$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/89848d84-ccf0-40c8-b12a-ac4d8910d997.roa File: 89848d84-ccf0-40c8-b12a-ac4d8910d997.roa (raw, json) Hash identifier: 9IDRE0cvpC+Z0qB/f+4VD81g6Bdv98TdzZq1Deg94CU= Subject key identifier: BA:FB:FC:A5:13:8C:5C:AE:89:F4:74:35:8E:AB:DB:C5:18:AC:4E:F4 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0DB8C546D329FE85C457D858FF2F5F6E304FCC4A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/89848d84-ccf0-40c8-b12a-ac4d8910d997.roa Signing time: Mon 01 Sep 2025 19:01:15 +0000 ROA not before: Mon 01 Sep 2025 19:01:15 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:3a7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b8:c5:46:d3:29:fe:85:c4:57:d8:58:ff:2f:5f:6e:30:4f:cc:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 1 19:01:15 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=c70366cedaede01e734ff0bb6574e34c16d4899dc628f4729b7ce2043ee5b7da, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9a:8a:da:e2:0e:4a:3e:f0:e8:a1:31:42:93: e1:55:87:e4:50:92:f5:44:44:5d:c5:0a:f8:2f:01: da:2f:0c:cf:8e:5e:68:3b:af:da:f3:53:2c:46:b6: 35:3e:30:7a:fa:5e:75:f8:81:53:38:77:8a:37:48: 48:dc:5d:69:bf:f3:ed:b2:8e:ce:d6:1b:a3:ab:87: ee:d2:f2:ae:82:68:2b:71:14:05:21:85:84:1e:ea: 6a:32:bf:84:bf:a3:17:71:80:33:79:93:b4:be:18: 31:c9:6f:51:fa:25:41:3d:ee:1a:49:6e:63:86:c1: 6f:90:00:f0:c9:25:4b:b4:f8:f5:97:71:08:61:e4: c2:51:74:18:03:e7:de:dd:84:52:cc:f8:f0:f1:f8: f2:1b:cf:18:a7:2f:45:09:e5:0e:69:94:4c:0e:77: d6:45:d2:0d:06:80:81:3b:0d:d5:be:3c:a4:0e:6b: a6:ea:08:cd:70:36:82:1b:3a:6e:13:d7:0b:65:fe: 7e:44:af:eb:3e:9d:69:21:4e:4b:55:5e:2f:25:86: 74:c3:0c:03:70:c8:36:e9:ce:59:cc:bb:3c:e1:de: 3d:43:27:b7:14:22:7a:c8:29:4d:b6:25:ff:ea:5e: 56:df:7c:2e:73:cb:1c:66:de:94:e3:86:88:b4:4c: 4a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:FB:FC:A5:13:8C:5C:AE:89:F4:74:35:8E:AB:DB:C5:18:AC:4E:F4 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/89848d84-ccf0-40c8-b12a-ac4d8910d997.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3a7::/48 Signature Algorithm: sha256WithRSAEncryption 3c:b5:8e:11:b1:3e:12:76:af:23:61:77:c0:42:cb:38:d0:41: ae:98:ac:65:e2:98:cd:af:5c:ef:ef:e8:8b:29:e0:d8:bc:ca: 71:37:71:53:96:88:21:5d:c6:a0:9d:7a:7b:4f:d6:6b:bc:b1: 91:ff:72:5d:13:59:90:de:7e:28:43:08:66:8c:ee:b8:70:7c: 04:da:18:f1:f0:0a:61:5c:7d:fe:ff:72:9c:bc:9d:af:0c:68: cf:8f:37:c9:4e:84:1b:96:b2:f3:6a:a5:11:f7:26:ef:f3:8e: bb:28:aa:17:60:ec:ab:86:ef:b7:a3:c8:69:be:b8:a8:5f:cf: 82:bd:65:b3:75:1f:66:41:fd:50:aa:f7:2c:e9:88:44:8f:03: 6d:a2:93:d5:15:ee:50:db:05:d0:dc:6a:94:fb:66:9c:69:1b: 9b:fe:5a:fe:2a:d8:c5:6b:21:1c:9b:13:54:34:d5:89:a4:d8: ec:00:94:f7:8f:86:cf:d9:ba:c5:cb:b0:04:20:16:1b:51:f8: f6:64:ba:d9:fa:2c:93:86:18:20:21:e2:b9:5d:3c:d2:83:b6: 15:01:bc:13:d5:e8:96:da:b5:79:2f:aa:16:12:6d:32:d8:a2: dc:aa:c7:cd:60:f0:4e:41:e6:a4:0c:28:3e:07:6a:7b:ab:aa: 6b:33:8f:76 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDbjFRtMp/oXEV9hY/y9fbjBPzEowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTAxMTkwMTE1WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzAzNjZjZWRhZWRlMDFlNzM0ZmYwYmI2NTc0ZTM0YzE2 ZDQ4OTlkYzYyOGY0NzI5YjdjZTIwNDNlZTViN2RhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDemora4g5KPvDooTFCk+FVh+RQkvVERF3FCvgvAdovDM+O Xmg7r9rzUyxGtjU+MHr6XnX4gVM4d4o3SEjcXWm/8+2yjs7WG6Orh+7S8q6CaCtx FAUhhYQe6moyv4S/oxdxgDN5k7S+GDHJb1H6JUE97hpJbmOGwW+QAPDJJUu0+PWX cQhh5MJRdBgD597dhFLM+PDx+PIbzxinL0UJ5Q5plEwOd9ZF0g0GgIE7DdW+PKQO a6bqCM1wNoIbOm4T1wtl/n5Er+s+nWkhTktVXi8lhnTDDANwyDbpzlnMuzzh3j1D J7cUInrIKU22Jf/qXlbffC5zyxxm3pTjhoi0TEpfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuvv8pROMXK6J9HQ1jqvbxRisTvQwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg5ODQ4ZDg0LWNjZjAtNDBjOC1iMTJhLWFjNGQ4OTEwZDk5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA6cwDQYJKoZIhvcNAQELBQADggEBADy1jhGxPhJ2ryNhd8BCyzjQ Qa6YrGXimM2vXO/v6Isp4Ni8ynE3cVOWiCFdxqCdentP1mu8sZH/cl0TWZDefihD CGaM7rhwfATaGPHwCmFcff7/cpy8na8MaM+PN8lOhBuWsvNqpRH3Ju/zjrsoqhdg 7KuG77ejyGm+uKhfz4K9ZbN1H2ZB/VCq9yzpiESPA22ik9UV7lDbBdDcapT7Zpxp G5v+Wv4q2MVrIRybE1Q01Ymk2OwAlPePhs/ZusXLsAQgFhtR+PZkutn6LJOGGCAh 4rldPNKDthUBvBPV6JbatXkvqhYSbTLYotyqx81g8E5B5qQMKD4Hanurqmszj3Y= -----END CERTIFICATE-----Generated at Sun Sep 7 13:17:18 2025 by rpki-client