$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa File: 2b35ab1a-8001-404a-9285-196aa943aa95.roa (raw, json) Hash identifier: btQCoyJxdURIUPgO5XcimuLaq2rxTUt/qKjfwn87GUc= Subject key identifier: 68:F2:FE:EE:6D:EE:B3:20:BA:70:D5:C9:F3:65:AC:00:AC:9A:11:F1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0D16EAA9AEFA0BD2E19855F4C85D8BAF994F35E4 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa Signing time: Tue 05 Aug 2025 18:11:16 +0000 ROA not before: Tue 05 Aug 2025 18:11:16 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:387::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:16:ea:a9:ae:fa:0b:d2:e1:98:55:f4:c8:5d:8b:af:99:4f:35:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 5 18:11:16 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=c4a441e4f9b7b7a15833783469094837bb15acf05e52017c1084e500fda3aea6, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ef:d9:8a:28:96:7d:67:83:12:fa:f4:29:0e: 82:59:ff:a1:c9:11:01:cc:12:83:2a:f4:03:f0:17: 59:ed:fd:62:59:4c:25:0c:3e:9b:ff:d8:be:1d:9b: 31:7c:21:3a:9d:5d:c0:5e:f3:14:35:6d:6a:b5:ac: be:fc:48:75:75:17:d2:27:fc:1f:30:7f:c8:af:06: cf:64:58:ff:2e:0c:64:f9:da:33:a2:9b:cd:de:4a: 3f:c0:1f:e4:10:df:94:39:f9:cc:2b:18:4a:aa:34: 9c:58:a8:71:de:fd:0d:ae:ff:c9:57:57:63:85:c5: c9:19:df:ca:49:86:62:f8:c9:31:21:54:f1:8c:33: 90:f5:a0:1b:ed:2c:59:36:25:3d:e2:a5:30:06:ab: 67:93:2e:2a:2e:4c:b4:97:ff:07:cd:f5:9e:93:fb: a7:d4:c4:64:7d:d7:5a:86:d0:9b:fc:16:70:5b:b8: 67:ac:ec:e8:e1:87:fa:e1:86:e1:5f:14:ec:61:1f: 60:e2:98:af:92:ae:82:20:03:96:5a:9c:6c:92:0f: 3c:4b:f8:e5:c5:2d:09:9a:22:db:ed:8d:db:5c:64: fe:b2:39:cb:70:eb:da:7a:74:dd:96:81:9c:7f:c4: 39:43:48:a3:48:05:fe:89:bc:19:ae:68:8e:08:8f: 05:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F2:FE:EE:6D:EE:B3:20:BA:70:D5:C9:F3:65:AC:00:AC:9A:11:F1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:387::/48 Signature Algorithm: sha256WithRSAEncryption 12:c8:33:f6:e6:ac:ce:39:2a:87:7b:9f:8e:6f:9f:e8:2a:ad: cf:93:6d:ab:03:67:86:24:c3:02:1f:5b:b8:0a:06:bb:68:64: c6:dd:36:8a:ae:10:63:dd:d7:d4:23:35:a4:42:14:e4:e4:f6: a0:34:51:45:5a:5a:dc:e5:ad:d0:e1:0b:65:b8:67:bf:3b:93: da:54:7e:eb:7a:92:34:36:e8:66:57:df:11:15:fa:d6:b6:64: 18:e8:d9:60:fd:59:29:da:a3:1d:cf:ea:0c:ce:95:48:16:de: ae:b4:05:c8:e9:44:32:87:65:30:52:96:81:a8:f2:95:01:7b: 64:06:8c:a8:0f:af:d3:8a:26:22:35:42:1e:52:8b:53:59:02: a4:cb:cb:11:8e:ab:0f:7d:f7:3a:57:c8:f8:04:c9:92:25:3d: 94:1c:0d:50:da:13:8e:fe:a6:1b:5d:b8:e6:ce:c0:0e:72:fd: 1e:31:ff:a2:be:bc:4c:5c:6c:52:89:cc:20:23:73:4c:c4:ec: 8c:84:10:15:1f:00:6a:40:cb:8f:0a:f3:91:a6:f2:18:de:86: 1e:0f:12:d2:b2:13:88:61:2a:b7:aa:b2:cd:82:72:13:7b:66: c4:44:d8:2f:86:30:61:3c:aa:32:56:2f:a0:e7:86:ca:00:8d: 2b:6f:2e:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDRbqqa76C9LhmFX0yF2Lr5lPNeQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODA1MTgxMTE2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGE0NDFlNGY5YjdiN2ExNTgzMzc4MzQ2OTA5NDgzN2Ji MTVhY2YwNWU1MjAxN2MxMDg0ZTUwMGZkYTNhZWE2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY79mKKJZ9Z4MS+vQpDoJZ/6HJEQHMEoMq9APwF1nt/WJZ TCUMPpv/2L4dmzF8ITqdXcBe8xQ1bWq1rL78SHV1F9In/B8wf8ivBs9kWP8uDGT5 2jOim83eSj/AH+QQ35Q5+cwrGEqqNJxYqHHe/Q2u/8lXV2OFxckZ38pJhmL4yTEh VPGMM5D1oBvtLFk2JT3ipTAGq2eTLiouTLSX/wfN9Z6T+6fUxGR911qG0Jv8FnBb uGes7Ojhh/rhhuFfFOxhH2DimK+SroIgA5ZanGySDzxL+OXFLQmaItvtjdtcZP6y Octw69p6dN2WgZx/xDlDSKNIBf6JvBmuaI4IjwWfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaPL+7m3usyC6cNXJ82WsAKyaEfEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJiMzVhYjFhLTgwMDEtNDA0YS05Mjg1LTE5NmFhOTQzYWE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA4cwDQYJKoZIhvcNAQELBQADggEBABLIM/bmrM45Kod7n45vn+gq rc+TbasDZ4YkwwIfW7gKBrtoZMbdNoquEGPd19QjNaRCFOTk9qA0UUVaWtzlrdDh C2W4Z787k9pUfut6kjQ26GZX3xEV+ta2ZBjo2WD9WSnaox3P6gzOlUgW3q60Bcjp RDKHZTBSloGo8pUBe2QGjKgPr9OKJiI1Qh5Si1NZAqTLyxGOqw999zpXyPgEyZIl PZQcDVDaE47+phtduObOwA5y/R4x/6K+vExcbFKJzCAjc0zE7IyEEBUfAGpAy48K 85Gm8hjehh4PEtKyE4hhKreqss2CchN7ZsRE2C+GMGE8qjJWL6DnhsoAjStvLmk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:38 2025 by rpki-client