$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa File: db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa (raw, json) Hash identifier: D3SrdIsm5FQRhhZa9S7Uo23WM1mN2B/KooqyRXQwrI8= Subject key identifier: 34:1B:4C:BE:99:6C:16:80:94:D8:F3:64:0E:CD:61:E5:91:81:A5:36 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 581B5FC072C3B7881CF46037C66867AD0C417E5E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa Signing time: Fri 15 Aug 2025 15:20:59 +0000 ROA not before: Fri 15 Aug 2025 15:20:59 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:1b:5f:c0:72:c3:b7:88:1c:f4:60:37:c6:68:67:ad:0c:41:7e:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:20:59 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=735a02548894f0279ff671664d0166ecfb9b5df5dc635b66039807a986d7f5e2, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:bc:ca:02:7d:47:e2:c0:b3:35:d8:1c:8f:b0: ad:02:46:18:c0:b5:ac:7b:3a:21:70:25:49:ae:47: 68:5a:ec:37:20:d0:de:ed:07:21:03:13:ce:ee:4a: af:60:42:67:16:ce:f1:ff:ab:9d:a0:1f:63:3a:df: 73:37:cc:f4:65:fb:21:3a:c8:fe:f9:14:dc:d3:f3: cf:b9:cf:9b:b1:fa:e8:a0:e1:2d:23:37:50:f9:80: 0b:5d:51:65:d3:c6:dd:98:37:53:e4:9d:74:32:91: 70:d5:bf:f5:7b:22:f5:57:81:83:18:8e:17:34:22: 65:da:e8:bb:ca:5b:74:60:d9:42:17:9c:2c:77:31: 4a:a1:e1:0f:fb:0a:40:e2:88:e8:14:b2:3b:40:bc: 31:b3:a5:1e:01:98:00:89:63:fe:a7:f8:8f:91:4d: 9d:9e:50:25:43:e5:14:6b:74:eb:d8:f4:1c:95:14: 79:57:18:c4:14:88:0a:7c:f0:60:ac:c1:05:77:7c: 88:8a:68:6d:99:f1:d4:47:b0:70:99:68:6c:74:2a: c0:30:00:6d:8d:aa:1e:f7:2c:69:86:3a:c0:dd:a3: 9a:5f:79:fd:17:e1:5e:0b:1b:fd:fd:2b:75:72:2b: 55:8b:49:75:1a:86:d4:f6:9f:e2:e7:36:8c:28:88: 62:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1B:4C:BE:99:6C:16:80:94:D8:F3:64:0E:CD:61:E5:91:81:A5:36 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c14::/48 Signature Algorithm: sha256WithRSAEncryption 86:e3:82:80:dc:f2:bf:9d:ca:93:03:5b:35:66:c2:bb:18:66: 2f:3f:c3:d9:64:22:c6:bb:b1:0d:11:d5:bb:83:29:18:cd:c5: 10:1b:9c:05:48:7d:41:d3:1c:69:d9:11:b8:c2:b3:2e:af:32: 35:fd:18:e3:24:7f:83:6b:2e:1a:4c:35:d6:80:19:bf:57:8f: 7e:36:2c:5e:3d:27:60:1d:95:01:dd:ec:96:48:d8:0f:39:32: 84:7d:82:25:30:6a:c7:79:32:8a:21:d6:97:26:d8:02:3c:d1: 3f:8b:36:82:73:7a:60:f7:ca:49:9a:dc:87:90:d8:8e:1e:84: 7e:57:d7:38:f2:42:08:e6:1c:f3:ed:e4:28:92:d1:bf:d2:66: 7f:16:c3:a7:ad:81:44:9c:95:f0:7e:58:41:d2:a2:c4:27:56: 3b:63:a8:25:6b:d7:0f:8c:5b:f6:b3:e1:44:ef:a1:50:8c:90: 02:9d:95:fc:a6:4e:15:97:cb:47:41:55:79:f6:02:aa:a6:59: 16:6b:49:fa:7c:6f:15:08:c7:82:fc:35:36:cf:d2:ed:07:a1: 72:c7:13:5f:01:38:0f:ca:63:53:da:78:e1:3e:1d:18:84:ef: d2:34:d2:c3:e7:ac:73:79:2c:17:d7:5f:3c:7f:ff:fe:45:57: 85:40:3b:fd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWBtfwHLDt4gc9GA3xmhnrQxBfl4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUyMDU5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzVhMDI1NDg4OTRmMDI3OWZmNjcxNjY0ZDAxNjZlY2Zi OWI1ZGY1ZGM2MzViNjYwMzk4MDdhOTg2ZDdmNWUyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSvMoCfUfiwLM12ByPsK0CRhjAtax7OiFwJUmuR2ha7Dcg 0N7tByEDE87uSq9gQmcWzvH/q52gH2M633M3zPRl+yE6yP75FNzT88+5z5ux+uig 4S0jN1D5gAtdUWXTxt2YN1PknXQykXDVv/V7IvVXgYMYjhc0ImXa6LvKW3Rg2UIX nCx3MUqh4Q/7CkDiiOgUsjtAvDGzpR4BmACJY/6n+I+RTZ2eUCVD5RRrdOvY9ByV FHlXGMQUiAp88GCswQV3fIiKaG2Z8dRHsHCZaGx0KsAwAG2Nqh73LGmGOsDdo5pf ef0X4V4LG/39K3VyK1WLSXUahtT2n+LnNowoiGL1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNBtMvplsFoCU2PNkDs1h5ZGBpTYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RiM2JiZmU4LTI3MTgtNDVlMS1hM2E1LWFmYmY1NzJkMDBjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBQwDQYJKoZIhvcNAQELBQADggEBAIbjgoDc8r+dypMDWzVmwrsY Zi8/w9lkIsa7sQ0R1buDKRjNxRAbnAVIfUHTHGnZEbjCsy6vMjX9GOMkf4NrLhpM NdaAGb9Xj342LF49J2AdlQHd7JZI2A85MoR9giUwasd5Mooh1pcm2AI80T+LNoJz emD3ykma3IeQ2I4ehH5X1zjyQgjmHPPt5CiS0b/SZn8Ww6etgUSclfB+WEHSosQn VjtjqCVr1w+MW/az4UTvoVCMkAKdlfymThWXy0dBVXn2AqqmWRZrSfp8bxUIx4L8 NTbP0u0HoXLHE18BOA/KY1PaeOE+HRiE79I00sPnrHN5LBfXXzx///5FV4VAO/0= -----END CERTIFICATE-----Generated at Sat Aug 23 19:21:42 2025 by rpki-client