$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa File: 3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa (raw, json) Hash identifier: E5yPZCkY1xvNaEpOmfa+IALhgUtnDpDhHnfnG19efNs= Subject key identifier: 67:B4:88:0B:0E:FF:5A:B9:36:86:2D:A2:35:AA:3A:03:46:26:3A:EA Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 738E602035C354A697ABF66720C00358582342DC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa Signing time: Sat 12 Jul 2025 00:40:27 +0000 ROA not before: Sat 12 Jul 2025 00:40:27 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:8e:60:20:35:c3:54:a6:97:ab:f6:67:20:c0:03:58:58:23:42:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 12 00:40:27 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=bafe414b7d52d72b967fa68e47a62b8e98517a3734995e7e383d7871ec85da29, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:cf:80:4e:06:0d:02:cb:1a:0b:80:5a:26:61: 35:b4:5d:22:a1:fd:f3:4b:9a:6b:16:e1:97:da:48: f8:8c:1c:ca:c3:fa:36:09:67:64:a1:0a:b1:36:66: 56:63:bc:1e:9b:a2:d9:16:4b:a2:38:17:74:4a:42: 40:a3:84:c1:37:55:4f:c2:19:2a:04:de:1d:2f:18: 54:ba:a9:7a:11:da:71:e7:df:1d:f9:1d:61:ad:08: 50:16:1f:ea:57:86:0d:29:f7:84:65:6c:f7:df:b2: 44:c1:b4:33:a8:2a:75:0e:b6:76:42:c7:06:b9:e8: a3:48:2d:ee:e1:19:db:d5:ac:57:dd:c7:58:f0:2f: 7f:17:7a:3b:ef:56:64:3d:3b:f2:15:33:d2:a5:34: d5:a1:61:e4:66:88:de:96:9e:5e:cf:fa:2a:61:5a: 5a:31:67:3d:65:f4:ab:a4:5b:c3:ac:10:be:4f:0a: 70:78:21:3b:b8:a7:38:07:02:3c:fb:aa:01:f2:1b: f3:dd:aa:05:bb:c9:e4:50:aa:0b:9d:e4:db:e9:84: d9:b9:e2:e0:3b:85:d0:20:bf:c4:f8:ed:88:d3:6f: 68:1b:37:51:54:64:78:fd:ce:e1:31:a8:e9:98:52: be:78:cb:17:b3:a2:bf:af:06:20:05:43:ea:2b:c8: 10:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B4:88:0B:0E:FF:5A:B9:36:86:2D:A2:35:AA:3A:03:46:26:3A:EA X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 26:9f:2f:ba:8a:7f:6e:a0:55:92:c4:32:9d:a8:89:ad:21:ec: 9e:84:86:55:3f:a8:9d:3f:b0:62:6a:3b:ac:30:df:a7:8b:cc: ad:61:18:07:2a:ba:fb:9f:75:5b:a9:6e:7b:ad:e9:84:ef:12: fa:d1:b1:0f:31:58:6b:cb:70:2f:1a:c6:53:8a:25:50:2e:5d: 88:b3:f2:d9:a0:35:d5:c9:1f:4c:03:32:8f:bd:53:02:2c:ec: cf:d7:00:3b:91:a2:79:e6:fb:13:00:3f:11:b0:a7:03:f7:e7: ff:f8:a7:d1:aa:9c:63:52:b8:e6:22:e4:b1:2f:7c:25:f9:44: aa:b9:c1:74:e8:93:6a:f7:59:5f:83:8d:5d:fc:41:c8:2a:4b: 49:bf:67:71:7b:49:f3:0a:66:e0:96:09:c5:ba:35:0a:65:37: 98:d6:37:77:77:17:b1:13:06:d0:81:0f:57:60:06:65:aa:76: 21:cd:bd:82:4c:cd:af:1e:59:0b:af:43:c6:0f:ff:35:47:95: bb:4c:c1:ea:ba:a5:ae:49:f8:c9:8c:5d:45:66:3c:a0:45:c7: 93:8a:d9:d0:3f:10:ff:1d:8d:cf:8b:9b:6d:52:db:1a:46:59: ce:39:68:36:63:7a:8b:3f:a1:dc:a5:44:b5:9e:5d:4c:a1:f3: 35:47:49:57 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUc45gIDXDVKaXq/ZnIMADWFgjQtwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzEyMDA0MDI3WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWZlNDE0YjdkNTJkNzJiOTY3ZmE2OGU0N2E2MmI4ZTk4 NTE3YTM3MzQ5OTVlN2UzODNkNzg3MWVjODVkYTI5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMz4BOBg0CyxoLgFomYTW0XSKh/fNLmmsW4ZfaSPiMHMrD +jYJZ2ShCrE2ZlZjvB6botkWS6I4F3RKQkCjhME3VU/CGSoE3h0vGFS6qXoR2nHn 3x35HWGtCFAWH+pXhg0p94RlbPffskTBtDOoKnUOtnZCxwa56KNILe7hGdvVrFfd x1jwL38XejvvVmQ9O/IVM9KlNNWhYeRmiN6Wnl7P+iphWloxZz1l9KukW8OsEL5P CnB4ITu4pzgHAjz7qgHyG/PdqgW7yeRQqgud5NvphNm54uA7hdAgv8T47YjTb2gb N1FUZHj9zuExqOmYUr54yxezor+vBiAFQ+oryBAFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ7SICw7/Wrk2hi2iNao6A0YmOuowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZWY5ZDNlLTJhZDItNGUzOC05MmZjLTVlYWI3NmE1Mzk1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBACafL7qKf26gVZLEMp2oia0h 7J6EhlU/qJ0/sGJqO6ww36eLzK1hGAcquvufdVupbnut6YTvEvrRsQ8xWGvLcC8a xlOKJVAuXYiz8tmgNdXJH0wDMo+9UwIs7M/XADuRonnm+xMAPxGwpwP35//4p9Gq nGNSuOYi5LEvfCX5RKq5wXTok2r3WV+DjV38QcgqS0m/Z3F7SfMKZuCWCcW6NQpl N5jWN3d3F7ETBtCBD1dgBmWqdiHNvYJMza8eWQuvQ8YP/zVHlbtMweq6pa5J+MmM XUVmPKBFx5OK2dA/EP8djc+Lm21S2xpGWc45aDZjeos/odylRLWeXUyh8zVHSVc= -----END CERTIFICATE-----Generated at Mon Aug 4 14:15:32 2025 by rpki-client