$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/011a2018-20b6-4386-aacf-19025e8dc9d2.roa File: 011a2018-20b6-4386-aacf-19025e8dc9d2.roa (raw, json) Hash identifier: Mx+2rhh2ifKgRcm4O74BJrXjsnlrX7Oz5kv2wEfnNvY= Subject key identifier: BB:F1:E5:90:D7:CC:2E:F3:D8:68:72:50:36:51:E0:B6:CE:15:CD:76 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2D406EE16C01148CD598AAF745AD2E55CB130A3B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/011a2018-20b6-4386-aacf-19025e8dc9d2.roa Signing time: Tue 05 Aug 2025 18:00:10 +0000 ROA not before: Tue 05 Aug 2025 18:00:10 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:30b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:40:6e:e1:6c:01:14:8c:d5:98:aa:f7:45:ad:2e:55:cb:13:0a:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 5 18:00:10 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=3976524846472fe95461344cdc8df4511c2fb2d215162e7cde37c5f01d411bda, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:36:38:a2:e0:3a:5b:f4:e9:95:9e:a3:65:1e: e1:58:3f:cd:29:35:0f:65:2c:3f:a3:d4:bf:2d:01: a0:db:7c:c2:24:9c:59:c1:0e:d8:47:8e:5a:e8:90: 57:83:2e:47:bb:30:0f:55:5d:39:30:af:1c:9e:c8: f8:e7:a5:4a:d6:a9:0d:e0:f9:08:dd:45:c0:c7:04: 27:8b:ac:5e:d5:ca:2e:36:1d:3f:0b:f2:47:3c:eb: 47:96:cc:55:4e:5f:cf:29:13:e6:9a:0d:22:60:d6: fe:12:13:36:2e:34:c4:dc:37:0b:c5:2b:38:55:33: c2:97:ce:38:66:b1:af:b1:91:7a:5f:87:b1:b5:b6: a1:29:4a:03:15:da:08:ee:44:7d:af:52:4a:c7:b6: 12:3f:8b:ed:9d:49:21:0e:12:5b:c0:2a:17:ba:77: f2:82:40:79:d4:7a:5f:96:ea:43:12:ed:ac:4c:fa: 81:a7:de:88:0d:1a:98:d1:08:06:d2:f8:89:f7:f5: b2:3c:3c:9c:2a:d5:1e:8c:53:ca:23:52:b4:32:5e: aa:e2:28:13:7c:f2:58:78:28:4f:ac:d1:8e:f9:85: 4c:84:79:83:ce:a0:01:4a:3f:11:53:96:cb:53:0a: 80:be:9b:d6:28:ee:23:a1:d8:ff:e9:88:e8:24:41: 14:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F1:E5:90:D7:CC:2E:F3:D8:68:72:50:36:51:E0:B6:CE:15:CD:76 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/011a2018-20b6-4386-aacf-19025e8dc9d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:30b::/48 Signature Algorithm: sha256WithRSAEncryption 47:92:bf:9b:fe:2d:74:f1:35:e1:cb:04:5a:4e:42:b9:2b:35: a0:47:73:21:4b:73:70:80:d8:cc:19:ba:e4:07:7d:30:79:fc: af:09:9e:d9:27:f1:ee:e0:4e:14:25:19:96:a8:bc:f3:97:4c: c8:3b:92:75:aa:ee:ca:96:3d:7f:dd:af:38:57:27:46:99:63: ee:89:42:4a:7c:08:a7:bc:2c:f8:c2:b7:1e:90:d3:8c:f9:72: 31:9c:6d:9f:fc:d2:35:af:23:7f:61:01:2c:7e:84:17:8b:dd: 5b:bd:0f:70:f8:c1:54:b0:d9:2b:5c:e0:12:be:aa:bf:02:55: 8d:16:d2:f2:97:88:d2:18:ae:63:ee:5c:5a:5b:2a:63:19:c7: 73:0b:4f:ba:6c:f2:f2:83:6e:20:ea:17:7e:8b:17:36:a6:40: 31:2c:bc:ce:4c:14:39:20:85:79:19:00:7d:b6:c7:ea:8a:c2: 6e:de:2c:9e:34:fd:e4:76:33:7f:d4:b5:e3:6e:ce:0e:4b:82: 77:e7:d0:3b:fd:50:c0:4d:a2:6d:d2:e5:60:fa:b2:49:26:a0: 8f:86:e6:5a:6f:80:e1:e1:c7:31:7a:49:52:e1:08:cd:6b:52: 41:fc:2f:3e:12:d9:b6:70:db:0f:e6:8b:40:67:70:85:fb:98: 97:1a:ed:a1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULUBu4WwBFIzVmKr3Ra0uVcsTCjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODA1MTgwMDEwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTc2NTI0ODQ2NDcyZmU5NTQ2MTM0NGNkYzhkZjQ1MTFj MmZiMmQyMTUxNjJlN2NkZTM3YzVmMDFkNDExYmRhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzNjii4Dpb9OmVnqNlHuFYP80pNQ9lLD+j1L8tAaDbfMIk nFnBDthHjlrokFeDLke7MA9VXTkwrxyeyPjnpUrWqQ3g+QjdRcDHBCeLrF7Vyi42 HT8L8kc860eWzFVOX88pE+aaDSJg1v4SEzYuNMTcNwvFKzhVM8KXzjhmsa+xkXpf h7G1tqEpSgMV2gjuRH2vUkrHthI/i+2dSSEOElvAKhe6d/KCQHnUel+W6kMS7axM +oGn3ogNGpjRCAbS+In39bI8PJwq1R6MU8ojUrQyXqriKBN88lh4KE+s0Y75hUyE eYPOoAFKPxFTlstTCoC+m9Yo7iOh2P/piOgkQRS1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUu/HlkNfMLvPYaHJQNlHgts4VzXYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAxMWEyMDE4LTIwYjYtNDM4Ni1hYWNmLTE5MDI1ZThkYzlkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAwswDQYJKoZIhvcNAQELBQADggEBAEeSv5v+LXTxNeHLBFpOQrkr NaBHcyFLc3CA2MwZuuQHfTB5/K8Jntkn8e7gThQlGZaovPOXTMg7knWq7sqWPX/d rzhXJ0aZY+6JQkp8CKe8LPjCtx6Q04z5cjGcbZ/80jWvI39hASx+hBeL3Vu9D3D4 wVSw2Stc4BK+qr8CVY0W0vKXiNIYrmPuXFpbKmMZx3MLT7ps8vKDbiDqF36LFzam QDEsvM5MFDkghXkZAH22x+qKwm7eLJ40/eR2M3/UteNuzg5Lgnfn0Dv9UMBNom3S 5WD6skkmoI+G5lpvgOHhxzF6SVLhCM1rUkH8Lz4S2bZw2w/mi0BncIX7mJca7aE= -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:46 2025 by rpki-client