$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d50b4be5-b548-4743-92e1-1e17267f722d.roa File: d50b4be5-b548-4743-92e1-1e17267f722d.roa (raw, json) Hash identifier: 2eLGw3J6mlAFutT/LdH387Rjgj3dJtC7yuYwyxSGTXs= Subject key identifier: C4:27:EE:55:58:29:06:99:93:84:8F:DF:78:19:A9:D2:C8:A4:B5:1A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3BFCEE8FBA111D937F55FCD72A528B14B47CC5E8 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d50b4be5-b548-4743-92e1-1e17267f722d.roa Signing time: Tue 05 Aug 2025 18:10:24 +0000 ROA not before: Tue 05 Aug 2025 18:10:24 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:548::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:fc:ee:8f:ba:11:1d:93:7f:55:fc:d7:2a:52:8b:14:b4:7c:c5:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 5 18:10:24 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=0efd1f2e7fa69e40e6b4b3cf0bc9abce7e765ddedf39f66d31b98c4c5716bd8b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f8:ff:b6:55:7b:e7:37:a0:e8:44:fc:79:b4: 3d:15:d2:ce:e9:61:76:50:ce:10:d4:3f:f9:8e:87: 32:03:1b:ac:95:f8:e3:28:54:82:8f:36:05:09:26: 9b:a8:10:c9:17:f3:53:38:55:83:92:a2:67:23:49: ee:b5:48:46:d3:ab:5e:68:88:01:b8:50:e4:96:69: c2:5e:db:9b:c5:38:78:88:e8:f3:cd:6c:80:6e:94: 0c:e2:34:9d:2e:56:5a:6c:6e:b6:f7:72:a3:71:86: 80:b1:e3:68:7d:69:8e:04:1e:20:83:76:68:40:49: ec:e2:2d:f0:72:f2:63:04:3f:6b:ad:3b:f9:80:9e: 60:c2:9c:34:ef:ee:8e:06:47:2d:f1:c5:93:f4:d0: e4:31:c4:4c:7d:e0:cb:20:08:7d:81:97:82:8d:65: ae:41:66:11:e1:f5:f4:31:f0:f4:26:32:7f:98:ca: 0b:bb:2a:20:5c:6b:88:ca:70:bb:35:fd:d4:ca:60: 6b:5d:fc:47:69:1a:9a:05:53:1e:70:0c:c7:c1:b3: 5a:dd:25:7e:bf:06:7e:62:f6:84:bc:f6:1e:c6:06: 00:6e:6e:e0:6f:1f:63:f9:a2:24:36:54:2b:82:fb: e9:e0:5c:38:eb:c5:f0:4c:6c:be:79:8e:38:3a:f0: 8b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:27:EE:55:58:29:06:99:93:84:8F:DF:78:19:A9:D2:C8:A4:B5:1A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d50b4be5-b548-4743-92e1-1e17267f722d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:548::/48 Signature Algorithm: sha256WithRSAEncryption 4e:47:13:8c:fe:d4:bb:e5:1d:fb:ff:b1:ad:81:4c:a3:5c:2f: a3:d0:9d:a3:4e:6f:f3:53:12:d9:62:07:b7:8c:a8:19:c5:1b: c9:b0:99:f5:f2:06:60:06:74:a0:55:69:d5:50:2f:65:f1:6b: f1:cc:3d:35:5e:32:c7:e7:63:94:49:7d:62:c6:5a:e5:15:5c: 21:8c:00:d5:74:2c:42:f0:be:b1:58:98:a0:90:2a:ce:90:1a: 55:0b:48:b1:b6:98:ec:91:e8:64:22:8f:37:16:68:ea:4c:08: a8:53:b6:8a:5d:78:3d:b5:6c:a0:bf:81:a5:14:5a:5b:26:82: 5f:14:27:ec:5f:59:2d:5e:0b:dc:3c:6b:87:66:3b:7f:2f:00: fd:d5:a3:8d:d4:fd:e1:c9:f5:89:d7:a6:c7:ba:60:a0:60:82: c2:47:d5:fc:8f:a2:c0:d2:2c:43:79:33:22:18:c8:6f:2c:47: 3b:13:3d:fb:31:21:7f:0a:e0:a6:f9:64:88:6b:1b:52:89:88: 91:b6:be:76:a9:83:f7:51:c1:a4:d8:b5:c3:79:89:2c:e5:94: 8f:9e:9f:3c:68:54:92:9e:60:2d:3e:d8:0c:86:63:ed:67:55: 67:a2:cc:1e:95:9f:b8:ac:38:df:3c:66:ba:b1:87:8c:13:4d: a7:f0:27:14 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO/zuj7oRHZN/VfzXKlKLFLR8xegwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODA1MTgxMDI0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWZkMWYyZTdmYTY5ZTQwZTZiNGIzY2YwYmM5YWJjZTdl NzY1ZGRlZGYzOWY2NmQzMWI5OGM0YzU3MTZiZDhiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8+P+2VXvnN6DoRPx5tD0V0s7pYXZQzhDUP/mOhzIDG6yV +OMoVIKPNgUJJpuoEMkX81M4VYOSomcjSe61SEbTq15oiAG4UOSWacJe25vFOHiI 6PPNbIBulAziNJ0uVlpsbrb3cqNxhoCx42h9aY4EHiCDdmhASeziLfBy8mMEP2ut O/mAnmDCnDTv7o4GRy3xxZP00OQxxEx94MsgCH2Bl4KNZa5BZhHh9fQx8PQmMn+Y ygu7KiBca4jKcLs1/dTKYGtd/EdpGpoFUx5wDMfBs1rdJX6/Bn5i9oS89h7GBgBu buBvH2P5oiQ2VCuC++ngXDjrxfBMbL55jjg68IvBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxCfuVVgpBpmThI/feBmp0siktRowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q1MGI0YmU1LWI1NDgtNDc0My05MmUxLTFlMTcyNjdmNzIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUgwDQYJKoZIhvcNAQELBQADggEBAE5HE4z+1LvlHfv/sa2BTKNc L6PQnaNOb/NTEtliB7eMqBnFG8mwmfXyBmAGdKBVadVQL2Xxa/HMPTVeMsfnY5RJ fWLGWuUVXCGMANV0LELwvrFYmKCQKs6QGlULSLG2mOyR6GQijzcWaOpMCKhTtopd eD21bKC/gaUUWlsmgl8UJ+xfWS1eC9w8a4dmO38vAP3Vo43U/eHJ9YnXpse6YKBg gsJH1fyPosDSLEN5MyIYyG8sRzsTPfsxIX8K4Kb5ZIhrG1KJiJG2vnapg/dRwaTY tcN5iSzllI+enzxoVJKeYC0+2AyGY+1nVWeizB6Vn7isON88Zrqxh4wTTafwJxQ= -----END CERTIFICATE-----Generated at Sat Aug 23 18:46:29 2025 by rpki-client