$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa File: 42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa (raw, json) Hash identifier: EWgGIti8Jh5+Jna6aNIvHp/xlE74zKoMd+hH/DPTNUU= Subject key identifier: 3B:FA:1C:69:A1:BC:6F:54:BA:F2:99:F4:79:96:E3:70:8B:A6:E0:AF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 43F805654BBF5A32EBDBEF7489D12D83D90AC2B5 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa Signing time: Tue 05 Aug 2025 18:10:19 +0000 ROA not before: Tue 05 Aug 2025 18:10:19 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:547::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:f8:05:65:4b:bf:5a:32:eb:db:ef:74:89:d1:2d:83:d9:0a:c2:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 5 18:10:19 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=0ca3d2b1d2dd596b05d0077c4c58945106f6eda000345f82f74e238c5bfff18c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:f8:c5:3e:f3:24:5e:d5:be:e2:06:45:27: 8d:fa:15:d0:14:c7:b4:81:fd:ea:1a:92:d2:30:14: c5:25:8a:06:e6:6e:12:39:b2:76:4b:2b:82:ca:77: 9b:06:74:bc:c7:53:79:fc:4c:86:81:9c:c5:0f:d0: 18:70:27:25:e4:16:10:8a:a7:76:07:ec:99:12:7f: 96:fc:8d:d4:a3:43:36:aa:12:13:d8:f0:66:76:63: 50:f6:4c:5c:fd:11:d4:ee:3d:15:65:99:e3:e5:45: 75:30:57:ee:6a:db:b4:01:10:5f:a8:94:d1:a3:20: 78:95:d7:52:e8:d4:66:e6:d9:0b:c6:50:ea:4a:40: 07:26:7c:47:36:da:3f:f5:f4:43:55:b1:e1:a8:0e: 09:e3:e7:3e:35:d7:17:ba:a3:3a:18:27:59:dd:c8: 0f:b7:46:57:d3:9a:cb:8a:aa:0b:59:d3:2b:dc:e4: b0:9e:75:de:dd:2c:53:d0:fb:70:ed:6d:54:05:67: 7b:de:b2:3d:1a:91:40:e0:d8:42:ce:f9:e0:c5:28: 95:7a:aa:ac:bb:8f:90:cd:b4:63:e1:41:5e:6d:0e: ec:ba:96:bf:b9:e8:0e:93:82:bb:80:a3:31:df:26: 46:63:cb:7f:8c:23:e5:59:9c:90:b1:7a:86:be:ae: 25:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FA:1C:69:A1:BC:6F:54:BA:F2:99:F4:79:96:E3:70:8B:A6:E0:AF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:547::/48 Signature Algorithm: sha256WithRSAEncryption 6c:9c:56:43:b1:2e:e6:26:1d:93:fc:ac:73:aa:40:55:0e:e4: c4:f8:04:0d:8e:4f:4f:9b:b9:54:79:9f:f9:fc:c3:fb:75:05: 2b:04:ff:d8:3a:5a:28:f4:c6:15:60:b7:c6:17:1b:a1:a6:8a: 5a:99:ae:83:e8:36:ec:d3:b7:6e:f7:3e:e6:31:42:49:c3:b1: 6c:fe:9b:80:0e:0b:e3:27:bf:fe:e7:19:69:ed:2c:e4:61:8e: 34:65:c6:93:3e:6b:6d:11:9c:0c:df:0d:45:f0:f2:c1:a4:d7: 33:ee:2f:e7:c0:47:ca:06:c8:5f:f8:26:9d:52:88:42:a7:3e: 7d:4a:71:e4:bc:4d:57:d7:bc:98:81:8a:d3:af:eb:61:7e:51: b2:ba:a0:4f:20:fc:99:3d:e1:ed:09:56:15:ec:f0:6d:87:3a: 38:d8:d4:8b:d0:a7:d6:81:01:38:2b:74:85:ef:09:d8:cc:51: 56:7a:44:9b:5f:d4:03:b3:c3:ee:a2:92:5f:d3:c1:8d:d9:57: db:eb:01:a1:a0:91:43:50:9b:cb:01:8d:ec:fd:b3:71:ff:66: ce:af:bb:95:78:2d:62:40:83:ea:0c:52:2a:8f:89:51:38:7e: 50:60:88:f2:e2:54:2f:d3:c2:f6:a4:b9:0e:4f:b4:8e:64:ae: 12:91:07:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQ/gFZUu/WjLr2+90idEtg9kKwrUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODA1MTgxMDE5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2EzZDJiMWQyZGQ1OTZiMDVkMDA3N2M0YzU4OTQ1MTA2 ZjZlZGEwMDAzNDVmODJmNzRlMjM4YzViZmZmMThjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRD/jFPvMkXtW+4gZFJ436FdAUx7SB/eoaktIwFMUligbm bhI5snZLK4LKd5sGdLzHU3n8TIaBnMUP0BhwJyXkFhCKp3YH7JkSf5b8jdSjQzaq EhPY8GZ2Y1D2TFz9EdTuPRVlmePlRXUwV+5q27QBEF+olNGjIHiV11Lo1Gbm2QvG UOpKQAcmfEc22j/19ENVseGoDgnj5z411xe6ozoYJ1ndyA+3RlfTmsuKqgtZ0yvc 5LCedd7dLFPQ+3DtbVQFZ3vesj0akUDg2ELO+eDFKJV6qqy7j5DNtGPhQV5tDuy6 lr+56A6TgruAozHfJkZjy3+MI+VZnJCxeoa+riXbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUO/ocaaG8b1S68pn0eZbjcIum4K8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQyYjFjZmQ5LWY2MTMtNGU2OC1iNGM2LTQ2OGU1ZDUwYjljNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUcwDQYJKoZIhvcNAQELBQADggEBAGycVkOxLuYmHZP8rHOqQFUO 5MT4BA2OT0+buVR5n/n8w/t1BSsE/9g6Wij0xhVgt8YXG6GmilqZroPoNuzTt273 PuYxQknDsWz+m4AOC+Mnv/7nGWntLORhjjRlxpM+a20RnAzfDUXw8sGk1zPuL+fA R8oGyF/4Jp1SiEKnPn1KceS8TVfXvJiBitOv62F+UbK6oE8g/Jk94e0JVhXs8G2H OjjY1IvQp9aBATgrdIXvCdjMUVZ6RJtf1AOzw+6ikl/TwY3ZV9vrAaGgkUNQm8sB jez9s3H/Zs6vu5V4LWJAg+oMUiqPiVE4flBgiPLiVC/TwvakuQ5PtI5krhKRB9Q= -----END CERTIFICATE-----Generated at Wed Aug 20 10:40:32 2025 by rpki-client