$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa File: 86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa (raw, json) Hash identifier: oSHEQhCiJQf54F5Jf3TA3xsNzaL5E4ccviO3N+ION8M= Subject key identifier: F4:3D:2D:88:EE:E3:13:E6:52:4F:1E:81:8D:05:AF:FA:7B:68:C3:35 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0678A8F1618D02342BE9063F700B5363F705FEEC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa Signing time: Fri 15 Aug 2025 15:30:09 +0000 ROA not before: Fri 15 Aug 2025 15:30:09 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:78:a8:f1:61:8d:02:34:2b:e9:06:3f:70:0b:53:63:f7:05:fe:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:30:09 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=102cc10aee422270c7140d6a5e73ab3ad8ff58370f675a84b4f4699717373222, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:00:70:b5:c9:a5:5f:9b:32:0d:bd:b1:4b:99: 05:0c:ae:cf:e1:a5:de:45:47:bf:9d:e0:7d:9c:e5: 68:66:7b:c7:6c:ba:ae:d5:65:0b:77:47:36:cb:a0: dc:e4:7c:34:67:dd:1f:37:bb:db:f6:09:38:60:8c: 7a:49:00:c2:93:82:fc:38:62:64:bc:7c:a4:2c:36: 85:84:1c:59:ae:8e:88:71:25:dd:bb:41:27:8a:70: f2:c9:bd:3f:02:63:0f:7c:e7:1a:96:e0:c0:a2:40: 5b:c3:08:9a:53:22:23:6b:b3:58:77:f6:04:f6:c9: 5f:3f:3e:f4:a8:42:1e:99:ad:ef:ad:4c:0a:89:79: 38:30:48:d2:2d:e0:42:d9:50:ed:9c:49:0a:36:3c: da:d2:c3:db:bc:b5:b5:19:4b:ec:98:ab:c2:f5:24: 2d:bc:4b:9a:08:b7:20:31:b5:db:cd:63:56:15:7e: 04:5c:9c:93:45:53:43:05:0f:a1:2f:aa:83:14:7f: 59:79:0d:07:49:bd:6f:8b:23:ee:98:db:ad:b4:fa: bd:af:3d:c2:a9:1d:3f:e0:4d:3c:81:15:6b:07:cb: 6f:f5:6c:20:34:3d:68:fa:d6:d6:97:93:e0:34:6a: 60:50:31:f1:f3:68:4a:4d:f3:07:74:7c:2e:92:9a: d7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:3D:2D:88:EE:E3:13:E6:52:4F:1E:81:8D:05:AF:FA:7B:68:C3:35 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c20::/48 Signature Algorithm: sha256WithRSAEncryption 9b:21:2d:1d:c5:9d:db:25:d9:c0:41:73:48:fa:57:bd:24:6d: 74:74:87:54:19:4d:d4:a0:4e:4b:74:8a:fa:49:1a:9b:28:1a: 78:c1:3a:d4:cb:87:a2:85:43:fd:37:69:bf:cc:c2:8b:a7:f6: c5:26:41:05:69:69:35:3c:4b:fd:39:71:86:50:f2:5e:93:15: b3:b5:17:27:27:2a:ff:30:ed:c1:8f:bd:09:c2:c9:b2:f7:e2: 23:50:3d:ee:42:6e:c4:db:2d:f9:3e:8c:84:e4:69:61:95:08: e1:f7:41:d4:95:33:a3:17:80:fb:04:75:66:08:77:d6:7a:ae: 20:cb:ef:17:ca:fa:6d:92:21:dc:6d:e5:d6:59:00:b1:ff:7a: ea:18:0c:58:49:73:f9:95:5f:c3:ae:c6:2b:de:4d:61:80:67: 78:07:89:6d:f4:bc:3e:ca:a1:ef:cf:6e:7d:6a:07:4d:e2:ab: e9:c3:99:c0:f5:2f:9f:75:c0:db:37:54:f2:0f:53:95:b6:c9: 35:be:73:9b:09:1e:95:31:22:e1:c5:97:7e:e2:30:78:15:9f: 8c:5d:c8:37:70:8d:20:d1:c4:0a:23:06:b4:43:ad:ce:6b:a4: 5e:29:d9:7e:14:8a:e3:70:5e:de:d6:af:15:ec:03:7a:4f:c0: 19:14:59:f9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBnio8WGNAjQr6QY/cAtTY/cF/uwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUzMDA5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDJjYzEwYWVlNDIyMjcwYzcxNDBkNmE1ZTczYWIzYWQ4 ZmY1ODM3MGY2NzVhODRiNGY0Njk5NzE3MzczMjIyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIAHC1yaVfmzINvbFLmQUMrs/hpd5FR7+d4H2c5Whme8ds uq7VZQt3RzbLoNzkfDRn3R83u9v2CThgjHpJAMKTgvw4YmS8fKQsNoWEHFmujohx Jd27QSeKcPLJvT8CYw985xqW4MCiQFvDCJpTIiNrs1h39gT2yV8/PvSoQh6Zre+t TAqJeTgwSNIt4ELZUO2cSQo2PNrSw9u8tbUZS+yYq8L1JC28S5oItyAxtdvNY1YV fgRcnJNFU0MFD6EvqoMUf1l5DQdJvW+LI+6Y2620+r2vPcKpHT/gTTyBFWsHy2/1 bCA0PWj61taXk+A0amBQMfHzaEpN8wd0fC6SmtczAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9D0tiO7jE+ZSTx6BjQWv+ntowzUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg2YjAzZmVlLTJhNmYtNGM0NC1iY2JkLTdlNTliY2NmMTU5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADCAwDQYJKoZIhvcNAQELBQADggEBAJshLR3Fndsl2cBBc0j6V70k bXR0h1QZTdSgTkt0ivpJGpsoGnjBOtTLh6KFQ/03ab/Mwoun9sUmQQVpaTU8S/05 cYZQ8l6TFbO1FycnKv8w7cGPvQnCybL34iNQPe5CbsTbLfk+jITkaWGVCOH3QdSV M6MXgPsEdWYId9Z6riDL7xfK+m2SIdxt5dZZALH/euoYDFhJc/mVX8OuxiveTWGA Z3gHiW30vD7Koe/Pbn1qB03iq+nDmcD1L591wNs3VPIPU5W2yTW+c5sJHpUxIuHF l37iMHgVn4xdyDdwjSDRxAojBrRDrc5rpF4p2X4UiuNwXt7WrxXsA3pPwBkUWfk= -----END CERTIFICATE-----Generated at Sat Aug 23 18:46:41 2025 by rpki-client