$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/53eb388c-327a-4c7b-bd49-ee5ad9558636.roa File: 53eb388c-327a-4c7b-bd49-ee5ad9558636.roa (raw, json) Hash identifier: P3SPKdE9MzTcmpXsigGWsP3H5goeFfjugHV/taetlJI= Subject key identifier: 94:FC:83:94:6C:94:4C:14:22:55:03:D0:EB:BE:F7:7E:40:12:B2:23 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7EF3A63A345F6B06AB62208C5F4481673C81F537 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/53eb388c-327a-4c7b-bd49-ee5ad9558636.roa Signing time: Fri 26 Sep 2025 17:50:56 +0000 ROA not before: Fri 26 Sep 2025 17:50:56 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:2110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:f3:a6:3a:34:5f:6b:06:ab:62:20:8c:5f:44:81:67:3c:81:f5:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:50:56 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=f69e7a724a08ba2c17e3edd10e7b68876017e0309abc09c77ae2ec00124be894, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a5:64:78:0d:b1:96:84:68:4d:dd:4a:f7:4c: 55:b8:ee:87:19:d8:b3:e3:04:51:a0:d3:a0:1e:8e: a9:80:45:5e:6e:6c:63:ea:33:a5:e0:73:9e:62:0b: fc:0e:4a:87:ea:05:c6:f2:09:80:62:ce:94:d9:b2: d4:37:41:98:ea:ae:b7:de:f9:fa:6a:04:2b:0c:d2: 96:3d:bb:43:4e:5f:1c:39:2b:0e:d8:1a:48:ee:93: 23:a3:3d:46:52:c4:76:5e:31:c3:3b:fd:5e:67:7e: e3:20:d5:41:28:90:ae:b6:00:0e:89:8b:57:9b:59: 5e:01:38:bc:20:74:a7:77:b1:6e:89:9d:ce:ce:79: 9c:13:8d:b1:e4:ef:82:21:4e:23:56:75:29:6e:11: 2e:ea:82:be:8a:ed:c9:e8:4e:38:72:9f:b6:ca:4e: 9c:ae:6c:c5:db:8e:5b:31:86:a6:74:cf:4d:57:b3: 33:8a:48:cc:f0:86:a6:cf:0a:48:52:59:be:d9:3e: 64:86:a7:87:20:7b:a7:58:f0:45:a7:f7:0e:e2:44: bc:ad:54:85:ed:e4:71:62:3c:c0:ee:7b:2f:0e:af: b5:ec:2d:cd:13:3e:e1:49:cd:26:75:cb:d6:37:15: e0:13:1a:e4:21:70:4f:ea:d8:c6:42:74:b7:df:f3: e5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:FC:83:94:6C:94:4C:14:22:55:03:D0:EB:BE:F7:7E:40:12:B2:23 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/53eb388c-327a-4c7b-bd49-ee5ad9558636.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:2110::/44 Signature Algorithm: sha256WithRSAEncryption ac:7b:2e:ff:64:91:8b:e5:b9:17:d5:a2:44:12:cd:b4:8b:ce: 3c:a6:f0:e1:4a:a2:e1:cd:89:a7:4d:b4:36:43:92:3f:e9:d7: b4:27:eb:ea:1f:e3:28:bb:c1:61:8f:47:b5:99:9b:05:8e:c1: 04:8c:dc:d0:dd:c8:ee:db:84:85:e8:32:0b:30:5d:7c:6f:6f: c3:1e:a2:13:11:c3:39:3d:4b:62:3f:5f:8d:49:33:06:3f:1e: f0:ea:45:ae:2d:1f:f4:9c:68:3d:07:76:f4:66:ba:90:cd:0a: 34:ad:39:16:94:9b:49:f3:63:ba:6a:46:9b:1c:84:03:75:18: 1a:c0:6b:f9:04:a9:e9:37:06:4d:84:a9:3f:a4:ff:80:d3:fe: e2:c2:11:63:56:3e:c9:31:30:6e:a3:5a:99:32:36:43:e7:fb: 0f:1e:d7:b0:e0:68:07:d9:5d:df:ab:aa:82:1c:e0:00:0f:3f: 3f:8b:63:5e:9c:57:4e:f7:fe:9b:77:ce:54:eb:23:e1:c3:2c: cc:3e:1b:95:99:24:37:22:43:c3:48:86:29:cc:d9:d3:0a:ec: 67:3d:ff:07:1b:99:95:79:54:07:a6:36:31:59:e0:b2:8a:0f: 1b:fb:9c:e3:cf:13:58:62:35:6e:08:75:5a:9b:af:6f:83:08: be:eb:89:9b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfvOmOjRfawarYiCMX0SBZzyB9TcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MDU2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjllN2E3MjRhMDhiYTJjMTdlM2VkZDEwZTdiNjg4NzYw MTdlMDMwOWFiYzA5Yzc3YWUyZWMwMDEyNGJlODk0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnpWR4DbGWhGhN3Ur3TFW47ocZ2LPjBFGg06AejqmARV5u bGPqM6Xgc55iC/wOSofqBcbyCYBizpTZstQ3QZjqrrfe+fpqBCsM0pY9u0NOXxw5 Kw7YGkjukyOjPUZSxHZeMcM7/V5nfuMg1UEokK62AA6Ji1ebWV4BOLwgdKd3sW6J nc7OeZwTjbHk74IhTiNWdSluES7qgr6K7cnoTjhyn7bKTpyubMXbjlsxhqZ0z01X szOKSMzwhqbPCkhSWb7ZPmSGp4cge6dY8EWn9w7iRLytVIXt5HFiPMDuey8Or7Xs Lc0TPuFJzSZ1y9Y3FeATGuQhcE/q2MZCdLff8+VPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlPyDlGyUTBQiVQPQ6773fkASsiMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzUzZWIzODhjLTMyN2EtNGM3Yi1iZDQ5LWVlNWFkOTU1ODYzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmBZzAIRAwDQYJKoZIhvcNAQELBQADggEBAKx7Lv9kkYvluRfVokQSzbSL zjym8OFKouHNiadNtDZDkj/p17Qn6+of4yi7wWGPR7WZmwWOwQSM3NDdyO7bhIXo MgswXXxvb8MeohMRwzk9S2I/X41JMwY/HvDqRa4tH/ScaD0HdvRmupDNCjStORaU m0nzY7pqRpschAN1GBrAa/kEqek3Bk2EqT+k/4DT/uLCEWNWPskxMG6jWpkyNkPn +w8e17DgaAfZXd+rqoIc4AAPPz+LY16cV073/pt3zlTrI+HDLMw+G5WZJDciQ8NI hinM2dMK7Gc9/wcbmZV5VAemNjFZ4LKKDxv7nOPPE1hiNW4IdVqbr2+DCL7riZs= -----END CERTIFICATE-----Generated at Wed Oct 8 21:29:54 2025 by rpki-client