$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa File: da1fbb90-a595-4798-8d13-e5183edbf500.roa (raw, json) Hash identifier: JhPsElAaOljvxt9mn5UVJbAZVZcwugw2yCol7Xsi6tU= Subject key identifier: 0A:31:8A:DB:0B:EB:03:53:2B:66:32:9E:BB:6B:E9:E3:6A:48:5B:CE Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 79EAFF2C8EA3CBF4343CF320AF2974A6AEC8CA74 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa Signing time: Fri 15 Aug 2025 15:00:15 +0000 ROA not before: Fri 15 Aug 2025 15:00:15 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:ea:ff:2c:8e:a3:cb:f4:34:3c:f3:20:af:29:74:a6:ae:c8:ca:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:00:15 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=adbd13941050858698a1927e7901a85abae1867fd4062b46af22a90c34a63adb, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6f:fe:2d:0f:b3:fb:1b:d9:64:11:37:1b:6b: 8c:9a:53:4e:de:0e:b4:80:e1:f0:5c:56:97:fe:19: 34:22:90:d7:b5:7d:44:65:ae:1d:dd:a7:dc:65:a3: 18:0d:5c:ad:ed:c6:44:eb:c8:39:f0:03:09:1d:e6: 7d:1e:cd:a0:16:8c:59:12:a7:83:f6:a0:1b:30:4a: c8:37:5c:ab:bf:1a:8e:26:2e:b3:f1:f3:85:69:62: 2c:c1:78:0f:2e:7a:42:f7:e6:9f:eb:ad:e0:3a:96: df:f9:30:8c:b4:28:42:dc:cd:a7:e4:43:ca:60:37: f0:a2:25:ca:9b:16:58:d9:46:db:50:85:e7:80:b0: 74:6b:a1:3f:4d:e0:0c:f8:da:72:b9:9f:d8:7d:0a: cc:43:31:39:c1:48:4e:50:4b:46:36:ca:07:5e:d5: 40:3a:92:17:70:d4:2a:2b:c7:b5:49:95:8c:ca:ce: 9b:ac:5b:79:6c:20:4e:38:77:77:aa:a4:ad:69:c5: da:8d:5e:89:55:59:88:32:bd:7c:88:69:aa:6a:f4: 63:f9:01:ff:86:11:bc:35:a8:aa:63:ea:22:05:91: 17:f5:24:a8:ec:52:50:d9:99:05:43:98:07:fd:b9: 12:00:07:cf:ac:b4:84:af:4e:b9:1e:bb:a4:c3:14: 21:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:31:8A:DB:0B:EB:03:53:2B:66:32:9E:BB:6B:E9:E3:6A:48:5B:CE X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 90:ba:22:6f:3f:3d:a5:d9:fb:96:91:e8:15:b1:53:7a:0a:00: 0a:4e:f0:9c:dc:24:b5:a1:98:20:33:94:ae:ca:94:78:91:96: 1f:2e:4c:fa:ad:83:f9:b6:82:eb:c5:cb:51:ef:4a:4b:51:21: be:82:2f:21:15:1e:63:1e:98:a5:87:bd:b6:00:d0:4b:58:6e: 92:0c:fc:64:58:33:91:58:70:13:17:d7:4a:da:6c:fc:cf:ce: 55:bf:47:45:98:fa:d4:8d:44:39:1e:29:8b:9e:1c:f3:ff:73: a9:e2:ad:4b:d8:b2:36:f0:bb:a3:ae:9b:04:b5:a2:f8:61:d2: 60:22:7b:9b:32:b7:b9:16:42:1f:4b:2a:7f:fd:80:7f:e2:79: d6:ea:71:f0:76:46:22:d2:dc:17:1a:11:bc:fc:53:21:43:cf: 3a:9e:fe:73:61:02:79:10:9f:d9:35:b8:2c:d1:ec:3f:cc:bf: f0:fe:81:71:c5:19:d3:25:6c:63:fe:c2:ac:77:fd:f6:42:fa: ec:0e:11:bc:c4:67:7d:c0:f6:ac:51:c3:35:55:34:34:8b:1d: b5:ce:b5:d9:ef:60:07:49:74:c5:85:75:ab:92:34:03:b0:1c: 21:e4:df:34:26:12:73:34:65:78:34:b0:a7:23:3c:9e:31:66: 1b:73:72:09 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeer/LI6jy/Q0PPMgryl0pq7IynQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUwMDE1WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZGJkMTM5NDEwNTA4NTg2OThhMTkyN2U3OTAxYTg1YWJh ZTE4NjdmZDQwNjJiNDZhZjIyYTkwYzM0YTYzYWRiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0b/4tD7P7G9lkETcba4yaU07eDrSA4fBcVpf+GTQikNe1 fURlrh3dp9xloxgNXK3txkTryDnwAwkd5n0ezaAWjFkSp4P2oBswSsg3XKu/Go4m LrPx84VpYizBeA8uekL35p/rreA6lt/5MIy0KELczafkQ8pgN/CiJcqbFljZRttQ heeAsHRroT9N4Az42nK5n9h9CsxDMTnBSE5QS0Y2ygde1UA6khdw1Corx7VJlYzK zpusW3lsIE44d3eqpK1pxdqNXolVWYgyvXyIaapq9GP5Af+GEbw1qKpj6iIFkRf1 JKjsUlDZmQVDmAf9uRIAB8+stISvTrkeu6TDFCFjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCjGK2wvrA1MrZjKeu2vp42pIW84wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RhMWZiYjkwLWE1OTUtNDc5OC04ZDEzLWU1MTgzZWRiZjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBAJC6Im8/PaXZ+5aR6BWxU3oK AApO8JzcJLWhmCAzlK7KlHiRlh8uTPqtg/m2guvFy1HvSktRIb6CLyEVHmMemKWH vbYA0EtYbpIM/GRYM5FYcBMX10rabPzPzlW/R0WY+tSNRDkeKYueHPP/c6nirUvY sjbwu6OumwS1ovhh0mAie5syt7kWQh9LKn/9gH/iedbqcfB2RiLS3BcaEbz8UyFD zzqe/nNhAnkQn9k1uCzR7D/Mv/D+gXHFGdMlbGP+wqx3/fZC+uwOEbzEZ33A9qxR wzVVNDSLHbXOtdnvYAdJdMWFdauSNAOwHCHk3zQmEnM0ZXg0sKcjPJ4xZhtzcgk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:28 2025 by rpki-client