$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa File: 42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa (raw, json) Hash identifier: kcKyV/61XD+7q+B2Idzg64C/NKRUPjXtOQTmb1C+f60= Subject key identifier: F1:7B:3D:75:4F:27:91:9D:21:80:31:5D:74:9B:58:BE:06:28:63:3A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2CF145D336531F8EAD85CB813F085014E1530DA5 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa Signing time: Mon 01 Sep 2025 19:01:29 +0000 ROA not before: Mon 01 Sep 2025 19:01:29 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:547::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:f1:45:d3:36:53:1f:8e:ad:85:cb:81:3f:08:50:14:e1:53:0d:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 1 19:01:29 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=6a75ba9524a347396c7b385700bfa880ba94f33de0d1e623a25b680a137ee7d9, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:45:e3:b4:1a:5b:60:2d:fd:d8:c4:c3:d9:25: 3e:e6:c5:e1:8d:05:de:8f:bf:de:fd:1d:be:35:1a: 25:fe:2b:28:c8:b9:ea:54:99:e1:95:9d:48:9b:5f: 7c:65:a5:34:b2:f7:a7:bf:22:42:d5:54:d0:a8:33: 48:23:22:a0:4b:66:0e:3b:5a:5c:14:e8:7e:47:c4: 92:b5:2d:a4:c1:70:d4:f3:7d:ab:b0:f1:ac:f3:05: 59:f6:0b:d3:b7:78:e1:21:b0:88:83:72:f9:a5:78: c4:2a:33:2b:54:40:f6:ce:fc:10:36:6c:31:31:c0: e8:e4:16:c3:df:a5:b0:7f:8a:6a:0d:35:cc:75:8f: ce:ab:51:3e:9c:c7:c5:4d:48:88:aa:28:27:4d:bb: 76:69:34:96:77:a1:c4:eb:8b:b9:71:9e:49:96:96: 2f:e9:b1:c9:d9:6c:fa:35:6b:a5:9e:52:aa:74:ad: f1:67:43:05:ae:81:66:a5:97:4d:59:08:23:41:f8: 2d:e9:e9:84:12:0e:f8:83:f0:22:57:ef:1b:6e:12: c5:68:96:9f:86:12:9f:56:9e:1b:d4:5f:b0:d2:4c: 85:81:74:d4:a4:0b:fe:2a:f7:26:25:6e:49:22:1a: 42:91:f0:05:0a:2d:1d:95:97:0b:1f:0d:6c:57:91: 65:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:7B:3D:75:4F:27:91:9D:21:80:31:5D:74:9B:58:BE:06:28:63:3A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:547::/48 Signature Algorithm: sha256WithRSAEncryption a4:ac:3f:24:e8:50:a0:be:37:fa:e5:41:9e:04:4d:80:4d:4e: 28:0e:ec:c9:06:f4:a1:11:c4:12:26:b2:54:3d:fb:15:dd:06: ba:c4:ac:67:39:b9:b4:fd:dd:dc:14:a2:1e:c8:45:f9:29:77: b9:2e:30:79:26:f7:e2:b7:47:86:07:1f:77:61:6d:c0:df:6b: 9f:67:67:bf:6e:57:cf:2a:63:78:84:84:fe:9a:43:5c:c8:04: f3:a8:cf:45:f1:80:c9:7d:1b:c0:64:e8:eb:48:70:f3:ba:09: 3c:41:cf:1a:65:1b:23:13:66:bd:f2:8a:9e:7c:31:a0:f8:6c: a4:3f:e6:fa:a0:6c:2f:3e:bd:30:35:a6:23:8e:5d:de:c9:83: 31:f5:7f:99:12:59:6c:c5:83:10:c8:9d:85:cd:9b:c6:bb:c5: 19:f2:34:cf:97:58:cf:ab:bc:1b:e9:f1:3e:c7:8b:f5:c5:02: c9:96:a5:8a:a8:19:34:d6:b6:9c:ad:05:fd:a4:b6:3e:aa:e9: 25:91:7c:54:4d:47:a4:6a:a8:48:cf:ff:28:e2:9f:88:bb:3d: d7:b1:49:51:f7:47:7b:52:3c:af:4a:84:d1:63:cc:3d:6a:f7: d4:70:30:f8:49:99:a9:61:73:0a:2d:e9:73:13:cc:b0:24:3f: c2:df:b5:5d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULPFF0zZTH46thcuBPwhQFOFTDaUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTAxMTkwMTI5WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTc1YmE5NTI0YTM0NzM5NmM3YjM4NTcwMGJmYTg4MGJh OTRmMzNkZTBkMWU2MjNhMjViNjgwYTEzN2VlN2Q5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtReO0GltgLf3YxMPZJT7mxeGNBd6Pv979Hb41GiX+KyjI uepUmeGVnUibX3xlpTSy96e/IkLVVNCoM0gjIqBLZg47WlwU6H5HxJK1LaTBcNTz fauw8azzBVn2C9O3eOEhsIiDcvmleMQqMytUQPbO/BA2bDExwOjkFsPfpbB/imoN Ncx1j86rUT6cx8VNSIiqKCdNu3ZpNJZ3ocTri7lxnkmWli/pscnZbPo1a6WeUqp0 rfFnQwWugWall01ZCCNB+C3p6YQSDviD8CJX7xtuEsVolp+GEp9WnhvUX7DSTIWB dNSkC/4q9yYlbkkiGkKR8AUKLR2VlwsfDWxXkWXPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8Xs9dU8nkZ0hgDFddJtYvgYoYzowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQyYjFjZmQ5LWY2MTMtNGU2OC1iNGM2LTQ2OGU1ZDUwYjljNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUcwDQYJKoZIhvcNAQELBQADggEBAKSsPyToUKC+N/rlQZ4ETYBN TigO7MkG9KERxBImslQ9+xXdBrrErGc5ubT93dwUoh7IRfkpd7kuMHkm9+K3R4YH H3dhbcDfa59nZ79uV88qY3iEhP6aQ1zIBPOoz0XxgMl9G8Bk6OtIcPO6CTxBzxpl GyMTZr3yip58MaD4bKQ/5vqgbC8+vTA1piOOXd7JgzH1f5kSWWzFgxDInYXNm8a7 xRnyNM+XWM+rvBvp8T7Hi/XFAsmWpYqoGTTWtpytBf2ktj6q6SWRfFRNR6RqqEjP /yjin4i7PdexSVH3R3tSPK9KhNFjzD1q99RwMPhJmalhcwot6XMTzLAkP8LftV0= -----END CERTIFICATE-----Generated at Fri Sep 19 10:28:04 2025 by rpki-client