$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: AuB6vvb1ioetz0iXv09SeBYXvGk4ib5sJOu8p7SbeWc= Subject key identifier: FF:79:75:AF:2A:B5:1D:94:B6:DB:03:75:1A:DD:F0:90:AE:5E:F1:69 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2379008C30E8768E7EECF7391801716E4A86824A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Wed 06 Aug 2025 00:40:22 +0000 ROA not before: Wed 06 Aug 2025 00:40:22 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:79:00:8c:30:e8:76:8e:7e:ec:f7:39:18:01:71:6e:4a:86:82:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 6 00:40:22 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=4ed58f139bf0cc265ced98ad244ff3ebb0e467ff4b430ce2519626386e8b167a, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8e:02:60:b4:da:f8:b0:ea:4c:ff:d3:2b:20: d2:af:d7:dd:ad:45:52:9b:ef:ed:43:64:63:5c:e8: 00:26:9d:ed:99:a3:35:53:94:40:86:3a:19:e3:75: 9a:07:31:a7:81:59:f2:77:b3:f0:94:71:b2:eb:b7: 50:e7:9f:c6:a4:78:c8:83:fe:47:af:96:20:a7:55: ce:d9:ac:03:8b:60:cc:bc:a8:d3:eb:19:2f:0d:60: 73:ec:82:7f:ba:76:d6:c7:fb:6e:cb:e9:de:e4:67: fd:b0:64:ac:6d:4e:e3:25:cb:e4:08:ab:f6:98:af: 40:6f:12:d3:20:d4:32:6b:58:97:c4:8a:f3:40:37: 91:1e:df:3b:f1:d7:d9:c7:57:ea:0a:3b:88:38:05: 32:38:80:62:bf:a9:e9:39:47:6d:c4:c8:db:58:07: 56:b7:73:59:f4:9c:33:28:65:26:89:c9:e7:d4:64: 7a:c0:6f:ee:d4:fe:ef:85:a0:a1:aa:22:dc:aa:50: f3:8f:f5:be:99:90:6d:26:8b:9d:72:63:ea:39:8d: 49:cf:d7:d4:14:bb:c4:24:ff:d4:d8:52:fa:11:e9: 54:f0:5b:5e:2d:c1:01:b1:c2:b2:b4:05:e7:5d:4c: ad:c8:97:0a:66:3f:cb:fd:1a:d7:8c:64:54:13:03: 84:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:79:75:AF:2A:B5:1D:94:B6:DB:03:75:1A:DD:F0:90:AE:5E:F1:69 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 12:2b:1e:42:45:0c:61:4b:ee:11:4c:a6:a1:c1:02:d2:bf:dc: 21:ff:f1:a4:72:8c:3b:1d:e9:75:55:83:a7:48:83:e0:32:7d: 33:40:1d:1e:80:37:5a:49:81:86:84:60:96:f6:cf:1b:9f:87: 40:8f:da:42:89:8d:c2:a4:86:09:85:51:c3:38:fd:f3:67:32: 0e:06:13:9a:46:62:ce:99:cf:c6:4f:80:13:3a:b3:a9:19:1f: 1c:75:41:22:47:01:6c:e2:f4:be:ca:c5:61:f5:6e:03:a2:b5: e8:aa:14:4f:f1:99:a2:d3:b5:53:08:66:77:ef:58:2e:07:ae: 77:67:cb:ae:50:cb:1a:86:2e:10:d6:21:08:e1:4b:df:5b:db: e2:4e:f1:23:e6:f0:1c:de:20:0d:84:fa:19:a6:ee:27:06:a7: fa:f0:02:19:7e:24:44:14:3e:61:a5:44:6e:52:92:ff:84:89: 90:d3:a4:b9:e3:01:f9:c9:2b:8d:1d:f8:57:52:f1:3e:bb:dc: 6b:92:d6:38:8f:15:02:1d:2e:75:76:dc:e0:c7:01:94:11:b0: 6f:a5:7f:a0:7f:2d:93:05:ae:b0:47:d3:bd:bb:2b:0b:5e:9f: 6c:78:5b:d5:90:81:88:6d:f2:42:ee:7b:9b:88:8e:28:a7:9a: 5b:18:e2:de -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI3kAjDDodo5+7Pc5GAFxbkqGgkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODA2MDA0MDIyWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZWQ1OGYxMzliZjBjYzI2NWNlZDk4YWQyNDRmZjNlYmIw ZTQ2N2ZmNGI0MzBjZTI1MTk2MjYzODZlOGIxNjdhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4jgJgtNr4sOpM/9MrINKv192tRVKb7+1DZGNc6AAmne2Z ozVTlECGOhnjdZoHMaeBWfJ3s/CUcbLrt1Dnn8akeMiD/kevliCnVc7ZrAOLYMy8 qNPrGS8NYHPsgn+6dtbH+27L6d7kZ/2wZKxtTuMly+QIq/aYr0BvEtMg1DJrWJfE ivNAN5Ee3zvx19nHV+oKO4g4BTI4gGK/qek5R23EyNtYB1a3c1n0nDMoZSaJyefU ZHrAb+7U/u+FoKGqItyqUPOP9b6ZkG0mi51yY+o5jUnP19QUu8Qk/9TYUvoR6VTw W14twQGxwrK0BeddTK3IlwpmP8v9GteMZFQTA4QhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/3l1ryq1HZS22wN1Gt3wkK5e8WkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBABIrHkJFDGFL7hFMpqHBAtK/ 3CH/8aRyjDsd6XVVg6dIg+AyfTNAHR6AN1pJgYaEYJb2zxufh0CP2kKJjcKkhgmF UcM4/fNnMg4GE5pGYs6Zz8ZPgBM6s6kZHxx1QSJHAWzi9L7KxWH1bgOiteiqFE/x maLTtVMIZnfvWC4Hrndny65QyxqGLhDWIQjhS99b2+JO8SPm8BzeIA2E+hmm7icG p/rwAhl+JEQUPmGlRG5Skv+EiZDTpLnjAfnJK40d+FdS8T673GuS1jiPFQIdLnV2 3ODHAZQRsG+lf6B/LZMFrrBH0727Kwten2x4W9WQgYht8kLue5uIjiinmlsY4t4= -----END CERTIFICATE-----Generated at Sat Aug 23 14:41:16 2025 by rpki-client