$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa File: 35efcf72-708d-4456-b1d1-8419a2636e00.roa (raw, json) Hash identifier: 0aJB2BbJjA1+lvKvh9Z/aA9Ta1hHbtwT+d1Up6Bfs7Y= Subject key identifier: A0:AC:9E:71:E4:4E:5E:AA:47:58:9A:6E:02:7C:E4:9A:E5:BD:AE:6B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7DCFA32B9FC691A289306F46BD83CAF55303C024 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa Signing time: Fri 26 Sep 2025 18:00:22 +0000 ROA not before: Fri 26 Sep 2025 18:00:22 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:f03d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:cf:a3:2b:9f:c6:91:a2:89:30:6f:46:bd:83:ca:f5:53:03:c0:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 18:00:22 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=cd728cc9b3b38238652d985c563ee1ac3037c65fbdee86a697524f70aded0748, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:20:bd:1d:dc:68:9c:30:7e:94:98:9c:2a:0b: a2:b4:a7:a3:95:0e:95:f4:7b:bd:08:1b:0c:6f:44: 85:ee:24:7f:39:ff:f5:be:c4:46:bd:30:5f:4c:00: 3d:ee:97:ac:dd:e5:0e:d9:87:be:dd:b1:46:6b:38: 01:a0:04:ba:9e:a6:52:02:54:bf:e5:cd:7a:29:51: 42:55:56:55:df:d4:61:0c:0d:17:15:db:a7:10:68: cb:7a:3d:96:0b:0a:0c:bb:4f:70:8c:b8:2c:7f:6f: 4d:da:64:05:03:d3:0b:68:6c:62:33:98:22:37:8f: ed:40:ba:b6:01:a1:c9:36:34:91:bb:96:6b:6a:14: 43:ca:44:ab:69:a3:c0:f5:5e:6c:54:c7:45:ec:f5: 77:13:df:11:79:5c:06:53:7d:ca:81:c5:f9:41:41: 44:3e:37:71:81:7f:9e:49:72:da:7a:61:01:6f:89: c9:76:e9:80:18:ce:63:54:fb:d2:9c:e9:dc:f8:4c: ea:d6:e4:c3:4b:7c:5c:5b:bd:4a:b3:85:2e:6c:4f: b3:48:d4:b9:e6:d9:26:89:f5:14:37:c9:f9:92:11: 25:22:59:24:d8:7e:5a:09:04:5c:e5:3f:d0:20:29: 6e:77:76:7b:cf:2a:fd:32:8b:e5:d1:11:26:8e:30: 69:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AC:9E:71:E4:4E:5E:AA:47:58:9A:6E:02:7C:E4:9A:E5:BD:AE:6B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03d::/48 Signature Algorithm: sha256WithRSAEncryption 68:f2:ad:d7:04:8d:c4:7b:8a:02:bc:c0:da:93:24:a5:e9:dc: c0:24:9d:58:e0:07:9d:5f:1c:6d:1a:03:bd:fa:60:f6:5a:37: 8f:19:2e:84:cb:e1:00:de:c5:ed:3a:74:ef:cb:a1:6b:cb:f6: 05:d0:03:c0:d7:e2:c2:e4:a7:7b:f4:04:e2:7f:ff:07:1a:38: 65:9f:fa:d8:c0:b7:c4:42:40:d8:bf:fe:d8:10:96:6c:24:2b: 00:dc:69:42:95:fd:34:cd:0d:d4:06:6f:86:f2:6b:be:af:bb: 31:c3:60:10:8f:41:d2:16:01:84:ec:a8:8d:0e:95:72:1c:f2: 93:9b:05:4b:3f:fd:f0:fe:21:a9:b2:40:a6:ef:c6:d0:29:0d: da:96:0f:36:f4:1b:c6:84:f6:cf:e4:95:c2:44:63:94:9a:30: ab:ac:d4:cc:d7:f4:30:42:db:49:c0:af:48:d1:69:c9:7b:5c: 1e:3a:f8:d3:ff:a5:3a:b3:31:70:38:a1:10:ad:0d:d5:ae:6f: 6e:fd:9d:d8:ee:4e:99:f2:c5:bf:45:69:14:57:b1:59:e6:72: b3:1a:96:04:ce:8f:f0:e0:4e:0d:b5:5c:e6:de:de:03:cb:04: dc:cb:f4:35:82:42:d9:4f:e0:c0:14:76:99:8e:e3:d7:42:5d: d4:15:b8:a2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfc+jK5/GkaKJMG9GvYPK9VMDwCQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTgwMDIyWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDcyOGNjOWIzYjM4MjM4NjUyZDk4NWM1NjNlZTFhYzMw MzdjNjVmYmRlZTg2YTY5NzUyNGY3MGFkZWQwNzQ4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqIL0d3GicMH6UmJwqC6K0p6OVDpX0e70IGwxvRIXuJH85 //W+xEa9MF9MAD3ul6zd5Q7Zh77dsUZrOAGgBLqeplICVL/lzXopUUJVVlXf1GEM DRcV26cQaMt6PZYLCgy7T3CMuCx/b03aZAUD0wtobGIzmCI3j+1AurYBock2NJG7 lmtqFEPKRKtpo8D1XmxUx0Xs9XcT3xF5XAZTfcqBxflBQUQ+N3GBf55Jctp6YQFv icl26YAYzmNU+9Kc6dz4TOrW5MNLfFxbvUqzhS5sT7NI1Lnm2SaJ9RQ3yfmSESUi WSTYfloJBFzlP9AgKW53dnvPKv0yi+XRESaOMGnzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoKyeceROXqpHWJpuAnzkmuW9rmswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1ZWZjZjcyLTcwOGQtNDQ1Ni1iMWQxLTg0MTlhMjYzNmUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D0wDQYJKoZIhvcNAQELBQADggEBAGjyrdcEjcR7igK8wNqTJKXp 3MAknVjgB51fHG0aA736YPZaN48ZLoTL4QDexe06dO/LoWvL9gXQA8DX4sLkp3v0 BOJ//wcaOGWf+tjAt8RCQNi//tgQlmwkKwDcaUKV/TTNDdQGb4bya76vuzHDYBCP QdIWAYTsqI0OlXIc8pObBUs//fD+IamyQKbvxtApDdqWDzb0G8aE9s/klcJEY5Sa MKus1MzX9DBC20nAr0jRacl7XB46+NP/pTqzMXA4oRCtDdWub279ndjuTpnyxb9F aRRXsVnmcrMalgTOj/DgTg21XObe3gPLBNzL9DWCQtlP4MAUdpmO49dCXdQVuKI= -----END CERTIFICATE-----Generated at Mon Oct 20 07:49:35 2025 by rpki-client