$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c044dfdf-545b-46de-a181-9b87e5052e28.roa File: c044dfdf-545b-46de-a181-9b87e5052e28.roa (raw, json) Hash identifier: XlbzMiISGO7pfLOqee1udWhCS8Nhrh5ydbd8beOuwGE= Subject key identifier: B9:D8:C8:17:B7:BA:03:E2:EA:48:C7:C0:C8:B4:F1:3F:98:A5:33:BD Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 257B91105007A2D44B441D29B8A232A5697AA4FB Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c044dfdf-545b-46de-a181-9b87e5052e28.roa Signing time: Fri 26 Sep 2025 17:50:57 +0000 ROA not before: Fri 26 Sep 2025 17:50:57 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:2110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:7b:91:10:50:07:a2:d4:4b:44:1d:29:b8:a2:32:a5:69:7a:a4:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:50:57 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=ddf99d76c655630e7f96949525524d55bda0093706bc72a7ab9b24960849cb19, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dc:b9:1f:b4:ec:df:bb:cd:f1:e2:14:44:73: a1:18:38:c0:87:35:e3:fb:28:64:03:58:9a:97:f8: ea:d6:5a:fc:ac:e6:a4:9d:c8:33:1b:8d:d4:47:5f: de:c3:d9:07:1a:3b:58:6c:bc:bf:4a:fb:c7:c3:3e: b9:69:68:bb:fc:34:87:b2:39:59:ce:80:60:03:55: 1b:db:d9:fe:e2:02:35:84:ae:18:f1:6f:20:b4:14: 4d:d2:c8:d6:dc:ae:39:b5:b3:04:37:83:f8:c0:21: b3:6f:eb:52:94:1e:b2:3d:4a:85:25:a4:2e:e4:d9: 1f:0c:6a:7b:40:3e:e2:cf:3c:98:8e:69:4f:bb:2b: cd:d5:30:be:9a:c3:01:ad:00:40:59:5a:f6:10:22: 4f:77:93:81:6b:ef:01:5e:2e:af:0b:8e:a6:c2:74: 13:f5:2e:0e:3d:4f:85:60:0e:32:e9:01:30:7c:e3: c8:03:83:d7:97:7a:5b:ce:e7:bd:94:13:c8:fd:7d: 8c:91:a7:12:38:e4:97:72:55:b6:4c:87:4c:6f:b1: 09:c0:88:95:5f:89:2c:e3:e3:fb:85:bc:36:98:09: 48:49:5e:5e:22:4b:79:9a:a1:cb:1d:cd:c7:0d:db: 57:fb:87:e7:c6:4d:78:2d:c0:08:e6:b6:44:85:09: 12:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D8:C8:17:B7:BA:03:E2:EA:48:C7:C0:C8:B4:F1:3F:98:A5:33:BD X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c044dfdf-545b-46de-a181-9b87e5052e28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:2110::/44 Signature Algorithm: sha256WithRSAEncryption 50:4b:fd:29:06:50:58:0a:13:3f:6d:2f:cb:8f:20:0b:90:cb: 02:7e:f2:d2:95:9d:97:9d:a4:6f:d3:a5:12:26:0d:68:8d:01: e5:62:2f:19:33:8c:11:82:42:d2:54:11:16:6f:8e:34:d5:47: 31:ac:58:65:3b:a8:bd:73:37:94:1c:03:b9:43:aa:ae:e2:67: b5:d0:db:33:dc:d6:19:5b:ec:f0:38:41:8e:0c:2a:27:aa:ae: e0:14:24:55:af:72:c0:0c:3c:dc:88:1b:4e:0a:ea:c8:92:5e: 19:23:bf:8c:76:bb:c3:f3:e0:d5:e5:41:89:fc:c9:96:e6:26: f7:0f:74:b9:3c:a2:ef:d3:0a:7a:1d:22:2b:c4:c2:2c:7c:ed: c8:cb:08:b2:65:e3:97:da:cf:6c:d3:da:c6:9f:56:40:02:7e: 0b:c3:e7:73:65:5c:c2:dd:4d:e5:66:05:c9:1e:7b:39:93:0b: 7c:d3:7a:32:b5:03:75:10:30:4b:9a:91:20:6f:f2:40:0c:df: 13:c2:9c:de:ac:fa:be:09:d9:a1:b0:8b:22:eb:dd:b1:75:d7: 2d:a6:14:f1:c0:3e:b3:b7:cb:ba:d1:a2:87:f5:12:1e:83:02: 4e:33:38:3e:5d:67:31:30:d2:56:4f:e0:e6:d7:b4:42:02:89: 09:3b:f8:23 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJXuREFAHotRLRB0puKIypWl6pPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MDU3WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGY5OWQ3NmM2NTU2MzBlN2Y5Njk0OTUyNTUyNGQ1NWJk YTAwOTM3MDZiYzcyYTdhYjliMjQ5NjA4NDljYjE5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM3LkftOzfu83x4hREc6EYOMCHNeP7KGQDWJqX+OrWWvys 5qSdyDMbjdRHX97D2QcaO1hsvL9K+8fDPrlpaLv8NIeyOVnOgGADVRvb2f7iAjWE rhjxbyC0FE3SyNbcrjm1swQ3g/jAIbNv61KUHrI9SoUlpC7k2R8MantAPuLPPJiO aU+7K83VML6awwGtAEBZWvYQIk93k4Fr7wFeLq8LjqbCdBP1Lg49T4VgDjLpATB8 48gDg9eXelvO572UE8j9fYyRpxI45JdyVbZMh0xvsQnAiJVfiSzj4/uFvDaYCUhJ Xl4iS3maocsdzccN21f7h+fGTXgtwAjmtkSFCRLxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUudjIF7e6A+LqSMfAyLTxP5ilM70wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2MwNDRkZmRmLTU0NWItNDZkZS1hMTgxLTliODdlNTA1MmUyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmBZzAIRAwDQYJKoZIhvcNAQELBQADggEBAFBL/SkGUFgKEz9tL8uPIAuQ ywJ+8tKVnZedpG/TpRImDWiNAeViLxkzjBGCQtJUERZvjjTVRzGsWGU7qL1zN5Qc A7lDqq7iZ7XQ2zPc1hlb7PA4QY4MKieqruAUJFWvcsAMPNyIG04K6siSXhkjv4x2 u8Pz4NXlQYn8yZbmJvcPdLk8ou/TCnodIivEwix87cjLCLJl45faz2zT2safVkAC fgvD53NlXMLdTeVmBckeezmTC3zTejK1A3UQMEuakSBv8kAM3xPCnN6s+r4J2aGw iyLr3bF11y2mFPHAPrO3y7rRoof1Eh6DAk4zOD5dZzEw0lZP4ObXtEICiQk7+CM= -----END CERTIFICATE-----Generated at Mon Oct 20 18:04:51 2025 by rpki-client