$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2c5b343e-eb35-4c66-8ea2-4b4a02882cd1.roa File: 2c5b343e-eb35-4c66-8ea2-4b4a02882cd1.roa (raw, json) Hash identifier: RDSBGt7MMkY1EvqvRmrF8HBMMKJYTIPLb9MBfcCkzos= Subject key identifier: 04:9C:52:81:82:0C:5A:C0:2A:58:A9:C5:E8:C7:71:3E:E6:30:B2:6D Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 53588B1604CC80BD0B6AF28EB2F37B17A0826D0D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2c5b343e-eb35-4c66-8ea2-4b4a02882cd1.roa Signing time: Fri 11 Jul 2025 18:10:06 +0000 ROA not before: Fri 11 Jul 2025 18:10:06 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:48f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:58:8b:16:04:cc:80:bd:0b:6a:f2:8e:b2:f3:7b:17:a0:82:6d:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:10:06 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=0c9fe3ab8194a0095e73354271e1c358d606d0b9b21aabda9a526da5ff9e6db4, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:08:8b:eb:88:22:20:5f:d4:77:e6:dc:cc:a6: f0:7d:97:a0:1c:6d:bf:3f:0e:a5:d5:fd:1e:c9:3b: 9c:90:f5:d6:5f:19:b7:0f:41:79:8a:6d:47:fb:5b: 84:f4:c6:de:9f:83:99:5b:b4:e8:e7:cc:b4:e1:3c: fc:4b:5d:a4:42:03:85:0f:04:ff:17:9b:ee:36:a4: 36:38:29:66:18:e2:9d:4a:1c:a8:bf:3d:6e:21:0d: 3f:63:74:28:00:6e:68:48:31:19:dc:ab:e0:c5:91: e5:e7:b0:86:a4:b5:67:aa:73:f4:13:2b:db:12:58: 0a:c6:d8:df:a0:17:f5:c2:ac:66:7e:e8:90:e9:c3: 46:2f:9f:1a:5c:9a:a1:eb:3c:27:f7:2b:eb:b6:f9: 26:1a:bf:ea:df:ac:f9:61:f0:be:0c:0a:ec:c3:83: 78:61:e7:7b:8d:ae:4f:a1:50:07:78:2b:df:de:9a: b3:82:46:98:72:ea:c3:26:ad:2c:97:6e:62:44:1c: 6f:a3:96:29:a1:d8:6e:1f:99:27:d7:cd:1b:0a:98: d7:d3:ad:c0:1b:8d:f9:a6:45:43:e8:04:de:f0:01: 26:84:c0:77:5d:ee:50:18:ee:84:96:be:32:09:6d: 46:55:59:01:07:a5:93:a7:97:29:db:2d:2f:21:94: a5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9C:52:81:82:0C:5A:C0:2A:58:A9:C5:E8:C7:71:3E:E6:30:B2:6D X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2c5b343e-eb35-4c66-8ea2-4b4a02882cd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:48f::/48 Signature Algorithm: sha256WithRSAEncryption 43:09:4e:84:8d:3f:ab:23:7b:f0:68:a3:d1:86:c5:ad:2d:8e: 0c:e7:47:e2:c9:00:e6:25:76:70:0d:b6:41:db:8b:29:1a:9c: 0f:b3:f5:b8:da:74:d5:b6:55:d6:ad:ed:a9:be:2d:e6:69:16: 2b:93:64:a6:19:ba:6b:76:1d:64:2d:34:ae:de:ec:b8:76:d3: 06:7b:7f:6e:22:45:29:b2:d0:e1:54:da:cd:23:5c:26:43:81: e5:55:b1:17:00:70:52:b5:3b:85:66:3f:61:aa:66:b3:05:1d: ea:99:a9:91:97:cb:d7:01:50:9e:55:f8:3b:c4:6a:cf:dd:d2: c4:3a:b8:52:2f:0e:74:1c:a5:76:c2:08:fe:29:51:6f:bc:b4: 36:20:c6:d8:ce:ed:b8:de:4b:f9:fa:3b:ef:b9:d4:20:c9:e4: 0f:06:12:51:16:b7:02:e2:b2:13:c3:be:fc:ef:d9:a2:66:02: 8c:3b:44:f9:01:f8:ec:86:8a:63:dc:88:41:87:a4:31:44:54: 14:9e:5a:38:35:20:ae:b9:8a:a2:8a:cf:13:02:b9:cc:e5:4e: f8:56:bb:24:e5:c8:5d:06:d3:df:89:be:33:ad:28:df:34:fb: 08:03:72:26:34:a7:84:e2:2c:81:a8:95:12:ce:90:4c:52:f6: 43:65:0b:80 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUU1iLFgTMgL0LavKOsvN7F6CCbQ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgxMDA2WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzlmZTNhYjgxOTRhMDA5NWU3MzM1NDI3MWUxYzM1OGQ2 MDZkMGI5YjIxYWFiZGE5YTUyNmRhNWZmOWU2ZGI0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsCIvriCIgX9R35tzMpvB9l6Acbb8/DqXV/R7JO5yQ9dZf GbcPQXmKbUf7W4T0xt6fg5lbtOjnzLThPPxLXaRCA4UPBP8Xm+42pDY4KWYY4p1K HKi/PW4hDT9jdCgAbmhIMRncq+DFkeXnsIaktWeqc/QTK9sSWArG2N+gF/XCrGZ+ 6JDpw0YvnxpcmqHrPCf3K+u2+SYav+rfrPlh8L4MCuzDg3hh53uNrk+hUAd4K9/e mrOCRphy6sMmrSyXbmJEHG+jlimh2G4fmSfXzRsKmNfTrcAbjfmmRUPoBN7wASaE wHdd7lAY7oSWvjIJbUZVWQEHpZOnlynbLS8hlKWRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBJxSgYIMWsAqWKnF6MdxPuYwsm0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJjNWIzNDNlLWViMzUtNGM2Ni04ZWEyLTRiNGEwMjg4MmNkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABI8wDQYJKoZIhvcNAQELBQADggEBAEMJToSNP6sje/Boo9GGxa0t jgznR+LJAOYldnANtkHbiykanA+z9bjadNW2Vdat7am+LeZpFiuTZKYZumt2HWQt NK7e7Lh20wZ7f24iRSmy0OFU2s0jXCZDgeVVsRcAcFK1O4VmP2GqZrMFHeqZqZGX y9cBUJ5V+DvEas/d0sQ6uFIvDnQcpXbCCP4pUW+8tDYgxtjO7bjeS/n6O++51CDJ 5A8GElEWtwLishPDvvzv2aJmAow7RPkB+OyGimPciEGHpDFEVBSeWjg1IK65iqKK zxMCuczlTvhWuyTlyF0G09+JvjOtKN80+wgDciY0p4TiLIGolRLOkExS9kNlC4A= -----END CERTIFICATE-----Generated at Mon Aug 4 16:02:56 2025 by rpki-client