$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: MeQgQFgX1uw29Vq08JLqxdhvWaHuUZLRORGy5V/1P5A= Subject key identifier: 9E:1C:FD:5F:0A:36:79:08:A8:BB:9D:D3:5A:BA:D9:8C:25:2B:69:01 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 407E1D4DEB279BBC923073A32CD73CD24D07D0F6 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Mon 01 Sep 2025 19:10:09 +0000 ROA not before: Mon 01 Sep 2025 19:10:09 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:7e:1d:4d:eb:27:9b:bc:92:30:73:a3:2c:d7:3c:d2:4d:07:d0:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 1 19:10:09 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=bde2d08bdf15852e14a2dad41b4a69133a62ba84e4d8513fc28dd4614573870f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:af:6b:ad:3f:5e:03:96:4c:84:66:54:78:a0: 88:71:c9:75:12:05:42:e2:38:39:b2:37:fb:97:ff: 8c:ff:8f:39:e3:e8:71:fa:6a:07:82:5a:ba:e3:76: b6:02:a3:c2:5a:36:1c:7c:5d:9f:c5:17:bb:58:3a: 5e:b2:74:50:fd:27:de:5b:66:57:56:43:41:08:ea: fb:26:9b:e1:52:46:9f:0c:b0:4c:11:7b:0e:91:ef: a5:00:40:18:ce:32:5c:4b:3a:63:c4:c3:bb:ea:f7: 4c:ed:01:28:42:dc:c2:2c:91:8e:6a:d2:57:50:1e: bb:cb:13:ea:61:5a:0f:54:1c:24:3b:62:46:5e:e5: 2c:20:42:03:34:d9:be:08:f9:cf:db:9c:94:93:ba: e6:87:09:04:c7:22:45:28:28:bd:62:59:62:4b:b3: 88:66:65:85:e4:5e:d9:62:c4:cb:50:b6:48:08:d7: ee:e9:85:be:49:0b:3e:41:a7:54:3c:40:d9:b3:bb: 7c:37:b4:75:6e:94:a4:f2:fd:48:71:67:f6:5e:b9: df:ea:d0:48:1c:47:73:f3:36:d4:22:cb:f9:d3:af: bf:dc:ac:ca:84:d0:ea:8c:f0:f8:ef:83:19:9f:cc: d7:16:12:d5:8d:5d:6e:d8:19:18:e6:8f:4d:9e:7c: a7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1C:FD:5F:0A:36:79:08:A8:BB:9D:D3:5A:BA:D9:8C:25:2B:69:01 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 90:5a:da:74:62:28:a8:2a:e5:4f:be:eb:c8:4a:bb:30:2e:8c: d9:8f:bc:b5:11:f1:ab:bd:8d:e1:f4:74:72:55:ad:3d:30:26: 7c:82:5d:50:5e:c3:b5:bb:70:1f:c6:30:8f:97:61:0e:da:ac: d2:9f:07:e7:97:df:a2:fe:83:9d:9a:9c:37:10:80:49:de:bc: d2:13:99:9f:02:c1:0e:98:d0:d6:d8:d2:ca:6c:df:a3:d8:50: d8:2f:0e:2b:1e:43:93:f9:43:b4:df:a1:a6:b0:ba:44:33:f3: bd:3b:ae:e9:29:87:7b:7c:49:a6:5a:90:b0:6f:61:25:9f:28: 29:29:5c:09:aa:b6:0c:8c:3d:97:96:16:0c:58:9e:6e:b0:a1: ef:ef:15:d1:a2:fc:27:d2:f3:74:4d:f0:5f:b5:9a:0a:bb:ca: a0:c5:fa:95:f2:df:d8:1e:a9:0c:5c:63:20:53:1b:7f:d6:a2: 89:9c:a0:48:dc:e6:33:d8:ad:4f:e3:d4:b0:e6:f4:b3:4e:3f: fd:ca:99:3f:78:af:c9:72:15:ba:47:a5:75:72:0f:92:cf:f1: b1:33:f8:7d:b5:f3:27:c0:d0:89:8e:c4:62:14:2c:3f:87:8d: ed:64:8d:b3:f6:75:fc:d2:02:3c:ff:a7:8e:f3:ed:e6:09:62: 31:1c:e0:75 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQH4dTesnm7ySMHOjLNc80k0H0PYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTAxMTkxMDA5WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGUyZDA4YmRmMTU4NTJlMTRhMmRhZDQxYjRhNjkxMzNh NjJiYTg0ZTRkODUxM2ZjMjhkZDQ2MTQ1NzM4NzBmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDr2utP14DlkyEZlR4oIhxyXUSBULiODmyN/uX/4z/jznj 6HH6ageCWrrjdrYCo8JaNhx8XZ/FF7tYOl6ydFD9J95bZldWQ0EI6vsmm+FSRp8M sEwRew6R76UAQBjOMlxLOmPEw7vq90ztAShC3MIskY5q0ldQHrvLE+phWg9UHCQ7 YkZe5SwgQgM02b4I+c/bnJSTuuaHCQTHIkUoKL1iWWJLs4hmZYXkXtlixMtQtkgI 1+7phb5JCz5Bp1Q8QNmzu3w3tHVulKTy/UhxZ/Zeud/q0EgcR3PzNtQiy/nTr7/c rMqE0OqM8PjvgxmfzNcWEtWNXW7YGRjmj02efKdvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnhz9Xwo2eQiou53TWrrZjCUraQEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAJBa2nRiKKgq5U++68hKuzAu jNmPvLUR8au9jeH0dHJVrT0wJnyCXVBew7W7cB/GMI+XYQ7arNKfB+eX36L+g52a nDcQgEnevNITmZ8CwQ6Y0NbY0sps36PYUNgvDiseQ5P5Q7TfoaawukQz8707rukp h3t8SaZakLBvYSWfKCkpXAmqtgyMPZeWFgxYnm6woe/vFdGi/CfS83RN8F+1mgq7 yqDF+pXy39geqQxcYyBTG3/WoomcoEjc5jPYrU/j1LDm9LNOP/3KmT94r8lyFbpH pXVyD5LP8bEz+H218yfA0ImOxGIULD+Hje1kjbP2dfzSAjz/p47z7eYJYjEc4HU= -----END CERTIFICATE-----Generated at Sun Sep 7 13:46:49 2025 by rpki-client