$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d50b4be5-b548-4743-92e1-1e17267f722d.roa File: d50b4be5-b548-4743-92e1-1e17267f722d.roa (raw, json) Hash identifier: JG8RE/W/YYmWuVbHhi87WBABuF1l+Ggb5qt28Ow0Tnc= Subject key identifier: 49:C0:FE:6D:BF:35:37:9C:EF:3B:B5:79:17:79:1B:D7:9D:54:F9:2C Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4BC736B96BD7335347CA982C6567083F0FE43D5F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d50b4be5-b548-4743-92e1-1e17267f722d.roa Signing time: Fri 26 Sep 2025 17:52:13 +0000 ROA not before: Fri 26 Sep 2025 17:52:13 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:548::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:c7:36:b9:6b:d7:33:53:47:ca:98:2c:65:67:08:3f:0f:e4:3d:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 26 17:52:13 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=2d862f56cb963159225f8415c6ef0c6812915f4486667489e9932a21efcd8ca4, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1e:f9:48:16:d0:24:38:d3:28:47:2e:fc:46: d9:ad:fc:30:45:d8:1d:0c:1d:a1:29:a6:13:bf:de: 2d:14:06:13:51:1b:13:fa:8a:60:62:8d:03:50:5b: 54:9c:4f:95:67:39:9d:1a:b1:f2:11:13:05:6a:bd: d0:57:37:7e:8c:98:4a:cc:0d:8f:d2:84:78:c9:94: 05:c7:aa:7c:41:b5:8c:5b:5e:6e:28:50:50:9c:ce: 2f:3e:4d:21:23:9d:56:31:44:c2:49:59:72:e1:b2: 72:48:e0:00:1b:22:b1:e8:2c:46:16:8d:47:d4:d8: 7e:51:09:2c:d5:a2:d5:f0:f4:74:07:7c:c6:dd:22: fc:bc:65:e0:9c:00:0a:17:2f:7d:69:50:bb:fe:58: c1:df:44:11:9f:eb:63:8e:4b:e7:90:00:b7:a0:20: b3:02:86:3b:87:36:93:88:a5:66:bb:26:df:7f:36: 34:dd:45:0e:56:59:59:b3:05:c7:9a:9a:5c:f4:85: 91:f5:cf:1d:9b:4f:3b:f9:1a:00:09:a6:b8:4c:f1: e7:c8:77:95:c9:14:41:4f:62:6f:4e:96:9b:12:68: 16:67:5d:e7:8c:86:05:6a:6d:b3:d3:5a:19:44:fc: ae:48:6f:ba:b2:41:3b:41:f7:9f:05:71:a4:db:c8: 1f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C0:FE:6D:BF:35:37:9C:EF:3B:B5:79:17:79:1B:D7:9D:54:F9:2C X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d50b4be5-b548-4743-92e1-1e17267f722d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:548::/48 Signature Algorithm: sha256WithRSAEncryption a8:9a:f7:c0:ea:0d:0a:c1:ea:d1:57:cc:ec:92:42:46:ec:78: 5d:00:13:6b:1f:2b:be:46:a6:f9:de:c0:93:fa:e0:42:57:c5: 0c:60:2b:b4:38:9b:c3:7b:99:53:d9:ba:52:e1:fa:86:23:43: 60:44:55:fb:c9:4e:8f:c7:f5:57:c4:ef:b3:5c:0c:2e:e6:12: 7d:4d:71:8a:4f:99:21:f1:3d:4b:9f:25:0f:d9:bb:b5:8c:e6: 10:b5:2d:97:81:ac:b5:cc:4d:a1:18:2a:a7:b8:9c:3e:b5:89: 9e:bb:d7:1d:f2:a4:91:0e:8f:c5:a2:eb:af:e3:ed:8f:4d:8f: ee:dd:30:ca:8b:a1:65:23:5d:4a:e8:f2:4c:7d:b2:bb:c9:4b: 51:72:9e:a9:80:61:d1:49:a2:30:07:0e:8b:05:ba:57:bd:3b: 59:91:d7:5a:0d:30:31:e3:8d:4a:24:55:96:f1:0d:35:0f:ea: 45:36:14:ae:6c:af:a5:dc:ca:ea:f3:6e:4b:40:e8:6e:b6:b9: 1c:40:5d:0d:24:1b:4f:71:61:04:cd:76:cc:ae:f6:53:09:bf: 3b:c7:18:3d:81:ad:cc:85:20:62:c9:6a:2a:95:e8:42:09:c3: c3:33:a8:b1:06:80:65:8b:16:c9:3a:34:e4:54:f6:7a:4f:2e: b1:20:2d:f3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS8c2uWvXM1NHypgsZWcIPw/kPV8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTI2MTc1MjEzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDg2MmY1NmNiOTYzMTU5MjI1Zjg0MTVjNmVmMGM2ODEy OTE1ZjQ0ODY2Njc0ODllOTkzMmEyMWVmY2Q4Y2E0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0HvlIFtAkONMoRy78Rtmt/DBF2B0MHaEpphO/3i0UBhNR GxP6imBijQNQW1ScT5VnOZ0asfIREwVqvdBXN36MmErMDY/ShHjJlAXHqnxBtYxb Xm4oUFCczi8+TSEjnVYxRMJJWXLhsnJI4AAbIrHoLEYWjUfU2H5RCSzVotXw9HQH fMbdIvy8ZeCcAAoXL31pULv+WMHfRBGf62OOS+eQALegILMChjuHNpOIpWa7Jt9/ NjTdRQ5WWVmzBceamlz0hZH1zx2bTzv5GgAJprhM8efId5XJFEFPYm9OlpsSaBZn XeeMhgVqbbPTWhlE/K5Ib7qyQTtB958FcaTbyB+vAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUScD+bb81N5zvO7V5F3kb151U+SwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q1MGI0YmU1LWI1NDgtNDc0My05MmUxLTFlMTcyNjdmNzIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUgwDQYJKoZIhvcNAQELBQADggEBAKia98DqDQrB6tFXzOySQkbs eF0AE2sfK75GpvnewJP64EJXxQxgK7Q4m8N7mVPZulLh+oYjQ2BEVfvJTo/H9VfE 77NcDC7mEn1NcYpPmSHxPUufJQ/Zu7WM5hC1LZeBrLXMTaEYKqe4nD61iZ671x3y pJEOj8Wi66/j7Y9Nj+7dMMqLoWUjXUro8kx9srvJS1FynqmAYdFJojAHDosFule9 O1mR11oNMDHjjUokVZbxDTUP6kU2FK5sr6XcyurzbktA6G62uRxAXQ0kG09xYQTN dsyu9lMJvzvHGD2BrcyFIGLJaiqV6EIJw8MzqLEGgGWLFsk6NORU9npPLrEgLfM= -----END CERTIFICATE-----Generated at Mon Oct 20 07:38:12 2025 by rpki-client