$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ee19f4b-6941-451a-a36b-eca835bb4851.roa File: 3ee19f4b-6941-451a-a36b-eca835bb4851.roa (raw, json) Hash identifier: nUGK8AwU/Gfb+AOwX19oxxPY0FkuYw5bxknRI2d0WTQ= Subject key identifier: 3B:DD:8C:71:2E:14:91:78:C1:1A:7B:3F:44:CB:A8:87:E4:83:0F:88 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 69D27657A3962FBA3F9086BC17EA893EE49F00D3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ee19f4b-6941-451a-a36b-eca835bb4851.roa Signing time: Fri 15 Aug 2025 15:11:15 +0000 ROA not before: Fri 15 Aug 2025 15:11:15 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:d2:76:57:a3:96:2f:ba:3f:90:86:bc:17:ea:89:3e:e4:9f:00:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:11:15 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=28450d70291441867f3fc3184f5c67b5ef7574dacabe396f59b4d79321c37a40, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b4:bf:0c:b3:97:00:5f:98:84:5d:d1:37:3d: 50:34:62:97:96:14:0c:8b:33:32:dd:5a:5f:2d:25: 29:37:e9:56:7e:df:38:77:ff:02:fb:02:aa:3e:50: e9:d2:b0:a8:53:b7:9d:2f:c7:43:58:f2:b8:14:89: c2:6a:71:80:47:f1:22:5e:0b:8f:71:a0:6d:8d:67: 86:99:bf:6e:4c:fc:6e:4c:6b:5c:4f:d3:91:41:e2: 9d:17:57:e2:07:48:7d:69:53:42:60:5a:8e:26:e3: 18:9d:ee:9a:61:6c:c2:54:d3:4e:f4:b0:64:96:e0: 79:c8:e9:1a:a2:0b:76:92:fb:f7:86:a7:da:d9:fc: df:9f:3f:f5:36:d0:9c:95:17:24:64:15:ed:8c:62: fa:63:29:db:16:d7:d0:ec:a9:68:f8:52:f0:3a:6b: 0f:ea:1c:5c:48:0b:16:68:77:b1:5c:be:e3:08:48: 2e:ca:8f:a8:63:90:ad:73:b3:72:3b:57:69:1c:e4: 62:be:7d:9a:64:09:3a:57:6c:7d:03:31:d2:bd:a1: 40:84:d5:a6:21:aa:73:5f:52:8c:7a:c1:8a:19:6e: 8f:95:0d:d1:f6:14:88:ad:59:b4:97:17:1f:71:c8: 46:1a:76:0b:5e:fa:dd:ab:3e:2e:96:a5:02:b2:e3: 1b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:DD:8C:71:2E:14:91:78:C1:1A:7B:3F:44:CB:A8:87:E4:83:0F:88 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ee19f4b-6941-451a-a36b-eca835bb4851.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0b::/48 Signature Algorithm: sha256WithRSAEncryption 48:59:68:fa:a8:12:09:4b:5d:03:36:ad:90:d3:98:ae:a4:00: cf:3d:e3:f6:fa:cc:8c:4a:d3:52:18:5d:54:da:26:e8:30:f0: ab:c2:b4:63:0e:a3:5d:60:fe:c9:84:fd:f0:73:c3:a6:ec:96: 87:14:1a:b0:c6:9c:af:44:6a:f5:83:c7:59:af:fa:76:6e:f1: d1:05:a4:f7:89:9d:cc:a6:c7:2c:a7:86:f0:23:d8:a6:f3:f8: d1:49:83:74:01:e4:5d:a7:96:65:7f:12:f1:be:50:57:b0:00: 0a:3e:2a:38:a8:74:6c:09:8e:24:ad:b7:d0:d2:0f:23:bd:7c: a7:08:7a:83:ce:19:57:18:43:29:8f:1f:f6:4c:2f:dd:e0:21: 1c:b5:b9:bb:77:6f:22:0a:6a:2c:53:5b:3a:eb:70:07:a3:ff: e5:59:11:e9:55:1b:ff:94:a8:51:28:d3:b5:fa:11:8e:72:e7: 5b:7e:5f:69:a9:fb:9c:a1:94:64:08:99:b9:31:76:bc:d4:a6: 2a:71:fb:db:5b:df:aa:c6:32:08:03:7f:13:91:a6:a8:39:97: 35:a9:57:50:67:4d:0d:7f:63:bc:82:c7:e5:a1:c2:24:4c:31: 6c:86:d0:f1:56:10:14:9a:b6:89:57:01:f3:70:69:49:cd:81: 46:a7:3d:00 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUadJ2V6OWL7o/kIa8F+qJPuSfANMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUxMTE1WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODQ1MGQ3MDI5MTQ0MTg2N2YzZmMzMTg0ZjVjNjdiNWVm NzU3NGRhY2FiZTM5NmY1OWI0ZDc5MzIxYzM3YTQwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqtL8Ms5cAX5iEXdE3PVA0YpeWFAyLMzLdWl8tJSk36VZ+ 3zh3/wL7Aqo+UOnSsKhTt50vx0NY8rgUicJqcYBH8SJeC49xoG2NZ4aZv25M/G5M a1xP05FB4p0XV+IHSH1pU0JgWo4m4xid7pphbMJU0070sGSW4HnI6RqiC3aS+/eG p9rZ/N+fP/U20JyVFyRkFe2MYvpjKdsW19DsqWj4UvA6aw/qHFxICxZod7FcvuMI SC7Kj6hjkK1zs3I7V2kc5GK+fZpkCTpXbH0DMdK9oUCE1aYhqnNfUox6wYoZbo+V DdH2FIitWbSXFx9xyEYadgte+t2rPi6WpQKy4xuxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUO92McS4UkXjBGns/RMuoh+SDD4gwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNlZTE5ZjRiLTY5NDEtNDUxYS1hMzZiLWVjYTgzNWJiNDg1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAswDQYJKoZIhvcNAQELBQADggEBAEhZaPqoEglLXQM2rZDTmK6k AM894/b6zIxK01IYXVTaJugw8KvCtGMOo11g/smE/fBzw6bslocUGrDGnK9EavWD x1mv+nZu8dEFpPeJncymxyynhvAj2Kbz+NFJg3QB5F2nlmV/EvG+UFewAAo+Kjio dGwJjiStt9DSDyO9fKcIeoPOGVcYQymPH/ZML93gIRy1ubt3byIKaixTWzrrcAej /+VZEelVG/+UqFEo07X6EY5y51t+X2mp+5yhlGQImbkxdrzUpipx+9tb36rGMggD fxORpqg5lzWpV1BnTQ1/Y7yCx+WhwiRMMWyG0PFWEBSatolXAfNwaUnNgUanPQA= -----END CERTIFICATE-----Generated at Sat Aug 23 14:45:48 2025 by rpki-client