$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ff229562-e0c9-44bf-a77e-2ec96437b59b.roa File: ff229562-e0c9-44bf-a77e-2ec96437b59b.roa (raw, json) Hash identifier: 53CMp5lpVjOq6An094+po/GNimh4J+P56rB70eIOfi0= Subject key identifier: D5:C9:AC:11:C1:91:72:DA:DD:45:2A:C4:57:67:05:57:7C:10:D7:C0 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 796D94757E43E028E439B7686830A164AC9A88CA Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ff229562-e0c9-44bf-a77e-2ec96437b59b.roa Signing time: Fri 15 Aug 2025 15:10:06 +0000 ROA not before: Fri 15 Aug 2025 15:10:06 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:6d:94:75:7e:43:e0:28:e4:39:b7:68:68:30:a1:64:ac:9a:88:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:10:06 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=a75e3d45b1e51943a4fab9f5edc3fd3731bcc71ef738b005c82b2bb0eacbc45f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4c:49:cb:8d:04:e4:b7:9f:f8:a9:d6:a2:9c: ae:4f:e3:2b:67:b0:8c:de:6f:76:c0:3c:bb:e4:b3: 54:e8:72:a1:3a:4f:f6:39:f2:f0:b1:11:27:22:a3: fd:e5:e7:63:ec:92:91:91:05:df:fb:72:74:b0:9e: 6d:26:0e:4b:57:83:92:3e:9f:18:9d:95:3f:64:af: 1b:bc:95:fb:bd:1e:10:57:b1:79:30:21:77:9a:34: 89:1f:1f:4d:9c:4a:ae:4d:e0:8c:90:2c:5d:46:5c: 4d:21:6e:a2:08:4f:91:de:55:08:42:42:f2:0e:21: d5:c9:89:05:2c:c8:dc:3e:cb:8f:47:a3:1d:77:a1: 8f:a4:d9:d6:b9:d1:42:8a:ff:3f:e4:1d:b1:31:ca: cc:0b:04:07:8f:a3:b4:87:29:18:9a:b3:04:de:a0: ef:e2:1a:10:0d:93:5a:e6:60:d4:e5:58:cf:c8:7a: 3f:9d:93:e3:d8:90:a2:71:7f:c2:12:8b:d8:8d:72: a1:53:a7:d5:f1:a7:4b:0a:1d:b9:2c:0a:f3:36:b2: af:ce:4d:e7:3c:16:bb:9e:fd:5e:b6:2f:80:d4:76: cd:47:72:1f:b7:0f:f8:10:1d:87:f1:02:5a:4e:8f: 50:e4:da:87:f3:47:59:36:af:10:15:55:13:fc:1d: 48:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C9:AC:11:C1:91:72:DA:DD:45:2A:C4:57:67:05:57:7C:10:D7:C0 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ff229562-e0c9-44bf-a77e-2ec96437b59b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c01::/48 Signature Algorithm: sha256WithRSAEncryption 29:01:68:56:b0:c7:4f:94:a9:4f:e1:eb:af:8b:9f:25:b8:43: 7a:34:79:51:15:47:a1:58:12:d0:4c:84:85:c0:b6:cb:df:9a: ad:5e:5b:96:40:e2:00:cb:0d:66:38:54:e7:ae:e5:c5:3a:ac: e4:2a:b5:31:9f:31:5d:37:6b:24:de:fa:ce:56:2f:ab:52:04: 74:00:1c:97:28:8f:82:ef:43:db:55:99:92:ba:05:66:77:a7: 7e:79:82:04:38:70:36:f2:6e:1a:ee:f1:a6:39:c8:62:86:25: cb:c4:ad:fc:6b:4c:49:b8:53:18:c4:af:7e:8b:13:6d:6b:ec: 31:7d:9b:d7:a3:a5:33:0a:17:f7:33:93:51:9f:0f:a8:1a:71: 92:26:4e:d6:86:91:85:59:c2:a0:1b:fa:80:0a:9e:8c:1d:ed: 35:07:db:0c:be:52:27:13:a2:5f:67:7d:5b:2a:d9:b9:99:92: 0e:b8:f6:0b:fe:51:ab:39:0a:41:06:0d:b5:be:99:92:4d:a8: 2e:fa:08:5f:f9:77:a6:85:81:52:d8:53:65:36:af:a9:75:12: 44:41:29:a0:cc:c9:3d:c7:70:bb:af:e3:e8:a2:3c:0c:50:6d: 50:83:36:c2:74:43:79:05:59:35:f7:0a:0b:b2:03:ee:bf:a7: 39:df:23:6a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeW2UdX5D4CjkObdoaDChZKyaiMowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUxMDA2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzVlM2Q0NWIxZTUxOTQzYTRmYWI5ZjVlZGMzZmQzNzMx YmNjNzFlZjczOGIwMDVjODJiMmJiMGVhY2JjNDVmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPTEnLjQTkt5/4qdainK5P4ytnsIzeb3bAPLvks1TocqE6 T/Y58vCxEScio/3l52PskpGRBd/7cnSwnm0mDktXg5I+nxidlT9krxu8lfu9HhBX sXkwIXeaNIkfH02cSq5N4IyQLF1GXE0hbqIIT5HeVQhCQvIOIdXJiQUsyNw+y49H ox13oY+k2da50UKK/z/kHbExyswLBAePo7SHKRiaswTeoO/iGhANk1rmYNTlWM/I ej+dk+PYkKJxf8ISi9iNcqFTp9Xxp0sKHbksCvM2sq/OTec8Frue/V62L4DUds1H ch+3D/gQHYfxAlpOj1Dk2ofzR1k2rxAVVRP8HUiVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1cmsEcGRctrdRSrEV2cFV3wQ18AwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2ZmMjI5NTYyLWUwYzktNDRiZi1hNzdlLTJlYzk2NDM3YjU5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAEwDQYJKoZIhvcNAQELBQADggEBACkBaFawx0+UqU/h66+LnyW4 Q3o0eVEVR6FYEtBMhIXAtsvfmq1eW5ZA4gDLDWY4VOeu5cU6rOQqtTGfMV03ayTe +s5WL6tSBHQAHJcoj4LvQ9tVmZK6BWZ3p355ggQ4cDbybhru8aY5yGKGJcvErfxr TEm4UxjEr36LE21r7DF9m9ejpTMKF/czk1GfD6gacZImTtaGkYVZwqAb+oAKnowd 7TUH2wy+UicTol9nfVsq2bmZkg649gv+Uas5CkEGDbW+mZJNqC76CF/5d6aFgVLY U2U2r6l1EkRBKaDMyT3HcLuv4+iiPAxQbVCDNsJ0Q3kFWTX3CguyA+6/pznfI2o= -----END CERTIFICATE-----Generated at Sat Aug 23 16:56:26 2025 by rpki-client