$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa File: ea014712-964e-4c9e-bacc-2630e4e451b2.roa (raw, json) Hash identifier: 6P7nfrs8NRUB6oRRy40PbWkkIMv9wO3/uGqE1CnH04k= Subject key identifier: EA:45:C8:50:6E:60:84:67:0D:96:D4:D3:CF:4D:E9:3E:60:6C:81:99 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 033B48082092A2726560106538AAE21759151681 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa Signing time: Fri 29 Aug 2025 17:30:16 +0000 ROA not before: Fri 29 Aug 2025 17:30:16 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:3b:48:08:20:92:a2:72:65:60:10:65:38:aa:e2:17:59:15:16:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 29 17:30:16 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=688df4816b1a0db064109dbe6f0caeb9c5b8218fe9b82aad9c810f70f343e15e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:60:b0:29:dc:18:d3:ff:c7:c0:94:51:95:ab: 88:6d:10:f4:09:9b:5e:26:36:e9:3b:29:d6:c7:87: ca:8d:51:a1:3e:66:0d:ba:92:85:a8:8f:4e:07:96: 22:fa:a0:fd:66:67:31:44:48:2b:3a:d9:cf:3e:13: 57:fb:4f:a5:1c:8b:cd:4b:85:99:80:53:13:76:d8: f9:f7:a5:ca:ca:55:e9:ea:cd:d0:60:a9:25:59:b8: 3c:d8:03:62:0c:56:a7:ca:e7:df:26:ff:61:d0:ea: 37:10:38:26:9f:61:ce:61:af:77:7f:09:ac:a1:67: f1:ee:06:15:89:f4:ee:a9:90:56:db:9d:dc:2e:fd: d0:10:e0:9c:71:1d:53:24:f6:9f:c2:08:14:95:28: 71:86:1e:90:0c:1f:8b:2a:0c:1a:3b:3e:e1:7f:a2: 6a:30:49:a4:13:82:0b:a3:3c:5a:4d:5f:15:71:3b: 31:40:1e:1f:2f:c7:34:21:47:0f:88:2f:a3:6e:a8: 3b:4a:55:23:c4:f4:c9:5e:f7:bb:cd:e3:f8:ad:6f: 3f:1e:50:1d:c1:bc:69:be:39:75:02:c9:86:25:1f: f2:91:03:da:44:89:aa:ab:1a:0c:f9:37:d0:88:9a: 6d:db:8c:7b:c3:10:7b:86:1b:f3:2b:f1:bb:6b:c8: c6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:45:C8:50:6E:60:84:67:0D:96:D4:D3:CF:4D:E9:3E:60:6C:81:99 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:d00::/40 Signature Algorithm: sha256WithRSAEncryption 87:eb:e5:04:11:bf:36:de:9f:be:bc:d2:bd:b4:a6:88:c9:92: 6e:da:5b:32:01:b5:ec:7c:31:c5:42:27:10:f4:1f:62:cc:8b: 6d:54:8a:5e:e1:d4:a1:9d:25:24:1c:15:1a:1d:62:eb:d9:e3: 5a:6b:38:d1:79:d8:95:41:e3:2a:4b:a4:da:95:69:7b:e4:9f: fd:30:a3:c6:99:71:13:49:ce:da:ca:1e:34:94:8f:77:35:56: 71:fa:43:eb:2a:f5:90:9c:5c:08:f5:41:44:b9:81:f8:0d:4c: eb:34:3c:cb:08:1d:89:f4:0a:ea:c7:63:50:dd:b4:84:d5:c1: 29:87:6b:be:e6:8e:22:f7:7c:35:ab:35:6b:f4:e7:83:17:ff: 89:3b:f1:79:ab:71:4c:38:8f:44:b2:ff:f3:fa:c3:74:d4:51: eb:37:4b:1e:01:76:c0:49:20:9c:ef:d1:c9:63:ac:df:11:ee: 79:d4:f7:d1:b0:46:f7:09:84:87:5e:fe:1b:93:57:0a:41:79: ee:bd:3e:83:69:a3:f3:c2:b4:e7:1d:c6:c2:f9:3a:f6:c2:10: 22:76:a8:1e:bc:57:3e:f3:c0:20:3c:25:69:ec:79:13:ad:24: d8:97:f3:97:8b:4d:8d:87:18:8d:16:0b:6f:9e:86:2d:58:6b: cf:c4:62:9d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAztICCCSonJlYBBlOKriF1kVFoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODI5MTczMDE2WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODhkZjQ4MTZiMWEwZGIwNjQxMDlkYmU2ZjBjYWViOWM1 YjgyMThmZTliODJhYWQ5YzgxMGY3MGYzNDNlMTVlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/YLAp3BjT/8fAlFGVq4htEPQJm14mNuk7KdbHh8qNUaE+ Zg26koWoj04HliL6oP1mZzFESCs62c8+E1f7T6Uci81LhZmAUxN22Pn3pcrKVenq zdBgqSVZuDzYA2IMVqfK598m/2HQ6jcQOCafYc5hr3d/CayhZ/HuBhWJ9O6pkFbb ndwu/dAQ4JxxHVMk9p/CCBSVKHGGHpAMH4sqDBo7PuF/omowSaQTggujPFpNXxVx OzFAHh8vxzQhRw+IL6NuqDtKVSPE9Mle97vN4/itbz8eUB3BvGm+OXUCyYYlH/KR A9pEiaqrGgz5N9CImm3bjHvDEHuGG/Mr8btryMZLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6kXIUG5ghGcNltTTz03pPmBsgZkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2VhMDE0NzEyLTk2NGUtNGM5ZS1iYWNjLTI2MzBlNGU0NTFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBZzADTANBgkqhkiG9w0BAQsFAAOCAQEAh+vlBBG/Nt6fvrzSvbSmiMmS btpbMgG17HwxxUInEPQfYsyLbVSKXuHUoZ0lJBwVGh1i69njWms40XnYlUHjKkuk 2pVpe+Sf/TCjxplxE0nO2soeNJSPdzVWcfpD6yr1kJxcCPVBRLmB+A1M6zQ8ywgd ifQK6sdjUN20hNXBKYdrvuaOIvd8Nas1a/Tngxf/iTvxeatxTDiPRLL/8/rDdNRR 6zdLHgF2wEkgnO/RyWOs3xHuedT30bBG9wmEh17+G5NXCkF57r0+g2mj88K05x3G wvk69sIQInaoHrxXPvPAIDwlaex5E60k2Jfzl4tNjYcYjRYLb56GLVhrz8RinQ== -----END CERTIFICATE-----Generated at Wed Sep 17 18:03:36 2025 by rpki-client