$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/dd6f8923-ba0b-407d-a9e8-8c832583a0dd.roa File: dd6f8923-ba0b-407d-a9e8-8c832583a0dd.roa (raw, json) Hash identifier: HkbW8+aevTpQr5ESJrW1Wgqdkb/VxNAw/f1dqabAtws= Subject key identifier: 54:CA:87:C4:9A:F3:ED:CF:02:18:AC:9D:38:0A:E7:33:30:DC:C5:DD Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0638F624A56F0178C51C49B772866CEF69AAF462 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/dd6f8923-ba0b-407d-a9e8-8c832583a0dd.roa Signing time: Tue 05 Aug 2025 18:10:11 +0000 ROA not before: Tue 05 Aug 2025 18:10:11 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:544::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:38:f6:24:a5:6f:01:78:c5:1c:49:b7:72:86:6c:ef:69:aa:f4:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 5 18:10:11 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=d58fa50cb123a8e571d31cc1fec6bda18bebdf59d179b1a46a7e4a448f74f4f9, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9f:59:8b:0a:8e:4d:3f:a6:e1:ca:e9:55:41: e6:ad:bc:a8:7d:6e:d9:24:73:1d:4e:5d:1e:f9:6f: 8b:97:9d:01:34:1e:9c:d9:e0:53:72:9e:27:08:db: b4:7a:c7:08:f2:78:ca:b5:cc:c0:0f:76:0f:67:41: 3b:0f:40:f3:69:4a:18:36:96:02:87:bf:25:8c:f9: 3d:82:04:bc:f0:57:0a:a5:02:37:3d:8b:d6:43:b3: 94:4e:8a:b2:b3:5e:7c:97:f1:d1:e2:45:83:fe:bc: 49:18:36:17:cb:ec:3d:9d:76:1a:8d:70:4b:45:e8: 47:6e:56:27:c5:9c:28:44:39:06:b3:1c:43:18:77: 18:91:83:77:e4:6a:37:ad:a5:84:87:fb:93:32:c3: 02:64:59:f5:be:41:27:c7:a6:4a:81:f7:f3:55:ea: f7:00:12:e7:b2:7b:83:b3:2a:72:85:92:74:14:74: d5:04:35:05:b6:53:fc:9f:a4:de:c1:72:12:24:d3: 2c:5a:19:98:2b:9e:88:ca:2c:1e:e2:44:54:6b:84: 00:1a:38:23:4e:1e:f3:fd:11:99:36:5d:ca:be:63: 2a:31:97:1e:d0:20:b2:a0:05:df:33:91:ef:3c:2c: 4d:7f:7f:3f:50:aa:f2:40:3c:59:bd:8b:bd:21:dd: 08:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:CA:87:C4:9A:F3:ED:CF:02:18:AC:9D:38:0A:E7:33:30:DC:C5:DD X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/dd6f8923-ba0b-407d-a9e8-8c832583a0dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:544::/48 Signature Algorithm: sha256WithRSAEncryption 19:18:c1:80:ae:b0:c4:39:a6:cd:a7:44:76:82:20:41:3f:47: 5c:5b:e2:b9:b3:24:36:38:c3:2e:a5:1f:9a:5e:08:a5:e3:ea: d6:42:31:b4:bf:27:25:6a:4f:59:8b:7a:77:a2:76:be:57:f1: 28:e3:cb:c0:11:87:98:32:ad:bc:79:82:86:f4:e2:3a:59:16: ac:82:17:2d:65:5f:2e:13:ec:e4:e0:17:3a:ca:d2:ae:c6:56: d1:19:04:35:9d:db:49:e9:1e:7e:22:31:30:7d:1c:01:65:3f: 17:c5:7b:52:c9:fe:34:d7:6b:f3:7d:c1:7a:33:87:27:75:d5: f7:c1:87:d9:fb:d4:28:5c:53:7d:d5:05:08:27:d3:2b:d3:9f: dc:4c:9e:f3:77:26:cf:89:83:cf:7f:35:eb:9c:09:6c:ef:ef: 50:da:08:09:93:44:75:b1:dd:d8:37:6f:ac:7e:e3:20:f6:64: 56:97:24:7e:ab:8d:e6:96:c9:75:1e:1f:b1:9a:a7:3d:75:51: e1:dc:bc:43:bb:31:d6:78:d3:f4:db:34:9d:0d:e6:1c:34:9c: cb:38:37:bc:3f:11:a2:70:60:69:23:a9:48:53:82:fc:b4:0c: db:de:a1:c2:d7:9a:6b:94:fd:73:c5:73:ec:c3:78:96:c1:80: 22:d5:7c:ef -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBjj2JKVvAXjFHEm3coZs72mq9GIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODA1MTgxMDExWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNThmYTUwY2IxMjNhOGU1NzFkMzFjYzFmZWM2YmRhMThi ZWJkZjU5ZDE3OWIxYTQ2YTdlNGE0NDhmNzRmNGY5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsn1mLCo5NP6bhyulVQeatvKh9btkkcx1OXR75b4uXnQE0 HpzZ4FNynicI27R6xwjyeMq1zMAPdg9nQTsPQPNpShg2lgKHvyWM+T2CBLzwVwql Ajc9i9ZDs5ROirKzXnyX8dHiRYP+vEkYNhfL7D2ddhqNcEtF6EduVifFnChEOQaz HEMYdxiRg3fkajetpYSH+5MywwJkWfW+QSfHpkqB9/NV6vcAEueye4OzKnKFknQU dNUENQW2U/yfpN7BchIk0yxaGZgrnojKLB7iRFRrhAAaOCNOHvP9EZk2Xcq+Yyox lx7QILKgBd8zke88LE1/fz9QqvJAPFm9i70h3QglAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVMqHxJrz7c8CGKydOArnMzDcxd0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RkNmY4OTIzLWJhMGItNDA3ZC1hOWU4LThjODMyNTgzYTBkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUQwDQYJKoZIhvcNAQELBQADggEBABkYwYCusMQ5ps2nRHaCIEE/ R1xb4rmzJDY4wy6lH5peCKXj6tZCMbS/JyVqT1mLeneidr5X8Sjjy8ARh5gyrbx5 gob04jpZFqyCFy1lXy4T7OTgFzrK0q7GVtEZBDWd20npHn4iMTB9HAFlPxfFe1LJ /jTXa/N9wXozhyd11ffBh9n71ChcU33VBQgn0yvTn9xMnvN3Js+Jg89/NeucCWzv 71DaCAmTRHWx3dg3b6x+4yD2ZFaXJH6rjeaWyXUeH7Gapz11UeHcvEO7MdZ40/Tb NJ0N5hw0nMs4N7w/EaJwYGkjqUhTgvy0DNveocLXmmuU/XPFc+zDeJbBgCLVfO8= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:26 2025 by rpki-client