$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f3f1b6a3-5a54-4834-be55-4536f3908ca9.roa File: f3f1b6a3-5a54-4834-be55-4536f3908ca9.roa (raw, json) Hash identifier: XtObVCqwuzH7RtuKFr/2ieGkvUgVQTnXj94SsWd3X4A= Subject key identifier: 4C:CB:5F:5D:D7:9B:C5:1E:98:96:96:12:1A:82:FF:36:C0:0C:36:21 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4F93F514351D29CB99B5F9AFA6171DAA74165402 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f3f1b6a3-5a54-4834-be55-4536f3908ca9.roa Signing time: Mon 21 Jul 2025 16:11:04 +0000 ROA not before: Mon 21 Jul 2025 16:11:04 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:648::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:93:f5:14:35:1d:29:cb:99:b5:f9:af:a6:17:1d:aa:74:16:54:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 21 16:11:04 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=0b9aa75cd7bb43510debe9d447d9b3154fc730040ca0b5d1d992ec23ac1ae90d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7a:d0:02:80:e5:e3:f7:9a:31:21:c3:ad:44: c2:16:09:65:6c:da:bd:0d:38:09:63:b5:ef:69:86: 1b:91:f1:7a:e1:91:e9:6e:21:f3:6c:e8:94:cd:be: d6:12:3f:45:d0:b3:ba:41:cb:d8:a4:6c:b6:f8:25: 1a:b7:20:1f:37:6a:84:68:1e:b5:8c:29:6e:8a:1d: dc:d5:c5:04:37:cb:45:70:f8:fb:b2:10:92:ab:67: 70:a5:2c:71:87:61:a6:fa:03:cb:3a:0d:a7:a9:e0: ae:c5:a6:df:2d:38:11:7e:7a:d4:ec:45:7c:d8:d7: fe:c2:6f:81:a5:63:1a:9d:5d:9b:4f:97:e0:10:99: 8d:4d:5a:f5:41:2f:37:45:38:03:15:79:da:44:0e: f1:94:e2:35:fa:3f:b7:ee:06:f9:74:9a:bc:f5:cd: 3c:eb:a2:61:91:b7:8b:e9:1e:a8:ab:f2:93:b8:9b: a5:25:91:b1:60:c1:b1:d7:2d:3c:6d:cc:45:63:58: dd:6a:6c:c7:ec:73:9e:e7:d1:67:a9:c6:22:b9:41: a3:f7:f7:05:5b:d2:69:bf:ff:cf:63:4e:9d:e8:fb: c3:51:9d:0e:87:34:7e:9f:e0:e1:71:db:22:4d:2d: 87:01:37:32:e9:b7:c0:53:94:ca:ef:37:2a:ed:a3: c1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CB:5F:5D:D7:9B:C5:1E:98:96:96:12:1A:82:FF:36:C0:0C:36:21 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f3f1b6a3-5a54-4834-be55-4536f3908ca9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:648::/48 Signature Algorithm: sha256WithRSAEncryption 9f:51:76:24:6a:e4:d3:24:19:ec:39:90:de:4a:92:2f:f6:09: 21:84:07:83:23:1a:c3:c8:df:6c:f7:3d:2c:b9:b8:3f:0f:89: 32:0a:6c:de:76:3c:61:69:49:7e:b1:95:61:b8:ce:4e:5e:cc: 6f:b4:3a:d5:84:94:15:5c:d4:f1:54:02:e3:07:07:9c:92:1d: 4e:24:f6:d7:98:60:02:c2:10:78:cf:ba:39:f4:6c:62:32:4e: 97:1f:d4:d9:22:ed:f5:a9:bb:c0:7a:76:08:3c:29:c9:6c:c7: ce:5b:b7:35:5a:09:05:b2:6b:f2:e2:1f:e5:2d:f9:c1:a1:da: 24:81:93:10:c5:56:c8:af:2d:7a:18:c6:9f:4c:88:32:de:52: 13:5e:8f:c3:09:d8:e8:07:3f:92:f3:dc:c9:9a:d9:4d:3a:b0: 99:15:5d:54:97:10:b1:ab:88:d2:73:b8:5f:3c:dc:d1:1e:fd: 74:44:da:1b:3e:c1:1d:d9:9d:84:2b:7c:e7:63:9a:ea:2b:bc: 0a:af:9f:ee:75:46:66:d9:ab:5f:01:67:c7:e2:0b:59:98:19: 66:4a:89:c2:0a:38:e8:e2:d2:05:91:0d:87:05:bf:7c:05:e0: 10:83:8c:30:1a:65:c6:94:1d:63:47:30:23:5f:3b:e2:84:14: f5:11:85:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT5P1FDUdKcuZtfmvphcdqnQWVAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzIxMTYxMTA0WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjlhYTc1Y2Q3YmI0MzUxMGRlYmU5ZDQ0N2Q5YjMxNTRm YzczMDA0MGNhMGI1ZDFkOTkyZWMyM2FjMWFlOTBkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyetACgOXj95oxIcOtRMIWCWVs2r0NOAljte9phhuR8Xrh keluIfNs6JTNvtYSP0XQs7pBy9ikbLb4JRq3IB83aoRoHrWMKW6KHdzVxQQ3y0Vw +PuyEJKrZ3ClLHGHYab6A8s6Daep4K7Fpt8tOBF+etTsRXzY1/7Cb4GlYxqdXZtP l+AQmY1NWvVBLzdFOAMVedpEDvGU4jX6P7fuBvl0mrz1zTzromGRt4vpHqir8pO4 m6UlkbFgwbHXLTxtzEVjWN1qbMfsc57n0WepxiK5QaP39wVb0mm//89jTp3o+8NR nQ6HNH6f4OFx2yJNLYcBNzLpt8BTlMrvNyrto8GrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTMtfXdebxR6YlpYSGoL/NsAMNiEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2YzZjFiNmEzLTVhNTQtNDgzNC1iZTU1LTQ1MzZmMzkwOGNhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkgwDQYJKoZIhvcNAQELBQADggEBAJ9RdiRq5NMkGew5kN5Kki/2 CSGEB4MjGsPI32z3PSy5uD8PiTIKbN52PGFpSX6xlWG4zk5ezG+0OtWElBVc1PFU AuMHB5ySHU4k9teYYALCEHjPujn0bGIyTpcf1Nki7fWpu8B6dgg8Kclsx85btzVa CQWya/LiH+Ut+cGh2iSBkxDFVsivLXoYxp9MiDLeUhNej8MJ2OgHP5Lz3Mma2U06 sJkVXVSXELGriNJzuF883NEe/XRE2hs+wR3ZnYQrfOdjmuorvAqvn+51RmbZq18B Z8fiC1mYGWZKicIKOOji0gWRDYcFv3wF4BCDjDAaZcaUHWNHMCNfO+KEFPURhRg= -----END CERTIFICATE-----Generated at Tue Jul 22 11:51:07 2025 by rpki-client