$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa File: da1fbb90-a595-4798-8d13-e5183edbf500.roa (raw, json) Hash identifier: +xKWdtgrmjOkiPPb+1ZxqzrUzIhEwvxn3vUmHO4qhRc= Subject key identifier: F9:DD:87:63:AA:D5:56:51:A9:0F:11:A4:79:09:F5:75:8B:93:03:52 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5369514075D73550D4B46BB5CF02A82F3F6F4DF6 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa Signing time: Tue 09 Sep 2025 15:10:13 +0000 ROA not before: Tue 09 Sep 2025 15:10:13 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:69:51:40:75:d7:35:50:d4:b4:6b:b5:cf:02:a8:2f:3f:6f:4d:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 9 15:10:13 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=852e779840361e202978b28c4f30cf55edb8375b4ff160b7917b3025ed5d0225, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:33:f6:ac:ab:9a:f0:09:f7:16:ef:38:7c:4f: e7:4e:5a:b3:94:6c:f0:13:5a:d6:d8:19:88:0b:0e: ca:81:4c:69:b5:fe:57:46:37:8a:48:d1:34:69:09: b6:a8:cd:74:41:b6:58:2c:27:82:2b:c3:16:ba:7b: bd:31:07:0c:72:5e:e6:93:84:e2:2d:c8:33:7e:ce: 63:fe:f3:5a:b6:cc:53:49:56:c1:4c:52:7b:7e:2a: 56:a1:24:bc:19:11:49:6d:d2:5e:37:5b:4d:fc:e7: a8:ac:f6:e7:2a:7e:3f:02:5a:01:b6:77:02:43:6d: f3:fb:5d:02:d4:bd:f0:90:c9:b2:3c:d5:98:cb:9d: e4:e0:a0:1b:66:70:26:6f:78:a0:d9:3d:7e:7d:c0: 40:53:c2:79:3c:09:7e:e1:cb:dd:74:47:a6:ea:63: 04:6a:cc:b3:34:68:0b:ce:f5:f0:a5:30:fe:88:60: 2c:08:16:10:15:ad:4a:43:51:95:a6:a5:b1:2c:73: 3a:b4:bd:90:f0:4b:b3:0f:35:f4:85:88:b7:1d:0b: 01:0a:32:6b:4d:b2:43:ca:f3:1a:e9:e6:25:c9:4e: 93:f8:a7:72:52:39:d3:9e:04:1c:c6:20:43:a8:13: 6a:f4:be:9e:cf:f0:9d:fb:a0:e4:80:04:02:46:0a: 75:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:DD:87:63:AA:D5:56:51:A9:0F:11:A4:79:09:F5:75:8B:93:03:52 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 22:fc:63:ed:55:df:ca:ee:83:d7:15:f3:f7:a2:3f:72:2c:ee: 75:b4:8b:52:b0:0b:88:80:bb:d8:bd:9d:89:d0:4a:de:ba:cd: de:50:19:e3:7a:3b:f5:9d:c8:79:32:02:25:25:3e:68:80:ac: aa:14:61:4e:dc:04:30:3a:c0:9a:6c:4e:0f:95:af:82:c9:ef: 42:37:d9:7f:92:dd:db:62:8a:3f:30:fc:3b:67:45:6e:28:d8: 88:08:e1:e0:81:f0:a2:96:e4:59:36:a9:49:b5:18:d3:68:e0: b9:75:f4:5a:69:e6:d0:06:6f:82:6e:64:ec:ac:88:7d:0c:3b: 02:15:40:48:53:eb:67:d6:95:87:3c:3e:ee:83:13:62:1e:bf: 6e:27:82:1a:b1:f8:20:34:06:a9:92:49:82:42:49:f2:64:60: 35:86:15:26:4a:5f:d7:fc:77:bc:06:96:a3:75:42:39:e9:96: be:05:09:e5:5b:03:ad:d0:3b:1e:c4:ac:0a:58:fe:51:4c:ef: 10:44:7a:e9:87:40:d1:3c:8c:e8:af:8f:03:37:ac:e4:53:82: a1:50:c3:88:a5:17:1c:1f:89:96:52:49:2b:07:81:11:20:53: e4:05:4f:05:b5:1a:3f:53:75:27:69:3b:96:c0:da:5a:a1:a1: 1a:45:67:44 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUU2lRQHXXNVDUtGu1zwKoLz9vTfYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTA5MTUxMDEzWhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTJlNzc5ODQwMzYxZTIwMjk3OGIyOGM0ZjMwY2Y1NWVk YjgzNzViNGZmMTYwYjc5MTdiMzAyNWVkNWQwMjI1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIM/asq5rwCfcW7zh8T+dOWrOUbPATWtbYGYgLDsqBTGm1 /ldGN4pI0TRpCbaozXRBtlgsJ4Irwxa6e70xBwxyXuaThOItyDN+zmP+81q2zFNJ VsFMUnt+KlahJLwZEUlt0l43W03856is9ucqfj8CWgG2dwJDbfP7XQLUvfCQybI8 1ZjLneTgoBtmcCZveKDZPX59wEBTwnk8CX7hy910R6bqYwRqzLM0aAvO9fClMP6I YCwIFhAVrUpDUZWmpbEsczq0vZDwS7MPNfSFiLcdCwEKMmtNskPK8xrp5iXJTpP4 p3JSOdOeBBzGIEOoE2r0vp7P8J37oOSABAJGCnXNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+d2HY6rVVlGpDxGkeQn1dYuTA1IwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RhMWZiYjkwLWE1OTUtNDc5OC04ZDEzLWU1MTgzZWRiZjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBACL8Y+1V38rug9cV8/eiP3Is 7nW0i1KwC4iAu9i9nYnQSt66zd5QGeN6O/WdyHkyAiUlPmiArKoUYU7cBDA6wJps Tg+Vr4LJ70I32X+S3dtiij8w/DtnRW4o2IgI4eCB8KKW5Fk2qUm1GNNo4Ll19Fpp 5tAGb4JuZOysiH0MOwIVQEhT62fWlYc8Pu6DE2Iev24nghqx+CA0BqmSSYJCSfJk YDWGFSZKX9f8d7wGlqN1Qjnplr4FCeVbA63QOx7ErApY/lFM7xBEeumHQNE8jOiv jwM3rORTgqFQw4ilFxwfiZZSSSsHgREgU+QFTwW1Gj9TdSdpO5bA2lqhoRpFZ0Q= -----END CERTIFICATE-----Generated at Fri Sep 19 08:03:19 2025 by rpki-client