$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa File: 2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa (raw, json) Hash identifier: imyO1svbiYoeTekqCt0IA8QlS9zfZGh3BS0WXiNldmI= Subject key identifier: F6:75:1E:94:87:B1:02:FA:33:72:96:0D:62:F7:DA:13:E4:F2:11:A4 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 39A62985EF522E160C3F8A52AA7769D9D9C241DC Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa Signing time: Sun 19 Oct 2025 05:00:13 +0000 ROA not before: Sun 19 Oct 2025 05:00:13 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 699 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a6:29:85:ef:52:2e:16:0c:3f:8a:52:aa:77:69:d9:d9:c2:41:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 19 05:00:13 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=a01a272c5d2627d274d14a9154f572786594fe43a3d847b8a79dd7b2fdc3e6b6, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cf:09:a0:93:18:3a:49:7e:40:1a:a7:4a:04: 22:4d:16:7b:8d:b0:d5:62:22:f3:74:83:f1:6f:28: a6:08:ce:04:e0:05:f8:e7:04:d9:7b:50:83:4f:6f: 87:e9:60:31:7e:29:93:40:18:13:24:90:41:ee:9a: 22:b5:9a:e9:b2:ba:af:36:cd:73:d5:bd:cc:04:7d: b1:4e:2c:0d:be:b0:91:87:40:8f:70:1a:6e:ef:88: 59:8c:11:25:ad:93:69:4d:84:f5:85:dc:34:00:2f: df:32:c8:eb:0d:c7:68:8c:fc:76:a0:22:5e:c2:33: b7:e4:35:55:28:91:e3:d7:3a:51:e0:48:30:8d:37: 22:16:83:dd:ad:a7:f3:94:51:9a:69:96:16:6d:e0: 8f:2c:06:c0:49:7b:43:28:a4:f6:db:94:76:09:7d: 35:80:b5:53:ee:50:5a:d3:cd:6d:15:07:0a:67:51: e4:bf:99:98:ef:ad:5e:46:fa:1c:53:56:7c:62:66: cf:37:66:8f:a6:3b:07:71:52:9c:fd:de:28:3d:b2: cd:d5:da:0f:42:ed:be:45:91:38:32:6a:e2:5e:5b: cb:33:e2:69:0b:61:91:57:33:06:0d:70:f2:ec:ac: bd:99:aa:f5:9c:9a:62:01:c4:1a:5c:18:c6:eb:ae: 24:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:75:1E:94:87:B1:02:FA:33:72:96:0D:62:F7:DA:13:E4:F2:11:A4 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 41:88:b2:13:38:73:1d:00:a6:aa:41:53:ad:a7:55:25:2b:da: a1:28:c7:e1:9a:17:44:fd:86:18:67:07:35:6f:62:76:a4:0f: 23:b3:d1:9f:54:77:26:ff:30:53:3f:63:77:b7:99:f0:4c:02: b0:a2:bb:3f:48:1b:df:7a:ba:ab:2e:9f:d6:d6:b2:7e:ae:ad: 8f:e9:09:d4:4a:50:54:08:3e:86:8e:da:cd:e5:3c:7d:64:a6: 1f:9e:7c:a7:af:c9:5d:68:cc:a1:4e:11:c8:43:d2:57:b3:ff: 6d:32:66:97:85:73:94:42:71:42:76:0b:db:dd:58:09:66:39: 8f:ab:8d:bc:43:6e:1f:f6:c4:0c:26:46:c1:d1:92:13:b7:24: 94:be:33:83:42:61:e5:61:2f:a5:c3:ca:67:fe:34:f3:6e:43: 78:6e:7f:62:d6:68:b8:16:20:da:1e:69:22:3c:3a:d1:8b:f3: 8a:2a:c5:0a:8b:e3:4b:03:56:22:e4:65:2d:59:44:4c:fb:2d: 3c:66:2d:f9:5b:b4:a6:1a:4d:0d:35:b0:b8:12:85:87:1b:a6: a1:26:88:ac:86:60:d5:d2:30:f0:be:ee:09:71:5f:a7:5a:aa: 3d:09:06:f1:c3:67:44:30:fe:f4:b0:9d:cc:9a:df:a2:1f:5f: ff:57:69:b0 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUOaYphe9SLhYMP4pSqndp2dnCQdwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDE5MDUwMDEzWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDFhMjcyYzVkMjYyN2QyNzRkMTRhOTE1NGY1NzI3ODY1 OTRmZTQzYTNkODQ3YjhhNzlkZDdiMmZkYzNlNmI2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6zwmgkxg6SX5AGqdKBCJNFnuNsNViIvN0g/FvKKYIzgTg BfjnBNl7UINPb4fpYDF+KZNAGBMkkEHumiK1mumyuq82zXPVvcwEfbFOLA2+sJGH QI9wGm7viFmMESWtk2lNhPWF3DQAL98yyOsNx2iM/HagIl7CM7fkNVUokePXOlHg SDCNNyIWg92tp/OUUZpplhZt4I8sBsBJe0MopPbblHYJfTWAtVPuUFrTzW0VBwpn UeS/mZjvrV5G+hxTVnxiZs83Zo+mOwdxUpz93ig9ss3V2g9C7b5FkTgyauJeW8sz 4mkLYZFXMwYNcPLsrL2ZqvWcmmIBxBpcGMbrriTpAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU9nUelIexAvozcpYNYvfaE+TyEaQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJkYTkwYzJiLThiZWEtNDBjNi04ZGM4LTU3NjViNjdmYzYxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQBBiLITOHMdAKaqQVOtp1UlK9qh KMfhmhdE/YYYZwc1b2J2pA8js9GfVHcm/zBTP2N3t5nwTAKwors/SBvferqrLp/W 1rJ+rq2P6QnUSlBUCD6GjtrN5Tx9ZKYfnnynr8ldaMyhThHIQ9JXs/9tMmaXhXOU QnFCdgvb3VgJZjmPq428Q24f9sQMJkbB0ZITtySUvjODQmHlYS+lw8pn/jTzbkN4 bn9i1mi4FiDaHmkiPDrRi/OKKsUKi+NLA1Yi5GUtWURM+y08Zi35W7SmGk0NNbC4 EoWHG6ahJoishmDV0jDwvu4JcV+nWqo9CQbxw2dEMP70sJ3Mmt+iH1//V2mw -----END CERTIFICATE-----Generated at Mon Oct 20 10:18:18 2025 by rpki-client