$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/00a20eb1-4ba3-4e14-b587-1b2f0ebdc6ec.roa File: 00a20eb1-4ba3-4e14-b587-1b2f0ebdc6ec.roa (raw, json) Hash identifier: FCRjF9v/K/qU9KWDQk7WMTvB4Hehf6IETUablQX8sjk= Subject key identifier: 34:FB:04:69:95:B2:2F:9B:A7:10:E6:05:DF:B5:BB:03:80:79:01:A2 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 11E427AFE1DBE7DD3C8B2E270C93CF0B6987CC46 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/00a20eb1-4ba3-4e14-b587-1b2f0ebdc6ec.roa Signing time: Mon 21 Jul 2025 16:30:06 +0000 ROA not before: Mon 21 Jul 2025 16:30:06 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:c14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:e4:27:af:e1:db:e7:dd:3c:8b:2e:27:0c:93:cf:0b:69:87:cc:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 21 16:30:06 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=d4fab0191ed801f9f6e95f5fba7cc480f27e1de895d8d5c060c95905c6eff8e2, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2a:91:79:7c:d8:e5:95:5b:8d:27:12:e6:33: f8:cf:fc:fd:ed:5f:3c:95:0d:f3:c1:49:d9:fc:50: 09:5f:c8:9f:dd:47:77:49:b3:ea:4a:9e:fe:95:3e: 5d:dc:e8:d0:19:29:26:56:30:88:d5:5d:04:42:58: ff:62:df:c0:6b:32:f0:a6:72:f1:1c:61:95:a4:1d: 46:cf:61:7a:2e:a8:3e:7d:78:c0:bf:2d:7f:28:77: 93:e2:4c:35:68:74:71:3b:13:7a:af:fe:6e:27:37: f4:6d:70:1f:51:11:52:2b:e7:ad:b0:0b:87:6c:8f: e4:b1:d7:6a:9d:3f:fb:04:a8:b3:1b:e4:d1:1f:87: 9a:88:52:32:67:d9:c8:c8:bb:76:47:f6:34:24:4d: e5:e7:e4:92:95:2c:0d:4e:4b:db:7f:bc:28:d7:a9: 90:39:3e:df:a1:aa:27:59:06:0a:5b:71:c5:24:c9: f9:de:82:96:d2:59:1c:36:45:66:7e:9f:73:10:51: 6d:31:fe:46:a9:c2:0b:02:2a:fc:2a:64:b8:86:c9: f2:1b:e1:f2:f6:61:09:44:b4:6f:2e:da:26:45:5d: cb:87:af:c9:90:71:fe:97:b0:a3:c1:79:09:cf:d2: 88:62:b4:9a:fc:82:e4:d5:f9:b4:19:dd:14:62:29: f1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:FB:04:69:95:B2:2F:9B:A7:10:E6:05:DF:B5:BB:03:80:79:01:A2 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/00a20eb1-4ba3-4e14-b587-1b2f0ebdc6ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c14::/48 Signature Algorithm: sha256WithRSAEncryption 13:65:09:40:2d:fa:a9:68:88:5c:39:e6:65:d3:8e:89:ea:2c: bb:95:1f:c0:d0:ad:c9:9b:84:6e:63:98:e0:8c:19:c8:26:7d: 56:8c:f4:40:ab:3b:8d:f3:39:3b:fd:d7:97:8e:7b:2b:9f:92: 08:2a:c7:f4:1e:03:89:ba:a0:c5:ae:e5:9c:88:ca:be:e5:da: 55:f1:d1:54:f4:9c:f0:1f:34:8e:5f:67:ac:84:e2:57:bc:66: 8d:db:cc:16:ac:f0:90:7a:7d:a2:b3:1b:71:d3:ae:31:6d:cd: 59:a2:25:ca:7e:6c:3f:6b:a8:34:e1:74:be:bc:88:17:51:24: 4c:ac:41:04:a3:28:68:e8:8b:f4:7d:4e:00:73:cf:cb:eb:da: bd:15:1c:41:7b:34:b9:92:f2:a4:1f:17:51:6b:86:a6:a9:2c: b6:2d:ad:3b:9b:dd:cf:ec:1e:78:a1:81:4a:00:99:ed:fa:1a: 09:aa:90:9c:dc:b3:5a:dc:38:83:5e:f8:84:37:ab:9c:b8:17: 61:2d:c9:59:12:29:c1:05:08:78:70:13:f4:3f:e0:d4:b4:c3: 00:df:15:15:c7:2e:c3:91:6b:39:fc:7e:05:bf:f2:e6:e2:d9: 10:d6:d8:03:d3:eb:2e:3c:34:5b:a8:1b:bb:ad:af:0e:83:3b: 1d:82:7b:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEeQnr+Hb5908iy4nDJPPC2mHzEYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzIxMTYzMDA2WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNGZhYjAxOTFlZDgwMWY5ZjZlOTVmNWZiYTdjYzQ4MGYy N2UxZGU4OTVkOGQ1YzA2MGM5NTkwNWM2ZWZmOGUyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrKpF5fNjllVuNJxLmM/jP/P3tXzyVDfPBSdn8UAlfyJ/d R3dJs+pKnv6VPl3c6NAZKSZWMIjVXQRCWP9i38BrMvCmcvEcYZWkHUbPYXouqD59 eMC/LX8od5PiTDVodHE7E3qv/m4nN/RtcB9REVIr562wC4dsj+Sx12qdP/sEqLMb 5NEfh5qIUjJn2cjIu3ZH9jQkTeXn5JKVLA1OS9t/vCjXqZA5Pt+hqidZBgpbccUk yfnegpbSWRw2RWZ+n3MQUW0x/kapwgsCKvwqZLiGyfIb4fL2YQlEtG8u2iZFXcuH r8mQcf6XsKPBeQnP0ohitJr8guTV+bQZ3RRiKfHvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNPsEaZWyL5unEOYF37W7A4B5AaIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAwYTIwZWIxLTRiYTMtNGUxNC1iNTg3LTFiMmYwZWJkYzZlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBQwDQYJKoZIhvcNAQELBQADggEBABNlCUAt+qloiFw55mXTjonq LLuVH8DQrcmbhG5jmOCMGcgmfVaM9ECrO43zOTv915eOeyufkggqx/QeA4m6oMWu 5ZyIyr7l2lXx0VT0nPAfNI5fZ6yE4le8Zo3bzBas8JB6faKzG3HTrjFtzVmiJcp+ bD9rqDThdL68iBdRJEysQQSjKGjoi/R9TgBzz8vr2r0VHEF7NLmS8qQfF1Frhqap LLYtrTub3c/sHnihgUoAme36GgmqkJzcs1rcOINe+IQ3q5y4F2EtyVkSKcEFCHhw E/Q/4NS0wwDfFRXHLsORazn8fgW/8ubi2RDW2APT6y48NFuoG7utrw6DOx2CewU= -----END CERTIFICATE-----Generated at Wed Aug 6 12:26:23 2025 by rpki-client