$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa File: 6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa (raw, json) Hash identifier: qA9xe/QDHPkymJfQAVE5+Ixj6k052OdLykCzohrK1UY= Subject key identifier: C6:29:8F:71:36:E4:97:C4:7D:F4:40:44:30:88:E2:5B:C0:47:6C:89 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1A770F1ACE8098F9C0BF62C30DE63620E66EF9BC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa Signing time: Fri 17 Oct 2025 20:00:34 +0000 ROA not before: Fri 17 Oct 2025 20:00:34 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c1f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:77:0f:1a:ce:80:98:f9:c0:bf:62:c3:0d:e6:36:20:e6:6e:f9:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 17 20:00:34 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=241d139b9bd1b38b85f4cfbf89c9b94a131b0986cf6a5b3c93e9c899caf2f80c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d0:2c:6d:48:b3:50:d2:35:76:9c:75:df:00: 2c:a2:54:4a:1e:60:df:b8:a9:a4:00:bd:e7:d8:dc: d7:8f:a6:02:7f:41:cf:59:30:f6:48:2f:5c:8a:94: 71:e6:ab:af:91:87:98:27:d8:d2:65:da:d7:ec:13: 7a:54:59:53:29:d4:00:aa:6a:b3:17:77:fc:7f:e5: 94:d1:21:85:3f:a2:91:d3:b3:d0:95:1c:6c:39:33: 4c:09:14:3b:4e:e2:3f:83:03:b4:03:09:27:40:f8: 9d:38:6f:e9:31:11:02:13:a1:c2:20:3b:47:3b:95: 74:15:3c:8f:69:ea:3e:c1:3c:74:fa:f6:89:a8:7e: c8:6f:85:83:ce:32:30:11:4d:fc:75:62:a5:d6:f3: 29:62:8d:b9:6f:04:35:a9:7a:72:8c:d0:61:e1:9f: 66:5a:49:0f:4a:fa:d8:a3:7e:64:72:1e:35:5c:91: b4:ba:d9:65:6e:84:12:f8:d0:2b:58:e0:ba:ff:b9: e9:b6:bb:d9:6f:f0:71:f4:6f:a6:7a:20:8f:2a:16: 67:77:f8:03:d2:20:62:9e:3e:03:f4:60:fb:b5:5f: 33:ef:43:76:c6:65:6f:85:e6:f3:19:dc:74:89:f1: 83:d9:f6:fe:a6:8e:7d:5e:f9:fa:80:27:93:e8:1c: 9b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:29:8F:71:36:E4:97:C4:7D:F4:40:44:30:88:E2:5B:C0:47:6C:89 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1f::/48 Signature Algorithm: sha256WithRSAEncryption 9f:05:c2:42:29:38:2c:9e:71:15:64:d4:55:67:ba:9d:72:8c: 8b:92:ee:ac:70:08:0b:27:bd:bd:21:54:23:4e:c1:2b:e1:49: 70:9a:9c:d1:fd:23:4e:56:33:ec:ad:6d:49:8e:a8:03:93:81: de:f7:8d:82:09:fb:69:54:ed:59:54:17:d3:74:8d:f1:36:c5: 67:fe:23:17:31:00:80:f0:fe:e2:30:a4:3d:f1:6d:78:2c:98: b1:2c:46:7a:5d:00:8a:d5:88:8c:08:16:bf:66:81:05:ae:97: a9:b1:52:43:cd:56:5c:2d:d1:09:d8:01:e6:01:69:de:b9:70: ca:f6:92:ad:c5:e6:fe:6b:20:31:99:a5:93:a6:6a:a5:91:b7: 4c:54:d9:2a:8e:0a:e4:ba:14:23:47:af:02:20:6d:99:85:b4: 7e:17:03:2f:55:8c:5c:e7:c1:0a:fc:ee:0d:dd:1a:fe:de:b6: b8:43:b4:a4:59:61:bb:a6:20:ab:a8:6f:72:ef:29:ad:12:a1: c9:5c:17:d4:d7:ee:6d:1f:2d:24:0b:b9:0e:f4:7f:c7:0d:05: 87:5c:44:47:87:db:59:db:4f:ea:fd:98:11:75:68:93:85:60: f5:2d:05:3c:33:36:bc:43:dc:a2:33:b8:ce:af:c3:1e:7c:84: 3e:87:70:73 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGncPGs6AmPnAv2LDDeY2IOZu+bwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDE3MjAwMDM0WhcNMjUxMTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDFkMTM5YjliZDFiMzhiODVmNGNmYmY4OWM5Yjk0YTEz MWIwOTg2Y2Y2YTViM2M5M2U5Yzg5OWNhZjJmODBjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/0CxtSLNQ0jV2nHXfACyiVEoeYN+4qaQAvefY3NePpgJ/ Qc9ZMPZIL1yKlHHmq6+Rh5gn2NJl2tfsE3pUWVMp1ACqarMXd/x/5ZTRIYU/opHT s9CVHGw5M0wJFDtO4j+DA7QDCSdA+J04b+kxEQITocIgO0c7lXQVPI9p6j7BPHT6 9omofshvhYPOMjARTfx1YqXW8ylijblvBDWpenKM0GHhn2ZaSQ9K+tijfmRyHjVc kbS62WVuhBL40CtY4Lr/uem2u9lv8HH0b6Z6II8qFmd3+APSIGKePgP0YPu1XzPv Q3bGZW+F5vMZ3HSJ8YPZ9v6mjn1e+fqAJ5PoHJshAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUximPcTbkl8R99EBEMIjiW8BHbIkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzZmNGQ5YThlLWJlNGEtNDcxNy1iNDdjLTJlMTY5NTJmZDlhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADB8wDQYJKoZIhvcNAQELBQADggEBAJ8FwkIpOCyecRVk1FVnup1y jIuS7qxwCAsnvb0hVCNOwSvhSXCanNH9I05WM+ytbUmOqAOTgd73jYIJ+2lU7VlU F9N0jfE2xWf+IxcxAIDw/uIwpD3xbXgsmLEsRnpdAIrViIwIFr9mgQWul6mxUkPN Vlwt0QnYAeYBad65cMr2kq3F5v5rIDGZpZOmaqWRt0xU2SqOCuS6FCNHrwIgbZmF tH4XAy9VjFznwQr87g3dGv7etrhDtKRZYbumIKuob3LvKa0SoclcF9TX7m0fLSQL uQ70f8cNBYdcREeH21nbT+r9mBF1aJOFYPUtBTwzNrxD3KIzuM6vwx58hD6HcHM= -----END CERTIFICATE-----Generated at Sun Oct 19 23:09:09 2025 by rpki-client