$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/280415d1-32a5-49e1-bc3f-9ffe53bd726f.roa File: 280415d1-32a5-49e1-bc3f-9ffe53bd726f.roa (raw, json) Hash identifier: s3ZpKDndeZr1qjHVvF0w4xCMiHyZjY+/Qc23rt0zXok= Subject key identifier: 76:4D:FE:58:F7:DE:CA:F8:64:43:28:E7:D1:89:A2:8B:F5:51:C7:56 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4617001839A33D818A5EC247FA16812A9B8EBCE8 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/280415d1-32a5-49e1-bc3f-9ffe53bd726f.roa Signing time: Fri 15 Aug 2025 15:30:11 +0000 ROA not before: Fri 15 Aug 2025 15:30:11 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:f001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:17:00:18:39:a3:3d:81:8a:5e:c2:47:fa:16:81:2a:9b:8e:bc:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:30:11 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=f8305577429d20916e5b8fd03d16797763d669422d375bef5182dac99d3ff588, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b6:32:68:c3:63:51:37:9d:a4:2b:7b:9d:45: 32:13:2a:c1:f7:25:54:b4:de:13:bb:6e:94:a8:f6: 85:f6:fb:14:74:22:3d:df:81:45:08:47:0d:e8:ba: e1:4e:ca:97:cb:57:7f:05:db:07:3e:c2:8b:04:ff: 13:6c:71:30:2e:5f:29:aa:0e:e5:61:0f:cb:96:2a: 35:05:1c:b3:5b:d2:4a:b1:26:15:69:0a:7c:8e:73: fc:96:b1:89:0d:c5:3a:0e:4d:fa:61:d9:65:74:b3: 46:9d:54:79:b6:1a:eb:78:18:3a:a4:de:18:5c:d4: 1a:c4:77:58:e5:93:61:e6:1e:66:e8:f6:b1:95:b5: 29:80:2e:51:82:d5:b9:41:40:ed:93:da:5f:b8:c7: c0:0e:7e:ab:82:8f:4f:04:39:dd:7d:5b:79:99:80: 9a:69:cb:bb:63:c2:d6:e3:3e:44:e0:4c:f9:b2:7e: 8e:98:2c:ec:39:7a:29:60:ea:d3:73:ec:aa:cf:ba: 39:54:5d:d5:1b:21:ef:77:ab:38:71:98:18:cf:32: 4d:59:5c:5f:a3:f6:a8:a0:a5:82:89:4d:ba:e6:ac: 48:d9:6e:49:ae:e1:10:e0:e2:e9:b7:40:cd:f8:59: 60:ef:81:4b:50:1d:bb:8b:2a:b6:97:6b:cb:25:b1: 27:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:4D:FE:58:F7:DE:CA:F8:64:43:28:E7:D1:89:A2:8B:F5:51:C7:56 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/280415d1-32a5-49e1-bc3f-9ffe53bd726f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f001::/48 Signature Algorithm: sha256WithRSAEncryption 55:59:74:eb:02:db:a5:ed:30:6f:f9:d9:19:e7:8d:67:c0:20: 1a:34:76:c6:9e:c6:e1:ef:9a:b9:e1:fe:dc:2c:65:0b:fe:e5: 9f:bb:b8:1f:a0:f2:7e:65:ae:36:1b:89:ab:cc:75:cb:d2:ca: 4b:7a:05:2e:1b:cb:fc:98:3b:d7:34:a7:f1:85:71:cb:59:40: 9c:39:ff:8e:6d:52:59:56:1e:b3:8a:f0:1b:6d:de:a8:b3:cb: 8c:f2:68:17:df:a4:74:df:ef:2e:e5:42:eb:4f:6d:f9:f8:8c: 14:5a:3f:03:4e:db:fb:63:53:2b:41:22:31:dd:68:fd:35:3c: e2:3a:ed:cb:44:73:4e:7f:f3:98:2f:9b:f0:54:b7:0a:56:93: de:ee:51:08:6d:66:32:c0:aa:c3:bb:90:0a:62:77:e5:63:bb: 77:d1:b5:c6:a8:64:c1:8d:1a:81:15:89:08:ec:8b:33:ee:8e: a2:ac:3a:30:53:73:5c:d1:eb:68:04:e6:7e:1d:97:d2:53:95: 89:96:4c:88:f2:40:88:e3:3e:35:ce:e5:ff:93:51:de:b0:fc: e4:41:da:55:f9:65:87:b4:9e:ed:ae:27:c4:c0:b8:43:c4:9b: 1f:41:51:8e:9e:47:4f:3d:f2:6d:d6:33:db:f5:a0:e2:7d:7f: c2:3b:e3:0e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURhcAGDmjPYGKXsJH+haBKpuOvOgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUzMDExWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODMwNTU3NzQyOWQyMDkxNmU1YjhmZDAzZDE2Nzk3NzYz ZDY2OTQyMmQzNzViZWY1MTgyZGFjOTlkM2ZmNTg4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAtjJow2NRN52kK3udRTITKsH3JVS03hO7bpSo9oX2+xR0 Ij3fgUUIRw3ouuFOypfLV38F2wc+wosE/xNscTAuXymqDuVhD8uWKjUFHLNb0kqx JhVpCnyOc/yWsYkNxToOTfph2WV0s0adVHm2Gut4GDqk3hhc1BrEd1jlk2HmHmbo 9rGVtSmALlGC1blBQO2T2l+4x8AOfquCj08EOd19W3mZgJppy7tjwtbjPkTgTPmy fo6YLOw5eilg6tNz7KrPujlUXdUbIe93qzhxmBjPMk1ZXF+j9qigpYKJTbrmrEjZ bkmu4RDg4um3QM34WWDvgUtQHbuLKraXa8slsSdNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdk3+WPfeyvhkQyjn0Ymii/VRx1YwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzI4MDQxNWQxLTMyYTUtNDllMS1iYzNmLTlmZmU1M2JkNzI2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8AEwDQYJKoZIhvcNAQELBQADggEBAFVZdOsC26XtMG/52RnnjWfA IBo0dsaexuHvmrnh/twsZQv+5Z+7uB+g8n5lrjYbiavMdcvSykt6BS4by/yYO9c0 p/GFcctZQJw5/45tUllWHrOK8Btt3qizy4zyaBffpHTf7y7lQutPbfn4jBRaPwNO 2/tjUytBIjHdaP01POI67ctEc05/85gvm/BUtwpWk97uUQhtZjLAqsO7kApid+Vj u3fRtcaoZMGNGoEViQjsizPujqKsOjBTc1zR62gE5n4dl9JTlYmWTIjyQIjjPjXO 5f+TUd6w/ORB2lX5ZYe0nu2uJ8TAuEPEmx9BUY6eR0898m3WM9v1oOJ9f8I74w4= -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:43 2025 by rpki-client