$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3d2c81ea-9409-45ff-91e4-45a394e9fb80.roa File: 3d2c81ea-9409-45ff-91e4-45a394e9fb80.roa (raw, json) Hash identifier: SsZBy9UP7QHyBpHxk+T13Grk+Su5QcslEasNkviG1Wk= Subject key identifier: 91:B0:F9:E8:BB:93:71:A3:71:CF:00:8D:4A:03:B0:23:1A:16:BC:7A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 54F77811D9D43D230E418D4FA7225D75CCB4FDE8 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3d2c81ea-9409-45ff-91e4-45a394e9fb80.roa Signing time: Mon 01 Sep 2025 19:10:05 +0000 ROA not before: Mon 01 Sep 2025 19:10:05 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:62b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f7:78:11:d9:d4:3d:23:0e:41:8d:4f:a7:22:5d:75:cc:b4:fd:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 1 19:10:05 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=ae2d7241335a73fb86a86ac692eb4523200189a48731fa2dac54b38f50f47fca, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f2:10:48:62:20:7e:ee:94:91:8f:ca:49:af: b6:7f:fc:45:71:e1:a4:8a:0e:9e:7a:a2:11:de:a5: 92:db:26:ea:8b:e8:56:21:85:94:11:4c:99:d9:d0: 68:56:59:65:00:38:d3:8f:5a:1a:41:32:39:b2:6d: 53:56:4d:55:e2:cc:6f:74:7d:6a:ec:36:8f:f7:5d: eb:2d:46:db:87:04:3e:13:49:17:b9:9c:ea:71:20: b9:70:33:34:21:fd:30:b0:36:05:5a:93:c6:79:47: 26:ed:30:0c:01:c2:36:9d:a6:ca:9b:85:b3:ed:a5: b0:6e:89:f3:14:7c:de:31:05:6d:32:6e:84:ba:3b: 7a:66:c6:44:86:c7:db:ae:85:d9:1f:4d:5f:29:4f: ad:0a:42:cf:ba:b8:d9:50:95:3c:bf:a5:64:84:02: 72:6a:e4:08:ba:88:f2:e1:a7:be:d8:dc:f3:51:c5: 95:84:e3:23:d3:fb:f5:e7:82:e1:a5:d3:19:93:e3: 0f:89:da:82:b5:9c:c2:d2:31:ba:3e:b7:a3:a4:17: 99:7d:a9:35:07:5a:ad:2b:aa:3d:3b:c9:f6:fd:0e: 3a:a1:1e:53:c5:fa:42:26:2b:04:86:30:33:d5:36: 68:b3:24:f8:d1:1e:9d:f9:74:04:f0:71:cf:db:5b: 0b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:B0:F9:E8:BB:93:71:A3:71:CF:00:8D:4A:03:B0:23:1A:16:BC:7A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3d2c81ea-9409-45ff-91e4-45a394e9fb80.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:62b::/48 Signature Algorithm: sha256WithRSAEncryption 24:9e:a5:33:ac:a9:d0:64:a0:db:6f:22:28:78:84:ff:09:48: 09:1a:31:eb:7a:e1:70:74:97:ab:ab:fa:01:68:5e:55:a0:61: b1:ce:dc:bc:ac:70:9a:e9:64:13:86:9c:8e:79:7d:32:94:9b: d9:3f:3a:fd:bb:a3:2a:c0:f7:37:6d:36:17:d7:56:5d:6e:5d: 23:7e:26:7f:c7:f1:28:10:8d:81:bf:46:a1:aa:72:da:3f:6f: 4a:b6:c5:ac:3e:53:1c:2b:46:45:5a:ff:19:c5:ec:21:01:19: 5e:9c:dd:81:2e:56:6a:96:ea:31:6b:89:ae:98:da:d8:ae:6c: 9d:fd:14:b1:65:f0:93:f4:ba:89:e1:f4:71:3c:00:7c:e4:e3: 00:e8:24:7f:5c:c1:71:ab:1a:60:ce:f0:e2:72:80:f2:82:70: 29:ab:71:cf:ae:8a:66:e4:cc:34:7e:95:d3:cc:42:0b:8a:e6: 98:3c:d5:48:8e:a3:93:05:7a:ee:95:97:5e:1e:34:1e:ec:d8: d1:43:6d:17:d3:2e:b2:16:16:8d:a0:bd:03:20:f7:0f:6b:9b: 34:33:31:1b:fb:7d:a4:70:b7:67:7e:35:e3:09:47:cd:88:75: 90:42:4c:43:8e:6d:9f:ef:6e:36:f3:5f:be:e0:b8:77:a7:29: 74:f6:36:9e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVPd4EdnUPSMOQY1PpyJddcy0/egwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTAxMTkxMDA1WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTJkNzI0MTMzNWE3M2ZiODZhODZhYzY5MmViNDUyMzIw MDE4OWE0ODczMWZhMmRhYzU0YjM4ZjUwZjQ3ZmNhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO8hBIYiB+7pSRj8pJr7Z//EVx4aSKDp56ohHepZLbJuqL 6FYhhZQRTJnZ0GhWWWUAONOPWhpBMjmybVNWTVXizG90fWrsNo/3XestRtuHBD4T SRe5nOpxILlwMzQh/TCwNgVak8Z5RybtMAwBwjadpsqbhbPtpbBuifMUfN4xBW0y boS6O3pmxkSGx9uuhdkfTV8pT60KQs+6uNlQlTy/pWSEAnJq5Ai6iPLhp77Y3PNR xZWE4yPT+/XnguGl0xmT4w+J2oK1nMLSMbo+t6OkF5l9qTUHWq0rqj07yfb9Djqh HlPF+kImKwSGMDPVNmizJPjRHp35dATwcc/bWwtvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkbD56LuTcaNxzwCNSgOwIxoWvHowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNkMmM4MWVhLTk0MDktNDVmZi05MWU0LTQ1YTM5NGU5ZmI4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABiswDQYJKoZIhvcNAQELBQADggEBACSepTOsqdBkoNtvIih4hP8J SAkaMet64XB0l6ur+gFoXlWgYbHO3LyscJrpZBOGnI55fTKUm9k/Ov27oyrA9zdt NhfXVl1uXSN+Jn/H8SgQjYG/RqGqcto/b0q2xaw+UxwrRkVa/xnF7CEBGV6c3YEu VmqW6jFria6Y2tiubJ39FLFl8JP0uonh9HE8AHzk4wDoJH9cwXGrGmDO8OJygPKC cCmrcc+uimbkzDR+ldPMQguK5pg81UiOo5MFeu6Vl14eNB7s2NFDbRfTLrIWFo2g vQMg9w9rmzQzMRv7faRwt2d+NeMJR82IdZBCTEOObZ/vbjbzX77guHenKXT2Np4= -----END CERTIFICATE-----Generated at Sun Sep 7 16:14:45 2025 by rpki-client