$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d72d2560-59cf-4ae1-839d-b5b268c47831.roa File: d72d2560-59cf-4ae1-839d-b5b268c47831.roa (raw, json) Hash identifier: 1UPo9zGUaZ9xnhLIOxD14wh2hVoYHOlv4PByA+zcXRQ= Subject key identifier: 66:B0:E7:5F:C2:EC:CB:AF:F6:CE:68:B4:8B:12:ED:E5:E1:43:9E:A0 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7E3DF1429DCD97E5A8D7D1D3D3A140DCDA937428 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d72d2560-59cf-4ae1-839d-b5b268c47831.roa Signing time: Mon 06 Oct 2025 17:20:08 +0000 ROA not before: Mon 06 Oct 2025 17:20:08 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:c17::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:3d:f1:42:9d:cd:97:e5:a8:d7:d1:d3:d3:a1:40:dc:da:93:74:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:20:08 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=79a090d6a0598e08a98879b09c5522e9899ac00f8a7104f653c5bcb7f2ca3208, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fa:c2:cc:af:45:a6:a9:3a:8d:d7:13:13:ee: 62:5e:40:70:a6:9f:d6:32:57:af:0b:e9:18:3e:6e: 5a:4e:f4:52:05:49:45:2b:e7:3a:6e:84:55:24:d2: bd:45:76:f0:49:b6:53:05:c4:d7:72:41:59:a7:b1: 95:81:90:cd:f0:f8:20:c2:ff:c5:cb:96:99:cf:e7: 03:2c:5f:85:39:b3:41:f0:25:46:d0:04:3e:a2:36: 42:b5:df:87:10:39:c1:bd:4e:ab:7d:14:3e:18:0e: 6e:4e:e1:67:7e:b5:f8:e7:b9:4c:af:9b:d7:9d:e7: af:9b:d3:9a:03:76:5b:1b:bd:87:f4:ff:7c:a3:4b: 5b:61:3c:32:bb:0f:68:40:0d:ff:a3:26:a5:5e:bf: d9:92:a1:97:1a:ab:f1:23:60:05:9f:3e:42:4d:ea: 2c:fd:76:30:66:3c:ed:c9:f9:0f:bb:62:40:10:1b: 23:51:0c:52:a5:47:5b:3f:78:5e:54:7f:68:2d:63: 7a:46:28:65:01:64:59:ad:d3:e4:64:6f:cc:07:c4: 01:03:cc:54:b3:bc:17:bc:f8:9a:9b:9b:4e:09:78: d8:55:de:23:91:d6:e1:bd:b0:ae:21:6d:f3:81:11: 37:7d:a8:9d:cf:f5:54:02:5c:f5:7c:72:e4:6e:82: 0a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B0:E7:5F:C2:EC:CB:AF:F6:CE:68:B4:8B:12:ED:E5:E1:43:9E:A0 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d72d2560-59cf-4ae1-839d-b5b268c47831.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c17::/48 Signature Algorithm: sha256WithRSAEncryption 89:e8:e9:c6:10:e3:53:76:27:1f:03:9f:19:3b:17:3b:99:ee: 40:17:c1:b1:d6:36:8b:78:34:ab:e5:a3:3c:5a:ee:5a:82:96: cb:5b:88:ee:00:00:c7:ad:21:30:2b:80:e4:95:00:fd:8a:44: 64:b4:f5:06:27:9e:7d:56:7c:cb:77:83:cf:da:9e:cb:c4:7a: 7b:1d:42:0e:b7:db:23:a9:78:8f:c8:f2:a2:03:92:a0:4c:a3: 5f:94:5a:0a:53:ad:6e:0e:88:16:3b:72:73:ac:2d:28:a9:85: 48:50:c6:dd:12:d3:77:b9:b6:22:eb:40:5b:63:70:f5:2f:91: 5b:f6:7f:8e:e9:7e:78:37:b3:d5:8d:ec:10:40:e5:00:f4:7f: de:ac:c9:63:0a:1c:62:f5:12:d4:29:e5:af:5f:43:01:41:0c: 7a:f6:d1:32:c7:2b:9f:9b:d6:b5:b3:26:83:07:61:a7:e6:50: ff:e2:c0:2f:41:9d:c7:16:16:dd:35:e8:68:e3:ca:0b:8a:8d: 87:b1:16:d6:d1:6b:d8:50:77:86:b0:88:8e:17:c6:23:a9:07: be:b0:61:11:81:60:06:3d:1a:6a:fc:31:75:a3:cb:81:6f:05: 00:9f:6c:e0:47:89:66:72:85:ca:44:25:23:4f:80:f1:69:a3: bb:08:11:e8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfj3xQp3Nl+Wo19HT06FA3NqTdCgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcyMDA4WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWEwOTBkNmEwNTk4ZTA4YTk4ODc5YjA5YzU1MjJlOTg5 OWFjMDBmOGE3MTA0ZjY1M2M1YmNiN2YyY2EzMjA4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1+sLMr0WmqTqN1xMT7mJeQHCmn9YyV68L6Rg+blpO9FIF SUUr5zpuhFUk0r1FdvBJtlMFxNdyQVmnsZWBkM3w+CDC/8XLlpnP5wMsX4U5s0Hw JUbQBD6iNkK134cQOcG9Tqt9FD4YDm5O4Wd+tfjnuUyvm9ed56+b05oDdlsbvYf0 /3yjS1thPDK7D2hADf+jJqVev9mSoZcaq/EjYAWfPkJN6iz9djBmPO3J+Q+7YkAQ GyNRDFKlR1s/eF5Uf2gtY3pGKGUBZFmt0+Rkb8wHxAEDzFSzvBe8+Jqbm04JeNhV 3iOR1uG9sK4hbfOBETd9qJ3P9VQCXPV8cuRuggrLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZrDnX8Lsy6/2zmi0ixLt5eFDnqAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q3MmQyNTYwLTU5Y2YtNGFlMS04MzlkLWI1YjI2OGM0NzgzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBcwDQYJKoZIhvcNAQELBQADggEBAIno6cYQ41N2Jx8Dnxk7FzuZ 7kAXwbHWNot4NKvlozxa7lqClstbiO4AAMetITArgOSVAP2KRGS09QYnnn1WfMt3 g8/ansvEensdQg632yOpeI/I8qIDkqBMo1+UWgpTrW4OiBY7cnOsLSiphUhQxt0S 03e5tiLrQFtjcPUvkVv2f47pfng3s9WN7BBA5QD0f96syWMKHGL1EtQp5a9fQwFB DHr20TLHK5+b1rWzJoMHYafmUP/iwC9BnccWFt016GjjyguKjYexFtbRa9hQd4aw iI4XxiOpB76wYRGBYAY9Gmr8MXWjy4FvBQCfbOBHiWZyhcpEJSNPgPFpo7sIEeg= -----END CERTIFICATE-----Generated at Mon Oct 20 07:49:42 2025 by rpki-client