$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/517fcfc3-0b44-4eea-a581-e76ee94600bb.roa File: 517fcfc3-0b44-4eea-a581-e76ee94600bb.roa (raw, json) Hash identifier: BJdCS85KLxc/vVvxYpsxhIy+b6fT1+nzwRatRFtlKng= Subject key identifier: 0D:08:25:79:FB:13:39:0B:48:48:15:96:CA:47:45:EF:01:1F:86:6D Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6E3CC23347E2DBEFED2ED63D7658FB4907E0EBF6 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/517fcfc3-0b44-4eea-a581-e76ee94600bb.roa Signing time: Mon 13 Oct 2025 17:54:59 +0000 ROA not before: Mon 13 Oct 2025 17:54:59 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:2800::/41 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:3c:c2:33:47:e2:db:ef:ed:2e:d6:3d:76:58:fb:49:07:e0:eb:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 13 17:54:59 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=909dad2db3cb4a6c093d133da1f62179df7de946b895812c56ca258c44b0a6b3, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bc:b4:33:6b:95:f9:ee:26:31:45:90:25:3c: f4:8c:7d:40:87:b9:6d:a6:34:e3:d6:08:85:a6:04: 8c:15:4f:52:f0:2e:8e:73:98:fa:cd:15:1d:f0:01: fc:bf:df:54:70:79:d4:fe:13:91:0c:0e:2b:40:7b: 77:0f:b4:d1:12:69:35:b8:85:d3:c0:5d:23:41:b3: f3:1b:37:22:a3:2d:6c:d5:cc:83:71:b7:64:cb:a4: 59:70:5a:5e:6b:f3:e5:f4:87:e9:1b:2c:59:83:5d: c0:43:dc:f0:d6:3a:ea:02:1f:1b:80:08:1a:01:35: da:d4:06:f2:d1:2a:7c:05:f1:22:e9:fb:1e:dc:2e: 70:a0:2b:ab:6f:86:d3:56:2f:75:ba:ff:2e:b3:0e: 72:41:6f:11:8c:a4:ac:e9:f9:70:c7:a6:68:b5:87: e4:5e:a4:80:bd:8e:a8:58:00:82:a4:13:59:83:bd: 64:3b:53:f4:04:56:67:5b:a2:b3:02:d9:4e:75:66: 15:be:9e:e9:1c:1f:fe:b8:fd:96:5e:c7:36:28:1a: 3d:f2:c2:f2:1c:57:c5:07:73:8f:01:f4:c7:ef:59: 68:35:19:94:d5:ae:9d:09:45:26:d0:c9:8f:aa:8e: 17:8b:fa:f8:aa:68:34:34:30:34:84:e5:06:aa:52: 23:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:08:25:79:FB:13:39:0B:48:48:15:96:CA:47:45:EF:01:1F:86:6D X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/517fcfc3-0b44-4eea-a581-e76ee94600bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:2800::/41 Signature Algorithm: sha256WithRSAEncryption 77:68:1f:5f:00:1d:78:7c:83:85:ad:a8:49:e9:88:36:84:f3: 25:1e:fe:fa:ac:76:fb:be:17:c6:70:03:7e:ec:cb:3a:c4:9e: 1e:94:ce:4f:7d:7f:42:12:a7:76:99:d2:13:d0:bb:62:5a:f1: ae:cd:26:6c:80:2e:2c:19:48:d5:0e:f0:1c:3e:d3:90:2b:65: d7:f2:8f:4f:a8:20:1b:af:f5:4d:8e:67:a9:5d:fc:5a:13:4b: 54:cc:73:67:be:a7:59:0b:ac:80:26:01:ee:87:9e:d9:de:16: 01:d2:1f:45:71:78:65:41:44:17:c0:3e:7e:50:6f:e0:41:d2: 2a:5b:8c:04:89:ab:9d:1a:0a:77:d6:6a:3d:43:f8:fb:4a:dc: f7:f8:20:56:bf:6b:8a:9d:49:73:50:5c:17:8c:25:48:9d:5e: f9:69:5d:02:e5:46:1d:e3:27:1d:c3:b7:1f:bd:aa:8f:75:71: dd:ba:df:9f:0e:7a:c6:7a:26:93:9b:ca:55:ab:64:33:da:38: f7:5d:5f:0f:f6:33:5f:29:22:19:0d:46:10:d9:3d:45:2a:26: 2f:54:bf:12:d8:2a:a0:77:2c:13:f1:a7:1b:08:d0:a4:06:54: b3:ef:c8:b2:41:03:4e:a3:06:55:9b:a9:fc:e3:1d:0a:37:72: b9:41:27:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbjzCM0fi2+/tLtY9dlj7SQfg6/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDEzMTc1NDU5WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDlkYWQyZGIzY2I0YTZjMDkzZDEzM2RhMWY2MjE3OWRm N2RlOTQ2Yjg5NTgxMmM1NmNhMjU4YzQ0YjBhNmIzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8vLQza5X57iYxRZAlPPSMfUCHuW2mNOPWCIWmBIwVT1Lw Lo5zmPrNFR3wAfy/31RwedT+E5EMDitAe3cPtNESaTW4hdPAXSNBs/MbNyKjLWzV zINxt2TLpFlwWl5r8+X0h+kbLFmDXcBD3PDWOuoCHxuACBoBNdrUBvLRKnwF8SLp +x7cLnCgK6tvhtNWL3W6/y6zDnJBbxGMpKzp+XDHpmi1h+RepIC9jqhYAIKkE1mD vWQ7U/QEVmdborMC2U51ZhW+nukcH/64/ZZexzYoGj3ywvIcV8UHc48B9MfvWWg1 GZTVrp0JRSbQyY+qjheL+viqaDQ0MDSE5QaqUiOtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDQglefsTOQtISBWWykdF7wEfhm0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzUxN2ZjZmMzLTBiNDQtNGVlYS1hNTgxLWU3NmVlOTQ2MDBiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwcmBZzAKAAwDQYJKoZIhvcNAQELBQADggEBAHdoH18AHXh8g4WtqEnpiDaE 8yUe/vqsdvu+F8ZwA37syzrEnh6Uzk99f0ISp3aZ0hPQu2Ja8a7NJmyALiwZSNUO 8Bw+05ArZdfyj0+oIBuv9U2OZ6ld/FoTS1TMc2e+p1kLrIAmAe6HntneFgHSH0Vx eGVBRBfAPn5Qb+BB0ipbjASJq50aCnfWaj1D+PtK3Pf4IFa/a4qdSXNQXBeMJUid XvlpXQLlRh3jJx3Dtx+9qo91cd26358OesZ6JpObylWrZDPaOPddXw/2M18pIhkN RhDZPUUqJi9UvxLYKqB3LBPxpxsI0KQGVLPvyLJBA06jBlWbqfzjHQo3crlBJ00= -----END CERTIFICATE-----Generated at Mon Oct 20 03:53:07 2025 by rpki-client