$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d72d2560-59cf-4ae1-839d-b5b268c47831.roa File: d72d2560-59cf-4ae1-839d-b5b268c47831.roa (raw, json) Hash identifier: k325ndPf3i3tRkusTakflnWouWyPct2DYT0KbeKT8ss= Subject key identifier: 92:6E:31:EC:98:08:42:35:A4:F0:72:15:87:F1:C7:D3:E8:BD:A4:B6 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 25B677C14D166589A2D4CDB0CB8E26A4DDF5B4BE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d72d2560-59cf-4ae1-839d-b5b268c47831.roa Signing time: Fri 15 Aug 2025 15:21:13 +0000 ROA not before: Fri 15 Aug 2025 15:21:13 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:c17::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:b6:77:c1:4d:16:65:89:a2:d4:cd:b0:cb:8e:26:a4:dd:f5:b4:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:21:13 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=01b55694ec30c82fc2139d03b4a1b11c8706de2889f5b34be3b1c2190d34808c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:18:24:4d:13:c2:80:71:3a:00:08:c6:6b:cc: 19:d5:94:6f:5d:b7:ce:10:03:3e:56:f6:f0:b5:db: bb:cd:2a:a2:10:8a:41:1c:e7:ae:5f:6a:f5:3e:d2: d2:54:c0:1c:4d:7f:43:99:b0:00:2c:5f:a0:b8:7e: 22:64:5f:02:2c:58:71:09:d8:02:2d:a9:67:ca:22: 1e:ff:76:08:70:2b:b8:32:4b:f5:54:9b:40:9b:92: 3a:1e:19:57:75:ef:e6:01:bc:90:d8:83:b6:25:0b: e1:39:a5:2e:1a:76:b5:52:e5:d9:91:bb:6a:db:fd: 62:e8:e9:e6:53:d5:98:f2:70:db:03:6c:22:5c:79: a3:d6:f4:88:63:d6:20:90:66:1e:3d:b7:42:45:e4: 53:d7:79:28:e0:d7:7b:5a:c2:05:60:b1:fe:32:64: f9:6d:75:66:e6:d7:44:83:31:7c:f9:61:81:6e:11: b6:46:cf:40:ea:9f:40:35:bc:55:c4:41:7e:34:83: 8d:d6:f4:3a:7d:eb:2a:72:a3:0e:a0:45:78:11:21: 8b:4c:b5:7b:71:f2:d0:f2:64:15:0a:ad:af:e9:59: 62:55:4f:d7:f9:45:51:69:b4:c9:82:db:64:66:63: d3:fc:8d:26:78:d2:e8:37:0d:65:8b:46:81:fa:92: ec:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6E:31:EC:98:08:42:35:A4:F0:72:15:87:F1:C7:D3:E8:BD:A4:B6 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d72d2560-59cf-4ae1-839d-b5b268c47831.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c17::/48 Signature Algorithm: sha256WithRSAEncryption 6e:af:ee:cf:71:0e:15:0e:dd:cc:76:3d:d1:91:d7:f3:3b:bb: bf:a0:43:38:80:a9:fa:53:3f:54:90:ed:56:1a:9e:d2:b9:c3: d7:62:70:c3:9c:30:12:58:53:da:75:84:fc:fa:69:76:07:4e: 5f:1d:3d:2c:28:bb:c9:9e:2e:2b:42:93:2b:f7:dc:ab:6e:0e: 79:48:84:e3:c4:ce:41:03:8f:fa:8d:32:db:71:61:b8:b9:05: 9f:46:9b:8c:b6:dc:53:4e:cb:59:80:c7:72:ea:fc:07:de:73: 91:0c:21:4c:e3:b4:ce:53:5e:e4:6f:79:35:b3:f8:01:6e:77: e2:d4:88:21:67:15:58:d5:e2:f5:76:81:48:3f:f5:cc:88:73: af:7c:09:3b:60:e8:0b:ad:4a:b8:31:a3:98:99:70:07:f2:f7: 43:fb:6a:bf:e1:b8:ef:67:77:1c:f7:fc:84:83:b5:21:e8:65: 00:ba:41:d7:27:1e:4d:74:8e:35:a5:bb:03:85:4b:d8:15:16: 97:7e:27:86:c6:e5:ee:8d:88:84:da:72:0e:e8:16:cd:a6:50: 6d:18:74:13:07:09:36:77:2d:6b:a9:16:7a:18:aa:44:0a:82: 33:24:0c:9f:fb:2f:98:e4:5d:4c:1e:a5:6f:fa:13:52:46:dc: 90:c7:7e:42 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJbZ3wU0WZYmi1M2wy44mpN31tL4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUyMTEzWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMWI1NTY5NGVjMzBjODJmYzIxMzlkMDNiNGExYjExYzg3 MDZkZTI4ODlmNWIzNGJlM2IxYzIxOTBkMzQ4MDhjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeGCRNE8KAcToACMZrzBnVlG9dt84QAz5W9vC127vNKqIQ ikEc565favU+0tJUwBxNf0OZsAAsX6C4fiJkXwIsWHEJ2AItqWfKIh7/dghwK7gy S/VUm0CbkjoeGVd17+YBvJDYg7YlC+E5pS4adrVS5dmRu2rb/WLo6eZT1ZjycNsD bCJceaPW9Ihj1iCQZh49t0JF5FPXeSjg13tawgVgsf4yZPltdWbm10SDMXz5YYFu EbZGz0Dqn0A1vFXEQX40g43W9Dp96ypyow6gRXgRIYtMtXtx8tDyZBUKra/pWWJV T9f5RVFptMmC22RmY9P8jSZ40ug3DWWLRoH6kuz1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkm4x7JgIQjWk8HIVh/HH0+i9pLYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q3MmQyNTYwLTU5Y2YtNGFlMS04MzlkLWI1YjI2OGM0NzgzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBcwDQYJKoZIhvcNAQELBQADggEBAG6v7s9xDhUO3cx2PdGR1/M7 u7+gQziAqfpTP1SQ7VYantK5w9dicMOcMBJYU9p1hPz6aXYHTl8dPSwou8meLitC kyv33KtuDnlIhOPEzkEDj/qNMttxYbi5BZ9Gm4y23FNOy1mAx3Lq/Afec5EMIUzj tM5TXuRveTWz+AFud+LUiCFnFVjV4vV2gUg/9cyIc698CTtg6AutSrgxo5iZcAfy 90P7ar/huO9ndxz3/ISDtSHoZQC6QdcnHk10jjWluwOFS9gVFpd+J4bG5e6NiITa cg7oFs2mUG0YdBMHCTZ3LWupFnoYqkQKgjMkDJ/7L5jkXUwepW/6E1JG3JDHfkI= -----END CERTIFICATE-----Generated at Sat Aug 23 15:03:38 2025 by rpki-client