$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/dd6f8923-ba0b-407d-a9e8-8c832583a0dd.roa File: dd6f8923-ba0b-407d-a9e8-8c832583a0dd.roa (raw, json) Hash identifier: +kRZBT8ji2F0ClWDpz+759+gZ4cTcdWaO9hHWeIMuwo= Subject key identifier: 27:FA:98:C3:71:F6:E7:02:D5:8B:3E:FA:44:34:DE:36:B4:F2:29:69 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 476C5241CB28D52F1A59727A7497F65CB741AF16 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/dd6f8923-ba0b-407d-a9e8-8c832583a0dd.roa Signing time: Mon 01 Sep 2025 19:01:20 +0000 ROA not before: Mon 01 Sep 2025 19:01:20 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:544::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:6c:52:41:cb:28:d5:2f:1a:59:72:7a:74:97:f6:5c:b7:41:af:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 1 19:01:20 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=3176a74b56b432d2afb0953cf93dc0bdd72fc8eb69c3505e54e361778ce89591, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ea:4a:ec:4b:f8:9d:ba:f0:51:da:ef:c0:75: a1:59:c1:da:71:8c:32:d5:aa:4a:12:7c:4a:ba:23: 14:20:ec:95:a1:8b:af:d4:d7:d9:40:bd:2d:e9:f7: 4a:27:62:e0:9c:38:f9:ad:1e:64:fa:d6:76:88:1f: f5:43:fd:4f:f3:3c:a2:1c:bc:30:c3:9c:7e:60:34: e5:12:38:ae:f5:60:75:ef:dc:e0:b9:db:46:89:b3: 26:d4:85:14:51:76:5e:ae:e2:59:6a:9d:e3:00:cf: 91:3a:d0:98:a0:87:68:6e:b0:73:fb:f8:de:2a:ea: 05:ca:8f:e2:5b:2f:cf:bb:1f:fb:39:3c:01:ef:bd: 6a:b5:53:5b:2e:d1:a2:f5:03:2d:ba:54:26:4a:25: 06:3c:3f:40:f6:50:3d:61:d1:44:55:a4:3f:9e:18: 5f:ba:78:c9:d8:81:e3:93:a3:e3:b8:b5:9b:88:11: 99:f3:a3:82:b8:2a:c6:0f:f2:7c:2d:fa:22:9c:23: 86:8f:c3:07:e2:1f:5e:1c:b6:80:fe:80:55:65:72: 22:3a:1b:62:9c:de:89:10:ba:fb:5b:49:05:bd:e8: ac:92:95:92:25:b9:a1:45:01:1c:d2:94:e1:3b:a4: 40:be:5e:20:88:89:70:b2:f0:c9:9a:45:e6:2f:b9: 1f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FA:98:C3:71:F6:E7:02:D5:8B:3E:FA:44:34:DE:36:B4:F2:29:69 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/dd6f8923-ba0b-407d-a9e8-8c832583a0dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:544::/48 Signature Algorithm: sha256WithRSAEncryption a2:be:54:fa:e6:be:50:ba:f0:dd:f5:bb:b9:da:b3:c4:4c:61: d5:fc:ac:d3:72:83:3e:14:31:cf:af:9f:21:a4:7f:83:9b:d5: a1:c6:f3:c3:0f:bb:a7:32:f9:58:f5:bc:3e:76:65:a9:f5:62: 78:f2:0d:0c:f4:fc:d7:38:0f:92:c7:63:00:e0:67:55:5f:79: 23:62:23:56:9d:9e:ce:ee:37:14:66:76:8f:0e:84:5e:99:b9: 6c:94:f4:78:82:3a:77:9e:3d:a5:10:4c:a5:01:0f:bf:6a:63: 6a:b2:a7:a8:02:d0:fb:d7:2b:cb:ac:9d:1d:ee:5a:07:ef:82: bb:b5:6e:84:d0:31:be:6c:0c:62:34:bd:d1:b8:a7:00:b3:98: 0b:49:d5:1a:c9:23:1a:76:55:3b:4f:75:34:bf:63:01:35:d1: f9:9a:33:12:62:02:5b:9f:fe:e7:a3:af:38:33:a9:15:24:b8: b7:da:70:c3:c3:0a:dd:a9:07:4a:37:76:9d:4d:4a:1b:60:ce: 80:83:29:15:6b:86:54:eb:3a:3f:76:6f:d6:fc:ac:c6:2c:08: ca:75:b5:ac:64:a2:8f:28:c9:f2:19:fb:54:16:c0:5b:88:1d: e3:7d:32:83:94:88:a4:0b:86:fc:f0:0f:9a:3f:37:dc:78:35: a1:b4:ba:b1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR2xSQcso1S8aWXJ6dJf2XLdBrxYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTAxMTkwMTIwWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTc2YTc0YjU2YjQzMmQyYWZiMDk1M2NmOTNkYzBiZGQ3 MmZjOGViNjljMzUwNWU1NGUzNjE3NzhjZTg5NTkxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC76krsS/iduvBR2u/AdaFZwdpxjDLVqkoSfEq6IxQg7JWh i6/U19lAvS3p90onYuCcOPmtHmT61naIH/VD/U/zPKIcvDDDnH5gNOUSOK71YHXv 3OC520aJsybUhRRRdl6u4llqneMAz5E60Jigh2husHP7+N4q6gXKj+JbL8+7H/s5 PAHvvWq1U1su0aL1Ay26VCZKJQY8P0D2UD1h0URVpD+eGF+6eMnYgeOTo+O4tZuI EZnzo4K4KsYP8nwt+iKcI4aPwwfiH14ctoD+gFVlciI6G2Kc3okQuvtbSQW96KyS lZIluaFFARzSlOE7pEC+XiCIiXCy8MmaReYvuR+JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJ/qYw3H25wLViz76RDTeNrTyKWkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RkNmY4OTIzLWJhMGItNDA3ZC1hOWU4LThjODMyNTgzYTBkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUQwDQYJKoZIhvcNAQELBQADggEBAKK+VPrmvlC68N31u7nas8RM YdX8rNNygz4UMc+vnyGkf4Ob1aHG88MPu6cy+Vj1vD52Zan1YnjyDQz0/Nc4D5LH YwDgZ1VfeSNiI1adns7uNxRmdo8OhF6ZuWyU9HiCOneePaUQTKUBD79qY2qyp6gC 0PvXK8usnR3uWgfvgru1boTQMb5sDGI0vdG4pwCzmAtJ1RrJIxp2VTtPdTS/YwE1 0fmaMxJiAluf/uejrzgzqRUkuLfacMPDCt2pB0o3dp1NShtgzoCDKRVrhlTrOj92 b9b8rMYsCMp1taxkoo8oyfIZ+1QWwFuIHeN9MoOUiKQLhvzwD5o/N9x4NaG0urE= -----END CERTIFICATE-----Generated at Thu Sep 18 01:01:18 2025 by rpki-client