$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa File: 403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa (raw, json) Hash identifier: iGpV/BCZagj8OWKnFKgE/m29H+XyYpzbuxIkYjs3I3s= Subject key identifier: BB:DE:98:D8:B9:F5:F6:A9:13:5A:2A:F4:E2:7F:C1:BF:B2:33:00:F5 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1D663DD6E8A8C7E2A2D25CAEF2B70076D645E719 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa Signing time: Fri 15 Aug 2025 15:11:14 +0000 ROA not before: Fri 15 Aug 2025 15:11:14 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:66:3d:d6:e8:a8:c7:e2:a2:d2:5c:ae:f2:b7:00:76:d6:45:e7:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:11:14 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=5fbba7a690e886dfe35fd3be2e1c32d488a252caa51476a1e12a194be0a52530, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:46:0b:76:d6:54:7b:46:dd:a2:b5:41:c6:8d: 40:11:ec:e0:8a:cb:a6:0e:ad:04:9e:59:ee:cc:c6: 56:f5:20:8c:b4:47:7a:f5:c6:8b:93:9a:0a:f6:51: 65:42:0b:06:29:e4:74:f1:70:83:51:c7:6e:d1:90: 2a:8b:47:06:cc:c1:68:13:f6:c1:da:41:2f:7a:e3: a3:3c:91:a0:78:dd:65:cd:b0:d7:5f:c5:ac:ac:4c: 0e:04:22:ed:df:7e:63:c6:86:11:0e:6f:e2:93:71: 34:62:bf:01:8c:03:90:bd:f8:04:30:41:db:c5:97: c6:2c:fd:23:88:e3:32:93:3d:c8:b3:e5:b2:cc:35: a9:2d:01:2b:92:ed:ba:f4:96:4f:d8:b4:a2:0a:98: 09:84:64:71:36:36:81:91:36:3c:16:15:5e:cd:dc: 07:49:0e:e7:23:95:f3:7b:ef:a3:a9:e2:29:b2:77: 9b:8a:5b:f7:d2:c2:52:5c:64:ce:7a:b5:2f:fc:b8: 18:1b:fa:40:4a:dc:e8:35:0b:96:6f:b5:1d:67:94: cc:63:1f:af:69:be:bb:89:64:3e:49:d4:d6:40:c3: 97:83:35:67:ef:91:33:b7:21:44:c8:36:8f:8b:ed: f7:de:8a:8f:f3:a0:37:6f:93:e0:27:cc:ba:af:75: 40:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DE:98:D8:B9:F5:F6:A9:13:5A:2A:F4:E2:7F:C1:BF:B2:33:00:F5 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0b::/48 Signature Algorithm: sha256WithRSAEncryption 2b:b9:b4:43:e5:62:38:ed:5e:2f:74:0e:4d:60:f9:c5:d4:00: 96:e5:93:b4:0a:c9:f3:2d:4e:6c:08:76:0c:b6:a3:28:10:ae: c2:5d:69:6b:93:65:56:a8:4c:95:2c:2f:93:62:87:bd:c4:47: 20:ae:18:d3:63:b7:4e:61:31:c8:cb:e1:a3:45:90:48:b0:fa: 6a:27:1e:d7:40:72:10:c7:21:e6:db:c3:fb:6d:f3:3d:88:be: ed:03:a0:7e:6e:ed:89:aa:30:b5:6e:af:f4:77:17:18:a0:58: e8:f9:8e:e4:7c:03:b7:97:34:01:db:a2:fa:52:0c:b5:d0:b4: 04:d9:b9:3a:07:b7:52:a1:4e:27:40:88:cd:f3:16:78:e8:11: 95:87:78:60:d5:c2:34:90:93:56:1b:9f:b0:6f:1a:e6:e9:06: 8d:c7:f6:d0:71:3b:d5:8f:cc:af:dd:95:60:10:7b:5e:d6:dc: 85:d0:a6:2b:1a:fd:c1:a6:cf:d4:f0:1d:e7:8b:49:b1:3f:b5: 7b:b4:0e:52:5f:b7:6c:03:6f:e9:fe:76:1d:f4:f4:8a:71:f9: 67:9f:91:0b:2a:aa:cc:b5:38:ca:5f:6c:69:02:a1:b8:18:a0: c7:40:ff:38:0d:7c:53:5d:9a:71:0c:88:8d:8a:64:53:e4:00: 86:15:d1:97 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHWY91uiox+Ki0lyu8rcAdtZF5xkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUxMTE0WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmJiYTdhNjkwZTg4NmRmZTM1ZmQzYmUyZTFjMzJkNDg4 YTI1MmNhYTUxNDc2YTFlMTJhMTk0YmUwYTUyNTMwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwRgt21lR7Rt2itUHGjUAR7OCKy6YOrQSeWe7Mxlb1IIy0 R3r1xouTmgr2UWVCCwYp5HTxcINRx27RkCqLRwbMwWgT9sHaQS9646M8kaB43WXN sNdfxaysTA4EIu3ffmPGhhEOb+KTcTRivwGMA5C9+AQwQdvFl8Ys/SOI4zKTPciz 5bLMNaktASuS7br0lk/YtKIKmAmEZHE2NoGRNjwWFV7N3AdJDucjlfN776Op4imy d5uKW/fSwlJcZM56tS/8uBgb+kBK3Og1C5ZvtR1nlMxjH69pvruJZD5J1NZAw5eD NWfvkTO3IUTINo+L7ffeio/zoDdvk+AnzLqvdUCdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUu96Y2Ln19qkTWir04n/Bv7IzAPUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQwMzYyMmQ5LWE2NjQtNGE4NS04YTlmLTVlMGNlNGNkNDcyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAswDQYJKoZIhvcNAQELBQADggEBACu5tEPlYjjtXi90Dk1g+cXU AJblk7QKyfMtTmwIdgy2oygQrsJdaWuTZVaoTJUsL5Nih73ERyCuGNNjt05hMcjL 4aNFkEiw+monHtdAchDHIebbw/tt8z2Ivu0DoH5u7YmqMLVur/R3FxigWOj5juR8 A7eXNAHbovpSDLXQtATZuToHt1KhTidAiM3zFnjoEZWHeGDVwjSQk1Ybn7BvGubp Bo3H9tBxO9WPzK/dlWAQe17W3IXQpisa/cGmz9TwHeeLSbE/tXu0DlJft2wDb+n+ dh309Ipx+WefkQsqqsy1OMpfbGkCobgYoMdA/zgNfFNdmnEMiI2KZFPkAIYV0Zc= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:11 2025 by rpki-client