$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa File: 66edf542-bd09-43ab-8640-a67a7cbe5a17.roa (raw, json) Hash identifier: jL9MowjFOhBolUpCubiMYKU1cnxRG+YBdolUxtaH6fo= Subject key identifier: 4B:85:8C:EA:3E:7C:93:A7:2F:9F:66:D7:62:BC:C8:50:45:8A:CF:0F Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 27CDC1AAC51E58AA83322EF3F01396D15969FEDD Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa Signing time: Fri 10 Oct 2025 00:21:09 +0000 ROA not before: Fri 10 Oct 2025 00:21:09 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:b140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:cd:c1:aa:c5:1e:58:aa:83:32:2e:f3:f0:13:96:d1:59:69:fe:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Oct 10 00:21:09 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=03302e541ffe42eaaae6de4adaff8f945de254df522273180cc037d846d1aec2, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:34:4f:55:94:f4:f6:06:fa:7b:c6:be:36:e2: fc:df:bb:e0:44:d2:0a:87:54:9a:9b:4d:5b:1b:2a: 8e:d2:a7:ee:29:29:15:7d:8e:e9:0e:b1:90:d7:6f: 1f:1e:86:76:c2:b4:da:82:05:dc:d2:9e:95:1b:78: e4:0d:a2:73:84:14:17:8d:4d:02:b7:b4:5c:a6:56: b3:99:0c:fe:08:27:e6:6f:ea:04:74:4e:a8:84:e4: ec:29:f9:4e:15:e8:67:ba:06:cc:f5:02:37:67:9d: 0d:f1:d6:5f:fe:62:da:88:ce:17:07:bf:cd:7b:fb: a8:2a:5f:3d:c2:74:ab:af:8c:cc:1c:b3:84:e8:c6: e1:25:39:63:cd:50:e7:41:c8:87:68:16:e6:44:92: 43:7f:68:f7:5e:58:44:e6:89:a7:08:ce:b5:d3:2e: bc:ae:67:1f:37:f9:57:21:0f:33:dc:bd:a7:33:2c: 55:fa:a5:58:f8:95:2d:e3:6b:5b:6b:ec:ad:5f:66: 21:3e:7a:0b:e9:d8:0b:34:89:8d:85:06:4f:cb:83: 84:b9:6a:2a:c1:b1:f5:c6:89:c1:b9:97:ae:3d:5b: 55:ab:25:e2:87:8c:92:da:dd:d0:46:0f:d1:f3:d5: ee:70:31:e8:79:1a:93:65:e4:c1:c2:3b:6d:13:e9: 74:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:85:8C:EA:3E:7C:93:A7:2F:9F:66:D7:62:BC:C8:50:45:8A:CF:0F X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b140::/32 Signature Algorithm: sha256WithRSAEncryption 91:e2:18:66:f8:94:f6:df:0c:02:3a:c6:87:40:84:7d:d4:bb: f9:13:8f:3e:f8:83:92:06:b7:18:13:c1:ff:73:c2:ba:53:7b: 37:61:4e:84:5d:ad:b5:c4:f7:4c:43:da:2f:4b:5e:3f:39:24: dc:91:9b:6f:db:a2:b8:a6:dc:9f:50:35:07:00:c5:cf:e9:26: ec:5b:84:e8:d8:3a:41:48:5e:a7:39:d8:04:37:11:cd:57:86: 5d:0e:35:00:2d:40:8c:d0:c3:cc:42:8b:8a:ef:88:85:3a:cd: da:0c:36:34:75:78:94:e3:f4:7a:44:42:fb:8a:45:c0:c0:eb: c4:24:d0:da:ea:e1:69:91:8d:4c:a9:15:9b:af:e9:cf:e4:0c: b4:a4:63:33:a1:df:eb:07:23:cb:5f:8e:71:05:0d:19:30:c7: 45:28:e9:8f:75:4a:7e:93:61:6a:69:a6:10:0b:c5:65:e4:f3: e7:d4:6d:e3:19:0a:d3:3e:8c:8c:e7:6a:94:d8:cb:34:a5:a1: 51:5e:8c:78:b2:52:84:fb:46:10:5b:6d:a1:7b:d0:3e:e7:b4: 59:35:9c:0b:80:5d:a7:dc:19:cd:fb:91:77:e3:52:bf:da:7b: 81:8c:88:71:5a:da:3e:5f:b6:eb:55:44:dc:53:83:6e:56:46: 00:02:91:0f -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUJ83BqsUeWKqDMi7z8BOW0Vlp/t0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUxMDEwMDAyMTA5WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzMwMmU1NDFmZmU0MmVhYWFlNmRlNGFkYWZmOGY5NDVk ZTI1NGRmNTIyMjczMTgwY2MwMzdkODQ2ZDFhZWMyMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6NE9VlPT2Bvp7xr424vzfu+BE0gqHVJqbTVsbKo7Sp+4p KRV9jukOsZDXbx8ehnbCtNqCBdzSnpUbeOQNonOEFBeNTQK3tFymVrOZDP4IJ+Zv 6gR0TqiE5Owp+U4V6Ge6Bsz1AjdnnQ3x1l/+YtqIzhcHv817+6gqXz3CdKuvjMwc s4ToxuElOWPNUOdByIdoFuZEkkN/aPdeWETmiacIzrXTLryuZx83+VchDzPcvacz LFX6pVj4lS3ja1tr7K1fZiE+egvp2As0iY2FBk/Lg4S5airBsfXGicG5l649W1Wr JeKHjJLa3dBGD9Hz1e5wMeh5GpNl5MHCO20T6XQPAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUS4WM6j58k6cvn2bXYrzIUEWKzw8wHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzY2ZWRmNTQyLWJkMDktNDNhYi04NjQwLWE2N2E3Y2JlNWExNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBbFAMA0GCSqGSIb3DQEBCwUAA4IBAQCR4hhm+JT23wwCOsaHQIR91Lv5 E48++IOSBrcYE8H/c8K6U3s3YU6EXa21xPdMQ9ovS14/OSTckZtv26K4ptyfUDUH AMXP6SbsW4To2DpBSF6nOdgENxHNV4ZdDjUALUCM0MPMQouK74iFOs3aDDY0dXiU 4/R6REL7ikXAwOvEJNDa6uFpkY1MqRWbr+nP5Ay0pGMzod/rByPLX45xBQ0ZMMdF KOmPdUp+k2FqaaYQC8Vl5PPn1G3jGQrTPoyM52qU2Ms0paFRXox4slKE+0YQW22h e9A+57RZNZwLgF2n3BnN+5F341K/2nuBjIhxWto+X7brVUTcU4NuVkYAApEP -----END CERTIFICATE-----Generated at Mon Oct 20 14:40:30 2025 by rpki-client