$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bc64ede4-78eb-4056-81e0-5a953a42ee96.roa File: bc64ede4-78eb-4056-81e0-5a953a42ee96.roa (raw, json) Hash identifier: RyIA+nR2IDbS31sToHIyKqVJQM2Ud2ysF1uw/gCwQ3k= Subject key identifier: 90:F7:22:DC:AE:DF:98:48:3B:D4:5F:E4:F3:1B:F8:ED:10:A8:9A:9F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 066A55EFF7903DA7D68E2195AF93F28166429495 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bc64ede4-78eb-4056-81e0-5a953a42ee96.roa Signing time: Fri 15 Aug 2025 15:00:16 +0000 ROA not before: Fri 15 Aug 2025 15:00:16 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:6a:55:ef:f7:90:3d:a7:d6:8e:21:95:af:93:f2:81:66:42:94:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:00:16 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=5af6bac9b741a4fa46890d4ea84cc664b6e6aeee0299a1b9885705cb918933f9, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:60:55:0c:5d:4d:1f:93:cd:93:43:11:d3:71: 83:5f:83:ba:6f:55:86:85:69:ec:b4:0f:6f:cd:50: 62:3b:6c:92:65:ef:49:a9:b1:89:9d:d7:34:ee:2a: 3c:d2:71:45:33:93:ad:df:08:2b:8f:d0:ae:68:cb: 52:c0:64:40:ad:c1:3d:9e:bf:cf:0b:e7:72:91:a7: 40:84:c1:3a:92:3e:01:61:fc:d6:32:13:b3:93:43: 72:12:47:f1:a2:4a:0c:c3:eb:85:45:fd:9b:b2:ca: 53:c5:cc:a4:a2:57:1e:0c:41:37:a9:30:a8:75:24: f9:f6:ee:44:4b:05:8d:04:9d:31:f2:c8:14:81:8a: 5c:b9:64:33:13:a3:fd:d2:17:29:15:1c:2f:71:30: 6c:d7:4a:66:93:f3:bb:a3:35:f6:1c:b9:d0:80:b2: a1:ae:4b:75:9f:a1:7e:cb:3f:c7:5d:2b:7e:35:e7: 10:b3:bf:33:c4:f6:3f:3c:c6:32:36:ac:f9:e9:9c: 9c:2c:9e:29:29:db:de:7d:18:65:f8:ab:5d:12:ec: be:e7:12:c9:3b:f5:f4:2d:be:09:b7:5a:29:2f:f4: 24:c0:af:c5:3b:2c:f7:e3:c0:f5:78:f9:7e:6e:90: d0:b7:9f:84:62:e7:74:7d:9e:85:55:5b:ae:2d:78: e1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F7:22:DC:AE:DF:98:48:3B:D4:5F:E4:F3:1B:F8:ED:10:A8:9A:9F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bc64ede4-78eb-4056-81e0-5a953a42ee96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 57:1c:d7:4e:05:ff:bc:fd:15:16:fb:85:46:33:71:b9:5e:cb: 4f:d3:c4:74:d4:2d:d2:34:c7:11:1e:ac:b7:6a:ba:48:08:90: a9:df:68:61:28:44:04:3b:6d:68:46:66:8b:38:45:38:57:98: 0d:27:99:d7:b4:5c:8c:22:3b:48:fc:17:c0:2b:51:7d:ff:bc: a0:a1:cf:41:b7:94:47:2b:f2:7d:05:e2:b5:66:78:fe:5c:f7: f7:ff:93:87:68:11:41:48:e0:9c:18:c2:f0:45:7c:a8:38:75: d5:ea:66:b1:c9:c9:f6:65:b6:b1:c7:f2:0b:88:ad:83:61:d4: b1:76:2e:ff:cd:7e:ec:e3:da:51:8f:f5:d1:e1:de:43:24:46: 82:8a:8a:ff:78:19:ae:39:e7:89:d6:54:3a:d3:26:5c:5c:82: 3d:df:6c:56:02:71:7d:78:99:1c:9a:4c:4f:57:f8:bf:87:c8: 38:a6:76:9d:e0:85:8e:37:f7:c7:f6:aa:4e:54:79:aa:fe:b7: 26:7c:2a:b9:c3:07:d3:2c:e3:17:7a:e9:c4:2e:c2:1f:e5:be: 93:86:81:85:bb:e2:2d:33:8c:62:ee:b8:54:16:53:a8:f5:25: 4c:2d:ce:8c:dc:77:32:46:19:f8:3c:b2:21:ab:e4:17:96:df: da:ac:c2:3c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBmpV7/eQPafWjiGVr5PygWZClJUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUwMDE2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWY2YmFjOWI3NDFhNGZhNDY4OTBkNGVhODRjYzY2NGI2 ZTZhZWVlMDI5OWExYjk4ODU3MDVjYjkxODkzM2Y5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJYFUMXU0fk82TQxHTcYNfg7pvVYaFaey0D2/NUGI7bJJl 70mpsYmd1zTuKjzScUUzk63fCCuP0K5oy1LAZECtwT2ev88L53KRp0CEwTqSPgFh /NYyE7OTQ3ISR/GiSgzD64VF/ZuyylPFzKSiVx4MQTepMKh1JPn27kRLBY0EnTHy yBSBily5ZDMTo/3SFykVHC9xMGzXSmaT87ujNfYcudCAsqGuS3WfoX7LP8ddK341 5xCzvzPE9j88xjI2rPnpnJwsnikp2959GGX4q10S7L7nEsk79fQtvgm3Wikv9CTA r8U7LPfjwPV4+X5ukNC3n4Ri53R9noVVW64teOEPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkPci3K7fmEg71F/k8xv47RComp8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JjNjRlZGU0LTc4ZWItNDA1Ni04MWUwLTVhOTUzYTQyZWU5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBAFcc104F/7z9FRb7hUYzcble y0/TxHTULdI0xxEerLdqukgIkKnfaGEoRAQ7bWhGZos4RThXmA0nmde0XIwiO0j8 F8ArUX3/vKChz0G3lEcr8n0F4rVmeP5c9/f/k4doEUFI4JwYwvBFfKg4ddXqZrHJ yfZltrHH8guIrYNh1LF2Lv/Nfuzj2lGP9dHh3kMkRoKKiv94Ga4554nWVDrTJlxc gj3fbFYCcX14mRyaTE9X+L+HyDimdp3ghY4398f2qk5Uear+tyZ8KrnDB9Ms4xd6 6cQuwh/lvpOGgYW74i0zjGLuuFQWU6j1JUwtzozcdzJGGfg8siGr5BeW39qswjw= -----END CERTIFICATE-----Generated at Sat Aug 23 15:02:10 2025 by rpki-client