$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0ca2746d-3202-41d0-813a-04560f31627d.roa File: 0ca2746d-3202-41d0-813a-04560f31627d.roa (raw, json) Hash identifier: 0kWb3rvSCkELsM138TLSG+DBT+l49wVs38S2cvjhHIE= Subject key identifier: 61:79:2F:59:08:DC:58:79:7C:A2:B2:B7:54:73:E0:25:35:3A:88:86 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 75C556BEF843B9520F4AFC5AE04FB112302071BE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0ca2746d-3202-41d0-813a-04560f31627d.roa Signing time: Mon 21 Jul 2025 16:20:41 +0000 ROA not before: Mon 21 Jul 2025 16:20:41 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:c5:56:be:f8:43:b9:52:0f:4a:fc:5a:e0:4f:b1:12:30:20:71:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 21 16:20:41 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=bfd7be7d20592507956ed30a9f5def482ab2e3a98477a91c256052520bec8d90, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:80:07:93:1f:48:3d:3e:1b:d8:0c:2a:87: 2d:5a:d5:ff:b6:5b:ef:1f:76:ca:0a:9b:5c:15:13: 06:17:9d:0b:9c:84:48:b8:d9:58:7a:d8:f4:d3:dc: 92:ee:83:51:51:7c:7e:ce:f6:4b:63:c1:0a:2d:b4: 03:58:87:b9:87:c6:3d:08:56:91:ce:4b:1b:17:f1: 9d:00:4d:71:37:02:20:73:d4:60:f3:2e:8a:bd:b7: 03:aa:c2:ec:9c:9d:95:93:85:2f:4c:51:72:2d:f8: c8:98:a4:69:6c:dc:e0:08:20:ae:80:68:18:5f:2d: e8:76:bd:0b:88:a5:35:12:fb:56:6a:d2:6c:6a:20: e1:1e:91:07:0f:24:64:c6:e2:c5:c6:3a:61:ac:7c: f0:95:6c:06:c3:4e:b9:5c:c9:7e:ca:70:f1:66:f4: 28:57:c8:95:06:47:e3:4a:cc:8c:bb:d1:46:25:97: a9:69:82:b5:4f:e2:b9:db:64:56:d8:28:03:5e:35: d8:fa:78:de:69:2e:26:dd:78:71:9e:35:a4:ce:e2: f4:d6:68:26:74:f5:10:af:9a:c6:39:1d:29:63:52: 17:a8:b3:b1:ec:3b:6d:92:30:2a:00:de:1c:b5:d2: c3:61:ce:b5:df:76:c7:b5:26:c9:e8:60:48:3e:28: 37:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:79:2F:59:08:DC:58:79:7C:A2:B2:B7:54:73:E0:25:35:3A:88:86 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0ca2746d-3202-41d0-813a-04560f31627d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c10::/48 Signature Algorithm: sha256WithRSAEncryption 6f:37:b4:1b:ef:98:6d:43:f1:1f:ff:61:84:e7:d9:75:2a:c0: 2a:0c:33:5b:29:98:e2:7f:40:4c:ca:a6:ba:5b:8d:a8:3b:e1: 77:d7:db:8d:c8:93:7f:61:33:27:e5:90:24:47:10:6a:f0:58: 3d:98:92:a7:63:db:1b:a8:67:b7:a0:66:25:4b:f6:9a:f2:c8: 0b:7b:04:03:70:63:4c:26:fb:bf:13:38:52:86:99:7e:fb:fe: b6:8b:75:16:bd:b6:6c:95:a2:e3:f3:81:de:e5:32:0a:23:82: de:e4:dc:94:5f:c3:cc:c8:8b:a7:a0:4e:e5:28:c3:97:44:57: 6a:b6:85:7f:15:d3:d8:42:5e:61:26:7b:9d:c6:9c:22:18:90: 07:a2:c6:d8:62:ae:0d:bf:32:32:a5:66:c5:bd:ef:c6:ed:71: 07:5e:5a:43:d8:32:05:a9:0c:bc:43:63:b7:84:4e:3b:8d:c2: 83:c3:61:e1:e3:75:c4:b6:1d:7b:ad:e0:67:84:7d:8c:56:91: 4a:c5:11:71:5b:45:b9:0d:8a:1c:9d:70:37:6c:38:ee:7e:a7: 85:2f:a7:74:46:a1:09:8f:41:5b:77:28:cd:d6:ce:f8:9f:32: fd:4c:ac:0f:2f:87:39:b2:aa:58:d0:da:d4:28:85:ad:6d:4b: 29:b8:e7:83 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdcVWvvhDuVIPSvxa4E+xEjAgcb4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzIxMTYyMDQxWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZmQ3YmU3ZDIwNTkyNTA3OTU2ZWQzMGE5ZjVkZWY0ODJh YjJlM2E5ODQ3N2E5MWMyNTYwNTI1MjBiZWM4ZDkwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7DYAHkx9IPT4b2Awqhy1a1f+2W+8fdsoKm1wVEwYXnQuc hEi42Vh62PTT3JLug1FRfH7O9ktjwQottANYh7mHxj0IVpHOSxsX8Z0ATXE3AiBz 1GDzLoq9twOqwuycnZWThS9MUXIt+MiYpGls3OAIIK6AaBhfLeh2vQuIpTUS+1Zq 0mxqIOEekQcPJGTG4sXGOmGsfPCVbAbDTrlcyX7KcPFm9ChXyJUGR+NKzIy70UYl l6lpgrVP4rnbZFbYKANeNdj6eN5pLibdeHGeNaTO4vTWaCZ09RCvmsY5HSljUheo s7HsO22SMCoA3hy10sNhzrXfdse1JsnoYEg+KDeVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYXkvWQjcWHl8orK3VHPgJTU6iIYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBjYTI3NDZkLTMyMDItNDFkMC04MTNhLTA0NTYwZjMxNjI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBAwDQYJKoZIhvcNAQELBQADggEBAG83tBvvmG1D8R//YYTn2XUq wCoMM1spmOJ/QEzKprpbjag74XfX243Ik39hMyflkCRHEGrwWD2Ykqdj2xuoZ7eg ZiVL9pryyAt7BANwY0wm+78TOFKGmX77/raLdRa9tmyVouPzgd7lMgojgt7k3JRf w8zIi6egTuUow5dEV2q2hX8V09hCXmEme53GnCIYkAeixthirg2/MjKlZsW978bt cQdeWkPYMgWpDLxDY7eETjuNwoPDYeHjdcS2HXut4GeEfYxWkUrFEXFbRbkNihyd cDdsOO5+p4Uvp3RGoQmPQVt3KM3WzvifMv1MrA8vhzmyqljQ2tQoha1tSym454M= -----END CERTIFICATE-----Generated at Mon Aug 4 22:17:17 2025 by rpki-client