$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2a9a7e7a-f836-49c4-b98d-bc4e85459b54.roa File: 2a9a7e7a-f836-49c4-b98d-bc4e85459b54.roa (raw, json) Hash identifier: +qUxD7THMiSUIgMAbpAYb1B5uOkTcteVYT0L02LtexI= Subject key identifier: 55:45:69:85:1F:BD:2F:2B:EC:DF:15:14:A3:12:07:75:62:38:37:63 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 26F52EA1432968AD39DA76C909DC5880A7C0BCB3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2a9a7e7a-f836-49c4-b98d-bc4e85459b54.roa Signing time: Mon 13 Oct 2025 17:55:01 +0000 ROA not before: Mon 13 Oct 2025 17:55:01 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:3b40::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:f5:2e:a1:43:29:68:ad:39:da:76:c9:09:dc:58:80:a7:c0:bc:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 13 17:55:01 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=ac399e2b71aeab5e30671012f3af5381bd97cb6e2ea2810ce68f9bd5d626dcac, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4b:c2:54:19:0c:24:21:c2:f8:83:a5:ed:15: a7:c9:4d:78:55:38:79:84:4c:f2:ee:43:51:c1:47: 18:db:37:a5:d4:7f:27:d8:7f:85:fa:ac:dc:2b:76: f9:20:3a:2e:2e:61:63:62:3d:bb:0a:9b:21:29:da: c0:5b:b7:cf:22:cf:7d:94:2b:ca:63:e2:a7:93:f8: bc:c3:4d:a5:c5:12:49:5d:cf:c7:98:33:10:56:37: f2:85:8e:36:b3:e1:44:07:b5:34:cf:38:ec:c3:6d: 55:22:2e:17:8f:9e:91:6e:f4:93:e5:64:2a:37:8e: 88:ae:82:94:b7:f7:51:b9:a4:1a:5a:76:e6:00:c4: 80:eb:56:4c:eb:63:72:f7:08:3b:f9:28:bd:8b:6e: 21:01:69:34:0d:ea:18:7e:fd:eb:8a:ee:94:43:71: ca:f2:7f:d3:48:09:9f:fd:2f:84:d8:9c:24:c1:07: ab:91:c9:c3:bc:cf:de:21:c5:ed:e6:10:83:3d:55: 1d:b6:a5:a8:f0:93:83:c5:92:a6:fe:a1:43:a0:2a: 9f:13:3c:d7:ae:bf:e8:3e:04:6a:e3:7b:1d:af:47: 18:f9:be:94:d5:f0:b0:df:b1:d4:e2:39:61:de:5c: a8:59:63:a0:53:3b:34:73:30:59:e0:5e:89:2c:f0: 52:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:45:69:85:1F:BD:2F:2B:EC:DF:15:14:A3:12:07:75:62:38:37:63 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2a9a7e7a-f836-49c4-b98d-bc4e85459b54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b40::/46 Signature Algorithm: sha256WithRSAEncryption 13:28:e4:64:4d:30:29:08:dc:3f:64:54:b8:19:cd:41:1c:6b: 64:b7:49:9a:3e:bb:95:e0:9d:c9:3c:4d:27:f1:ad:c1:b4:67: cd:42:41:1c:7d:83:d7:4a:55:fb:eb:30:94:3f:65:5f:bb:6f: 4a:81:3d:9a:dd:79:b3:ac:d6:c4:76:f4:18:47:2c:3f:2d:84: 08:dd:77:f5:c9:df:40:9f:dc:5c:43:2d:73:13:db:72:e9:2f: d5:07:ca:a7:62:ba:00:98:a7:18:54:a6:a2:39:58:5c:1b:2f: dc:f8:5a:ac:3d:9c:7d:cc:98:e6:80:7d:25:20:1c:ae:1a:aa: 07:c5:59:17:cf:df:15:f7:4e:8b:4e:c9:a2:ab:b8:49:16:61: 61:4c:01:be:f7:30:f4:05:e5:d4:1f:ce:57:0f:da:2f:d0:0e: c3:7d:22:62:6a:5a:a7:7a:98:74:49:8a:ee:9e:2c:f2:0e:21: 1e:38:d5:57:83:84:3f:c3:ce:7a:d2:21:bf:68:5b:42:b7:06: f2:1e:95:04:9c:df:52:1b:e8:dd:60:ce:1a:a9:13:47:b7:e7: 0a:54:b5:c6:f8:a9:79:b2:b0:ec:05:02:03:21:b2:14:4d:32: 10:90:84:e2:df:b5:f6:c4:a5:f0:a3:51:d5:cb:db:6d:ef:fb: e2:0b:88:cd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJvUuoUMpaK052nbJCdxYgKfAvLMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDEzMTc1NTAxWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzM5OWUyYjcxYWVhYjVlMzA2NzEwMTJmM2FmNTM4MWJk OTdjYjZlMmVhMjgxMGNlNjhmOWJkNWQ2MjZkY2FjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxS8JUGQwkIcL4g6XtFafJTXhVOHmETPLuQ1HBRxjbN6XU fyfYf4X6rNwrdvkgOi4uYWNiPbsKmyEp2sBbt88iz32UK8pj4qeT+LzDTaXFEkld z8eYMxBWN/KFjjaz4UQHtTTPOOzDbVUiLhePnpFu9JPlZCo3joiugpS391G5pBpa duYAxIDrVkzrY3L3CDv5KL2LbiEBaTQN6hh+/euK7pRDccryf9NICZ/9L4TYnCTB B6uRycO8z94hxe3mEIM9VR22pajwk4PFkqb+oUOgKp8TPNeuv+g+BGrjex2vRxj5 vpTV8LDfsdTiOWHeXKhZY6BTOzRzMFngXoks8FLnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVUVphR+9Lyvs3xUUoxIHdWI4N2MwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJhOWE3ZTdhLWY4MzYtNDljNC1iOThkLWJjNGU4NTQ1OWI1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImBZzAO0AwDQYJKoZIhvcNAQELBQADggEBABMo5GRNMCkI3D9kVLgZzUEc a2S3SZo+u5Xgnck8TSfxrcG0Z81CQRx9g9dKVfvrMJQ/ZV+7b0qBPZrdebOs1sR2 9BhHLD8thAjdd/XJ30Cf3FxDLXMT23LpL9UHyqdiugCYpxhUpqI5WFwbL9z4Wqw9 nH3MmOaAfSUgHK4aqgfFWRfP3xX3TotOyaKruEkWYWFMAb73MPQF5dQfzlcP2i/Q DsN9ImJqWqd6mHRJiu6eLPIOIR441VeDhD/DznrSIb9oW0K3BvIelQSc31Ib6N1g zhqpE0e35wpUtcb4qXmysOwFAgMhshRNMhCQhOLftfbEpfCjUdXL223v++ILiM0= -----END CERTIFICATE-----Generated at Sun Oct 19 23:09:50 2025 by rpki-client