$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa File: 0290dfd4-d635-41df-a146-3afba4f4dc86.roa (raw, json) Hash identifier: 3lGmMRx1U/xTyDTFag8vWppjCDjNIiS6OHUS2MX70b4= Subject key identifier: 06:47:9A:24:90:BD:8A:F6:BA:28:E2:CC:1A:B0:7E:54:81:60:1F:45 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 30E1EEADB2AFE527B4A62554707A0F9E778EE135 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa Signing time: Tue 15 Jul 2025 17:37:06 +0000 ROA not before: Tue 15 Jul 2025 17:37:06 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:3b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:e1:ee:ad:b2:af:e5:27:b4:a6:25:54:70:7a:0f:9e:77:8e:e1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 15 17:37:06 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=7f0d95cea14a478ece29121d49cc9431b254981ad4c6caac9f3449e47dd05721, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e0:c9:9d:cf:f9:6c:e3:70:e3:ce:f9:4a:32: f5:19:5b:39:d5:2f:4e:d3:39:58:42:8d:65:56:cd: f9:0c:37:1a:fa:af:56:b4:88:89:fe:58:9e:4c:1a: 6d:ce:5d:84:52:28:b2:6f:25:2a:c0:de:bd:cf:7d: fa:7a:15:da:87:d5:18:d4:6f:8e:53:7b:ca:3b:62: 31:37:82:86:9d:e0:73:4b:32:c7:6d:bc:43:11:47: 46:bd:90:67:08:e2:e7:e2:60:cc:b8:04:30:90:fe: 98:25:35:3a:f9:19:ef:1a:9a:27:d9:32:27:4e:b0: 23:90:7b:19:72:dc:a9:8c:e2:f1:19:87:91:40:7a: d7:bd:59:18:a6:84:fa:88:8c:71:67:ba:10:5b:3a: 87:0b:4b:28:d2:b3:21:ca:0f:3d:c4:98:59:97:45: 38:13:f7:97:32:00:98:af:90:b2:1f:7e:c4:85:26: e5:5f:b8:39:cd:de:c6:bd:cf:b9:05:c3:ff:d0:77: 61:4e:68:5c:a0:6f:0a:a8:85:b3:95:64:20:ac:34: 54:6b:7a:56:bb:92:f7:d8:0f:19:77:05:8f:cf:08: 69:b6:17:53:40:ab:80:d0:1c:de:7b:e6:4c:31:f1: 89:64:0d:ba:be:d5:ab:d4:91:f5:45:7f:3f:98:65: 10:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:47:9A:24:90:BD:8A:F6:BA:28:E2:CC:1A:B0:7E:54:81:60:1F:45 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b4::/48 Signature Algorithm: sha256WithRSAEncryption 0b:93:ee:7e:95:95:47:e5:dd:4e:69:83:e4:fd:70:b9:95:72: 54:f0:54:69:28:d8:f9:3f:b3:17:3a:46:02:fb:13:30:aa:f4: e4:0e:6b:09:0c:e1:4e:2d:dc:9b:09:3d:ee:38:b9:21:9b:55: 09:bf:12:a3:23:51:bc:71:ef:c5:46:fe:74:0c:b1:5d:43:48: 6f:f3:96:10:60:ef:c6:f5:b2:f7:cb:56:15:cd:3c:f7:d6:fd: a7:1b:47:3e:d8:40:4f:71:a4:1e:95:1e:c4:44:ed:20:1f:52: 03:1a:8e:55:a3:a5:cc:6e:f6:74:31:6c:3d:ea:28:b0:f1:79: 06:02:5f:b2:7b:4e:15:71:5d:3b:3f:51:63:12:2b:f3:d2:15: 0c:89:9a:64:af:af:6e:4e:da:85:5f:60:b9:17:e5:a0:14:3e: d0:f5:cd:87:63:8a:01:6d:a9:80:c7:90:6a:b7:96:01:cf:86: 4c:1e:f0:a8:4c:0b:06:9a:bd:d1:f5:c6:54:3f:5f:f5:c9:13: 8c:8a:e9:34:00:dc:35:1c:4f:33:cc:89:2d:a9:71:df:37:34: d7:ea:0c:01:5c:5d:c8:a3:3d:ff:12:5b:11:c3:30:fe:64:1a: c9:0c:7e:b9:ff:56:6d:07:b8:71:a1:a2:de:44:f4:55:90:a2: 84:85:d7:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMOHurbKv5Se0piVUcHoPnneO4TUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzE1MTczNzA2WhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjBkOTVjZWExNGE0NzhlY2UyOTEyMWQ0OWNjOTQzMWIy NTQ5ODFhZDRjNmNhYWM5ZjM0NDllNDdkZDA1NzIxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDm4Mmdz/ls43DjzvlKMvUZWznVL07TOVhCjWVWzfkMNxr6 r1a0iIn+WJ5MGm3OXYRSKLJvJSrA3r3Pffp6FdqH1RjUb45Te8o7YjE3goad4HNL MsdtvEMRR0a9kGcI4ufiYMy4BDCQ/pglNTr5Ge8amifZMidOsCOQexly3KmM4vEZ h5FAete9WRimhPqIjHFnuhBbOocLSyjSsyHKDz3EmFmXRTgT95cyAJivkLIffsSF JuVfuDnN3sa9z7kFw//Qd2FOaFygbwqohbOVZCCsNFRrela7kvfYDxl3BY/PCGm2 F1NAq4DQHN575kwx8YlkDbq+1avUkfVFfz+YZRCRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBkeaJJC9iva6KOLMGrB+VIFgH0UwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAyOTBkZmQ0LWQ2MzUtNDFkZi1hMTQ2LTNhZmJhNGY0ZGM4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA7QwDQYJKoZIhvcNAQELBQADggEBAAuT7n6VlUfl3U5pg+T9cLmV clTwVGko2Pk/sxc6RgL7EzCq9OQOawkM4U4t3JsJPe44uSGbVQm/EqMjUbxx78VG /nQMsV1DSG/zlhBg78b1svfLVhXNPPfW/acbRz7YQE9xpB6VHsRE7SAfUgMajlWj pcxu9nQxbD3qKLDxeQYCX7J7ThVxXTs/UWMSK/PSFQyJmmSvr25O2oVfYLkX5aAU PtD1zYdjigFtqYDHkGq3lgHPhkwe8KhMCwaavdH1xlQ/X/XJE4yK6TQA3DUcTzPM iS2pcd83NNfqDAFcXcijPf8SWxHDMP5kGskMfrn/Vm0HuHGhot5E9FWQooSF100= -----END CERTIFICATE-----Generated at Wed Aug 6 12:25:40 2025 by rpki-client