$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa File: c91e5573-a757-4c6b-9000-0403e0e4fa00.roa (raw, json) Hash identifier: GIsZf3D67VRzMnyc8JpxP3bYIeaFCYg5VgSy7ju9/+I= Subject key identifier: CC:BA:F5:B9:24:92:2C:D3:74:D6:B5:A5:4B:92:EF:35:75:1B:BB:51 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3F385E68CDC39E3868D55FAAF1950213F52FD7CF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa Signing time: Fri 26 Sep 2025 17:50:35 +0000 ROA not before: Fri 26 Sep 2025 17:50:35 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:544::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:38:5e:68:cd:c3:9e:38:68:d5:5f:aa:f1:95:02:13:f5:2f:d7:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:50:35 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=930de62577c9ac863e065fb05091270eed1c834d448437c7399b7675a46ddc96, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:49:16:be:a0:b3:a5:a3:01:77:ee:3a:e0:d3: 06:95:7e:c2:37:19:3e:45:14:89:b4:e8:a8:b8:06: 6d:32:8d:3f:1a:d6:42:e0:d7:50:f8:8a:b5:ce:b4: 15:81:c0:52:bc:c0:19:9e:ef:de:ae:3c:8c:82:65: f4:26:30:43:72:89:4c:c7:41:25:64:87:8c:66:96: b7:c5:6c:c2:2f:d7:1e:ee:d7:33:5c:f1:2f:be:ec: e2:fa:56:5f:19:1a:ea:91:46:fd:e6:15:f6:88:54: 02:59:1d:ef:e2:d6:a5:d7:7a:db:17:31:8b:6e:99: 0e:cb:42:4a:9f:ca:2b:30:ae:02:f3:e5:33:72:90: 07:13:3d:0c:9c:a1:b0:55:58:25:ed:94:b3:3a:ee: 4a:3a:a0:f3:d1:8a:de:19:f2:3a:90:11:83:13:06: 2d:70:f9:25:8e:55:cf:79:1c:fb:16:24:5a:15:c5: 60:56:77:12:4b:29:ba:03:70:41:ff:9a:eb:7a:09: 44:57:b5:a1:43:fe:0a:54:2d:44:4b:e0:f8:4f:d5: 13:e7:9b:be:a5:a3:d9:4e:6a:09:e0:bf:ca:b2:ea: 96:ed:a7:3a:24:4a:02:ba:70:e0:15:96:b4:72:98: ec:2f:65:ed:08:14:a9:6e:d7:0a:22:33:01:d9:0f: 3e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:BA:F5:B9:24:92:2C:D3:74:D6:B5:A5:4B:92:EF:35:75:1B:BB:51 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:544::/48 Signature Algorithm: sha256WithRSAEncryption a4:69:29:6d:43:7e:08:75:f4:b8:ef:86:8a:c9:13:2d:06:3f: 60:25:3d:b2:8e:5a:a1:08:a3:5f:45:ea:45:a3:08:9b:f0:df: fd:0e:e4:20:73:6b:3b:37:3a:e7:43:f4:6e:29:f9:1c:32:7c: f1:2b:24:40:cc:b7:6f:7a:18:d7:b5:7c:35:fd:55:f5:a3:d4: 73:e5:b0:e3:89:c5:f4:3a:26:e0:21:52:a1:b6:8a:9e:9b:67: 10:49:a2:39:1a:9f:c7:46:61:c8:97:c5:b7:f4:74:79:0a:6d: 38:c5:b3:14:55:20:89:57:0d:32:6d:91:fe:58:71:34:7a:cc: 1c:d5:f1:c1:5e:25:28:36:ad:1a:58:3b:b9:eb:50:70:5e:6c: f2:0f:e4:b3:fe:c6:d7:89:28:97:72:d1:6a:6c:d7:87:d8:a9: 41:11:86:a6:88:aa:d5:92:51:04:45:83:78:d7:34:d7:31:3f: 56:b6:ba:41:97:71:05:db:9c:c2:26:80:4a:fc:7f:43:71:21: 4b:70:c1:d7:85:53:b6:15:53:96:94:5d:16:6e:e7:8b:1b:b4: df:71:64:8c:24:78:7e:40:3b:48:1d:bb:05:76:d5:49:52:6d: d4:4b:a5:ed:26:72:98:98:af:a0:ae:77:ff:be:08:0a:2b:41: 31:f2:8b:55 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPzheaM3Dnjho1V+q8ZUCE/Uv188wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MDM1WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzBkZTYyNTc3YzlhYzg2M2UwNjVmYjA1MDkxMjcwZWVk MWM4MzRkNDQ4NDM3YzczOTliNzY3NWE0NmRkYzk2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4SRa+oLOlowF37jrg0waVfsI3GT5FFIm06Ki4Bm0yjT8a 1kLg11D4irXOtBWBwFK8wBme796uPIyCZfQmMENyiUzHQSVkh4xmlrfFbMIv1x7u 1zNc8S++7OL6Vl8ZGuqRRv3mFfaIVAJZHe/i1qXXetsXMYtumQ7LQkqfyiswrgLz 5TNykAcTPQycobBVWCXtlLM67ko6oPPRit4Z8jqQEYMTBi1w+SWOVc95HPsWJFoV xWBWdxJLKboDcEH/mut6CURXtaFD/gpULURL4PhP1RPnm76lo9lOagngv8qy6pbt pzokSgK6cOAVlrRymOwvZe0IFKlu1woiMwHZDz4XAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzLr1uSSSLNN01rWlS5LvNXUbu1EwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M5MWU1NTczLWE3NTctNGM2Yi05MDAwLTA0MDNlMGU0ZmEwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUQwDQYJKoZIhvcNAQELBQADggEBAKRpKW1Dfgh19LjvhorJEy0G P2AlPbKOWqEIo19F6kWjCJvw3/0O5CBzazs3OudD9G4p+RwyfPErJEDMt296GNe1 fDX9VfWj1HPlsOOJxfQ6JuAhUqG2ip6bZxBJojkan8dGYciXxbf0dHkKbTjFsxRV IIlXDTJtkf5YcTR6zBzV8cFeJSg2rRpYO7nrUHBebPIP5LP+xteJKJdy0Wps14fY qUERhqaIqtWSUQRFg3jXNNcxP1a2ukGXcQXbnMImgEr8f0NxIUtwwdeFU7YVU5aU XRZu54sbtN9xZIwkeH5AO0gduwV21UlSbdRLpe0mcpiYr6Cud/++CAorQTHyi1U= -----END CERTIFICATE-----Generated at Mon Oct 20 04:55:20 2025 by rpki-client