$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa File: bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa (raw, json) Hash identifier: Pi6b5AzHRKc/9IqyxF4227PTEF26nDv35C3L8zjqZIU= Subject key identifier: 15:F0:00:1C:A0:D6:88:16:FF:60:32:E8:76:98:D4:13:4F:D6:DB:DD Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1E14EB0FF6747F48385B8BC58CBDAAA901762EC8 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa Signing time: Mon 01 Sep 2025 19:00:16 +0000 ROA not before: Mon 01 Sep 2025 19:00:16 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:14:eb:0f:f6:74:7f:48:38:5b:8b:c5:8c:bd:aa:a9:01:76:2e:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 1 19:00:16 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=1f02934691dea6712f8c61bb7c5ac3ee5a161da448f836a95f8e2a81d4768c21, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e4:71:b9:cd:4a:6e:a5:34:e3:a8:5c:0b:cf: 09:07:1c:c8:b5:93:ad:dc:a2:02:c1:a8:75:10:dd: c4:f0:f2:ac:94:bb:c9:69:ab:db:1e:6e:a3:d1:e7: c7:66:bb:bd:57:2e:a4:86:61:b4:73:af:dd:93:46: f4:91:29:4f:76:b1:82:64:d8:18:05:90:1b:63:e3: e7:29:e0:98:54:1e:6e:3b:e5:f1:2b:54:5a:22:3e: 24:a2:ae:e1:4b:a5:fd:70:da:3b:68:de:27:3d:c2: 1b:42:42:92:22:f9:c3:bc:51:cb:83:f4:b6:9a:3d: 53:40:9d:d9:ef:f1:60:53:e0:7d:b1:32:11:25:f3: 31:66:55:98:75:2e:6e:4f:c5:eb:33:dc:23:a4:60: 7d:3f:45:6e:aa:3b:70:3d:98:dc:5d:f3:ea:10:d9: 42:7c:35:fe:d9:eb:22:94:80:7c:95:fb:03:97:88: d8:0d:24:9f:6d:7e:30:bb:5c:06:ae:5c:d2:08:75: 85:7d:57:c2:a7:cc:b1:65:d6:ed:7e:1c:25:13:1c: dd:84:6c:13:25:3b:39:1d:d2:5d:06:02:c2:4d:00: 3f:46:e8:2a:66:79:1b:43:a0:7f:55:63:d8:1e:21: 40:e9:7b:7a:38:23:23:51:9e:84:fe:b5:e3:d6:98: 0b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F0:00:1C:A0:D6:88:16:FF:60:32:E8:76:98:D4:13:4F:D6:DB:DD X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 9c:ed:27:73:9b:c3:a2:5d:b1:8d:27:ae:34:5d:45:c7:c4:5c: 0d:17:1b:29:2b:24:b6:5e:d1:96:1f:e8:14:2f:95:bf:19:17: c5:75:09:77:cd:da:6a:aa:4f:92:cf:47:73:4e:6b:e3:e8:e1: 1d:e5:f8:72:5d:cb:59:e5:da:f5:ef:45:a9:a4:0e:36:c4:bb: d6:45:41:a3:48:34:f3:ed:be:6c:16:20:36:56:a5:13:0f:ba: 33:16:45:4f:cc:6d:c3:da:d8:b9:39:c2:3e:24:87:0a:f2:ce: be:98:b0:20:76:3a:d8:a7:e5:dc:5a:ce:bb:99:9d:e6:e2:37: 63:2f:34:4b:4e:cb:1c:4d:ca:f0:dc:a7:98:bc:9f:a1:27:19: ec:b1:4a:19:5a:55:de:57:8e:50:a0:d2:05:df:1d:4d:3d:ba: 69:3e:06:d6:fd:fc:db:1a:59:ad:2f:85:58:e4:8c:52:28:34: f6:2e:23:f8:74:b5:43:f8:62:b8:88:6e:a2:08:f0:cd:17:59: 91:e7:7e:f5:a5:6d:8d:53:2f:0c:4b:46:cb:6c:f6:58:3f:aa: ac:0d:3e:46:3c:2d:54:37:6d:48:bd:26:e7:4f:96:33:cf:e9: d6:c8:33:ea:b1:54:57:0e:f1:f2:b2:f0:95:81:c4:75:6b:03: 1d:a4:18:4e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHhTrD/Z0f0g4W4vFjL2qqQF2LsgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTAxMTkwMDE2WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjAyOTM0NjkxZGVhNjcxMmY4YzYxYmI3YzVhYzNlZTVh MTYxZGE0NDhmODM2YTk1ZjhlMmE4MWQ0NzY4YzIxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH5HG5zUpupTTjqFwLzwkHHMi1k63cogLBqHUQ3cTw8qyU u8lpq9sebqPR58dmu71XLqSGYbRzr92TRvSRKU92sYJk2BgFkBtj4+cp4JhUHm47 5fErVFoiPiSiruFLpf1w2jto3ic9whtCQpIi+cO8UcuD9LaaPVNAndnv8WBT4H2x MhEl8zFmVZh1Lm5Pxesz3COkYH0/RW6qO3A9mNxd8+oQ2UJ8Nf7Z6yKUgHyV+wOX iNgNJJ9tfjC7XAauXNIIdYV9V8KnzLFl1u1+HCUTHN2EbBMlOzkd0l0GAsJNAD9G 6CpmeRtDoH9VY9geIUDpe3o4IyNRnoT+tePWmAtBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFfAAHKDWiBb/YDLodpjUE0/W290wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JiNWFmNzU3LTFiZGMtNDhmOS1iYzIwLWM3NGZkNDkwOTZhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAJztJ3Obw6JdsY0nrjRdRcfE XA0XGykrJLZe0ZYf6BQvlb8ZF8V1CXfN2mqqT5LPR3NOa+Po4R3l+HJdy1nl2vXv RamkDjbEu9ZFQaNINPPtvmwWIDZWpRMPujMWRU/MbcPa2Lk5wj4khwryzr6YsCB2 Otin5dxazruZnebiN2MvNEtOyxxNyvDcp5i8n6EnGeyxShlaVd5XjlCg0gXfHU09 umk+Btb9/NsaWa0vhVjkjFIoNPYuI/h0tUP4YriIbqII8M0XWZHnfvWlbY1TLwxL Rsts9lg/qqwNPkY8LVQ3bUi9JudPljPP6dbIM+qxVFcO8fKy8JWBxHVrAx2kGE4= -----END CERTIFICATE-----Generated at Sun Sep 7 11:15:12 2025 by rpki-client