$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa File: c91e5573-a757-4c6b-9000-0403e0e4fa00.roa (raw, json) Hash identifier: jYXFiV7DxqwghEhVEDD1BJZYSPxP70FOUPGkaYgbLrA= Subject key identifier: 80:DC:99:84:4E:63:C8:B0:47:48:06:C3:29:E9:81:B0:34:7B:8C:A8 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 28ECCD8203F5602F6F31EE12BF6540E7F2AE2582 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa Signing time: Mon 01 Sep 2025 19:01:21 +0000 ROA not before: Mon 01 Sep 2025 19:01:21 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:544::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ec:cd:82:03:f5:60:2f:6f:31:ee:12:bf:65:40:e7:f2:ae:25:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 1 19:01:21 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=1764e13ecb4c0849c47280114cfd14d5f663b16216593fd7a49499221ff36f4d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d8:39:82:45:a9:47:ae:97:ff:04:43:f3:63: 9c:34:62:cd:ad:15:93:24:7d:32:c8:aa:73:15:d3: 19:19:a7:e6:3b:62:d4:6b:0e:1e:be:7a:d6:f0:67: dd:da:de:6e:8b:f2:60:60:1e:b1:1e:f4:c9:80:4f: 73:70:4b:77:79:23:9a:33:67:ba:6e:65:08:a9:75: 34:2e:25:b3:97:63:1d:27:82:16:ec:9d:f9:fd:c6: 84:e5:22:7d:1b:5c:d1:96:33:e3:95:7c:2c:7c:81: a8:aa:21:43:02:2e:70:3f:8d:27:a6:a6:45:dc:77: 36:03:9c:24:ff:a6:52:ab:1d:74:92:dd:bf:03:a4: dd:26:7b:9c:56:68:fd:e1:2c:6d:9c:6a:68:bd:e3: 4f:12:e8:ea:b6:68:31:2c:ff:7a:2e:f9:9c:40:a9: 32:e4:12:29:66:29:9b:57:25:14:21:2f:83:59:6f: 9c:87:b4:31:71:ac:8b:79:9a:7e:6d:25:e2:96:e8: 17:78:d5:33:97:eb:46:be:d2:27:5f:c2:89:4a:95: 23:a5:81:e5:9d:e1:13:1f:6e:54:72:7c:d5:5e:80: 00:92:c2:92:be:56:be:e1:ef:e7:40:b8:6c:22:98: 2f:9c:86:9d:ff:d9:76:7f:a2:5f:cc:42:9c:14:81: cd:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:DC:99:84:4E:63:C8:B0:47:48:06:C3:29:E9:81:B0:34:7B:8C:A8 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:544::/48 Signature Algorithm: sha256WithRSAEncryption 66:a2:3b:b0:9b:63:fa:59:a0:42:03:59:a8:de:6d:a9:09:95: a0:6d:ed:ff:7b:c9:dc:5e:80:64:a6:28:db:9f:0a:fc:62:27: 47:64:a2:ea:36:8a:9c:41:fb:85:ea:f8:4d:7d:5d:e6:18:c6: b3:41:d7:ad:2e:07:c5:21:80:09:5c:08:a9:8f:71:a2:ff:d9: 50:cb:7d:72:57:38:a1:d4:b2:94:6c:fb:ff:32:73:a4:90:07: 38:02:aa:f4:d2:59:4f:8f:c6:a4:0f:61:85:2b:1e:33:e0:03: 02:98:9b:50:2d:2b:df:cd:98:ea:d0:1e:56:e4:38:a4:e1:86: eb:36:d0:da:b3:32:3c:3d:da:2b:f2:44:ed:91:1f:d8:c2:45: 6a:77:4f:27:c0:3f:19:92:ad:0c:44:53:b0:01:de:bd:d1:d6: af:11:a1:9c:49:0b:1e:43:fd:55:ce:e7:26:b3:6c:3b:ab:99: e2:3d:c8:18:b3:50:91:77:cf:8e:39:44:8d:6c:e1:da:3d:e9: ea:af:dc:8f:7e:28:e3:b8:67:ea:ec:07:6f:b1:bb:4b:18:1d: c0:05:02:6c:58:7f:56:a2:d2:72:d4:e6:b3:55:e9:d0:cb:82: d1:90:40:51:bc:f3:27:16:41:c9:ac:a9:2a:0b:30:58:eb:39: a2:af:8e:ad -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKOzNggP1YC9vMe4Sv2VA5/KuJYIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTAxMTkwMTIxWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzY0ZTEzZWNiNGMwODQ5YzQ3MjgwMTE0Y2ZkMTRkNWY2 NjNiMTYyMTY1OTNmZDdhNDk0OTkyMjFmZjM2ZjRkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt2DmCRalHrpf/BEPzY5w0Ys2tFZMkfTLIqnMV0xkZp+Y7 YtRrDh6+etbwZ93a3m6L8mBgHrEe9MmAT3NwS3d5I5ozZ7puZQipdTQuJbOXYx0n ghbsnfn9xoTlIn0bXNGWM+OVfCx8gaiqIUMCLnA/jSempkXcdzYDnCT/plKrHXSS 3b8DpN0me5xWaP3hLG2cami9408S6Oq2aDEs/3ou+ZxAqTLkEilmKZtXJRQhL4NZ b5yHtDFxrIt5mn5tJeKW6Bd41TOX60a+0idfwolKlSOlgeWd4RMfblRyfNVegACS wpK+Vr7h7+dAuGwimC+chp3/2XZ/ol/MQpwUgc3JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgNyZhE5jyLBHSAbDKemBsDR7jKgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M5MWU1NTczLWE3NTctNGM2Yi05MDAwLTA0MDNlMGU0ZmEwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUQwDQYJKoZIhvcNAQELBQADggEBAGaiO7CbY/pZoEIDWajebakJ laBt7f97ydxegGSmKNufCvxiJ0dkouo2ipxB+4Xq+E19XeYYxrNB160uB8UhgAlc CKmPcaL/2VDLfXJXOKHUspRs+/8yc6SQBzgCqvTSWU+PxqQPYYUrHjPgAwKYm1At K9/NmOrQHlbkOKThhus20NqzMjw92ivyRO2RH9jCRWp3TyfAPxmSrQxEU7AB3r3R 1q8RoZxJCx5D/VXO5yazbDurmeI9yBizUJF3z445RI1s4do96eqv3I9+KOO4Z+rs B2+xu0sYHcAFAmxYf1ai0nLU5rNV6dDLgtGQQFG88ycWQcmsqSoLMFjrOaKvjq0= -----END CERTIFICATE-----Generated at Sun Sep 7 11:16:10 2025 by rpki-client