$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa File: a3dc9780-ee42-4415-930a-4d78bbb4e531.roa (raw, json) Hash identifier: WXSCFqv9QFUp49fUd4rUhjBZffOxtHfZvVzaVMxg9pc= Subject key identifier: C9:F7:FA:7D:F2:EC:66:18:64:4E:B0:66:4F:7D:B1:12:48:D7:73:8C Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 563643F5A05F298F6267B983E6538C8020F4C627 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa Signing time: Fri 15 Aug 2025 15:10:09 +0000 ROA not before: Fri 15 Aug 2025 15:10:09 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:36:43:f5:a0:5f:29:8f:62:67:b9:83:e6:53:8c:80:20:f4:c6:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:10:09 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=8bccd52b85a66991883f0d5a1856b256a6a30dd95ab66d10e433a4ec208dc651, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e0:e2:38:8d:71:aa:9b:dc:74:f0:6b:8c:00: 8e:30:86:cd:d4:d1:32:fe:88:0a:3a:83:3e:38:56: f9:44:17:b4:f2:86:24:6d:aa:a6:43:3e:aa:63:68: 53:39:f1:2d:ca:cd:4d:01:bd:bd:a9:34:c7:7a:42: 5d:b7:55:47:82:c8:dc:05:93:ca:cc:89:02:8e:82: 5e:1d:51:ad:d7:01:b6:53:af:5b:e6:79:c3:80:84: 16:a8:43:f7:25:57:f2:43:84:a9:48:6e:da:52:0c: 2d:4d:b1:8f:fe:69:2d:47:86:34:cf:05:85:bc:97: 2e:37:f6:3f:6e:a2:4f:79:95:78:c9:0a:01:5b:06: 30:c8:78:2b:7c:34:67:18:80:5c:76:90:6b:c7:38: 73:5c:90:26:36:13:4f:67:8c:5a:17:83:8a:f4:72: a4:00:2f:65:c9:eb:61:f6:02:18:49:48:25:5a:4c: ab:00:22:44:2a:31:63:3f:39:03:05:ef:4d:76:5e: 41:ca:ed:e4:92:e7:3d:93:03:5c:46:2b:6b:9d:40: 03:c6:4e:83:9e:97:d9:0b:1b:60:4d:19:ee:68:ec: 66:c0:35:4f:77:16:70:4b:0f:93:64:85:a8:17:0f: ab:df:94:f2:6a:51:82:c2:35:a9:30:97:cc:31:70: b5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F7:FA:7D:F2:EC:66:18:64:4E:B0:66:4F:7D:B1:12:48:D7:73:8C X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c02::/48 Signature Algorithm: sha256WithRSAEncryption 32:77:3c:91:8c:64:d3:20:af:15:9b:b9:b4:85:6b:14:f3:cc: 9d:00:84:b0:fc:df:25:a6:08:07:db:a8:12:55:30:24:2c:85: c5:e5:48:f2:55:43:cc:6f:82:7a:57:68:84:17:fb:42:a4:79: 53:03:8a:57:fb:8f:82:db:5e:98:3a:56:c0:28:bb:07:9c:76: 64:e7:e7:4c:4f:90:0e:10:e8:f0:91:17:6b:69:b0:25:1f:cc: 39:55:2c:61:90:c9:56:92:27:bd:b9:1e:4e:ec:8c:05:d3:71: 20:d9:ca:5f:fd:88:40:75:ff:7c:12:48:b4:4d:2f:a1:97:9f: bb:96:41:af:68:c9:71:23:29:a3:8a:83:a6:53:09:04:98:a2: af:14:56:7a:0b:99:4b:a6:85:af:72:f7:da:99:94:a2:e8:57: 5b:bc:77:28:74:08:44:45:f9:08:8a:82:d5:fb:7e:46:58:0e: 87:37:ee:c6:da:f3:19:ed:ce:bb:07:af:1b:a1:97:79:50:4c: c0:6c:9b:8f:64:b0:a2:62:c9:f3:de:91:73:c7:a8:8f:24:66: 0f:08:e0:57:06:76:b5:86:fe:4e:00:26:9c:42:0d:11:1a:c3: 4c:fa:e1:4b:1f:02:c4:88:f2:ca:2e:87:47:98:ad:84:36:d9: b9:41:cc:3c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVjZD9aBfKY9iZ7mD5lOMgCD0xicwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUxMDA5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YmNjZDUyYjg1YTY2OTkxODgzZjBkNWExODU2YjI1NmE2 YTMwZGQ5NWFiNjZkMTBlNDMzYTRlYzIwOGRjNjUxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDy4OI4jXGqm9x08GuMAI4whs3U0TL+iAo6gz44VvlEF7Ty hiRtqqZDPqpjaFM58S3KzU0Bvb2pNMd6Ql23VUeCyNwFk8rMiQKOgl4dUa3XAbZT r1vmecOAhBaoQ/clV/JDhKlIbtpSDC1NsY/+aS1HhjTPBYW8ly439j9uok95lXjJ CgFbBjDIeCt8NGcYgFx2kGvHOHNckCY2E09njFoXg4r0cqQAL2XJ62H2AhhJSCVa TKsAIkQqMWM/OQMF7012XkHK7eSS5z2TA1xGK2udQAPGToOel9kLG2BNGe5o7GbA NU93FnBLD5NkhagXD6vflPJqUYLCNakwl8wxcLUpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyff6ffLsZhhkTrBmT32xEkjXc4wwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2EzZGM5NzgwLWVlNDItNDQxNS05MzBhLTRkNzhiYmI0ZTUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAIwDQYJKoZIhvcNAQELBQADggEBADJ3PJGMZNMgrxWbubSFaxTz zJ0AhLD83yWmCAfbqBJVMCQshcXlSPJVQ8xvgnpXaIQX+0KkeVMDilf7j4LbXpg6 VsAouwecdmTn50xPkA4Q6PCRF2tpsCUfzDlVLGGQyVaSJ725Hk7sjAXTcSDZyl/9 iEB1/3wSSLRNL6GXn7uWQa9oyXEjKaOKg6ZTCQSYoq8UVnoLmUumha9y99qZlKLo V1u8dyh0CERF+QiKgtX7fkZYDoc37sba8xntzrsHrxuhl3lQTMBsm49ksKJiyfPe kXPHqI8kZg8I4FcGdrWG/k4AJpxCDREaw0z64UsfAsSI8souh0eYrYQ22blBzDw= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:10 2025 by rpki-client