$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa File: d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa (raw, json) Hash identifier: fXK/XhPVkksKGTXmY7AJ0x1+mpoy1YiI+JV5347qbjk= Subject key identifier: 22:0D:29:42:6D:D6:83:DD:CE:36:21:99:3F:47:5F:BA:01:5E:B2:69 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 736A99C8CF9CBF226CEEDDA36F3D9C4AFF9D11FE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa Signing time: Wed 03 Sep 2025 00:10:29 +0000 ROA not before: Wed 03 Sep 2025 00:10:29 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:3b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:6a:99:c8:cf:9c:bf:22:6c:ee:dd:a3:6f:3d:9c:4a:ff:9d:11:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 3 00:10:29 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=cac1abb96e69c907a6fd4cc1b0f04c2523705aae5b5406c030715e98e8319713, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f3:de:88:0b:9b:e5:ad:55:46:fb:42:9a:03: 16:90:33:ba:b7:f7:45:6b:42:81:00:6e:e3:b7:5a: 64:38:11:28:4f:22:e8:b5:81:bc:bb:27:df:7e:36: 74:c3:c5:d7:03:35:e2:e7:5d:c3:3f:cb:82:c5:47: 1f:68:17:06:59:8b:b9:8b:f5:db:41:35:ba:3b:36: 5a:c1:bc:4e:e2:96:3c:86:28:6e:d1:f6:21:65:16: 9f:e3:66:29:75:5e:fa:12:42:66:1b:f1:8c:ea:0f: a6:a5:3b:c8:82:09:e9:59:4a:73:d1:55:1f:03:c4: bc:1f:90:34:6e:19:7b:7d:ab:99:cb:f4:6b:cf:b3: 36:f3:b3:9f:1e:6a:bf:45:39:c4:93:4c:cb:7e:3a: 72:66:b0:48:d3:e3:f6:81:d2:5a:a5:30:bb:aa:ca: 35:85:56:a7:88:48:48:8c:f7:f7:4a:0c:9e:d0:14: b3:ad:ea:d5:94:bc:ae:c7:55:4c:07:6b:eb:9e:01: 07:c6:ec:f2:4d:3a:42:db:20:82:72:86:6b:b3:d3: 7d:bd:5c:4d:5d:5d:fd:3f:cc:c0:29:41:2a:1f:ff: 23:9e:dc:e0:cc:50:ad:e9:32:12:1f:f0:eb:97:23: 42:8d:13:31:d8:6f:31:e8:11:1d:1f:13:48:e9:f3: 44:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0D:29:42:6D:D6:83:DD:CE:36:21:99:3F:47:5F:BA:01:5E:B2:69 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b4::/48 Signature Algorithm: sha256WithRSAEncryption 8e:26:07:e4:52:72:4e:ae:8c:bf:16:43:d7:da:cf:c2:c5:c7: 4b:b6:61:b4:9d:64:fb:72:e8:5e:c1:53:b7:be:02:84:92:c8: 10:9b:7d:46:3e:c2:88:dd:d5:ba:b3:03:02:3d:41:da:7e:72: d1:7d:ee:e5:44:49:e6:e6:a9:98:48:9a:a2:36:b0:a2:72:ba: dd:a9:64:47:5e:5f:f7:99:71:26:6a:c2:6f:12:4c:46:66:a9: d3:91:e2:41:7c:48:0b:87:f6:ec:26:e3:56:18:00:a3:0e:2f: 71:3b:7a:72:aa:8c:3b:f6:57:65:11:12:88:62:6e:57:5a:68: 64:3a:f3:25:e9:2b:ac:a6:ad:26:72:d4:89:8c:a9:d1:09:91: 1e:7e:11:11:d3:e9:c3:e8:5b:97:4c:4b:fd:e6:bd:32:fc:bc: db:c2:59:02:23:fe:d8:dc:c8:dc:b5:70:b2:b9:b5:51:a1:dc: 8a:b3:83:80:39:6e:5b:6b:41:b3:aa:93:40:64:75:f9:c2:50: d7:12:e3:2c:cf:5b:22:f2:09:c7:e7:0a:5f:a9:d8:4a:20:48: 0a:c6:91:25:5b:68:78:cb:70:bf:44:83:bd:7d:30:fa:c9:34: ab:29:88:49:94:03:d4:8c:f0:46:74:20:66:1e:aa:10:fe:14: f6:6e:d0:dc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUc2qZyM+cvyJs7t2jbz2cSv+dEf4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTAzMDAxMDI5WhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWMxYWJiOTZlNjljOTA3YTZmZDRjYzFiMGYwNGMyNTIz NzA1YWFlNWI1NDA2YzAzMDcxNWU5OGU4MzE5NzEzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF896IC5vlrVVG+0KaAxaQM7q390VrQoEAbuO3WmQ4EShP Iui1gby7J99+NnTDxdcDNeLnXcM/y4LFRx9oFwZZi7mL9dtBNbo7NlrBvE7iljyG KG7R9iFlFp/jZil1XvoSQmYb8YzqD6alO8iCCelZSnPRVR8DxLwfkDRuGXt9q5nL 9GvPszbzs58ear9FOcSTTMt+OnJmsEjT4/aB0lqlMLuqyjWFVqeISEiM9/dKDJ7Q FLOt6tWUvK7HVUwHa+ueAQfG7PJNOkLbIIJyhmuz0329XE1dXf0/zMApQSof/yOe 3ODMUK3pMhIf8OuXI0KNEzHYbzHoER0fE0jp80TRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIg0pQm3Wg93ONiGZP0dfugFesmkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q5ZTBmMGIxLWQ2ZDEtNDIyZC1hNjY0LTA0ODZjNzg1ZGI0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA7QwDQYJKoZIhvcNAQELBQADggEBAI4mB+RSck6ujL8WQ9faz8LF x0u2YbSdZPty6F7BU7e+AoSSyBCbfUY+wojd1bqzAwI9Qdp+ctF97uVESebmqZhI mqI2sKJyut2pZEdeX/eZcSZqwm8STEZmqdOR4kF8SAuH9uwm41YYAKMOL3E7enKq jDv2V2UREohibldaaGQ68yXpK6ymrSZy1ImMqdEJkR5+ERHT6cPoW5dMS/3mvTL8 vNvCWQIj/tjcyNy1cLK5tVGh3Iqzg4A5bltrQbOqk0BkdfnCUNcS4yzPWyLyCcfn Cl+p2EogSArGkSVbaHjLcL9Eg719MPrJNKspiEmUA9SM8EZ0IGYeqhD+FPZu0Nw= -----END CERTIFICATE-----Generated at Sun Sep 7 13:17:58 2025 by rpki-client