$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa File: a3dc9780-ee42-4415-930a-4d78bbb4e531.roa (raw, json) Hash identifier: 0ty/cY0HOmNImsWd0nd8jwS5VTfMQk1zZmqMcvNkcVk= Subject key identifier: 1A:F4:E1:7B:DB:5E:9D:B4:D3:20:17:75:E6:48:7C:01:11:02:85:EE Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 11AB47DF2B2FB4385111E7E6C5E2FC0B436FD699 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa Signing time: Fri 31 Oct 2025 01:30:16 +0000 ROA not before: Fri 31 Oct 2025 01:30:16 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ab:47:df:2b:2f:b4:38:51:11:e7:e6:c5:e2:fc:0b:43:6f:d6:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 31 01:30:16 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=c7465d16acf73841aea6fd462b1aa3f9287af4565457ccad29a4a6b0cdccd842, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:08:87:dd:c5:0d:48:8a:63:71:04:8e:1c:29: ef:02:40:54:b2:b9:5b:4f:c7:59:a7:9a:93:d9:34: 3b:2d:e3:35:aa:20:0f:56:f6:34:a6:db:e8:c2:d8: 63:d7:e9:eb:aa:65:25:7c:07:3d:9c:10:49:49:65: 25:88:c6:22:be:77:7b:03:dd:cf:de:6b:f4:0f:bf: 3a:72:54:b9:06:67:fd:46:6f:59:cb:de:9b:1f:2b: 1b:28:42:6f:c4:f3:41:ee:77:45:cc:50:f5:33:1f: 76:54:6f:e7:b0:15:2d:f9:7f:3e:47:d5:5d:76:dc: 82:2f:60:e7:65:1b:5b:e6:50:a6:50:00:58:60:65: 06:cc:0e:1f:4d:00:fc:46:fd:87:26:37:09:4e:26: 15:c9:3a:fc:7f:d3:99:f7:c8:86:b9:db:1a:fc:86: f3:f2:d1:74:b1:aa:73:c4:d9:94:9b:5d:eb:5c:89: c7:b1:d8:f9:d5:41:2d:0a:eb:ea:f5:8c:6c:30:de: 8d:be:92:d8:95:62:10:0c:c0:af:e2:bf:19:a6:83: 19:40:04:11:c9:cb:16:77:70:79:87:ef:ec:f3:7b: a7:9b:84:bf:b2:d0:49:a0:67:4f:b0:52:4d:74:a4: d8:b8:86:4d:6a:cb:60:48:5e:27:3e:fd:ab:e5:45: 4d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F4:E1:7B:DB:5E:9D:B4:D3:20:17:75:E6:48:7C:01:11:02:85:EE X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c02::/48 Signature Algorithm: sha256WithRSAEncryption 44:f9:13:ad:07:0d:c5:26:b8:d1:06:91:8d:25:33:9d:98:e8: 61:9c:55:a0:21:75:f7:05:78:41:f3:ec:a1:d1:5f:0f:b8:a2: 87:4f:3f:c0:eb:e1:21:33:89:8a:e2:af:3e:0f:0f:58:17:82: b3:80:3c:9f:6e:73:b1:99:f1:d9:26:88:da:44:e3:94:05:ee: 28:44:60:b4:ca:23:6e:f1:f6:3b:65:79:31:41:78:b7:26:22: 20:55:ac:47:16:14:43:e7:fa:76:2f:30:e8:3b:6b:23:2c:2b: 63:00:a3:d2:95:1c:41:0f:f0:1f:d7:74:b4:de:fb:60:39:7f: ff:f3:a2:10:ef:48:a7:dc:b9:5b:67:df:59:ce:ab:bc:62:23: a0:48:d7:6d:7c:1f:fa:9f:33:6b:dc:8f:0a:da:b4:79:a2:1d: 0f:20:8d:e1:8d:a1:b4:6b:7c:1e:07:37:63:9f:13:12:ca:f9: c2:ba:3d:7d:12:87:e2:ba:b2:fb:59:df:97:6a:32:de:45:32: 51:9a:77:50:a0:65:81:9b:67:81:74:33:bb:6c:24:16:af:ed: f1:0b:7e:19:ef:a9:6a:13:b1:90:95:a6:f5:c0:95:d4:65:54: 88:45:98:be:ba:be:0d:8d:e5:29:88:75:4d:7d:04:3a:1a:47: 59:6c:43:c3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEatH3ysvtDhREefmxeL8C0Nv1pkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDMxMDEzMDE2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzQ2NWQxNmFjZjczODQxYWVhNmZkNDYyYjFhYTNmOTI4 N2FmNDU2NTQ1N2NjYWQyOWE0YTZiMGNkY2NkODQyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwCIfdxQ1IimNxBI4cKe8CQFSyuVtPx1mnmpPZNDst4zWq IA9W9jSm2+jC2GPX6euqZSV8Bz2cEElJZSWIxiK+d3sD3c/ea/QPvzpyVLkGZ/1G b1nL3psfKxsoQm/E80Hud0XMUPUzH3ZUb+ewFS35fz5H1V123IIvYOdlG1vmUKZQ AFhgZQbMDh9NAPxG/YcmNwlOJhXJOvx/05n3yIa52xr8hvPy0XSxqnPE2ZSbXetc icex2PnVQS0K6+r1jGww3o2+ktiVYhAMwK/ivxmmgxlABBHJyxZ3cHmH7+zze6eb hL+y0EmgZ0+wUk10pNi4hk1qy2BIXic+/avlRU0ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGvThe9tenbTTIBd15kh8AREChe4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2EzZGM5NzgwLWVlNDItNDQxNS05MzBhLTRkNzhiYmI0ZTUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAIwDQYJKoZIhvcNAQELBQADggEBAET5E60HDcUmuNEGkY0lM52Y 6GGcVaAhdfcFeEHz7KHRXw+4oodPP8Dr4SEziYrirz4PD1gXgrOAPJ9uc7GZ8dkm iNpE45QF7ihEYLTKI27x9jtleTFBeLcmIiBVrEcWFEPn+nYvMOg7ayMsK2MAo9KV HEEP8B/XdLTe+2A5f//zohDvSKfcuVtn31nOq7xiI6BI1218H/qfM2vcjwratHmi HQ8gjeGNobRrfB4HN2OfExLK+cK6PX0Sh+K6svtZ35dqMt5FMlGad1CgZYGbZ4F0 M7tsJBav7fELfhnvqWoTsZCVpvXAldRlVIhFmL66vg2N5SmIdU19BDoaR1lsQ8M= -----END CERTIFICATE-----Generated at Wed Nov 5 21:31:14 2025 by rpki-client