$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/90fb78db-2abf-4a4f-8217-d0c64f258f70.roa File: 90fb78db-2abf-4a4f-8217-d0c64f258f70.roa (raw, json) Hash identifier: fSxjgQUALz00EIUMJ4oTJO0ZG2ON92ShUewa78Wz8IY= Subject key identifier: A1:8E:48:56:34:F4:2B:E9:9A:A0:B5:7E:57:1E:CA:BB:EB:92:7C:CF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 135A58823C91E371CBD08B2676A9D41F7C8710E0 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/90fb78db-2abf-4a4f-8217-d0c64f258f70.roa Signing time: Fri 15 Aug 2025 15:10:06 +0000 ROA not before: Fri 15 Aug 2025 15:10:06 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:5a:58:82:3c:91:e3:71:cb:d0:8b:26:76:a9:d4:1f:7c:87:10:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:10:06 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=c9854e71333eae4f44813cbf08cf1da324e292522bc5a0a5a3016d9a7bf27a67, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bd:c4:fc:95:46:0c:f9:a5:31:b6:7b:7a:46: 1a:a7:e1:4f:02:fe:71:40:7e:94:a5:61:65:8d:51: 0c:70:82:69:8a:6c:bb:f1:7c:83:46:0d:41:9e:e3: cb:d3:5a:c4:e9:38:cd:75:84:54:23:65:70:b6:98: 9b:e5:e8:bd:3c:1d:51:88:38:e1:e0:a2:17:e9:f5: 24:9b:20:eb:45:c3:6e:47:a6:3d:3d:4f:c5:4f:fb: cd:1d:17:9a:7c:ef:77:03:f5:0e:f5:fc:df:5a:eb: c0:fa:3d:b1:96:5f:5f:5e:e0:85:ef:da:61:0d:5b: ec:b6:b2:20:ff:ae:b6:58:45:2c:89:e8:c4:36:3b: 37:ec:fd:84:30:e6:ad:2a:e2:14:e8:1c:47:b8:40: ab:d9:cc:10:9a:cf:83:b2:62:37:ba:12:5a:ca:ee: d3:f7:91:5f:6b:94:4e:9b:ca:f7:97:79:c4:76:18: 4c:2d:26:a9:36:3d:03:8a:93:bf:74:fd:76:98:30: 93:d4:e7:79:42:b9:c5:fa:31:56:06:17:71:8b:48: e2:10:d4:1f:50:ce:06:be:e8:19:cf:6a:e5:fa:f0: 3e:4b:e4:b5:80:47:92:17:b5:6d:b8:35:d5:da:7e: 00:74:c3:58:57:fc:49:cc:ad:b1:a6:9a:2c:4a:d9: cb:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:8E:48:56:34:F4:2B:E9:9A:A0:B5:7E:57:1E:CA:BB:EB:92:7C:CF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/90fb78db-2abf-4a4f-8217-d0c64f258f70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c01::/48 Signature Algorithm: sha256WithRSAEncryption 64:74:f7:6c:9c:14:71:ff:b5:63:2c:01:ec:7a:e4:fe:bb:c9: 9d:75:72:53:f1:68:84:07:37:2d:e3:f8:c4:ff:8c:d1:07:27: 4b:d5:84:9c:01:a0:35:ff:32:3e:97:60:d4:cb:7c:e9:7d:dc: 5c:f5:fd:4a:16:7b:95:17:d0:50:9e:f8:17:e4:c4:7e:86:d8: 62:c2:5d:ee:56:c3:d9:2e:4d:80:cc:f1:24:9c:fb:27:b8:e5: 47:10:20:fe:77:76:3f:cc:55:5a:89:0b:92:cd:21:d7:7b:b4: b6:14:ba:7b:d4:db:ae:46:98:89:fa:a6:a6:f2:46:f1:6c:c3: e8:08:25:93:c1:99:10:89:17:5a:da:68:bb:80:ad:4b:43:62: 8b:ff:db:f6:c7:16:5f:a0:49:91:bc:36:2d:e4:9b:8d:6e:98: 71:cf:98:ca:af:7f:d2:77:2c:bb:c0:92:cf:3a:22:14:04:1c: 52:8c:38:bb:93:6f:5d:ed:04:5f:cf:43:0d:b5:9b:a8:f0:e8: 7f:15:c9:e0:ee:77:47:61:a3:c3:a5:f0:70:87:32:91:f9:1b: 28:a0:1e:69:36:6a:19:1f:11:3a:7d:2b:c7:db:ec:93:0f:0b: c9:c1:95:51:d9:fd:9f:1e:4a:80:ab:45:81:b9:4e:ff:5b:1e: 14:e9:52:85 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE1pYgjyR43HL0IsmdqnUH3yHEOAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUxMDA2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTg1NGU3MTMzM2VhZTRmNDQ4MTNjYmYwOGNmMWRhMzI0 ZTI5MjUyMmJjNWEwYTVhMzAxNmQ5YTdiZjI3YTY3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCevcT8lUYM+aUxtnt6Rhqn4U8C/nFAfpSlYWWNUQxwgmmK bLvxfINGDUGe48vTWsTpOM11hFQjZXC2mJvl6L08HVGIOOHgohfp9SSbIOtFw25H pj09T8VP+80dF5p873cD9Q71/N9a68D6PbGWX19e4IXv2mENW+y2siD/rrZYRSyJ 6MQ2Ozfs/YQw5q0q4hToHEe4QKvZzBCaz4OyYje6ElrK7tP3kV9rlE6byveXecR2 GEwtJqk2PQOKk790/XaYMJPU53lCucX6MVYGF3GLSOIQ1B9Qzga+6BnPauX68D5L 5LWAR5IXtW24NdXafgB0w1hX/EnMrbGmmixK2csDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoY5IVjT0K+maoLV+Vx7Ku+uSfM8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzkwZmI3OGRiLTJhYmYtNGE0Zi04MjE3LWQwYzY0ZjI1OGY3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAEwDQYJKoZIhvcNAQELBQADggEBAGR092ycFHH/tWMsAex65P67 yZ11clPxaIQHNy3j+MT/jNEHJ0vVhJwBoDX/Mj6XYNTLfOl93Fz1/UoWe5UX0FCe +BfkxH6G2GLCXe5Ww9kuTYDM8SSc+ye45UcQIP53dj/MVVqJC5LNIdd7tLYUunvU 265GmIn6pqbyRvFsw+gIJZPBmRCJF1raaLuArUtDYov/2/bHFl+gSZG8Ni3km41u mHHPmMqvf9J3LLvAks86IhQEHFKMOLuTb13tBF/PQw21m6jw6H8VyeDud0dho8Ol 8HCHMpH5GyigHmk2ahkfETp9K8fb7JMPC8nBlVHZ/Z8eSoCrRYG5Tv9bHhTpUoU= -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:52 2025 by rpki-client