$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa File: db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa (raw, json) Hash identifier: J7Po5sXdxijD9Aucd+XyT72klhmG7+DjXXQjZDO6tEM= Subject key identifier: A3:32:C5:9E:78:85:94:B9:67:0E:DB:FF:9C:95:87:F5:1B:9E:53:1B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1358513C1D6A82902D14ACCD0DF918BC1E3AFF8D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa Signing time: Mon 06 Oct 2025 17:14:10 +0000 ROA not before: Mon 06 Oct 2025 17:14:10 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:58:51:3c:1d:6a:82:90:2d:14:ac:cd:0d:f9:18:bc:1e:3a:ff:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 6 17:14:10 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=2021036b740bbfd0ea258c263a619436f17acd4b540b9d768fc893a26d192f18, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:9e:97:6f:87:e0:0f:ac:96:d1:a2:dd:c6:b1: 51:71:de:28:a6:b6:fc:eb:72:4a:dd:18:47:91:a7: e9:57:5c:cb:48:11:1e:e7:eb:48:da:51:d0:7d:dd: a8:d4:68:12:f7:62:52:53:62:70:94:04:c1:1a:7f: ed:c1:98:ae:fe:85:ed:bd:c5:f9:50:e3:34:4b:95: 50:cc:a2:d4:34:af:61:f2:93:31:13:22:94:28:6d: ca:ee:23:7e:72:87:ab:c8:77:76:12:21:a8:0b:e7: 3c:17:27:09:a3:8c:3d:7e:17:2a:59:42:80:58:9a: da:ae:9f:98:c9:72:e9:c1:0c:ac:8e:67:ae:c3:e6: 9c:a1:ae:31:cf:cd:fd:2d:dc:00:9f:f0:65:f9:d6: 08:68:29:99:dc:6b:a6:36:c9:04:53:ae:53:de:a2: 11:48:5b:93:5d:38:6d:55:2b:ea:90:ec:a1:7c:1e: 72:16:db:33:77:04:e4:a6:c4:8e:d5:aa:ff:88:0c: 93:b2:f8:36:0a:73:04:2a:7b:81:7f:f5:21:b3:40: 3d:dc:f9:4d:44:d6:e8:9d:f4:00:67:b6:4f:91:bd: 05:21:04:dd:7d:b0:b0:43:04:ba:85:61:7e:a8:3d: 5c:86:8c:8a:f7:5b:fe:79:d5:7d:35:3c:81:39:1e: d4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:32:C5:9E:78:85:94:B9:67:0E:DB:FF:9C:95:87:F5:1B:9E:53:1B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c14::/48 Signature Algorithm: sha256WithRSAEncryption 8b:eb:fc:c5:79:e2:b5:de:ea:05:78:38:c4:88:6c:49:3c:15: 9d:e8:95:d4:0b:c3:ee:3f:cf:9e:14:b9:b0:73:8c:cf:cf:0a: ea:81:76:5c:e2:0f:46:f0:44:d7:3b:d6:54:20:48:da:18:45: f8:8a:92:b3:de:a8:a7:99:bd:51:12:31:2e:64:cf:a4:95:1b: 99:53:bd:0f:f5:1c:31:ee:78:08:23:17:8b:ae:65:8b:bb:a9: e5:61:54:e6:7f:80:3d:e2:51:55:4b:bf:be:07:24:15:89:76: 32:5f:34:e1:a2:76:17:3b:2c:2a:1a:12:e5:da:85:5c:d9:4c: 36:64:69:35:fa:5e:0c:89:a4:ce:d7:81:43:be:b0:48:cd:3e: c3:23:85:63:c7:23:fe:05:aa:f1:d6:9a:30:d2:3f:53:97:d2: d6:24:96:54:cf:bf:6a:fc:62:de:5a:06:b9:fc:78:eb:53:73: 34:d5:17:46:1c:2e:f3:6f:d1:e7:c8:bc:fe:cc:85:29:2d:75: a8:20:4a:dd:f3:c8:f0:c7:40:aa:8a:9f:57:6a:30:af:56:00: ab:6e:a4:bf:d9:91:de:4b:4a:20:45:51:82:5f:aa:f6:88:7b: 70:6a:28:03:2c:a0:79:bc:ab:0b:bf:27:89:8e:aa:7e:d4:cf: ed:68:8a:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE1hRPB1qgpAtFKzNDfkYvB46/40wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDA2MTcxNDEwWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDIxMDM2Yjc0MGJiZmQwZWEyNThjMjYzYTYxOTQzNmYx N2FjZDRiNTQwYjlkNzY4ZmM4OTNhMjZkMTkyZjE4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTnpdvh+APrJbRot3GsVFx3iimtvzrckrdGEeRp+lXXMtI ER7n60jaUdB93ajUaBL3YlJTYnCUBMEaf+3BmK7+he29xflQ4zRLlVDMotQ0r2Hy kzETIpQobcruI35yh6vId3YSIagL5zwXJwmjjD1+FypZQoBYmtqun5jJcunBDKyO Z67D5pyhrjHPzf0t3ACf8GX51ghoKZnca6Y2yQRTrlPeohFIW5NdOG1VK+qQ7KF8 HnIW2zN3BOSmxI7Vqv+IDJOy+DYKcwQqe4F/9SGzQD3c+U1E1uid9ABntk+RvQUh BN19sLBDBLqFYX6oPVyGjIr3W/551X01PIE5HtThAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUozLFnniFlLlnDtv/nJWH9RueUxswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RiM2JiZmU4LTI3MTgtNDVlMS1hM2E1LWFmYmY1NzJkMDBjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBQwDQYJKoZIhvcNAQELBQADggEBAIvr/MV54rXe6gV4OMSIbEk8 FZ3oldQLw+4/z54UubBzjM/PCuqBdlziD0bwRNc71lQgSNoYRfiKkrPeqKeZvVES MS5kz6SVG5lTvQ/1HDHueAgjF4uuZYu7qeVhVOZ/gD3iUVVLv74HJBWJdjJfNOGi dhc7LCoaEuXahVzZTDZkaTX6XgyJpM7XgUO+sEjNPsMjhWPHI/4FqvHWmjDSP1OX 0tYkllTPv2r8Yt5aBrn8eOtTczTVF0YcLvNv0efIvP7MhSktdaggSt3zyPDHQKqK n1dqMK9WAKtupL/Zkd5LSiBFUYJfqvaIe3BqKAMsoHm8qwu/J4mOqn7Uz+1oioE= -----END CERTIFICATE-----Generated at Mon Oct 20 18:06:18 2025 by rpki-client