$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa File: 3500b8ef-7be2-4b73-a003-e1ded8f81352.roa (raw, json) Hash identifier: tgkvELHpZ9yzHriZF74fV9EJ4ZDl8T3gpGkeR5W28rQ= Subject key identifier: C5:4D:63:73:70:76:75:10:C6:CE:2B:D4:DA:04:96:CC:A8:F3:A0:98 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3C5D738D0E6D1842EC58221D9720835221EB0B8C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa Signing time: Mon 01 Sep 2025 18:50:55 +0000 ROA not before: Mon 01 Sep 2025 18:50:55 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:2110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:5d:73:8d:0e:6d:18:42:ec:58:22:1d:97:20:83:52:21:eb:0b:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 1 18:50:55 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=18122403df959adfab03a4521d182b1773fbeb86440e3476859d3886e5553938, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d7:9c:99:20:97:5a:73:a9:40:f7:8c:e8:fa: e1:6c:f4:1a:62:1f:fd:9d:c1:e4:b9:32:b8:49:a9: 75:e2:74:a2:28:0e:5d:ec:2c:19:41:5a:4b:5d:9f: 63:36:8b:c7:e4:f9:f3:d5:84:33:af:4e:6f:b3:31: ab:dc:12:4d:fa:28:c2:f5:be:8b:a7:93:2a:65:2a: 25:d5:ee:bc:c8:99:58:a5:0c:82:d0:b6:65:1e:3a: b8:8f:b2:64:f3:db:54:06:41:52:e3:4b:19:22:94: 9b:fd:cb:27:bd:8b:35:11:07:8f:b3:77:69:6e:5e: 08:91:16:96:6c:71:97:6b:82:de:ad:d6:9f:71:e7: 1b:90:ba:c0:7f:4b:b6:76:0b:41:1f:ee:f0:62:49: b1:2c:9c:c7:08:92:8c:b6:bc:3f:c3:ce:ac:73:a7: 4c:98:5b:0c:5a:5c:89:64:c4:10:66:18:15:7d:5e: 28:00:56:7e:d3:b3:87:8a:20:a6:77:3a:87:4c:7a: d9:27:74:be:94:87:b5:1c:8a:ed:c4:7e:c4:8f:62: ce:57:a7:6a:50:47:59:3a:31:4c:eb:e0:2f:9b:c2: 48:68:6e:e7:f9:bb:71:d5:ec:29:0c:e8:99:68:7b: 80:71:a1:5b:b5:a1:09:6c:d3:65:66:46:74:24:02: 13:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:4D:63:73:70:76:75:10:C6:CE:2B:D4:DA:04:96:CC:A8:F3:A0:98 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:2110::/44 Signature Algorithm: sha256WithRSAEncryption 95:49:93:82:21:2a:b9:ae:d1:35:c8:79:1a:d2:3f:f8:a6:8a: 5a:95:08:24:3a:3e:47:00:3e:8e:60:d5:18:98:1f:51:5b:99: d4:0c:c3:46:80:63:cd:ac:cc:ff:84:75:27:e7:22:7f:ae:1b: 5c:d4:d6:b1:72:d6:93:13:e4:b3:08:1c:a7:2b:7f:00:59:16: f4:73:83:20:32:5a:74:56:e7:b0:94:ea:96:3c:99:39:13:ae: 65:24:5c:d2:6f:c0:24:99:e4:6b:45:ca:76:e2:ba:cb:b0:f2: 0d:c9:b9:79:f2:72:a5:1c:d9:86:8d:06:d6:e9:09:d6:d5:eb: 0b:c7:f9:d3:4f:d6:0e:05:72:97:20:69:e3:cf:1f:9c:1a:13: 42:1a:1f:e0:1f:35:66:93:80:7c:7b:7e:43:a8:97:fe:96:63: 19:f4:b2:30:fa:18:43:b7:ae:18:e7:72:6a:1e:9a:88:3e:5b: aa:7b:f6:7b:df:09:ad:b8:00:02:4d:99:6b:28:56:2b:82:85: 1e:61:12:59:b2:a3:00:51:04:f0:ea:78:47:a9:2e:34:39:96: eb:c9:62:5e:80:9e:9c:87:ed:8e:66:21:27:21:19:0c:c7:8b: 98:12:ce:cc:4e:67:b4:bb:fb:bf:76:73:50:20:ad:ac:9e:14: 68:05:7f:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPF1zjQ5tGELsWCIdlyCDUiHrC4wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTAxMTg1MDU1WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODEyMjQwM2RmOTU5YWRmYWIwM2E0NTIxZDE4MmIxNzcz ZmJlYjg2NDQwZTM0NzY4NTlkMzg4NmU1NTUzOTM4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN15yZIJdac6lA94zo+uFs9BpiH/2dweS5MrhJqXXidKIo Dl3sLBlBWktdn2M2i8fk+fPVhDOvTm+zMavcEk36KML1vounkyplKiXV7rzImVil DILQtmUeOriPsmTz21QGQVLjSxkilJv9yye9izURB4+zd2luXgiRFpZscZdrgt6t 1p9x5xuQusB/S7Z2C0Ef7vBiSbEsnMcIkoy2vD/Dzqxzp0yYWwxaXIlkxBBmGBV9 XigAVn7Ts4eKIKZ3OodMetkndL6Uh7Uciu3EfsSPYs5Xp2pQR1k6MUzr4C+bwkho buf5u3HV7CkM6Jloe4BxoVu1oQls02VmRnQkAhMtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxU1jc3B2dRDGzivU2gSWzKjzoJgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1MDBiOGVmLTdiZTItNGI3My1hMDAzLWUxZGVkOGY4MTM1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmBZzAIRAwDQYJKoZIhvcNAQELBQADggEBAJVJk4IhKrmu0TXIeRrSP/im ilqVCCQ6PkcAPo5g1RiYH1FbmdQMw0aAY82szP+EdSfnIn+uG1zU1rFy1pMT5LMI HKcrfwBZFvRzgyAyWnRW57CU6pY8mTkTrmUkXNJvwCSZ5GtFynbiusuw8g3JuXny cqUc2YaNBtbpCdbV6wvH+dNP1g4FcpcgaePPH5waE0IaH+AfNWaTgHx7fkOol/6W Yxn0sjD6GEO3rhjncmoemog+W6p79nvfCa24AAJNmWsoViuChR5hElmyowBRBPDq eEepLjQ5luvJYl6AnpyH7Y5mISchGQzHi5gSzsxOZ7S7+792c1AgrayeFGgFf2E= -----END CERTIFICATE-----Generated at Tue Sep 16 10:20:11 2025 by rpki-client