$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cddc823a-69e4-43f5-b1b2-7a82e1946f61.roa File: cddc823a-69e4-43f5-b1b2-7a82e1946f61.roa (raw, json) Hash identifier: Gfhvh9aMfFErKafzVy0ZctQo7AJKOhv+vJPyIX9I1F8= Subject key identifier: 2A:F7:A8:64:FD:12:58:12:5F:44:60:F7:C8:E4:8A:7F:60:B3:8D:EA Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6187D5FC312A67DADB375CEAEE3F86CA31EEF2B3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cddc823a-69e4-43f5-b1b2-7a82e1946f61.roa Signing time: Tue 14 Oct 2025 21:21:49 +0000 ROA not before: Tue 14 Oct 2025 21:21:49 +0000 ROA not after: Tue 18 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:8140:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:87:d5:fc:31:2a:67:da:db:37:5c:ea:ee:3f:86:ca:31:ee:f2:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 14 21:21:49 2025 GMT Not After : Nov 18 23:59:59 2025 GMT Subject: serialNumber=5f650fa652e2db6f41639c8b75a00b716380c670502f8aa40463a37ca3a3dc33, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b5:1f:d9:09:a5:0c:01:cc:59:17:25:1a:64: 97:94:bd:a6:55:d7:83:1a:d0:6f:6a:4e:9b:2b:14: f9:e9:22:b4:9f:72:6c:c8:e9:87:68:82:16:49:fe: c3:69:15:b2:8f:28:71:9e:e5:a4:fe:b3:c4:61:3a: 07:ea:ee:51:71:c7:da:a1:cf:88:d6:10:8c:d5:54: 81:85:6b:b9:6e:8a:2d:ba:e6:3d:61:f0:18:53:25: 50:f1:a3:e3:65:37:cc:ea:0b:44:c2:22:89:70:df: 50:b7:44:0b:e8:9a:ec:d9:8f:64:68:ab:dc:67:65: 6a:90:cc:70:49:89:54:6a:16:a9:11:ad:43:e0:4c: 51:d8:9c:83:fb:f0:23:f5:07:ba:39:ca:5e:b5:17: e0:f3:53:ab:38:51:0d:46:df:4d:c3:cd:ab:9f:f4: 28:e4:71:78:b5:7c:e3:fe:ef:1b:e7:80:fa:22:cb: 86:a0:ed:04:93:06:7e:2d:a7:41:78:5d:e6:9b:ad: 3c:85:42:5c:e4:4a:5c:c7:20:a9:68:d2:e3:42:f2: b8:0c:c9:f3:99:c3:8a:1d:97:e3:24:08:e3:e1:c4: 75:00:00:62:fc:7c:f8:fc:2c:9b:53:8a:e1:67:70: cd:de:3e:d1:b3:ff:20:4a:fd:61:d0:01:89:6e:94: e8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F7:A8:64:FD:12:58:12:5F:44:60:F7:C8:E4:8A:7F:60:B3:8D:EA X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cddc823a-69e4-43f5-b1b2-7a82e1946f61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140:200::/40 Signature Algorithm: sha256WithRSAEncryption 6b:6e:db:d5:ba:82:4a:34:e7:8a:ea:2b:21:82:7f:53:46:e7: ef:0a:a6:c3:56:01:eb:f6:79:e8:c4:de:b2:4c:09:1d:7f:2c: 4e:b8:8b:f5:ed:3a:c6:f5:d4:97:3c:07:71:fa:1a:56:e0:16: 14:a2:7b:c5:b8:e6:f8:ee:2d:29:ca:c2:94:d9:68:d7:cb:64: 0e:37:56:77:45:7a:9d:ec:79:f6:e0:64:8b:74:16:51:f2:50: 95:66:00:f3:d4:b3:6b:68:c6:df:b2:05:3b:d2:7a:de:ae:fc: 78:e9:47:72:f9:00:be:5d:d7:09:28:0a:06:cb:b9:d4:3e:a2: 27:69:38:ca:16:63:3c:dc:7a:7f:fa:7a:8d:a7:ee:f1:66:8c: f8:7f:9b:79:ea:94:c8:74:6f:2c:dc:97:84:99:3a:ee:38:74: 1e:b3:4c:25:5d:cc:9d:39:88:72:1f:dd:b9:6f:50:d6:12:3e: 16:ba:ff:76:56:4d:ba:71:0e:10:31:e1:f3:74:c4:99:95:75: 8e:5c:b3:e8:5a:47:9e:7c:4e:bc:ef:bb:44:83:9d:52:9c:1f: da:6f:bd:48:8c:a5:2f:d5:31:90:8c:7d:b5:78:be:08:97:74: 75:8b:e9:c8:2d:dc:ca:1e:fd:81:20:bd:65:96:49:e2:62:6e: b7:3d:d2:0d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYYfV/DEqZ9rbN1zq7j+GyjHu8rMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDE0MjEyMTQ5WhcNMjUxMTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjY1MGZhNjUyZTJkYjZmNDE2MzljOGI3NWEwMGI3MTYz ODBjNjcwNTAyZjhhYTQwNDYzYTM3Y2EzYTNkYzMzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTtR/ZCaUMAcxZFyUaZJeUvaZV14Ma0G9qTpsrFPnpIrSf cmzI6YdoghZJ/sNpFbKPKHGe5aT+s8RhOgfq7lFxx9qhz4jWEIzVVIGFa7luii26 5j1h8BhTJVDxo+NlN8zqC0TCIolw31C3RAvomuzZj2Roq9xnZWqQzHBJiVRqFqkR rUPgTFHYnIP78CP1B7o5yl61F+DzU6s4UQ1G303Dzauf9CjkcXi1fOP+7xvngPoi y4ag7QSTBn4tp0F4XeabrTyFQlzkSlzHIKlo0uNC8rgMyfOZw4odl+MkCOPhxHUA AGL8fPj8LJtTiuFncM3ePtGz/yBK/WHQAYlulOhpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUKveoZP0SWBJfRGD3yOSKf2CzjeowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NkZGM4MjNhLTY5ZTQtNDNmNS1iMWIyLTdhODJlMTk0NmY2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBoFAAjANBgkqhkiG9w0BAQsFAAOCAQEAa27b1bqCSjTniuorIYJ/U0bn 7wqmw1YB6/Z56MTeskwJHX8sTriL9e06xvXUlzwHcfoaVuAWFKJ7xbjm+O4tKcrC lNlo18tkDjdWd0V6nex59uBki3QWUfJQlWYA89Sza2jG37IFO9J63q78eOlHcvkA vl3XCSgKBsu51D6iJ2k4yhZjPNx6f/p6jafu8WaM+H+beeqUyHRvLNyXhJk67jh0 HrNMJV3MnTmIch/duW9Q1hI+Frr/dlZNunEOEDHh83TEmZV1jlyz6FpHnnxOvO+7 RIOdUpwf2m+9SIylL9UxkIx9tXi+CJd0dYvpyC3cyh79gSC9ZZZJ4mJutz3SDQ== -----END CERTIFICATE-----Generated at Mon Oct 20 15:30:01 2025 by rpki-client