$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa File: 35efcf72-708d-4456-b1d1-8419a2636e00.roa (raw, json) Hash identifier: etRsHXBxZBr4+NAMkplj0HoTyp95q2jqEWp+A60X5CE= Subject key identifier: CB:6C:83:AC:9F:68:BA:A6:23:B4:D0:7A:12:8D:F6:90:C3:74:8D:5E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 122A2DDDB7E6ED3C20BFAF882EE02A9785FC7B71 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa Signing time: Fri 11 Jul 2025 18:11:37 +0000 ROA not before: Fri 11 Jul 2025 18:11:37 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:f03d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:2a:2d:dd:b7:e6:ed:3c:20:bf:af:88:2e:e0:2a:97:85:fc:7b:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:11:37 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=94062c37af19beb744e57f0656a955516f193f26e4374b213be07591fbc5124f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:fa:36:a7:c5:0d:d4:37:2a:12:8e:ae:56:12: e3:7b:9c:4c:b6:08:17:4d:89:89:cf:db:86:88:cf: 0a:24:ff:f1:69:06:14:1b:60:54:d6:f4:6c:0e:52: 0e:c3:2b:89:11:7c:26:7d:bd:b9:0f:9c:c0:8f:f7: b9:c1:a2:fb:00:01:59:bd:a2:6f:0b:ff:91:53:62: 46:61:d9:7b:56:5b:2a:4b:4d:4c:ef:84:42:e6:58: 3c:df:b1:bf:af:5d:82:16:6e:42:9c:94:35:f3:ea: 21:29:5c:c1:f9:6e:3f:3b:b9:47:c8:26:12:87:ea: 8e:ac:10:66:38:88:f9:9a:90:7f:08:ca:28:60:5d: 07:e7:0a:18:3b:f6:90:af:a1:3f:e4:94:ce:cf:e2: fb:ef:ef:47:5e:0f:cb:22:2e:31:63:b7:7e:89:7d: a5:ce:b9:53:2b:e1:15:99:dc:d2:7d:20:6c:3a:09: c1:2f:7e:7c:01:fe:6e:e4:e0:d5:e9:d4:d9:7c:82: 50:78:20:ea:c5:17:9b:48:1f:21:78:d5:29:8e:c2: ca:97:fb:49:d4:5b:10:6c:f7:1d:78:69:01:15:59: 79:b4:0c:7b:5d:0a:0a:75:14:77:4c:91:2c:75:67: 71:51:23:84:36:6f:ce:b1:d2:98:f8:2d:55:6e:d9: c0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6C:83:AC:9F:68:BA:A6:23:B4:D0:7A:12:8D:F6:90:C3:74:8D:5E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03d::/48 Signature Algorithm: sha256WithRSAEncryption 2c:e7:69:84:c1:2a:7c:ba:ce:03:97:4a:a7:ec:86:ba:f8:cb: de:a8:71:a1:22:dd:0f:fd:be:4a:3c:d2:31:12:12:e6:ba:27: 22:af:6b:d3:7e:cf:2f:22:4b:c7:f5:b7:8e:bc:62:fc:c1:ff: b9:ea:b6:d4:1d:61:57:60:17:41:66:57:86:04:2d:97:ed:2f: 1f:ca:db:02:0c:96:62:77:85:a6:f2:12:5a:a6:4d:59:cd:92: aa:da:13:62:52:59:67:a7:46:c9:e4:e5:34:c9:cd:b3:62:4e: 65:d3:b3:2c:18:e3:39:41:58:4b:e2:9a:d0:e5:8e:f8:c2:47: 8d:e9:6c:f3:be:33:19:e6:8b:97:62:4e:fb:44:12:17:23:94: f2:b8:29:74:13:eb:8c:17:d3:7a:10:3b:22:a0:5d:34:47:5b: c7:3e:59:ad:76:22:cd:67:54:7f:67:fa:42:55:bb:7f:05:49: 94:dc:04:a5:fb:ec:4a:0d:87:4d:16:66:ca:bd:80:ff:d3:ac: 16:67:10:84:89:db:bc:1d:dd:da:38:bd:2e:a7:fc:da:18:90: cf:70:33:2c:3a:cc:8b:0d:e7:ef:9e:74:b4:0f:2e:8a:80:db: 2f:96:c4:36:6e:6f:1d:0c:bd:68:6a:3a:2e:05:61:d8:49:af: b8:64:15:d0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEiot3bfm7Twgv6+ILuAql4X8e3EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgxMTM3WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDA2MmMzN2FmMTliZWI3NDRlNTdmMDY1NmE5NTU1MTZm MTkzZjI2ZTQzNzRiMjEzYmUwNzU5MWZiYzUxMjRmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0+janxQ3UNyoSjq5WEuN7nEy2CBdNiYnP24aIzwok//Fp BhQbYFTW9GwOUg7DK4kRfCZ9vbkPnMCP97nBovsAAVm9om8L/5FTYkZh2XtWWypL TUzvhELmWDzfsb+vXYIWbkKclDXz6iEpXMH5bj87uUfIJhKH6o6sEGY4iPmakH8I yihgXQfnChg79pCvoT/klM7P4vvv70deD8siLjFjt36JfaXOuVMr4RWZ3NJ9IGw6 CcEvfnwB/m7k4NXp1Nl8glB4IOrFF5tIHyF41SmOwsqX+0nUWxBs9x14aQEVWXm0 DHtdCgp1FHdMkSx1Z3FRI4Q2b86x0pj4LVVu2cDRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUy2yDrJ9ouqYjtNB6Eo32kMN0jV4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1ZWZjZjcyLTcwOGQtNDQ1Ni1iMWQxLTg0MTlhMjYzNmUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D0wDQYJKoZIhvcNAQELBQADggEBACznaYTBKny6zgOXSqfshrr4 y96ocaEi3Q/9vko80jESEua6JyKva9N+zy8iS8f1t468YvzB/7nqttQdYVdgF0Fm V4YELZftLx/K2wIMlmJ3habyElqmTVnNkqraE2JSWWenRsnk5TTJzbNiTmXTsywY 4zlBWEvimtDljvjCR43pbPO+Mxnmi5diTvtEEhcjlPK4KXQT64wX03oQOyKgXTRH W8c+Wa12Is1nVH9n+kJVu38FSZTcBKX77EoNh00WZsq9gP/TrBZnEISJ27wd3do4 vS6n/NoYkM9wMyw6zIsN5++edLQPLoqA2y+WxDZubx0MvWhqOi4FYdhJr7hkFdA= -----END CERTIFICATE-----Generated at Wed Jul 30 18:35:34 2025 by rpki-client