$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2a9a7e7a-f836-49c4-b98d-bc4e85459b54.roa File: 2a9a7e7a-f836-49c4-b98d-bc4e85459b54.roa (raw, json) Hash identifier: PFKaRp1L4gN7Pnxupv7+IyX7toJramZ4swbyNd3slG8= Subject key identifier: 64:58:31:01:66:E7:0C:17:AB:CF:53:B5:3A:1E:D9:0F:49:EF:73:B4 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2B9226AC07A2621465A0B707F0E0DDC9E9315EAE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2a9a7e7a-f836-49c4-b98d-bc4e85459b54.roa Signing time: Fri 22 Aug 2025 15:00:09 +0000 ROA not before: Fri 22 Aug 2025 15:00:09 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:3b40::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:92:26:ac:07:a2:62:14:65:a0:b7:07:f0:e0:dd:c9:e9:31:5e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 22 15:00:09 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=e51b8c8cdacb7995ca26d4f84ffbf4bab3336e53fd9f6b1a8bdc8c48d52a12ae, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:88:83:e9:4c:54:d2:66:6e:14:9f:d8:19:af: 1d:8f:0a:d3:f5:75:84:86:e8:d6:53:7e:78:2f:0f: 9e:97:13:d6:1c:d9:79:ec:d7:ff:f6:0a:32:53:e1: 05:23:62:41:a1:2d:7e:11:bb:eb:97:c8:21:d8:0b: 2e:7b:c1:34:ab:05:28:94:1d:eb:40:7d:39:a3:13: 4c:18:0c:43:31:22:fb:b6:5c:8a:01:81:93:cf:62: a1:87:3d:42:07:be:d3:9d:7a:0c:d5:83:e6:7f:a1: 4d:eb:75:11:7a:dd:da:89:74:56:09:a2:df:fd:cb: 6a:69:76:39:e0:ec:26:06:13:99:5c:81:95:15:fb: 4f:78:66:9b:3d:5a:d8:0a:42:9c:c8:08:23:f7:74: 75:16:de:59:37:6a:1b:a8:4e:e4:3b:ff:55:78:6e: 18:07:a3:8a:53:a1:b6:c8:fd:96:44:2a:e0:f3:85: e1:80:ee:53:25:c7:a9:4a:3e:38:df:65:ef:ae:52: 13:b9:49:f8:06:c3:dc:a0:6b:a7:31:26:7c:fc:6d: 70:b8:2c:bf:02:9b:91:1a:6e:85:30:4f:e0:d1:08: f4:ec:f8:51:6b:39:66:f1:2b:86:af:87:47:b1:b2: 60:bc:0b:e8:58:c2:a9:e7:23:22:62:1a:fa:f6:40: d1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:58:31:01:66:E7:0C:17:AB:CF:53:B5:3A:1E:D9:0F:49:EF:73:B4 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2a9a7e7a-f836-49c4-b98d-bc4e85459b54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b40::/46 Signature Algorithm: sha256WithRSAEncryption 52:02:38:a7:1d:41:4a:d7:86:f2:7c:2e:8e:b0:5d:b8:b5:cd: 2b:90:2a:b3:0a:6b:15:da:db:b6:19:3e:a0:fc:1b:e2:ac:63: ca:c6:d4:49:4e:23:1d:06:9c:1c:23:2e:3d:be:89:ea:a8:d1: a1:25:b4:32:e9:b8:5c:18:53:d4:78:ce:9c:20:ad:66:0c:40: 8c:d7:91:6b:57:f9:ae:c0:84:26:a2:31:5f:38:e9:1d:98:41: df:41:0c:ff:68:60:e3:43:22:3b:5c:a7:f9:c7:b0:78:ae:dc: dd:77:cd:98:02:85:72:ab:aa:f6:d4:c4:6d:32:cd:6f:66:7d: 22:2a:bb:db:ed:c7:e9:96:03:5c:57:aa:9a:f8:3e:b6:c3:ae: b1:68:51:a2:8e:af:da:eb:0d:57:46:af:54:f3:3d:50:7a:46: 16:10:4e:56:fe:94:6f:b8:ac:7d:56:b5:87:d7:bd:24:7d:ca: d3:85:f4:21:5e:16:11:66:b0:48:8d:c3:3c:8a:d6:fe:6f:7b: 1c:3d:5a:8d:f2:03:f0:dc:8e:39:18:f7:88:7e:11:48:ed:b7: 5d:32:9e:84:33:d8:a8:fe:45:22:4c:1b:07:ef:ed:2b:05:c6: 77:47:9e:62:d8:64:2f:c3:37:c7:68:e2:ae:27:5f:2c:24:56: ac:ec:e0:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK5ImrAeiYhRloLcH8ODdyekxXq4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODIyMTUwMDA5WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTFiOGM4Y2RhY2I3OTk1Y2EyNmQ0Zjg0ZmZiZjRiYWIz MzM2ZTUzZmQ5ZjZiMWE4YmRjOGM0OGQ1MmExMmFlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCiIPpTFTSZm4Un9gZrx2PCtP1dYSG6NZTfngvD56XE9Yc 2Xns1//2CjJT4QUjYkGhLX4Ru+uXyCHYCy57wTSrBSiUHetAfTmjE0wYDEMxIvu2 XIoBgZPPYqGHPUIHvtOdegzVg+Z/oU3rdRF63dqJdFYJot/9y2ppdjng7CYGE5lc gZUV+094Zps9WtgKQpzICCP3dHUW3lk3ahuoTuQ7/1V4bhgHo4pTobbI/ZZEKuDz heGA7lMlx6lKPjjfZe+uUhO5SfgGw9yga6cxJnz8bXC4LL8Cm5EaboUwT+DRCPTs +FFrOWbxK4avh0exsmC8C+hYwqnnIyJiGvr2QNE1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZFgxAWbnDBerz1O1Oh7ZD0nvc7QwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJhOWE3ZTdhLWY4MzYtNDljNC1iOThkLWJjNGU4NTQ1OWI1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImBZzAO0AwDQYJKoZIhvcNAQELBQADggEBAFICOKcdQUrXhvJ8Lo6wXbi1 zSuQKrMKaxXa27YZPqD8G+KsY8rG1ElOIx0GnBwjLj2+ieqo0aEltDLpuFwYU9R4 zpwgrWYMQIzXkWtX+a7AhCaiMV846R2YQd9BDP9oYONDIjtcp/nHsHiu3N13zZgC hXKrqvbUxG0yzW9mfSIqu9vtx+mWA1xXqpr4PrbDrrFoUaKOr9rrDVdGr1TzPVB6 RhYQTlb+lG+4rH1WtYfXvSR9ytOF9CFeFhFmsEiNwzyK1v5vexw9Wo3yA/DcjjkY 94h+EUjtt10ynoQz2Kj+RSJMGwfv7SsFxndHnmLYZC/DN8do4q4nXywkVqzs4MQ= -----END CERTIFICATE-----Generated at Sat Aug 23 06:44:15 2025 by rpki-client