$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c1d65d19-791f-4c71-bddb-e0812650e853.roa File: c1d65d19-791f-4c71-bddb-e0812650e853.roa (raw, json) Hash identifier: I8mXuXWwC36KSxd3Vkj6+lB/Lm61/WrlSg0nGxYSFFY= Subject key identifier: 2E:EC:C7:72:2E:FA:19:0A:19:D1:39:A6:AD:76:AD:22:E3:9F:E4:27 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4AD12E17328F57D899EB59E27D5C9CB716F8B63F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c1d65d19-791f-4c71-bddb-e0812650e853.roa Signing time: Fri 15 Aug 2025 15:30:08 +0000 ROA not before: Fri 15 Aug 2025 15:30:08 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d1:2e:17:32:8f:57:d8:99:eb:59:e2:7d:5c:9c:b7:16:f8:b6:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:30:08 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=24249d5a3b32fa47937d8d31f62fbf182ab7c1db8cda9d13769f546fc57ec136, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:e0:10:68:05:91:96:91:9c:2d:b0:22:33:e2: ef:0e:93:03:d2:d7:80:38:48:0b:9f:33:d6:d3:e1: 95:49:44:e2:47:7b:21:01:ae:35:72:4e:44:4f:19: 24:56:ca:f8:f6:ed:06:9b:2c:b4:e0:1d:0f:72:e4: 82:ee:77:2b:78:2e:2a:77:0d:6a:e9:ae:6a:15:30: 35:d6:bc:02:e4:a6:9d:7c:35:87:5c:28:39:43:5d: 98:da:d6:78:ca:5b:5a:e9:3e:1f:c0:e4:e1:50:8d: 12:49:f3:e6:ca:ba:05:ed:98:62:36:0b:32:0f:18: 48:2b:85:4d:24:76:c3:14:05:cc:2e:82:77:e7:d0: 2b:cc:73:fa:ce:0f:90:4c:16:0e:08:59:0f:89:08: 57:17:69:9c:1b:7a:80:45:d1:62:fe:04:1a:a7:b9: 44:91:97:d5:5f:78:34:54:97:a7:d5:94:95:44:b1: 7e:48:22:91:f4:de:ff:f5:04:d7:a5:84:1d:45:76: 99:be:45:3e:bc:ac:b7:e1:7c:6e:d3:93:b5:d4:b9: 8f:84:16:c4:44:65:33:e9:e1:0d:80:6b:a5:b6:14: 83:69:ff:9f:6a:73:b1:ee:72:c7:ae:9c:2d:01:e2: 58:15:76:4e:29:cb:bb:e5:cf:ea:ef:b6:3b:73:b2: 7a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:EC:C7:72:2E:FA:19:0A:19:D1:39:A6:AD:76:AD:22:E3:9F:E4:27 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c1d65d19-791f-4c71-bddb-e0812650e853.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c20::/48 Signature Algorithm: sha256WithRSAEncryption 36:0e:27:83:05:8c:ea:c4:85:d5:2f:be:e1:2b:62:00:29:b0: 75:e7:8a:8f:7a:84:7d:11:6c:8f:34:5b:c7:b0:cb:c0:b3:0e: 70:8a:0a:68:36:90:c0:e0:67:25:db:cf:df:cf:cc:cb:8e:13: 17:c4:c0:45:a7:83:22:40:c4:35:ab:fc:3b:42:56:cc:7f:a9: 67:ed:cc:df:d2:ad:04:ba:47:6e:88:51:15:8b:0d:4f:cf:ca: 9f:47:28:c9:6d:5b:48:a0:0f:ca:5e:d6:c8:6d:0d:37:2c:ef: a2:d9:d6:a9:81:b5:ca:ed:e2:6a:1f:60:e6:d6:84:b3:20:a5: 46:c3:20:a4:2e:90:c7:0b:78:a4:62:ef:0e:9d:6f:de:a3:de: 0e:7d:08:94:72:12:90:26:17:59:c5:e4:5d:5b:98:a7:99:0a: b9:a9:ff:83:3f:2a:e7:bb:06:5b:a4:14:6b:79:57:c2:93:5f: 12:6f:30:62:fe:8a:c6:0a:68:11:5d:ba:d7:af:8a:40:23:b0: f6:4a:b5:06:a9:b0:e3:81:31:3c:cd:d6:63:68:e5:e9:37:47: f0:d2:dd:35:fb:ff:ac:3f:a5:03:5a:5d:49:18:0f:a1:e6:ab: 0f:ee:be:c4:9b:e7:9d:ed:d8:f3:ed:14:47:0a:8d:22:79:51: 61:5b:1c:79 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUStEuFzKPV9iZ61nifVyctxb4tj8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUzMDA4WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDI0OWQ1YTNiMzJmYTQ3OTM3ZDhkMzFmNjJmYmYxODJh YjdjMWRiOGNkYTlkMTM3NjlmNTQ2ZmM1N2VjMTM2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCN4BBoBZGWkZwtsCIz4u8OkwPS14A4SAufM9bT4ZVJROJH eyEBrjVyTkRPGSRWyvj27QabLLTgHQ9y5ILudyt4Lip3DWrprmoVMDXWvALkpp18 NYdcKDlDXZja1njKW1rpPh/A5OFQjRJJ8+bKugXtmGI2CzIPGEgrhU0kdsMUBcwu gnfn0CvMc/rOD5BMFg4IWQ+JCFcXaZwbeoBF0WL+BBqnuUSRl9VfeDRUl6fVlJVE sX5IIpH03v/1BNelhB1Fdpm+RT68rLfhfG7Tk7XUuY+EFsREZTPp4Q2Aa6W2FINp /59qc7HucseunC0B4lgVdk4py7vlz+rvtjtzsnoRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULuzHci76GQoZ0TmmrXatIuOf5CcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2MxZDY1ZDE5LTc5MWYtNGM3MS1iZGRiLWUwODEyNjUwZTg1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADCAwDQYJKoZIhvcNAQELBQADggEBADYOJ4MFjOrEhdUvvuErYgAp sHXnio96hH0RbI80W8ewy8CzDnCKCmg2kMDgZyXbz9/PzMuOExfEwEWngyJAxDWr /DtCVsx/qWftzN/SrQS6R26IURWLDU/Pyp9HKMltW0igD8pe1shtDTcs76LZ1qmB tcrt4mofYObWhLMgpUbDIKQukMcLeKRi7w6db96j3g59CJRyEpAmF1nF5F1bmKeZ Crmp/4M/Kue7BlukFGt5V8KTXxJvMGL+isYKaBFdutevikAjsPZKtQapsOOBMTzN 1mNo5ek3R/DS3TX7/6w/pQNaXUkYD6Hmqw/uvsSb553t2PPtFEcKjSJ5UWFbHHk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:43 2025 by rpki-client