$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ae85743c-c855-42b4-95ab-e8e4d2087c99.roa File: ae85743c-c855-42b4-95ab-e8e4d2087c99.roa (raw, json) Hash identifier: JvnkKtUDcRMTg/bd5OblHjiM8fWnHE5QXo97BF7623E= Subject key identifier: E6:AA:A6:2E:DA:FE:EE:BE:F9:6A:3F:DE:9A:6C:80:65:E2:C1:56:E7 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 20EEE5430BE10364923A17DDF695C172729DADDC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ae85743c-c855-42b4-95ab-e8e4d2087c99.roa Signing time: Mon 06 Oct 2025 17:13:50 +0000 ROA not before: Mon 06 Oct 2025 17:13:50 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:c0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ee:e5:43:0b:e1:03:64:92:3a:17:dd:f6:95:c1:72:72:9d:ad:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:13:50 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=c178845c5987125993fb3f5274857f070def87c76efbdb811e40622d9a826acc, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:34:60:03:bc:e1:f1:5f:3c:cb:24:e2:bd:a6: fa:6b:8b:18:8d:66:16:81:04:e3:dc:ee:ed:4e:6f: 7a:18:15:37:95:9f:16:95:ad:a8:d0:ea:37:02:27: b1:c5:e7:9b:3a:08:40:c4:35:4e:5a:f9:f2:86:5f: 07:57:53:d8:7c:b9:f1:d4:b9:81:2d:6d:c4:89:12: b3:78:90:1c:ba:8b:96:3f:65:cf:8e:72:15:c4:5c: 88:9c:9a:8a:27:da:f5:95:20:ed:0b:7f:2a:c3:3c: 03:74:d7:64:2b:c3:6f:1c:76:ee:6f:b1:b1:0f:16: 09:e8:7c:53:84:3c:ad:bd:24:6c:dc:7d:7c:03:43: 98:ae:ea:6f:79:9f:45:98:6b:85:0e:75:a2:c7:e6: 85:9c:a8:e4:19:d5:09:8e:24:53:68:fc:81:b2:c0: f8:fa:46:d7:10:d9:1d:bd:df:89:ef:13:56:2c:fa: 3a:56:95:0a:c3:a1:a9:b8:e5:3b:8f:d6:5e:03:e6: d6:4a:c6:1b:41:e9:ee:71:4d:24:7f:99:1b:43:76: a3:b0:69:3d:30:cf:1a:5e:6e:34:ef:b1:78:65:2d: 16:de:88:51:75:33:22:0f:ee:4e:5f:37:49:9e:a3: a0:9b:f3:d1:aa:10:d3:e5:ed:4a:d4:d3:58:da:31: 90:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AA:A6:2E:DA:FE:EE:BE:F9:6A:3F:DE:9A:6C:80:65:E2:C1:56:E7 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ae85743c-c855-42b4-95ab-e8e4d2087c99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0d::/48 Signature Algorithm: sha256WithRSAEncryption a0:5c:f6:a9:36:ad:84:12:91:f0:e7:b4:96:b8:2e:a7:b8:e5: 4a:99:b9:01:90:3c:e2:2e:ee:24:73:96:d8:89:e5:d8:ff:d3: e3:c4:9f:bf:51:19:de:27:db:ce:2d:c8:20:0d:8d:de:5d:c1: c4:f7:43:75:fa:15:2d:1e:ed:2d:72:41:02:fd:59:33:0b:6b: 9e:21:4d:56:55:ce:0f:e7:7e:08:f0:34:dd:da:d2:01:fc:33: a2:cd:35:d2:9c:45:93:d4:59:f7:fa:bf:31:5f:26:e0:38:e3: 18:0f:26:a0:35:5b:85:4b:3e:0b:56:54:08:63:d0:6e:d2:d3: 4d:5f:7f:6b:cd:87:ed:c1:71:53:ba:21:89:e5:1b:6e:de:0b: 14:80:52:3b:11:f7:32:aa:2f:28:32:f9:58:95:18:b5:6a:3b: 46:7a:66:0c:88:18:55:15:4d:f1:47:a9:92:6d:7a:8c:7f:03: cf:12:20:b6:98:c0:83:7a:78:a2:ea:0c:a1:1c:fd:41:b7:d9: c2:06:df:70:18:8b:c4:84:4d:3e:89:96:f1:5e:99:32:90:9a: 1c:b1:38:34:9f:cd:20:81:a5:a4:df:89:e9:60:92:a6:e2:fb: d8:95:1f:8b:90:5c:20:c6:14:1b:3d:27:64:82:57:df:37:f2: f8:c7:fa:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIO7lQwvhA2SSOhfd9pXBcnKdrdwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcxMzUwWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTc4ODQ1YzU5ODcxMjU5OTNmYjNmNTI3NDg1N2YwNzBk ZWY4N2M3NmVmYmRiODExZTQwNjIyZDlhODI2YWNjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeNGADvOHxXzzLJOK9pvprixiNZhaBBOPc7u1Ob3oYFTeV nxaVrajQ6jcCJ7HF55s6CEDENU5a+fKGXwdXU9h8ufHUuYEtbcSJErN4kBy6i5Y/ Zc+OchXEXIicmoon2vWVIO0LfyrDPAN012Qrw28cdu5vsbEPFgnofFOEPK29JGzc fXwDQ5iu6m95n0WYa4UOdaLH5oWcqOQZ1QmOJFNo/IGywPj6RtcQ2R2934nvE1Ys +jpWlQrDoam45TuP1l4D5tZKxhtB6e5xTSR/mRtDdqOwaT0wzxpebjTvsXhlLRbe iFF1MyIP7k5fN0meo6Cb89GqENPl7UrU01jaMZANAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5qqmLtr+7r75aj/emmyAZeLBVucwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2FlODU3NDNjLWM4NTUtNDJiNC05NWFiLWU4ZTRkMjA4N2M5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA0wDQYJKoZIhvcNAQELBQADggEBAKBc9qk2rYQSkfDntJa4Lqe4 5UqZuQGQPOIu7iRzltiJ5dj/0+PEn79RGd4n284tyCANjd5dwcT3Q3X6FS0e7S1y QQL9WTMLa54hTVZVzg/nfgjwNN3a0gH8M6LNNdKcRZPUWff6vzFfJuA44xgPJqA1 W4VLPgtWVAhj0G7S001ff2vNh+3BcVO6IYnlG27eCxSAUjsR9zKqLygy+ViVGLVq O0Z6ZgyIGFUVTfFHqZJteox/A88SILaYwIN6eKLqDKEc/UG32cIG33AYi8SETT6J lvFemTKQmhyxODSfzSCBpaTfielgkqbi+9iVH4uQXCDGFBs9J2SCV9838vjH+gU= -----END CERTIFICATE-----Generated at Mon Oct 20 07:38:24 2025 by rpki-client