$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/9a896a7f-6bd3-4881-baaa-10bf1d555b22.roa File: 9a896a7f-6bd3-4881-baaa-10bf1d555b22.roa (raw, json) Hash identifier: zuk/Zgxhk0P+gqN5rUxrUPXxNN0MmNDom4iJ18QVuF4= Subject key identifier: CD:9E:1A:9C:C7:90:0E:7A:14:06:10:D3:1B:A4:2C:D6:6B:84:BF:BB Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 35F16494CB03E364187FA588E8E2613DD8AE8BCD Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/9a896a7f-6bd3-4881-baaa-10bf1d555b22.roa Signing time: Thu 18 Sep 2025 20:15:48 +0000 ROA not before: Thu 18 Sep 2025 20:15:48 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:2800::/41 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f1:64:94:cb:03:e3:64:18:7f:a5:88:e8:e2:61:3d:d8:ae:8b:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 18 20:15:48 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=8ef0ac858f8ff7c283ab86b21aa90bea5020901937c738a46eef8cba97f4396f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5a:00:3b:70:24:63:98:b8:b4:84:29:15:67: 68:ea:67:71:70:df:04:af:3c:f3:5c:05:c5:c7:8c: bc:45:25:25:20:69:0b:6a:89:24:2d:c0:93:18:a0: 80:73:14:ef:8a:31:6f:57:bb:dd:85:c1:23:e9:7e: a5:cd:fc:61:0d:b0:52:52:4d:37:96:b0:b6:3b:22: 55:f7:6e:73:fc:73:6c:05:5e:bc:2b:34:1d:f5:6a: f0:62:a5:44:7b:c9:b4:af:7e:cc:4f:44:83:f6:be: ed:7d:67:45:a0:72:b7:bd:06:79:11:9d:e9:dc:1f: d2:fc:0c:d2:73:04:f9:85:0a:ed:ca:00:b3:61:fb: 28:9d:2f:8d:23:6c:04:ee:88:13:bd:44:26:21:b6: d3:76:2f:8b:92:cd:7c:a1:0c:fa:69:cb:85:6c:e1: 09:5c:11:de:24:f5:60:b3:91:30:a2:7d:d5:26:26: 5b:f5:cc:fa:79:1f:ac:29:49:5e:2a:c3:5e:48:7a: 73:bc:0b:cd:a7:0a:49:d4:e3:46:c0:c3:33:97:9a: ce:c0:6c:ed:78:be:85:aa:ac:c5:89:e6:0b:c8:aa: 59:e0:db:27:8c:87:b3:65:da:f8:26:69:43:88:db: 59:fc:d0:79:9c:77:70:07:a9:e7:18:19:2b:be:89: 60:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:9E:1A:9C:C7:90:0E:7A:14:06:10:D3:1B:A4:2C:D6:6B:84:BF:BB X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/9a896a7f-6bd3-4881-baaa-10bf1d555b22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:2800::/41 Signature Algorithm: sha256WithRSAEncryption 6f:d6:d5:82:5b:6f:ca:17:fd:8e:37:7d:45:64:b8:42:c9:ab: 25:c5:ac:b0:15:de:6a:1a:15:56:af:98:7f:3a:03:f0:84:b1: 14:a9:cf:dd:5b:49:da:0c:5e:4c:3d:fc:dc:ce:56:5a:a5:b3: 3a:9c:3c:c2:30:49:98:4a:90:c8:11:40:ae:83:3a:44:0d:46: be:77:31:80:0c:c1:9d:5a:f8:09:11:99:26:ec:12:65:e4:0e: 96:7f:ab:e8:bb:42:e9:45:bd:41:fe:1d:da:90:14:77:d8:e6: 1b:38:4c:f9:ec:17:7a:bc:4a:44:f2:a4:8f:95:0f:52:a8:70: 3d:3b:97:5b:ab:de:7f:cc:54:17:84:40:89:12:f2:a5:23:3a: 1d:65:5b:e1:9a:92:62:48:cf:ac:22:bf:54:91:fc:87:cd:93: 35:47:29:7d:24:24:f0:ac:bd:59:bf:b6:e4:ab:be:c9:e5:cd: b4:a1:6c:17:94:c4:01:df:d7:9a:67:a0:40:98:af:78:90:ad: 50:cc:24:ee:8f:be:9e:8e:ec:e6:3c:85:dc:56:4b:8d:13:3d: 5d:ab:22:64:0d:42:3a:9e:2d:c8:a4:c8:54:a2:c2:ed:7f:bf: cc:e3:94:5f:16:67:4f:c8:9e:df:40:96:13:7b:32:40:82:e2: 09:f7:dc:17 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNfFklMsD42QYf6WI6OJhPdiui80wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTE4MjAxNTQ4WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWYwYWM4NThmOGZmN2MyODNhYjg2YjIxYWE5MGJlYTUw MjA5MDE5MzdjNzM4YTQ2ZWVmOGNiYTk3ZjQzOTZmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZWgA7cCRjmLi0hCkVZ2jqZ3Fw3wSvPPNcBcXHjLxFJSUg aQtqiSQtwJMYoIBzFO+KMW9Xu92FwSPpfqXN/GENsFJSTTeWsLY7IlX3bnP8c2wF XrwrNB31avBipUR7ybSvfsxPRIP2vu19Z0Wgcre9BnkRnencH9L8DNJzBPmFCu3K ALNh+yidL40jbATuiBO9RCYhttN2L4uSzXyhDPppy4Vs4QlcEd4k9WCzkTCifdUm Jlv1zPp5H6wpSV4qw15IenO8C82nCknU40bAwzOXms7AbO14voWqrMWJ5gvIqlng 2yeMh7Nl2vgmaUOI21n80Hmcd3AHqecYGSu+iWD9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzZ4anMeQDnoUBhDTG6Qs1muEv7swHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzlhODk2YTdmLTZiZDMtNDg4MS1iYWFhLTEwYmYxZDU1NWIyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwcmBZzAKAAwDQYJKoZIhvcNAQELBQADggEBAG/W1YJbb8oX/Y43fUVkuELJ qyXFrLAV3moaFVavmH86A/CEsRSpz91bSdoMXkw9/NzOVlqlszqcPMIwSZhKkMgR QK6DOkQNRr53MYAMwZ1a+AkRmSbsEmXkDpZ/q+i7QulFvUH+HdqQFHfY5hs4TPns F3q8SkTypI+VD1KocD07l1ur3n/MVBeEQIkS8qUjOh1lW+GakmJIz6wiv1SR/IfN kzVHKX0kJPCsvVm/tuSrvsnlzbShbBeUxAHf15pnoECYr3iQrVDMJO6Pvp6O7OY8 hdxWS40TPV2rImQNQjqeLcikyFSiwu1/v8zjlF8WZ0/Int9AlhN7MkCC4gn33Bc= -----END CERTIFICATE-----Generated at Fri Sep 19 00:15:06 2025 by rpki-client