$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/52a34b27-9457-4241-b640-6cfbf8564772.roa File: 52a34b27-9457-4241-b640-6cfbf8564772.roa (raw, json) Hash identifier: SI9BfZz5mi6IkjDSBm+QxH56K5lNJE/T/+yheMYHFD4= Subject key identifier: 72:AD:98:B4:EE:9D:22:A0:71:DD:1C:03:74:46:C2:43:63:3E:2A:62 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 39AE362E6B84C795103664ADBC83D428B9337F14 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/52a34b27-9457-4241-b640-6cfbf8564772.roa Signing time: Fri 31 Oct 2025 03:08:28 +0000 ROA not before: Fri 31 Oct 2025 03:08:28 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1c5c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:ae:36:2e:6b:84:c7:95:10:36:64:ad:bc:83:d4:28:b9:33:7f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:08:28 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=bb59519ee4bf3deda1c9c948aba21a3b025b7272180fefa727e5a87d0c544f0b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:39:50:f1:b5:89:5f:f8:da:5e:29:63:dc:cc: 73:e6:61:52:23:e8:c5:28:1e:aa:8c:c7:7d:cd:44: 84:4f:7a:4d:85:0b:42:bc:41:49:16:98:84:93:0f: 51:c7:63:e0:5e:8f:4d:fc:2b:75:53:5d:8b:45:55: bd:c5:1e:44:03:01:05:92:da:2f:07:f1:32:ba:ff: 81:d9:07:f9:bc:72:1d:da:fa:87:2f:79:2e:dc:9c: 6c:a2:3b:40:03:0f:2c:50:b3:26:14:17:84:71:c1: 05:29:a3:79:6f:6a:13:03:aa:fc:98:21:60:eb:2c: a5:3e:3f:f5:a7:cb:d4:e0:3b:ce:64:16:d4:cd:59: 6d:65:f3:e4:62:5f:63:90:53:7d:80:0b:8e:d9:01: 26:9a:48:72:86:27:0e:c3:db:81:c0:58:e9:4a:88: fe:39:09:8f:42:9e:f7:b8:a1:f0:4a:3c:72:63:17: 25:1a:98:15:e9:d7:b6:14:f2:d8:30:71:42:63:ba: 06:26:6a:c5:9e:b5:24:4b:43:54:3b:84:e4:5c:39: c2:d9:5e:7f:d4:c4:d5:fe:10:bc:61:bf:43:f3:be: 19:44:d3:9c:ae:0b:39:36:87:6b:2a:58:60:bd:2d: 65:f3:45:9c:92:89:2e:00:74:e1:86:dc:23:88:1b: 6a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:AD:98:B4:EE:9D:22:A0:71:DD:1C:03:74:46:C2:43:63:3E:2A:62 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/52a34b27-9457-4241-b640-6cfbf8564772.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1c5c::/46 Signature Algorithm: sha256WithRSAEncryption b6:7f:8c:f7:9a:c5:71:b6:9f:1a:14:16:c7:94:99:1d:f8:67: 9d:a2:db:74:b6:43:0e:60:69:9d:a1:11:40:e0:0c:41:ec:2d: 86:00:3f:4b:22:c8:d6:f1:96:a1:91:ea:37:e3:88:e7:b7:1d: f7:69:0c:5a:08:29:80:ab:12:5c:95:1b:9f:e8:24:a1:69:4d: a8:69:dc:64:65:4d:c1:1f:0e:a1:bf:ba:a7:3d:24:af:3d:1e: 7d:d3:92:e4:e1:82:ac:ec:a8:d4:0a:46:bd:08:5d:9a:2e:96: 6a:7b:2b:7e:28:a5:6c:40:d5:bb:62:33:ac:eb:85:94:a0:c4: 8f:08:f5:3b:f8:fd:c8:05:a0:e0:f0:8a:d4:92:2a:0a:88:d8: 0e:23:16:19:ff:3f:1b:00:a9:b8:f4:7e:1a:c2:f4:8c:57:f4: 18:ec:34:aa:49:e3:8d:21:91:7a:87:84:67:2e:ff:86:86:48: 07:1e:b3:f8:1a:62:ae:7b:e9:0f:61:f1:60:82:68:5e:aa:32: c6:8b:ef:c4:90:d4:53:93:d2:18:e6:8d:af:7c:a1:0f:5f:ec: e2:0c:71:e0:c1:20:1e:ee:d2:95:2b:93:86:2f:94:e3:8b:16: 33:cb:61:0d:4d:bb:82:34:63:44:db:3c:f3:f9:bb:79:ac:4d: cf:0e:5b:a3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOa42LmuEx5UQNmStvIPUKLkzfxQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMwODI4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjU5NTE5ZWU0YmYzZGVkYTFjOWM5NDhhYmEyMWEzYjAy NWI3MjcyMTgwZmVmYTcyN2U1YTg3ZDBjNTQ0ZjBiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiOVDxtYlf+NpeKWPczHPmYVIj6MUoHqqMx33NRIRPek2F C0K8QUkWmISTD1HHY+Bej038K3VTXYtFVb3FHkQDAQWS2i8H8TK6/4HZB/m8ch3a +ocveS7cnGyiO0ADDyxQsyYUF4RxwQUpo3lvahMDqvyYIWDrLKU+P/Wny9TgO85k FtTNWW1l8+RiX2OQU32AC47ZASaaSHKGJw7D24HAWOlKiP45CY9Cnve4ofBKPHJj FyUamBXp17YU8tgwcUJjugYmasWetSRLQ1Q7hORcOcLZXn/UxNX+ELxhv0PzvhlE 05yuCzk2h2sqWGC9LWXzRZySiS4AdOGG3COIG2qJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcq2YtO6dIqBx3RwDdEbCQ2M+KmIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzUyYTM0YjI3LTk0NTctNDI0MS1iNjQwLTZjZmJmODU2NDc3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAHFwwDQYJKoZIhvcNAQELBQADggEBALZ/jPeaxXG2nxoUFseUmR34 Z52i23S2Qw5gaZ2hEUDgDEHsLYYAP0siyNbxlqGR6jfjiOe3HfdpDFoIKYCrElyV G5/oJKFpTahp3GRlTcEfDqG/uqc9JK89Hn3TkuThgqzsqNQKRr0IXZoulmp7K34o pWxA1btiM6zrhZSgxI8I9Tv4/cgFoODwitSSKgqI2A4jFhn/PxsAqbj0fhrC9IxX 9BjsNKpJ440hkXqHhGcu/4aGSAces/gaYq576Q9h8WCCaF6qMsaL78SQ1FOT0hjm ja98oQ9f7OIMceDBIB7u0pUrk4YvlOOLFjPLYQ1Nu4I0Y0TbPPP5u3msTc8OW6M= -----END CERTIFICATE-----Generated at Wed Nov 5 13:59:01 2025 by rpki-client