$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2f789924-a980-48eb-b42e-463688379f41.roa File: 2f789924-a980-48eb-b42e-463688379f41.roa (raw, json) Hash identifier: u0XPZ4kNElnHnMxQ/wUBuUFxijIMDJClggzKP/LnFMI= Subject key identifier: 2B:1E:CE:2B:65:6D:D1:29:6F:A0:86:17:68:B0:6F:84:2D:1D:8E:AC Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7E851DD7B65691A4E77F3549606B570F314D4B07 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2f789924-a980-48eb-b42e-463688379f41.roa Signing time: Fri 15 Aug 2025 15:00:25 +0000 ROA not before: Fri 15 Aug 2025 15:00:25 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:64c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:85:1d:d7:b6:56:91:a4:e7:7f:35:49:60:6b:57:0f:31:4d:4b:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:00:25 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=e21dbc8e50543de7f45abcaee0da8bd97fad09a9c8fa70a3bd605510a6d75782, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:61:ae:8e:27:bb:f1:c8:85:72:bb:58:c5:b3: 7c:7e:9a:1a:49:3a:a6:27:c5:b2:fa:8c:3d:ec:b8: f9:9c:57:2c:c3:42:d4:6d:73:02:14:1c:f6:ec:b0: 85:ed:9c:7c:ff:3e:c4:a4:df:e8:96:76:08:e1:65: c7:04:03:49:3b:b1:2b:b4:eb:f6:ca:95:6c:95:f4: 3c:f0:9d:90:29:b8:a6:8d:27:d2:cc:b8:f8:21:9a: 98:c7:b7:a9:84:92:1d:13:4b:96:00:14:f6:a9:27: ed:ee:04:c5:c7:84:71:b1:50:a6:0d:26:85:b6:71: 47:c6:bf:1f:c0:ef:f0:7f:f6:3e:27:c4:76:3d:ba: d1:de:6e:b2:2f:71:8d:53:3b:99:79:63:89:83:02: 63:4d:94:0d:45:a7:ac:0f:39:5b:7a:7d:4a:18:db: ed:aa:83:ac:eb:e8:64:57:2d:49:5b:92:d1:54:ee: 9b:a1:bf:31:35:a5:19:bd:2b:4a:44:94:b4:9e:35: c4:10:07:8c:6c:99:5d:8c:1c:86:cb:e3:fe:e3:76: 41:0f:d2:73:2a:01:3f:f4:e3:a1:ab:63:21:40:28: 11:55:17:52:0d:14:c9:cd:34:62:12:84:18:59:2c: 26:b6:55:bc:19:29:7e:0d:64:92:c5:55:82:12:57: 10:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:1E:CE:2B:65:6D:D1:29:6F:A0:86:17:68:B0:6F:84:2D:1D:8E:AC X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2f789924-a980-48eb-b42e-463688379f41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64c::/48 Signature Algorithm: sha256WithRSAEncryption 15:f7:4c:6a:03:fa:27:03:28:5c:a5:7c:82:a2:8b:4b:23:3e: 19:6b:53:93:3a:c5:00:68:eb:cd:d0:2a:f7:52:3f:db:3d:77: 7c:43:4f:e8:9c:2d:ba:1e:64:2f:36:86:a6:64:b9:e8:bf:e5: 92:39:90:2a:8c:7c:29:f3:42:37:5a:10:da:af:0d:a5:ac:f1: 76:d4:f5:89:a0:4d:2e:89:56:e8:30:50:9d:c0:ab:f2:56:62: f0:c1:b4:3e:c1:b5:e5:e0:0d:33:98:61:28:6c:94:26:17:5d: 9b:e4:34:ed:b0:7e:2d:9c:40:e7:a2:ae:4d:41:d9:13:42:86: 27:7c:8d:55:d8:ea:bc:b8:ef:79:ea:71:13:57:40:5b:8b:9d: c5:95:94:a3:b0:d6:0d:5c:8a:c9:8c:38:44:05:91:81:ed:08: b5:3a:f2:4b:9f:d1:30:d5:3f:e1:a5:43:82:32:bd:89:53:f6: 95:ce:85:11:46:c9:a2:ec:42:1d:bd:49:f9:2c:8b:ce:93:ae: b7:3a:b5:37:a1:89:3a:0d:a4:4d:a6:f0:e8:fc:c5:11:50:fd: b1:e5:c7:c4:7d:02:be:8e:c4:c3:05:c6:d7:60:f2:3e:03:93: 80:fc:ab:71:67:90:9a:94:d3:54:4e:00:49:f7:05:25:59:6e: c4:78:99:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfoUd17ZWkaTnfzVJYGtXDzFNSwcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUwMDI1WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjFkYmM4ZTUwNTQzZGU3ZjQ1YWJjYWVlMGRhOGJkOTdm YWQwOWE5YzhmYTcwYTNiZDYwNTUxMGE2ZDc1NzgyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxYa6OJ7vxyIVyu1jFs3x+mhpJOqYnxbL6jD3suPmcVyzD QtRtcwIUHPbssIXtnHz/PsSk3+iWdgjhZccEA0k7sSu06/bKlWyV9DzwnZApuKaN J9LMuPghmpjHt6mEkh0TS5YAFPapJ+3uBMXHhHGxUKYNJoW2cUfGvx/A7/B/9j4n xHY9utHebrIvcY1TO5l5Y4mDAmNNlA1Fp6wPOVt6fUoY2+2qg6zr6GRXLUlbktFU 7puhvzE1pRm9K0pElLSeNcQQB4xsmV2MHIbL4/7jdkEP0nMqAT/046GrYyFAKBFV F1INFMnNNGIShBhZLCa2VbwZKX4NZJLFVYISVxDxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKx7OK2Vt0SlvoIYXaLBvhC0djqwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJmNzg5OTI0LWE5ODAtNDhlYi1iNDJlLTQ2MzY4ODM3OWY0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkwwDQYJKoZIhvcNAQELBQADggEBABX3TGoD+icDKFylfIKii0sj PhlrU5M6xQBo683QKvdSP9s9d3xDT+icLboeZC82hqZkuei/5ZI5kCqMfCnzQjda ENqvDaWs8XbU9YmgTS6JVugwUJ3Aq/JWYvDBtD7BteXgDTOYYShslCYXXZvkNO2w fi2cQOeirk1B2RNChid8jVXY6ry473nqcRNXQFuLncWVlKOw1g1cismMOEQFkYHt CLU68kuf0TDVP+GlQ4IyvYlT9pXOhRFGyaLsQh29Sfksi86Trrc6tTehiToNpE2m 8Oj8xRFQ/bHlx8R9Ar6OxMMFxtdg8j4Dk4D8q3FnkJqU01ROAEn3BSVZbsR4mVo= -----END CERTIFICATE-----Generated at Sat Aug 23 18:04:14 2025 by rpki-client