$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa File: 41f74973-a63a-4161-8c87-21184ab17c25.roa (raw, json) Hash identifier: C3F+98Si9URFy7duYpRrMU9upCmsWiGeoh087S+iuRk= Subject key identifier: 53:D4:45:A6:B9:4F:9C:89:EB:7C:60:EE:75:25:BB:24:F8:97:4F:C7 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2C4C11DA659F1BB219B69BE3DA27773A7F3A49AD Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa Signing time: Mon 06 Oct 2025 17:20:26 +0000 ROA not before: Mon 06 Oct 2025 17:20:26 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:4c:11:da:65:9f:1b:b2:19:b6:9b:e3:da:27:77:3a:7f:3a:49:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:20:26 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=32e393842ca4e1b2e30ced7f5580f85a98249656f4b1d30f4ffb7a021b538d8b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3c:86:52:41:13:8f:8f:e2:29:51:ae:94:fe: 6b:24:7d:e6:cb:e0:e5:15:13:25:ec:4e:80:48:9d: e5:8f:5f:9f:f1:5b:45:93:49:5f:98:52:58:34:d7: 59:f2:7d:41:11:fd:c6:47:16:b6:0d:12:70:42:69: eb:26:7a:07:9a:73:01:76:0d:77:72:e4:3f:19:98: 16:7c:b4:81:46:a6:01:cb:18:7d:07:98:4b:05:b9: 6b:0e:66:86:95:72:93:05:cd:e4:fe:73:dc:7f:31: 21:bc:dc:d1:d3:77:a1:d7:d4:ea:97:da:4b:14:02: 3e:de:9d:05:e4:fe:fd:80:2d:d4:36:89:f5:2e:d8: cf:a0:7d:24:eb:17:b5:2d:f4:2a:a3:8c:2c:29:b6: 18:3e:69:20:3a:4d:8e:25:07:98:24:d3:bf:0d:1a: 33:3b:3e:75:22:3a:cd:fb:af:38:d4:f3:eb:c3:ae: 16:70:fc:54:dc:ae:07:24:f8:26:ab:b9:1b:87:52: 14:e1:fd:ed:d1:1e:81:b4:be:21:6b:2d:52:1b:32: c5:fb:3e:f7:20:d5:4c:c4:ec:2b:20:5a:1c:3c:32: 75:54:84:6c:32:99:08:98:12:a8:eb:40:37:b9:78: 6b:53:5c:d9:6b:c2:fa:29:a6:34:5d:9b:2d:5d:29: 58:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D4:45:A6:B9:4F:9C:89:EB:7C:60:EE:75:25:BB:24:F8:97:4F:C7 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1c::/48 Signature Algorithm: sha256WithRSAEncryption 97:7c:e6:e4:5b:11:44:85:49:10:ff:2f:4e:f9:72:c0:9f:20: 33:4b:8e:82:aa:e9:ba:3f:ff:4c:22:72:d2:79:80:bc:ee:e7: 88:a1:4e:f7:df:eb:99:7f:b9:d2:4c:b6:72:3f:9f:4c:ac:20: 2e:3a:e2:bf:60:3c:bc:ba:fd:89:f5:55:2b:4d:12:a1:df:61: 84:01:5e:6a:c1:4a:65:4c:3d:e0:0b:cc:45:f7:40:ae:68:ae: ca:68:09:66:57:5c:c9:de:a7:1b:86:65:cb:46:9a:c7:54:dc: 56:cf:6a:1c:6b:87:03:dd:cf:67:89:46:cb:05:09:f4:ce:4b: f8:9d:8f:09:0e:dc:c6:6c:7e:50:b3:49:02:55:27:48:dd:f3: 36:82:70:65:2a:fe:5a:08:08:80:60:94:ca:da:0f:8e:05:d8: b4:53:53:70:34:fc:f2:5a:cf:ac:9e:52:c1:4e:fd:e0:4b:e5: 04:9b:87:e8:9f:3b:c6:18:33:d4:56:46:a5:f9:d5:90:ed:5f: c1:52:1b:ba:1b:01:87:1c:5f:a9:82:a1:93:4b:84:c5:02:36: fc:bd:b3:74:24:67:8f:66:5b:11:59:59:62:ce:ea:8b:41:74: ef:ad:d4:53:b7:94:0e:04:40:e4:9a:62:8e:82:b4:cf:2b:54: 1f:51:68:45 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULEwR2mWfG7IZtpvj2id3On86Sa0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcyMDI2WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmUzOTM4NDJjYTRlMWIyZTMwY2VkN2Y1NTgwZjg1YTk4 MjQ5NjU2ZjRiMWQzMGY0ZmZiN2EwMjFiNTM4ZDhiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRPIZSQROPj+IpUa6U/mskfebL4OUVEyXsToBIneWPX5/x W0WTSV+YUlg011nyfUER/cZHFrYNEnBCaesmegeacwF2DXdy5D8ZmBZ8tIFGpgHL GH0HmEsFuWsOZoaVcpMFzeT+c9x/MSG83NHTd6HX1OqX2ksUAj7enQXk/v2ALdQ2 ifUu2M+gfSTrF7Ut9CqjjCwpthg+aSA6TY4lB5gk078NGjM7PnUiOs37rzjU8+vD rhZw/FTcrgck+CaruRuHUhTh/e3RHoG0viFrLVIbMsX7Pvcg1UzE7CsgWhw8MnVU hGwymQiYEqjrQDe5eGtTXNlrwvoppjRdmy1dKVjnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUU9RFprlPnInrfGDudSW7JPiXT8cwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQxZjc0OTczLWE2M2EtNDE2MS04Yzg3LTIxMTg0YWIxN2MyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBwwDQYJKoZIhvcNAQELBQADggEBAJd85uRbEUSFSRD/L075csCf IDNLjoKq6bo//0wictJ5gLzu54ihTvff65l/udJMtnI/n0ysIC464r9gPLy6/Yn1 VStNEqHfYYQBXmrBSmVMPeALzEX3QK5orspoCWZXXMnepxuGZctGmsdU3FbPahxr hwPdz2eJRssFCfTOS/idjwkO3MZsflCzSQJVJ0jd8zaCcGUq/loICIBglMraD44F 2LRTU3A0/PJaz6yeUsFO/eBL5QSbh+ifO8YYM9RWRqX51ZDtX8FSG7obAYccX6mC oZNLhMUCNvy9s3QkZ49mWxFZWWLO6otBdO+t1FO3lA4EQOSaYo6CtM8rVB9RaEU= -----END CERTIFICATE-----Generated at Mon Oct 20 04:56:25 2025 by rpki-client