$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/854cdc18-0507-4635-a2a7-cad1690f9b8b.roa File: 854cdc18-0507-4635-a2a7-cad1690f9b8b.roa (raw, json) Hash identifier: dUCVEpllVGS8iXJB5yjFxYP4lcnBZpuymXOZvlHrGik= Subject key identifier: 44:4E:16:9B:7F:53:CB:8E:86:F3:C0:7A:FE:9B:D0:11:8F:83:AF:A1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5251EE3FA0AE3DA19FF4BBF2551E0C4C02A13470 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/854cdc18-0507-4635-a2a7-cad1690f9b8b.roa Signing time: Tue 04 Nov 2025 16:41:29 +0000 ROA not before: Tue 04 Nov 2025 16:41:29 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:c0c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:51:ee:3f:a0:ae:3d:a1:9f:f4:bb:f2:55:1e:0c:4c:02:a1:34:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 4 16:41:29 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=73432242b65c89cd312b5b06700ca3cbb4791fa2942b5d2870cfdea90be5e72f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b6:9c:9f:23:e4:19:60:f7:06:fb:6c:c1:9f: 35:ac:6d:bd:e9:d0:7f:69:40:95:ac:92:26:3c:19: 2f:18:06:2d:85:2f:1d:c1:d4:62:be:21:2c:ca:ac: c1:ef:f2:b6:38:2a:3d:a5:50:95:4f:6f:2b:06:4d: be:cc:c4:e4:4f:04:0a:b0:57:66:7a:ad:d3:65:d0: 2b:91:99:62:de:fc:6c:2b:35:e9:a6:74:0f:da:c4: 9b:29:be:37:b9:02:4e:f4:c9:d3:2e:58:90:97:46: 66:c4:b5:cb:4c:84:3c:77:1f:6f:aa:bc:80:2b:52: 50:7a:f4:b0:40:70:68:ca:bd:02:6f:45:6d:c0:27: 2d:66:c4:7b:67:03:c7:e7:fb:ff:12:1a:79:48:66: b6:87:e5:d6:49:9f:23:50:87:39:11:d0:8a:5d:de: 8d:2a:c3:f3:07:5e:aa:0d:5b:3a:4f:35:cf:be:7f: e6:30:1b:6c:e8:4f:c0:61:fd:30:df:a9:97:aa:27: 53:45:57:d6:70:2f:35:08:f3:31:f3:c7:38:85:e2: 01:96:70:04:74:4f:e7:24:74:72:c4:88:5f:e8:c9: 14:ce:29:d3:e1:92:dc:d7:1f:80:7f:08:47:6d:9c: 64:24:32:d7:28:47:54:66:c0:b8:22:dd:23:62:2c: 7a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:4E:16:9B:7F:53:CB:8E:86:F3:C0:7A:FE:9B:D0:11:8F:83:AF:A1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/854cdc18-0507-4635-a2a7-cad1690f9b8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0c::/48 Signature Algorithm: sha256WithRSAEncryption 18:75:c8:80:35:80:c5:eb:f3:53:74:09:29:a5:05:fc:a4:e6: af:e7:42:03:5c:7f:ce:ea:0f:4b:d2:04:7b:05:6f:33:26:7a: 15:05:0b:fb:d4:3e:e3:95:4a:cc:68:34:16:16:5c:ff:20:0e: 4a:7b:8e:a4:3b:f1:01:ca:c0:0c:1e:c9:bd:cf:64:c1:d9:7f: 38:aa:80:c8:5a:c2:bc:2c:43:12:ed:43:b9:d0:08:10:f8:ee: 56:f4:2e:95:62:1a:6c:83:83:68:10:c2:61:f5:f3:92:b6:23: 8f:94:fe:ed:c9:ff:67:ad:81:a1:d0:c4:b6:00:de:ce:5a:82: 63:f5:5a:8d:a7:d0:68:13:e1:38:5a:52:48:94:69:43:d1:b3: 5b:11:2a:a3:22:c0:16:c8:2d:f0:6e:07:89:1c:82:5a:0e:ac: 3c:3a:b6:85:71:94:a7:b0:0f:dd:e5:78:ab:5c:de:73:cb:65: 86:7a:a8:4b:d6:2b:38:44:57:5a:87:16:6b:31:4a:00:23:54: d5:43:b3:a3:5b:0e:f2:e1:df:bb:e9:7d:a7:64:e5:04:24:f1: 29:6b:48:f9:ca:74:57:18:3f:0e:4e:1e:14:43:81:42:d7:a4: 28:8b:e2:0a:00:91:2c:23:2a:5d:ff:a2:ee:62:15:90:50:6d: 0c:2b:b4:b9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUlHuP6CuPaGf9LvyVR4MTAKhNHAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTA0MTY0MTI5WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzQzMjI0MmI2NWM4OWNkMzEyYjViMDY3MDBjYTNjYmI0 NzkxZmEyOTQyYjVkMjg3MGNmZGVhOTBiZTVlNzJmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEtpyfI+QZYPcG+2zBnzWsbb3p0H9pQJWskiY8GS8YBi2F Lx3B1GK+ISzKrMHv8rY4Kj2lUJVPbysGTb7MxORPBAqwV2Z6rdNl0CuRmWLe/Gwr NemmdA/axJspvje5Ak70ydMuWJCXRmbEtctMhDx3H2+qvIArUlB69LBAcGjKvQJv RW3AJy1mxHtnA8fn+/8SGnlIZraH5dZJnyNQhzkR0Ipd3o0qw/MHXqoNWzpPNc++ f+YwG2zoT8Bh/TDfqZeqJ1NFV9ZwLzUI8zHzxziF4gGWcAR0T+ckdHLEiF/oyRTO KdPhktzXH4B/CEdtnGQkMtcoR1RmwLgi3SNiLHoHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURE4Wm39Ty46G88B6/pvQEY+Dr6EwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg1NGNkYzE4LTA1MDctNDYzNS1hMmE3LWNhZDE2OTBmOWI4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAwwDQYJKoZIhvcNAQELBQADggEBABh1yIA1gMXr81N0CSmlBfyk 5q/nQgNcf87qD0vSBHsFbzMmehUFC/vUPuOVSsxoNBYWXP8gDkp7jqQ78QHKwAwe yb3PZMHZfziqgMhawrwsQxLtQ7nQCBD47lb0LpViGmyDg2gQwmH185K2I4+U/u3J /2etgaHQxLYA3s5agmP1Wo2n0GgT4ThaUkiUaUPRs1sRKqMiwBbILfBuB4kcgloO rDw6toVxlKewD93leKtc3nPLZYZ6qEvWKzhEV1qHFmsxSgAjVNVDs6NbDvLh37vp fadk5QQk8SlrSPnKdFcYPw5OHhRDgULXpCiL4goAkSwjKl3/ou5iFZBQbQwrtLk= -----END CERTIFICATE-----Generated at Wed Nov 5 07:10:43 2025 by rpki-client