtu1krpQ2QzPlI5jojvaZhzdbj/AYPpByfoJ5eDez sOBDaA1LBrom3rUUuZsfLd0XaPLPVbRYbqxNfO20yo1apwaQ0Wrc/0TJr1gD0FLV 3gnJaA6j4sgdO0VZS1Yj+e59++3Q70aVFo4D7SacrkMWPCLyrTWBx5hKi6e1/m/R T2SSzRiaBah2dsjgcF/NPms+9w19zbjrPlSIBqmyzmle91FQJTIfLXl01O7P1i5r oiDa370hrvp+vT356R8QdjnCNeA5qB9hEtC0kfOXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULq58G/YkjPOZzksagQUUUb7Ct9swHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2JlM2ExY2MxLWE2YWItNGZkMC04ZGRiLTNiOGZjOWE0Y2QzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAC MAYDBAAmMQAwDQYJKoZIhvcNAQELBQADggEBAHjxHXg3+nkiQyxyPF9bEJxzhDU8 aOa95btPLN/zkoe1FfSrNZDPFgwUzK2UjrX5zfGSGTtLgWZFW+bDjqJ78khaWf+e Mff5BFaJWetmdCr4WbO8E6iCDPTz8oPW9OJMy3v8agIWh17f/vqCiMQ167ji/JdX G7WBOUmMqq/1fpGKFPwxh37EkZj7aFxHAEVE0MgxVGtZYmwd1U7JjMj/ozBpgRWh 4zZsG3YmvBbSqfwzTDAs3Un0fJUtilFputKKGheNM+q8ZKMmRFF/RiWqseu1rvoI V8a7kKOUd9rZPg6hYbvzZUCt8hKn/MAyAv9CnmpX7RYC8QLe42Z0YMQvNYQ= -----END CERTIFICATE-----Generated at Wed Nov 5 07:41:25 2025 by rpki-client