$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa File: 0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa (raw, json) Hash identifier: 7JrrQXLTRRM7zKtxGkgPLANCfRbv9wdnvk5Oxa2SbJk= Subject key identifier: 48:52:7F:92:41:DE:A5:B4:49:71:7C:F7:5B:D0:AA:84:F4:15:1D:5B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 34514DDFD2D7BF008E7E0E33E3F0BFC3E455C396 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa Signing time: Mon 06 Oct 2025 17:12:43 +0000 ROA not before: Mon 06 Oct 2025 17:12:43 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c03::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:51:4d:df:d2:d7:bf:00:8e:7e:0e:33:e3:f0:bf:c3:e4:55:c3:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:12:43 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=699901d0c0e9e8de6db9d5977b29bdab472993b6018053820266b31625cf9b6d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:14:b6:ce:b4:d7:b3:d6:45:67:93:51:96:98: 8f:6e:94:3c:5c:97:59:19:af:b2:c7:7e:b2:5f:9a: 46:e6:5d:82:31:02:7e:09:d2:fc:f0:d8:3e:cd:bb: 6f:53:1b:7b:0b:8f:75:dc:8c:24:be:6c:c6:56:f5: 66:97:1a:ff:c3:71:4d:3f:52:e3:50:fb:03:35:e4: 55:58:53:56:c3:48:c8:ca:c4:d5:75:28:e1:b8:9d: 56:e5:60:d2:c8:1b:93:07:22:94:72:ab:3b:59:69: 4b:90:c6:c0:88:6b:ab:6c:cc:19:c3:29:bf:a5:0c: 09:66:bc:16:c0:ff:ae:19:db:28:cf:43:99:fc:54: aa:04:6c:c9:e5:aa:ac:e5:39:fb:b9:15:2c:f3:a4: 14:83:46:76:15:3a:1b:92:b8:3e:b7:e4:70:35:ed: 3c:1a:6b:e9:58:85:6d:5c:e2:09:35:4d:94:06:df: 09:4e:f6:3d:6b:45:ce:9e:ec:a1:9a:8b:91:1e:2a: 8d:13:ec:68:1f:7a:1a:1a:10:f2:e0:a8:03:8f:fe: 98:d1:23:07:39:47:87:5c:d0:94:70:e8:15:99:7e: ef:9e:99:c3:14:2e:c1:a4:b9:a0:ba:ef:1d:3c:de: 8c:64:4a:6d:96:2e:4f:e9:66:59:2d:9c:63:b3:7b: 74:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:52:7F:92:41:DE:A5:B4:49:71:7C:F7:5B:D0:AA:84:F4:15:1D:5B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c03::/48 Signature Algorithm: sha256WithRSAEncryption 14:8b:34:ca:85:a2:d6:8f:70:c4:eb:3e:57:f9:d1:44:d6:7e: 35:1c:54:58:a5:e5:8c:8d:c2:4d:91:cd:27:20:b7:cd:23:fe: 5a:4f:ef:ef:57:a4:8b:9e:25:d9:a2:1c:7c:41:c2:a1:23:d4: 00:78:9c:95:9f:7d:f6:7a:d1:d6:2f:40:4a:b0:1b:ca:7d:01: b2:bb:6a:2f:a1:61:9e:d9:c6:c3:65:be:74:ab:89:95:64:c0: ad:73:23:47:6d:70:59:9b:57:c3:ea:07:af:a7:fb:b1:95:df: f7:f8:9c:f0:3c:85:7f:da:45:e9:87:10:04:56:05:1f:9d:2c: 79:1c:c6:21:ee:9f:3d:ea:49:3d:0f:c3:80:56:48:2c:7b:1c: b5:52:0b:bf:6b:ce:a2:b4:18:c4:a6:68:8d:b7:93:1a:64:d4: 75:4c:b5:1e:4c:47:5f:56:50:c4:6f:f6:aa:57:38:f2:f1:85: 06:0e:c6:51:c6:47:c2:1e:1c:cf:f8:a4:be:75:cc:c3:21:70: 21:60:03:80:39:47:03:e2:37:ab:0b:38:c5:39:03:69:06:72: d6:98:7a:01:d4:3b:b2:80:a6:a4:72:f0:42:f5:96:45:00:13: ae:06:49:c3:6b:f1:e1:c1:a5:13:97:fe:92:5e:9d:4c:ca:70: ca:5b:8f:c1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNFFN39LXvwCOfg4z4/C/w+RVw5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcxMjQzWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTk5MDFkMGMwZTllOGRlNmRiOWQ1OTc3YjI5YmRhYjQ3 Mjk5M2I2MDE4MDUzODIwMjY2YjMxNjI1Y2Y5YjZkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmFLbOtNez1kVnk1GWmI9ulDxcl1kZr7LHfrJfmkbmXYIx An4J0vzw2D7Nu29TG3sLj3XcjCS+bMZW9WaXGv/DcU0/UuNQ+wM15FVYU1bDSMjK xNV1KOG4nVblYNLIG5MHIpRyqztZaUuQxsCIa6tszBnDKb+lDAlmvBbA/64Z2yjP Q5n8VKoEbMnlqqzlOfu5FSzzpBSDRnYVOhuSuD635HA17Twaa+lYhW1c4gk1TZQG 3wlO9j1rRc6e7KGai5EeKo0T7GgfehoaEPLgqAOP/pjRIwc5R4dc0JRw6BWZfu+e mcMULsGkuaC67x083oxkSm2WLk/pZlktnGOze3S/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSFJ/kkHepbRJcXz3W9CqhPQVHVswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBjOGZiOTdkLThlN2UtNDVjOS05YjNhLTgzOGRkNjY5ZGQ0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAMwDQYJKoZIhvcNAQELBQADggEBABSLNMqFotaPcMTrPlf50UTW fjUcVFil5YyNwk2RzScgt80j/lpP7+9XpIueJdmiHHxBwqEj1AB4nJWfffZ60dYv QEqwG8p9AbK7ai+hYZ7ZxsNlvnSriZVkwK1zI0dtcFmbV8PqB6+n+7GV3/f4nPA8 hX/aRemHEARWBR+dLHkcxiHunz3qST0Pw4BWSCx7HLVSC79rzqK0GMSmaI23kxpk 1HVMtR5MR19WUMRv9qpXOPLxhQYOxlHGR8IeHM/4pL51zMMhcCFgA4A5RwPiN6sL OMU5A2kGctaYegHUO7KApqRy8EL1lkUAE64GScNr8eHBpROX/pJenUzKcMpbj8E= -----END CERTIFICATE-----Generated at Mon Oct 20 10:08:38 2025 by rpki-client