$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1a5dabfd-4039-4258-9304-327df50a786c.roa File: 1a5dabfd-4039-4258-9304-327df50a786c.roa (raw, json) Hash identifier: HeZq1VrjQlLLoYTsyQWdjdavStljsAWKICE1v1PXj30= Subject key identifier: B7:9A:FF:09:99:09:4C:27:09:1C:8A:A1:04:7E:B1:BD:CB:ED:B3:DC Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 61E8DCB310FD02C179C5EC771B802508755F1A55 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1a5dabfd-4039-4258-9304-327df50a786c.roa Signing time: Tue 14 Oct 2025 21:21:49 +0000 ROA not before: Tue 14 Oct 2025 21:21:49 +0000 ROA not after: Tue 18 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2606:8140:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e8:dc:b3:10:fd:02:c1:79:c5:ec:77:1b:80:25:08:75:5f:1a:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 14 21:21:49 2025 GMT Not After : Nov 18 23:59:59 2025 GMT Subject: serialNumber=c814287d753610c6f712a717c4febed6fd1db515b6846de6ab6d81dc056c9e70, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b8:00:eb:e8:67:da:cf:de:ed:41:bd:44:d7: 79:d3:1e:14:ac:d0:35:16:30:03:b1:0f:0d:90:4b: f5:c6:76:4a:89:b0:c6:c1:fd:6d:4f:ac:4f:e9:a6: 2b:09:a6:eb:f0:a3:9e:5a:d0:0f:17:e8:71:49:d1: 3a:c5:6a:18:25:31:d7:e8:f4:5b:35:0b:24:b0:d3: 58:92:c1:7c:df:e0:93:e7:75:9c:b6:6d:82:19:2a: a9:37:94:dc:92:52:06:8e:4f:42:bd:d8:1a:3d:1e: ca:e7:28:5a:f4:1e:cb:a2:22:26:28:05:ec:fe:aa: be:2f:29:02:f8:3a:a8:92:08:b9:0f:63:cd:f2:43: 5c:bc:95:06:58:49:ef:ba:cc:7f:52:a2:92:d2:12: db:b4:d3:da:3e:7e:b5:d3:e2:b2:87:e6:5f:76:2c: 39:e7:ca:6c:0a:71:9e:0a:dc:af:e8:57:c9:12:60: 28:4d:c2:da:1f:51:e8:2b:9d:15:dd:d0:cd:8c:a2: 6e:9e:b8:e5:6e:01:80:67:e8:c6:22:45:3d:56:ee: ac:fe:6f:32:0b:3a:b3:86:d2:72:d4:84:7e:26:9e: 90:7f:97:ce:bd:fb:1c:31:c6:c8:40:c4:cb:76:09: 15:9f:01:45:7a:96:ab:d2:10:0a:71:a4:dd:a3:6d: c2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:9A:FF:09:99:09:4C:27:09:1C:8A:A1:04:7E:B1:BD:CB:ED:B3:DC X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1a5dabfd-4039-4258-9304-327df50a786c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140:100::/40 Signature Algorithm: sha256WithRSAEncryption 79:59:2f:44:ee:60:e2:0b:e7:ae:9b:c5:7d:69:5f:d6:81:c7: 69:bb:62:23:11:5e:15:02:56:69:f4:09:32:49:97:17:56:ba: a6:36:3f:74:c6:77:6b:24:6c:b9:5b:5d:45:77:ec:19:89:ba: eb:e5:9a:8a:59:1f:7f:02:3a:ee:fe:7f:4d:59:d0:6f:cd:97: 69:8c:e7:db:da:7e:51:94:5f:07:9e:36:36:0d:06:ee:a3:7f: ce:33:6b:37:7b:b6:7c:30:86:d5:4e:60:2f:08:76:6d:95:2e: 31:3d:df:d7:ae:57:c5:7c:65:4e:56:5f:60:e8:60:d3:02:b1: 1b:cf:8f:c9:79:b0:66:23:2c:f5:fa:73:b6:5b:e3:98:1e:14: 0d:a6:01:a9:d9:68:7f:cc:81:66:76:22:0b:16:61:ea:95:f8: d0:9c:91:46:a7:49:4e:eb:fb:c9:7d:09:8e:9c:ed:7a:ff:72: bb:7c:a7:31:7d:f3:5b:d5:41:c8:8f:55:1a:8d:fc:25:33:2e: 73:e3:d3:f7:46:02:13:4b:e4:17:77:ad:7a:e0:a2:e6:9a:b7: 49:01:72:17:17:79:93:45:55:37:f0:69:4a:a9:42:58:5d:89: 82:bc:42:ac:b7:8b:b8:50:aa:7e:32:b9:bd:8c:f6:5c:f7:46: be:c0:95:b9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYejcsxD9AsF5xex3G4AlCHVfGlUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDE0MjEyMTQ5WhcNMjUxMTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjODE0Mjg3ZDc1MzYxMGM2ZjcxMmE3MTdjNGZlYmVkNmZk MWRiNTE1YjY4NDZkZTZhYjZkODFkYzA1NmM5ZTcwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtuADr6Gfaz97tQb1E13nTHhSs0DUWMAOxDw2QS/XGdkqJ sMbB/W1PrE/ppisJpuvwo55a0A8X6HFJ0TrFahglMdfo9Fs1CySw01iSwXzf4JPn dZy2bYIZKqk3lNySUgaOT0K92Bo9HsrnKFr0HsuiIiYoBez+qr4vKQL4OqiSCLkP Y83yQ1y8lQZYSe+6zH9SopLSEtu009o+frXT4rKH5l92LDnnymwKcZ4K3K/oV8kS YChNwtofUegrnRXd0M2Mom6euOVuAYBn6MYiRT1W7qz+bzILOrOG0nLUhH4mnpB/ l869+xwxxshAxMt2CRWfAUV6lqvSEApxpN2jbcK5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUt5r/CZkJTCcJHIqhBH6xvcvts9wwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFhNWRhYmZkLTQwMzktNDI1OC05MzA0LTMyN2RmNTBhNzg2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBoFAATANBgkqhkiG9w0BAQsFAAOCAQEAeVkvRO5g4gvnrpvFfWlf1oHH abtiIxFeFQJWafQJMkmXF1a6pjY/dMZ3ayRsuVtdRXfsGYm66+WailkffwI67v5/ TVnQb82XaYzn29p+UZRfB542Ng0G7qN/zjNrN3u2fDCG1U5gLwh2bZUuMT3f165X xXxlTlZfYOhg0wKxG8+PyXmwZiMs9fpztlvjmB4UDaYBqdlof8yBZnYiCxZh6pX4 0JyRRqdJTuv7yX0Jjpztev9yu3ynMX3zW9VByI9VGo38JTMuc+PT90YCE0vkF3et euCi5pq3SQFyFxd5k0VVN/BpSqlCWF2JgrxCrLeLuFCqfjK5vYz2XPdGvsCVuQ== -----END CERTIFICATE-----Generated at Mon Oct 20 07:47:54 2025 by rpki-client