$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/34aa606e-0ded-49e0-8124-2799643cf271.roa File: 34aa606e-0ded-49e0-8124-2799643cf271.roa (raw, json) Hash identifier: 13GJQmIyil0r4MXAGMI9p9Ja4Upsn6YS/qjINpQ160w= Subject key identifier: 60:56:A4:0B:66:64:0F:44:A6:6D:BF:3F:42:CD:04:B4:E3:31:3E:EA Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4B2B0A687A5F93DCC3B568B1DA5A9EEA57410D22 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/34aa606e-0ded-49e0-8124-2799643cf271.roa Signing time: Fri 26 Sep 2025 17:50:23 +0000 ROA not before: Fri 26 Sep 2025 17:50:23 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:399::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:2b:0a:68:7a:5f:93:dc:c3:b5:68:b1:da:5a:9e:ea:57:41:0d:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:50:23 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=254dc15d1e9c607bca29172aeb6991d960ad40b22e08d5f63c4c9f8b7cc6106f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fe:bb:96:b3:41:cb:56:f9:13:ca:e2:18:d6: 91:7c:e8:91:33:b6:4f:27:45:d3:d9:fd:43:fc:bd: 72:57:2b:ca:b0:d1:0a:97:83:49:2a:f3:8b:44:09: ca:f4:63:4a:f0:00:12:66:cf:59:05:00:32:1a:ae: 9c:e8:69:29:2b:25:52:4a:9e:14:2e:1f:7b:94:29: 48:07:1a:25:4d:de:2a:20:69:52:09:89:08:97:f1: 8e:90:67:d8:c4:48:42:65:3e:ac:63:4f:04:c6:80: 98:46:43:4f:0b:e2:52:12:33:b7:d3:b7:77:6b:44: b8:fd:e6:88:11:e9:b0:0a:57:b0:d4:e2:88:14:1b: 59:d8:c0:91:13:9d:4b:3b:13:5e:ae:65:65:3d:e5: 61:d3:18:bd:be:26:b4:8a:0c:db:31:e0:b6:f0:bf: fc:fc:8b:35:ba:f2:43:7b:67:e0:da:79:19:b5:ac: 92:7e:11:f2:b9:43:ae:05:5b:b2:67:df:d7:8b:fb: 0e:2f:ea:0c:68:79:1b:d5:b6:53:f9:21:60:77:f8: 23:89:7c:e8:2c:9f:de:8e:b6:e4:36:8f:a9:ba:ec: 1a:8a:d6:3f:a4:1c:e1:c8:0d:54:f7:c0:09:32:17: 2f:3d:20:99:1e:ad:cb:b6:b5:1e:94:3f:9d:31:b1: 96:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:56:A4:0B:66:64:0F:44:A6:6D:BF:3F:42:CD:04:B4:E3:31:3E:EA X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/34aa606e-0ded-49e0-8124-2799643cf271.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:399::/48 Signature Algorithm: sha256WithRSAEncryption 2b:3c:7b:41:77:12:aa:8e:da:b2:14:80:04:28:09:31:08:d9: 6f:d4:6d:29:9e:87:12:4e:16:ee:d5:f8:b5:c8:62:f7:65:0c: aa:3d:00:4f:b6:4e:aa:bb:9a:77:a4:cc:48:da:7b:a8:27:9f: 5c:23:38:5e:25:3f:2d:bb:cc:59:fc:a6:86:c7:b5:80:35:e6: 1d:12:13:1b:49:9d:b9:74:c7:46:a1:34:c6:e7:6c:0d:b3:ee: be:f4:1c:43:4c:dd:82:0f:5d:ab:9c:18:13:bc:f9:7d:3b:7c: e5:7c:e9:ef:e4:8a:33:c4:8a:ea:5c:44:8a:59:50:e9:8b:3c: 8c:76:e0:c8:a2:d6:16:4f:d5:db:5e:3b:64:48:50:4f:9b:b8: 6e:3e:ae:6a:6b:44:f7:aa:49:fc:5e:f6:c2:e2:ef:5e:d3:33: f4:c3:7d:66:81:08:90:96:c0:3e:f2:4b:ac:01:39:22:0d:57: 60:11:ac:5f:e5:f7:27:63:b7:65:b5:1c:cd:59:59:52:1d:4a: 7d:50:a1:f2:d7:72:49:ab:4a:56:dc:d1:f5:e6:87:81:7a:57: ff:52:f6:98:46:97:b0:9f:11:94:eb:49:3b:8a:df:1e:75:ae: 66:8f:7b:7f:52:2f:36:9f:c7:75:f3:77:eb:60:e7:e4:86:f0: 8b:54:dc:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSysKaHpfk9zDtWix2lqe6ldBDSIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MDIzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTRkYzE1ZDFlOWM2MDdiY2EyOTE3MmFlYjY5OTFkOTYw YWQ0MGIyMmUwOGQ1ZjYzYzRjOWY4YjdjYzYxMDZmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk/ruWs0HLVvkTyuIY1pF86JEztk8nRdPZ/UP8vXJXK8qw 0QqXg0kq84tECcr0Y0rwABJmz1kFADIarpzoaSkrJVJKnhQuH3uUKUgHGiVN3iog aVIJiQiX8Y6QZ9jESEJlPqxjTwTGgJhGQ08L4lISM7fTt3drRLj95ogR6bAKV7DU 4ogUG1nYwJETnUs7E16uZWU95WHTGL2+JrSKDNsx4Lbwv/z8izW68kN7Z+DaeRm1 rJJ+EfK5Q64FW7Jn39eL+w4v6gxoeRvVtlP5IWB3+COJfOgsn96OtuQ2j6m67BqK 1j+kHOHIDVT3wAkyFy89IJkercu2tR6UP50xsZaRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYFakC2ZkD0Smbb8/Qs0EtOMxPuowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM0YWE2MDZlLTBkZWQtNDllMC04MTI0LTI3OTk2NDNjZjI3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5kwDQYJKoZIhvcNAQELBQADggEBACs8e0F3EqqO2rIUgAQoCTEI 2W/UbSmehxJOFu7V+LXIYvdlDKo9AE+2Tqq7mnekzEjae6gnn1wjOF4lPy27zFn8 pobHtYA15h0SExtJnbl0x0ahNMbnbA2z7r70HENM3YIPXaucGBO8+X07fOV86e/k ijPEiupcRIpZUOmLPIx24Mii1hZP1dteO2RIUE+buG4+rmprRPeqSfxe9sLi717T M/TDfWaBCJCWwD7yS6wBOSINV2ARrF/l9ydjt2W1HM1ZWVIdSn1QofLXckmrSlbc 0fXmh4F6V/9S9phGl7CfEZTrSTuK3x51rmaPe39SLzafx3Xzd+tg5+SG8ItU3MQ= -----END CERTIFICATE-----Generated at Mon Oct 20 05:25:03 2025 by rpki-client