$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ae85743c-c855-42b4-95ab-e8e4d2087c99.roa File: ae85743c-c855-42b4-95ab-e8e4d2087c99.roa (raw, json) Hash identifier: hfgniaUoD3YDKro3O48nmUF0CAyUEF38BB03NvuBtTg= Subject key identifier: DC:44:6D:2D:66:C5:05:CA:0C:D0:CD:47:DA:21:ED:B6:A5:5B:5C:C2 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 384E4A57E46B61C4F1BD8AFD21C130C20D8C5C3C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ae85743c-c855-42b4-95ab-e8e4d2087c99.roa Signing time: Fri 15 Aug 2025 15:11:25 +0000 ROA not before: Fri 15 Aug 2025 15:11:25 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:c0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:4e:4a:57:e4:6b:61:c4:f1:bd:8a:fd:21:c1:30:c2:0d:8c:5c:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:11:25 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=d74af75d9d89b1dd372ac31d22f9264d85207fef49a33b6e93809530b7aa70ad, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:11:9a:b9:56:07:eb:20:11:77:6a:1a:6d:1d: 0e:d7:3e:52:a4:78:ef:cf:36:e1:48:21:09:f3:aa: 8b:9b:fe:55:bd:c0:6a:af:4d:8c:9e:e8:75:b0:8e: f1:9a:f8:97:60:32:ff:af:25:91:33:a3:12:1c:df: c6:bd:2a:59:4a:e5:38:1a:ae:d2:12:22:3d:38:80: 87:16:13:e0:17:e9:c4:e7:fb:42:d3:a9:d4:2d:a2: 27:d3:60:4b:2e:a4:16:13:84:ae:10:86:9c:90:07: 1b:9c:66:58:ae:3e:b6:66:a6:54:01:e8:25:69:a8: 8c:20:3f:0b:d4:7b:df:76:d6:74:f5:a3:89:f2:1c: ab:f1:da:02:64:65:f4:aa:60:33:ac:0b:ae:d7:f0: 0a:3f:2b:8c:29:c5:8b:3b:63:72:59:b7:b3:53:2b: 99:dc:ff:bc:95:41:f9:c1:bc:7c:ab:1f:72:94:a2: bd:a7:39:b7:3a:ce:d5:0e:f6:0a:fd:72:91:86:d5: 97:df:8b:43:e8:ae:25:d0:84:35:16:63:57:01:6b: 37:20:16:f9:2c:29:f8:b0:1e:bb:00:b7:07:fa:9e: 61:c8:6f:92:36:9c:cc:f4:6c:3c:4a:66:59:53:bf: 4b:45:8e:90:c9:83:8a:4d:10:2b:af:32:ce:39:a4: 4d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:44:6D:2D:66:C5:05:CA:0C:D0:CD:47:DA:21:ED:B6:A5:5B:5C:C2 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ae85743c-c855-42b4-95ab-e8e4d2087c99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0d::/48 Signature Algorithm: sha256WithRSAEncryption 55:78:68:90:6f:76:ed:87:8a:56:f0:81:19:bc:31:6e:5f:fd: 53:0d:e1:89:9e:17:ed:e8:ec:50:df:62:a7:a3:94:6d:df:36: d3:c2:a7:7f:76:aa:6c:d9:8e:71:5f:e1:4d:13:16:7a:bc:cd: 84:91:21:a6:42:f0:40:87:91:ba:b7:24:9d:7d:83:5b:e1:e9: e2:d2:cb:d2:ab:be:0d:12:0a:b9:2b:6f:5e:c3:c5:f2:ba:94: 00:eb:a1:f8:36:cf:c4:80:d1:93:8d:bb:51:e6:f2:0b:19:bc: ef:dd:ff:58:79:5d:1d:bd:89:7e:c8:c6:5a:d2:01:d0:8a:67: 9c:56:58:f1:0e:cb:f3:cc:8d:20:91:25:dc:4b:41:2f:4c:e2: 8b:1f:47:e0:d6:88:e2:ab:7f:55:3f:66:e0:4e:59:80:a4:dc: 9a:1f:5e:19:47:52:08:3d:fd:e0:8b:c0:34:0f:ee:7a:54:6a: ea:d9:8f:0b:f1:6c:49:d4:78:1c:04:29:34:0a:22:af:49:0b: 5a:4c:79:01:79:2c:29:65:b7:73:da:b6:e0:f2:d5:f4:dd:4d: 27:eb:1b:31:0d:22:9e:36:4d:9c:51:cf:0b:77:5f:20:fe:a1: bd:8e:af:f7:c9:4e:46:68:59:d3:5a:23:0c:65:78:c3:08:0e: 62:e6:20:14 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOE5KV+RrYcTxvYr9IcEwwg2MXDwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUxMTI1WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzRhZjc1ZDlkODliMWRkMzcyYWMzMWQyMmY5MjY0ZDg1 MjA3ZmVmNDlhMzNiNmU5MzgwOTUzMGI3YWE3MGFkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjEZq5VgfrIBF3ahptHQ7XPlKkeO/PNuFIIQnzqoub/lW9 wGqvTYye6HWwjvGa+JdgMv+vJZEzoxIc38a9KllK5TgartISIj04gIcWE+AX6cTn +0LTqdQtoifTYEsupBYThK4QhpyQBxucZliuPrZmplQB6CVpqIwgPwvUe9921nT1 o4nyHKvx2gJkZfSqYDOsC67X8Ao/K4wpxYs7Y3JZt7NTK5nc/7yVQfnBvHyrH3KU or2nObc6ztUO9gr9cpGG1Zffi0PoriXQhDUWY1cBazcgFvksKfiwHrsAtwf6nmHI b5I2nMz0bDxKZllTv0tFjpDJg4pNECuvMs45pE0NAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3ERtLWbFBcoM0M1H2iHttqVbXMIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2FlODU3NDNjLWM4NTUtNDJiNC05NWFiLWU4ZTRkMjA4N2M5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA0wDQYJKoZIhvcNAQELBQADggEBAFV4aJBvdu2HilbwgRm8MW5f /VMN4YmeF+3o7FDfYqejlG3fNtPCp392qmzZjnFf4U0TFnq8zYSRIaZC8ECHkbq3 JJ19g1vh6eLSy9Krvg0SCrkrb17DxfK6lADrofg2z8SA0ZONu1Hm8gsZvO/d/1h5 XR29iX7IxlrSAdCKZ5xWWPEOy/PMjSCRJdxLQS9M4osfR+DWiOKrf1U/ZuBOWYCk 3JofXhlHUgg9/eCLwDQP7npUaurZjwvxbEnUeBwEKTQKIq9JC1pMeQF5LCllt3Pa tuDy1fTdTSfrGzENIp42TZxRzwt3XyD+ob2Or/fJTkZoWdNaIwxleMMIDmLmIBQ= -----END CERTIFICATE-----Generated at Sat Aug 23 18:58:24 2025 by rpki-client