$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e52fa04b-f965-4052-87cb-6e539ccd0345.roa File: e52fa04b-f965-4052-87cb-6e539ccd0345.roa (raw, json) Hash identifier: lbBySWa5H+Idv9TpQYUrfzhEP/U+wOOh646K7QGcxmc= Subject key identifier: E9:2A:9E:E7:B7:07:B0:58:22:3A:26:03:E1:6C:AC:AA:C1:3C:C6:55 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5152D766F1D201082BD9EBBF171D1B801744C022 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e52fa04b-f965-4052-87cb-6e539ccd0345.roa Signing time: Fri 31 Oct 2025 01:30:31 +0000 ROA not before: Fri 31 Oct 2025 01:30:31 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c1b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:52:d7:66:f1:d2:01:08:2b:d9:eb:bf:17:1d:1b:80:17:44:c0:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 31 01:30:31 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=a362ccbba7f2f23aa73686eb91c3d2575161f37098e99150578d57292179fdc3, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:20:95:d8:63:f0:92:a7:67:a0:a5:0c:54:ac: 79:e2:60:12:ea:fe:83:14:84:71:46:67:9b:87:e6: 98:4a:0a:92:9d:de:c7:a9:38:d3:c5:13:36:b9:38: e2:47:0e:79:29:27:b7:80:45:0d:85:23:19:57:e3: 38:9e:e0:d5:e9:56:a9:3b:83:9c:76:84:b5:b5:c7: 8e:de:d5:39:00:8e:67:87:f9:18:97:25:53:71:af: 2c:5b:70:67:c9:e0:04:7a:72:d8:0f:67:d9:8d:ae: 8e:fa:af:eb:b5:97:da:d6:a9:25:96:a1:cc:2c:0f: a7:13:ca:8c:47:9b:ac:04:83:72:84:20:e4:34:c4: 74:f2:3a:b8:04:8a:56:87:6e:75:7f:b2:42:8a:d0: 36:cf:5b:23:59:29:bc:ca:55:9d:3d:0b:2f:f1:e1: 61:62:36:b6:a4:41:50:af:db:05:a4:75:66:b4:3b: 9d:68:d8:a0:bc:c9:43:de:4b:1b:92:ce:60:41:c9: ae:ea:f3:c0:27:3d:a2:75:cb:32:11:81:41:13:1c: 27:1b:6f:54:30:b5:92:46:ad:df:8b:1c:cf:85:26: eb:d5:1b:b3:57:fc:39:62:de:c4:17:96:d4:d6:64: ac:dc:b4:14:2a:58:19:24:c7:ae:32:72:e4:b0:8b: a9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:2A:9E:E7:B7:07:B0:58:22:3A:26:03:E1:6C:AC:AA:C1:3C:C6:55 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e52fa04b-f965-4052-87cb-6e539ccd0345.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1b::/48 Signature Algorithm: sha256WithRSAEncryption 04:c7:3b:44:e6:0c:41:80:3e:06:30:f6:48:8a:17:1f:4a:6a: 93:69:1e:f3:8c:1a:2b:19:28:d9:d8:30:9f:14:d1:80:da:c2: a6:d9:cb:5f:45:9a:dc:ca:2a:8b:eb:06:dc:dd:c1:bd:a3:5c: 25:61:41:95:2e:28:e2:d2:67:e4:aa:18:14:ea:6b:82:80:7a: 5f:fe:9a:13:a3:ef:2a:60:97:ab:10:e2:15:a1:a6:69:8c:dc: b8:9a:46:10:98:07:a6:98:30:8f:1b:8e:5c:fd:7f:e6:13:97: 09:94:2c:fb:0a:02:dd:2c:d8:c4:d3:60:ea:39:c9:92:8a:3b: eb:b7:b4:7b:90:89:15:5c:72:d5:38:fc:b5:6c:fc:3b:f2:0d: ff:e5:b6:db:07:c0:6f:3f:66:86:ea:67:69:b7:85:90:de:56: 60:9d:12:c7:e6:f4:6c:78:03:bb:59:51:d5:3d:12:1c:d6:a4: 6a:d1:ad:39:ef:9b:97:ae:cd:7a:ce:9a:13:bf:0f:b7:ba:69: 54:0c:3e:82:c2:4a:39:88:a0:5b:4a:54:cb:f2:d2:7d:86:4a: 5f:bb:af:f7:33:1c:b3:a7:d0:7c:d3:2d:88:84:51:93:81:9e: 9b:7c:da:8b:e3:82:de:a0:61:70:40:5a:2c:f5:2c:33:12:73: f6:d7:78:73 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUVLXZvHSAQgr2eu/Fx0bgBdEwCIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMDMxMDEzMDMxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzYyY2NiYmE3ZjJmMjNhYTczNjg2ZWI5MWMzZDI1NzUx NjFmMzcwOThlOTkxNTA1NzhkNTcyOTIxNzlmZGMzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvIJXYY/CSp2egpQxUrHniYBLq/oMUhHFGZ5uH5phKCpKd 3sepONPFEza5OOJHDnkpJ7eARQ2FIxlX4zie4NXpVqk7g5x2hLW1x47e1TkAjmeH +RiXJVNxryxbcGfJ4AR6ctgPZ9mNro76r+u1l9rWqSWWocwsD6cTyoxHm6wEg3KE IOQ0xHTyOrgEilaHbnV/skKK0DbPWyNZKbzKVZ09Cy/x4WFiNrakQVCv2wWkdWa0 O51o2KC8yUPeSxuSzmBBya7q88AnPaJ1yzIRgUETHCcbb1QwtZJGrd+LHM+FJuvV G7NX/Dli3sQXltTWZKzctBQqWBkkx64ycuSwi6kPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6Sqe57cHsFgiOiYD4WysqsE8xlUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U1MmZhMDRiLWY5NjUtNDA1Mi04N2NiLTZlNTM5Y2NkMDM0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBswDQYJKoZIhvcNAQELBQADggEBAATHO0TmDEGAPgYw9kiKFx9K apNpHvOMGisZKNnYMJ8U0YDawqbZy19FmtzKKovrBtzdwb2jXCVhQZUuKOLSZ+Sq GBTqa4KAel/+mhOj7ypgl6sQ4hWhpmmM3LiaRhCYB6aYMI8bjlz9f+YTlwmULPsK At0s2MTTYOo5yZKKO+u3tHuQiRVcctU4/LVs/DvyDf/lttsHwG8/ZobqZ2m3hZDe VmCdEsfm9Gx4A7tZUdU9EhzWpGrRrTnvm5euzXrOmhO/D7e6aVQMPoLCSjmIoFtK VMvy0n2GSl+7r/czHLOn0HzTLYiEUZOBnpt82ovjgt6gYXBAWiz1LDMSc/bXeHM= -----END CERTIFICATE-----Generated at Wed Nov 5 11:26:07 2025 by rpki-client