$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53491bc-c995-40aa-b532-7c3c0d39d244.roa File: d53491bc-c995-40aa-b532-7c3c0d39d244.roa (raw, json) Hash identifier: 7hlzE1E7xnO3TDmA33zPizcP8QgBUosdpL4KsQflcKE= Subject key identifier: 34:96:D6:BE:0E:16:B1:EC:EB:7D:66:9D:77:81:F4:BD:32:48:4F:E7 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 48F7739E61CF5600E96885D95AC08024612AF418 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53491bc-c995-40aa-b532-7c3c0d39d244.roa Signing time: Tue 21 Oct 2025 12:20:16 +0000 ROA not before: Tue 21 Oct 2025 12:20:16 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c40::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:f7:73:9e:61:cf:56:00:e9:68:85:d9:5a:c0:80:24:61:2a:f4:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 21 12:20:16 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=b553aa080b47d5d337d56b41dc890db0c7618a581c9e376be9a1ab63903a84d8, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ed:da:e6:df:54:2a:34:3a:c1:bb:2a:71:03: ae:41:c0:3e:19:ef:15:d5:5e:03:5e:9d:fd:97:89: 4b:8e:35:63:31:11:fd:e3:0f:6a:1f:ef:81:72:04: 9a:bb:e8:df:f4:4b:d1:10:a7:e7:a6:0a:fe:5a:40: ea:ba:e0:2a:8a:81:fa:e1:f3:6b:c8:08:b3:26:7e: 4f:1f:64:e5:f5:0b:6b:e6:66:ee:11:57:0a:80:d7: be:1d:e4:4b:c1:97:4e:dc:62:a4:2a:54:0f:1f:cf: bf:9d:5e:ab:f1:ac:7f:60:1d:a6:fe:73:08:a3:ab: 36:5d:bc:3d:d0:11:9d:1d:d2:61:56:4c:30:d3:24: 4e:8b:6d:ee:6f:c9:90:85:f2:36:1b:b9:20:23:1f: 16:af:d8:fb:35:a7:4d:a9:64:30:a3:31:5d:0b:2f: 11:49:59:69:37:03:3a:a7:4e:d8:42:8c:1d:14:c6: 5c:e4:f8:22:06:31:53:04:33:6f:ab:2c:2e:c0:ba: 8f:d8:fd:02:9a:a7:ab:67:bf:79:bb:df:16:a9:49: 4e:b4:9a:9f:c3:53:da:13:d2:a8:ec:de:aa:62:28: 47:8d:e9:ca:08:a3:e2:7f:50:8a:ff:fc:fc:6f:82: 21:cb:9d:52:26:fa:c5:90:29:85:bb:aa:56:ae:e7: ae:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:96:D6:BE:0E:16:B1:EC:EB:7D:66:9D:77:81:F4:BD:32:48:4F:E7 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53491bc-c995-40aa-b532-7c3c0d39d244.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c40::/45 Signature Algorithm: sha256WithRSAEncryption 1b:91:4c:12:34:b6:06:61:b3:f7:7a:f9:42:1e:4d:56:5b:a9: 53:ba:5c:5c:83:45:6c:7c:6d:f4:1e:65:da:66:74:96:b2:18: 26:1b:fe:6e:78:d7:b1:38:40:86:20:19:5b:c7:1b:a6:b3:52: 3e:48:65:04:73:d8:d6:09:45:f2:ea:55:b2:7a:c6:34:ea:f6: d6:bf:12:e9:c8:77:8f:80:73:1a:64:7c:f1:53:63:e8:11:e5: e4:16:db:ab:17:3e:79:bb:41:4c:da:2d:4a:1e:cb:9d:da:fd: 38:6a:9f:8f:08:a7:09:a0:88:ba:c6:b3:0a:c2:dc:52:99:36: 8c:25:22:72:a4:a6:eb:11:38:ea:dd:33:3c:d3:af:f0:d5:9e: ff:b6:dc:c8:96:ab:0b:22:b0:00:6a:55:14:82:7f:88:c6:fa: a0:3f:a3:6a:bd:69:f9:0d:40:34:5e:5a:d7:d5:c2:93:3c:8a: 48:b3:df:65:a2:9a:dc:e4:84:49:63:21:ee:a6:bc:8d:5d:86: d0:75:a9:a5:f8:7a:99:8e:75:04:4a:55:a4:3d:89:83:b5:92: 1e:86:70:ce:6d:cc:bd:a2:30:42:e7:d7:23:08:08:8e:b8:b7: 8f:28:6f:6d:78:16:9e:e9:25:66:bc:c2:13:42:89:0e:c5:13: d0:09:1e:7e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSPdznmHPVgDpaIXZWsCAJGEq9BgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDIxMTIyMDE2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTUzYWEwODBiNDdkNWQzMzdkNTZiNDFkYzg5MGRiMGM3 NjE4YTU4MWM5ZTM3NmJlOWExYWI2MzkwM2E4NGQ4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC17drm31QqNDrBuypxA65BwD4Z7xXVXgNenf2XiUuONWMx Ef3jD2of74FyBJq76N/0S9EQp+emCv5aQOq64CqKgfrh82vICLMmfk8fZOX1C2vm Zu4RVwqA174d5EvBl07cYqQqVA8fz7+dXqvxrH9gHab+cwijqzZdvD3QEZ0d0mFW TDDTJE6Lbe5vyZCF8jYbuSAjHxav2Ps1p02pZDCjMV0LLxFJWWk3AzqnTthCjB0U xlzk+CIGMVMEM2+rLC7Auo/Y/QKap6tnv3m73xapSU60mp/DU9oT0qjs3qpiKEeN 6coIo+J/UIr//PxvgiHLnVIm+sWQKYW7qlau566FAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNJbWvg4WsezrfWadd4H0vTJIT+cwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q1MzQ5MWJjLWM5OTUtNDBhYS1iNTMyLTdjM2MwZDM5ZDI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmBZzADEAwDQYJKoZIhvcNAQELBQADggEBABuRTBI0tgZhs/d6+UIeTVZb qVO6XFyDRWx8bfQeZdpmdJayGCYb/m5417E4QIYgGVvHG6azUj5IZQRz2NYJRfLq VbJ6xjTq9ta/EunId4+AcxpkfPFTY+gR5eQW26sXPnm7QUzaLUoey53a/Thqn48I pwmgiLrGswrC3FKZNowlInKkpusROOrdMzzTr/DVnv+23MiWqwsisABqVRSCf4jG +qA/o2q9afkNQDReWtfVwpM8ikiz32WimtzkhEljIe6mvI1dhtB1qaX4epmOdQRK VaQ9iYO1kh6GcM5tzL2iMELn1yMICI64t48ob214Fp7pJWa8whNCiQ7FE9AJHn4= -----END CERTIFICATE-----Generated at Wed Nov 5 05:42:13 2025 by rpki-client