$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa File: 03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa (raw, json) Hash identifier: T/GVglfV5bZd3/38CVWiZ1rKvAlpMxP0nNEJB1FFcfo= Subject key identifier: 50:88:02:2B:11:16:93:C0:0C:2C:26:C5:AD:77:56:6D:82:A7:FB:6B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 272C2DF9BF14B77553D354AA5E062784A6A8B09A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa Signing time: Mon 21 Jul 2025 16:20:17 +0000 ROA not before: Mon 21 Jul 2025 16:20:17 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:2c:2d:f9:bf:14:b7:75:53:d3:54:aa:5e:06:27:84:a6:a8:b0:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 21 16:20:17 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=47132596db3d478fc2111554885ea98b14ce085828722c856c2d906b0d14db64, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:09:5d:e5:91:11:41:e6:cf:4b:22:1b:c5:ca: 01:cb:c4:d9:6a:38:f3:17:e2:1a:87:1c:07:9e:ae: 74:11:e1:05:57:dc:cc:f6:8a:42:c0:bf:bf:ee:2e: d7:e0:db:42:37:53:b3:9b:c5:e9:03:94:67:06:2b: 40:13:be:e8:e1:25:2c:60:b0:5b:94:3e:03:70:4c: 74:99:73:bd:07:24:ec:8b:fe:c6:ff:2d:6f:ab:29: d0:20:02:f3:80:56:e7:59:03:2a:f6:08:35:c5:f1: 7d:1b:01:4a:48:33:78:80:17:23:94:4d:43:b7:d7: 2c:b3:c3:0b:69:9b:09:c4:63:d3:ae:dd:c9:e5:59: 37:6f:95:1a:3a:97:e1:ff:2a:7b:38:51:a1:be:29: 73:f6:dd:c6:0a:13:d7:06:51:ef:e8:3e:4f:ee:26: 10:56:08:f5:a3:14:9c:67:ed:04:43:68:04:d1:28: 22:ea:b2:9c:82:b2:cd:27:b2:76:fa:5c:60:17:68: 2a:0e:b6:32:bc:60:44:ca:7a:4b:af:95:99:48:13: 58:84:b8:22:4a:e7:d5:45:b9:24:87:a3:c3:5a:64: ef:10:3a:93:c4:2c:4b:51:0c:20:11:03:e2:ca:f2: a2:6a:e0:7b:c1:35:a8:15:fe:29:a8:cf:90:69:4b: da:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:88:02:2B:11:16:93:C0:0C:2C:26:C5:AD:77:56:6D:82:A7:FB:6B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0d::/48 Signature Algorithm: sha256WithRSAEncryption 2d:19:e8:56:23:86:5e:fb:c9:b6:b9:e2:a0:f7:e0:40:c3:3a: 8d:d3:62:9d:df:35:57:31:b0:80:cc:6a:24:e0:74:78:49:89: 7b:99:83:9a:c9:31:fb:be:f6:eb:f1:6a:08:dd:58:af:b3:34: e6:0f:1f:97:ed:30:d6:8d:bb:b8:11:12:fc:c6:6f:15:0c:86: 5c:5f:e3:b0:7b:b2:7f:69:6d:de:b2:b5:7e:f0:11:55:21:e2: 25:4a:ca:77:71:c1:08:89:49:c5:5e:0f:55:49:04:77:62:a4: 76:fd:cc:a3:72:7c:0f:a9:e6:b6:31:4b:95:1a:c0:85:1f:ed: 75:63:b1:6d:0d:2c:be:50:ef:f1:e3:bc:26:29:b4:98:4a:52: b0:03:40:6a:95:16:06:a0:41:c9:8f:74:ea:88:38:50:b9:01: e2:20:62:a6:11:44:77:f3:45:3e:f4:52:1c:d7:4e:35:8c:d3: 6a:d4:5c:33:4f:5a:04:44:9f:9c:46:0b:e2:fb:12:c0:39:9c: 97:03:c9:40:2a:72:6b:94:1c:0c:cb:10:d2:52:37:16:e3:fd: a6:d2:15:d7:63:ae:cd:04:50:5f:bf:a5:c5:6c:69:e5:6c:2c: ce:4e:66:4c:b9:92:c2:5d:29:77:82:7a:49:b0:6f:6d:2c:c9: f3:e7:53:4b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJywt+b8Ut3VT01SqXgYnhKaosJowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzIxMTYyMDE3WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzEzMjU5NmRiM2Q0NzhmYzIxMTE1NTQ4ODVlYTk4YjE0 Y2UwODU4Mjg3MjJjODU2YzJkOTA2YjBkMTRkYjY0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiCV3lkRFB5s9LIhvFygHLxNlqOPMX4hqHHAeernQR4QVX 3Mz2ikLAv7/uLtfg20I3U7ObxekDlGcGK0ATvujhJSxgsFuUPgNwTHSZc70HJOyL /sb/LW+rKdAgAvOAVudZAyr2CDXF8X0bAUpIM3iAFyOUTUO31yyzwwtpmwnEY9Ou 3cnlWTdvlRo6l+H/Kns4UaG+KXP23cYKE9cGUe/oPk/uJhBWCPWjFJxn7QRDaATR KCLqspyCss0nsnb6XGAXaCoOtjK8YETKekuvlZlIE1iEuCJK59VFuSSHo8NaZO8Q OpPELEtRDCARA+LK8qJq4HvBNagV/imoz5BpS9pNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUIgCKxEWk8AMLCbFrXdWbYKn+2swHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAzZjVhOWQ2LWRkOTctNDdiNC04MDhkLTQ1MzZhZWE3YzAzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA0wDQYJKoZIhvcNAQELBQADggEBAC0Z6FYjhl77yba54qD34EDD Oo3TYp3fNVcxsIDMaiTgdHhJiXuZg5rJMfu+9uvxagjdWK+zNOYPH5ftMNaNu7gR EvzGbxUMhlxf47B7sn9pbd6ytX7wEVUh4iVKyndxwQiJScVeD1VJBHdipHb9zKNy fA+p5rYxS5UawIUf7XVjsW0NLL5Q7/HjvCYptJhKUrADQGqVFgagQcmPdOqIOFC5 AeIgYqYRRHfzRT70UhzXTjWM02rUXDNPWgREn5xGC+L7EsA5nJcDyUAqcmuUHAzL ENJSNxbj/abSFddjrs0EUF+/pcVsaeVsLM5OZky5ksJdKXeCekmwb20syfPnU0s= -----END CERTIFICATE-----Generated at Mon Aug 4 21:55:39 2025 by rpki-client