$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa File: 41f74973-a63a-4161-8c87-21184ab17c25.roa (raw, json) Hash identifier: 3QUrP5j9CBdr4VWQFdtX9BcVKu3da1WzxNxnCqgYBZg= Subject key identifier: 0C:C5:DC:8B:3B:E4:E0:EA:53:B5:61:2B:51:97:68:A2:AD:3F:AD:DF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 09BE2CC34C71D40B60ABD5E142D6C66F9C467A88 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa Signing time: Fri 15 Aug 2025 15:20:19 +0000 ROA not before: Fri 15 Aug 2025 15:20:19 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:be:2c:c3:4c:71:d4:0b:60:ab:d5:e1:42:d6:c6:6f:9c:46:7a:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:20:19 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=e9d04c65bc7b4984e74cf1137b397b194eb6d8135b2de4cdaf3bffc74f261033, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f6:46:ee:1e:68:19:e4:d8:de:a3:67:2f:24: 05:8c:0f:80:74:cb:ca:04:a3:01:76:92:c1:f9:75: 43:19:b4:b5:f7:5b:87:74:ff:50:ed:2b:cc:66:78: 96:57:60:a5:d9:a7:93:b1:cc:fb:cf:2e:bb:19:f2: ec:d8:7a:10:52:38:8c:77:e9:b4:e0:11:dd:3e:1f: 1a:13:8c:a5:66:18:81:a9:3f:97:50:db:01:44:00: 15:ea:52:0d:00:90:a4:97:22:e2:11:a6:13:7d:4f: d0:87:33:f2:71:ec:94:b9:b4:08:23:72:9b:e4:9c: fb:6a:ab:1a:ae:9b:fd:3c:56:0b:73:0a:60:75:88: 59:36:70:95:30:c1:d2:8f:72:a0:22:67:2a:ac:d4: f1:62:55:b6:3e:49:7f:a7:65:90:31:97:ef:c6:c0: ae:1c:df:23:48:b9:11:ca:71:b9:37:58:48:97:51: 12:65:cf:d1:9e:d0:34:1d:0d:3d:d6:fb:c4:d6:e2: 4f:21:2c:a7:64:4c:43:29:1f:ea:ff:a6:7e:92:a0: fd:ad:e1:c5:38:7a:a0:5b:20:40:27:1c:df:49:98: 46:40:f8:93:23:cd:d9:ed:a8:b1:99:46:50:31:33: ae:36:f2:2a:3b:36:61:76:05:b2:57:26:c1:63:e5: c8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C5:DC:8B:3B:E4:E0:EA:53:B5:61:2B:51:97:68:A2:AD:3F:AD:DF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1c::/48 Signature Algorithm: sha256WithRSAEncryption 9a:0a:44:28:35:27:84:3a:6a:c5:16:0c:d4:a4:76:e4:1a:95: 2c:71:ea:b6:a9:98:b7:fa:c1:e0:d2:29:cd:25:34:86:0f:a4: ff:c1:68:79:9b:58:da:2d:05:80:0e:ac:24:40:b7:83:4d:50: b9:9b:87:aa:bb:d0:da:92:ee:3b:c6:68:1d:f7:32:8b:b1:7d: 92:d7:4e:1d:1e:62:b0:ac:11:22:e0:3d:4f:ae:45:91:7d:b7: 2e:83:80:6d:8e:6d:55:72:ed:9e:0a:fa:d1:0d:c1:3b:ff:d6: d4:da:9b:5f:e9:40:0d:0b:8b:06:61:84:ff:cd:e6:70:a5:e4: ce:91:8a:dc:87:fc:78:fb:78:3f:c2:2b:f3:46:7b:8d:17:ac: a8:90:41:8c:d0:0e:e4:61:11:f9:89:80:45:34:c3:6e:c9:66: cb:54:98:49:02:10:98:8b:5e:97:74:28:cb:8f:41:4e:8e:25: a9:35:3c:60:66:15:8d:f8:fc:cf:f3:e9:58:6a:27:ae:34:6a: ac:44:7e:65:cc:d4:19:a7:3e:77:aa:5b:98:a6:1e:04:08:ab: 04:5c:a6:73:0e:db:a2:34:a0:ee:ff:95:e8:8c:02:21:43:32: b5:46:18:55:90:1c:d0:00:02:d2:e5:c5:4c:71:7a:55:3d:38: 73:98:a1:f3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCb4sw0xx1Atgq9XhQtbGb5xGeogwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUyMDE5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWQwNGM2NWJjN2I0OTg0ZTc0Y2YxMTM3YjM5N2IxOTRl YjZkODEzNWIyZGU0Y2RhZjNiZmZjNzRmMjYxMDMzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI9kbuHmgZ5Njeo2cvJAWMD4B0y8oEowF2ksH5dUMZtLX3 W4d0/1DtK8xmeJZXYKXZp5OxzPvPLrsZ8uzYehBSOIx36bTgEd0+HxoTjKVmGIGp P5dQ2wFEABXqUg0AkKSXIuIRphN9T9CHM/Jx7JS5tAgjcpvknPtqqxqum/08Vgtz CmB1iFk2cJUwwdKPcqAiZyqs1PFiVbY+SX+nZZAxl+/GwK4c3yNIuRHKcbk3WEiX URJlz9Ge0DQdDT3W+8TW4k8hLKdkTEMpH+r/pn6SoP2t4cU4eqBbIEAnHN9JmEZA +JMjzdntqLGZRlAxM6428io7NmF2BbJXJsFj5ciTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDMXcizvk4OpTtWErUZdooq0/rd8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQxZjc0OTczLWE2M2EtNDE2MS04Yzg3LTIxMTg0YWIxN2MyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBwwDQYJKoZIhvcNAQELBQADggEBAJoKRCg1J4Q6asUWDNSkduQa lSxx6rapmLf6weDSKc0lNIYPpP/BaHmbWNotBYAOrCRAt4NNULmbh6q70NqS7jvG aB33MouxfZLXTh0eYrCsESLgPU+uRZF9ty6DgG2ObVVy7Z4K+tENwTv/1tTam1/p QA0LiwZhhP/N5nCl5M6RityH/Hj7eD/CK/NGe40XrKiQQYzQDuRhEfmJgEU0w27J ZstUmEkCEJiLXpd0KMuPQU6OJak1PGBmFY34/M/z6VhqJ640aqxEfmXM1BmnPneq W5imHgQIqwRcpnMO26I0oO7/leiMAiFDMrVGGFWQHNAAAtLlxUxxelU9OHOYofM= -----END CERTIFICATE-----Generated at Sat Aug 23 14:52:23 2025 by rpki-client