$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b2526bb0-8744-452b-897e-b0ce9626682b.roa File: b2526bb0-8744-452b-897e-b0ce9626682b.roa (raw, json) Hash identifier: /WJVcAU/JrFMdHQxbnOwYF4CW7evOL5/07HvTupd8Ao= Subject key identifier: 59:31:43:02:9C:CF:45:33:8C:4E:1F:D4:5B:38:89:B2:5E:BB:DE:A2 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5E76B9E337BE5DDF2E05D7BC06C52FF31A2D0091 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b2526bb0-8744-452b-897e-b0ce9626682b.roa Signing time: Fri 15 Aug 2025 15:21:40 +0000 ROA not before: Fri 15 Aug 2025 15:21:40 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:76:b9:e3:37:be:5d:df:2e:05:d7:bc:06:c5:2f:f3:1a:2d:00:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:21:40 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=0b04d9b34fa512bf5c4eb5e30289eb0018e4d5c01b739ca2b1049e57c763bda5, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c5:51:e4:3b:02:36:12:89:73:6d:0f:11:72: 09:59:f0:0f:b3:c6:b0:73:4b:33:d9:0a:d1:68:d0: a3:ec:2d:dc:ad:85:dd:2c:ea:93:41:1f:a8:b5:e7: d0:40:75:62:19:f7:33:b6:22:5b:a3:3a:b0:fa:0d: 53:7d:a9:60:fd:9d:f6:a7:c7:63:aa:4a:19:69:88: 81:ba:96:76:ca:3c:8d:e6:61:74:34:f1:54:dc:45: 27:7a:32:9f:a4:7c:30:85:e0:c3:75:bd:4e:fa:a3: ef:63:90:e9:4d:de:7d:ca:88:f8:00:04:14:bf:ad: ae:88:63:eb:50:a5:9f:92:27:bb:ee:0d:80:8a:64: 4c:e4:38:da:67:06:20:ad:30:db:32:43:40:a7:94: d6:1e:47:e0:ca:00:7e:16:29:ad:64:7a:21:d1:fe: 9d:f6:a7:ab:87:71:67:0d:26:8d:c6:cf:3d:0d:91: 89:f1:d9:97:3f:86:e7:ef:62:31:94:bc:57:04:a3: 82:07:d2:d0:42:5f:c5:19:c8:df:4a:7c:a8:04:53: 00:e9:13:ba:f7:06:4a:a1:36:10:23:42:4f:bf:db: 47:e5:6b:7c:57:19:a1:f1:2c:24:56:ee:e9:ad:bb: ab:29:f6:bf:30:98:91:52:ee:17:ae:04:31:a1:bb: 87:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:31:43:02:9C:CF:45:33:8C:4E:1F:D4:5B:38:89:B2:5E:BB:DE:A2 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b2526bb0-8744-452b-897e-b0ce9626682b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c11::/48 Signature Algorithm: sha256WithRSAEncryption 86:50:2b:95:2c:c1:8c:bc:ec:25:fe:81:b3:dd:09:53:23:31: 48:84:19:ff:bb:39:e9:26:9d:6d:7c:d5:04:fc:68:60:72:97: cb:b1:67:e7:b3:6d:2d:c6:6b:80:55:76:dd:3d:5a:2e:23:b4: 0a:d2:7b:f7:a3:ff:3d:c3:c6:41:fa:dc:67:ed:de:29:81:2f: d4:ba:d1:1d:ac:e8:91:82:d9:f1:13:9d:76:2b:66:03:95:e4: 8b:da:57:3d:e1:2e:22:6e:1c:10:02:f7:f3:6a:37:cd:d4:85: 8c:2e:ac:59:f7:ed:0e:e3:05:ab:dd:15:f5:62:36:0b:52:70: 0b:a4:20:5e:56:fb:49:53:f8:b1:ee:df:1c:4f:d1:be:74:01: ba:fa:d4:4d:7c:fd:fc:e6:d4:bb:69:45:a9:7f:0d:da:86:b4: 93:0e:09:c9:de:ae:40:31:b2:08:eb:53:3c:03:05:92:3e:dc: 27:99:78:67:67:03:94:9a:1b:2a:eb:fd:8b:82:79:9f:90:7b: ab:18:0d:83:09:ec:39:03:54:b3:c4:e0:1c:a0:25:dc:39:bb: c7:73:c3:a6:5d:0f:6d:19:68:17:35:d6:e3:74:f2:22:e2:63: da:2d:47:1b:e6:62:52:cd:c8:3a:45:83:04:e4:aa:4a:ef:82: 3a:df:9b:02 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXna54ze+Xd8uBde8BsUv8xotAJEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUyMTQwWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjA0ZDliMzRmYTUxMmJmNWM0ZWI1ZTMwMjg5ZWIwMDE4 ZTRkNWMwMWI3MzljYTJiMTA0OWU1N2M3NjNiZGE1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3xVHkOwI2EolzbQ8RcglZ8A+zxrBzSzPZCtFo0KPsLdyt hd0s6pNBH6i159BAdWIZ9zO2IlujOrD6DVN9qWD9nfanx2OqShlpiIG6lnbKPI3m YXQ08VTcRSd6Mp+kfDCF4MN1vU76o+9jkOlN3n3KiPgABBS/ra6IY+tQpZ+SJ7vu DYCKZEzkONpnBiCtMNsyQ0CnlNYeR+DKAH4WKa1keiHR/p32p6uHcWcNJo3Gzz0N kYnx2Zc/hufvYjGUvFcEo4IH0tBCX8UZyN9KfKgEUwDpE7r3BkqhNhAjQk+/20fl a3xXGaHxLCRW7umtu6sp9r8wmJFS7heuBDGhu4e3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWTFDApzPRTOMTh/UWziJsl673qIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IyNTI2YmIwLTg3NDQtNDUyYi04OTdlLWIwY2U5NjI2NjgyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBEwDQYJKoZIhvcNAQELBQADggEBAIZQK5UswYy87CX+gbPdCVMj MUiEGf+7OekmnW181QT8aGByl8uxZ+ezbS3Ga4BVdt09Wi4jtArSe/ej/z3DxkH6 3Gft3imBL9S60R2s6JGC2fETnXYrZgOV5IvaVz3hLiJuHBAC9/NqN83UhYwurFn3 7Q7jBavdFfViNgtScAukIF5W+0lT+LHu3xxP0b50Abr61E18/fzm1LtpRal/DdqG tJMOCcnerkAxsgjrUzwDBZI+3CeZeGdnA5SaGyrr/YuCeZ+Qe6sYDYMJ7DkDVLPE 4BygJdw5u8dzw6ZdD20ZaBc11uN08iLiY9otRxvmYlLNyDpFgwTkqkrvgjrfmwI= -----END CERTIFICATE-----Generated at Sat Aug 23 14:47:58 2025 by rpki-client