$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a4b43ebf-0d93-4470-9ac2-768f9381f392.roa File: a4b43ebf-0d93-4470-9ac2-768f9381f392.roa (raw, json) Hash identifier: RliKMLIZrueZ91yGAx0jN0JFad3ikaShLi3Aa731Pu0= Subject key identifier: 36:B5:F2:01:89:3B:0E:18:9F:DC:70:E9:E4:80:91:B2:3A:82:2F:E1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1015321B91051EFDD5F8F92EB38A732D0880438A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a4b43ebf-0d93-4470-9ac2-768f9381f392.roa Signing time: Mon 28 Jul 2025 16:00:14 +0000 ROA not before: Mon 28 Jul 2025 16:00:14 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:3c2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:15:32:1b:91:05:1e:fd:d5:f8:f9:2e:b3:8a:73:2d:08:80:43:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 28 16:00:14 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=c987d659be976d887d32f154640b3c6af56d0b14361b60d10ae82b21ff52af81, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:07:13:d9:9f:19:7d:93:69:71:c5:a0:85:7f: 46:c6:b8:54:29:2d:47:4f:25:58:0a:1f:e1:fe:66: dd:ba:d6:41:bc:20:20:3a:ea:b5:af:70:26:b6:8a: ef:ce:a8:f9:da:46:60:19:93:79:74:68:48:f2:4d: 0c:32:2a:a5:f3:22:4e:09:d4:9d:b7:c4:38:7e:83: 4f:91:2f:34:29:c2:f0:98:d0:e2:c3:d4:ae:86:5c: 6c:00:cb:61:a2:76:4e:62:52:83:04:8f:73:23:80: 37:95:db:23:b8:16:54:a6:5a:ed:62:d3:a3:75:d4: 8f:a0:58:80:e2:c8:de:8f:e1:07:fe:c6:5a:f2:50: aa:0d:40:2b:5a:51:96:ae:60:5f:af:3c:d4:72:db: f3:d1:af:a0:fb:66:01:7d:2a:7a:bb:be:40:a9:18: 69:bc:8f:eb:3d:6b:0b:3f:f1:ea:27:17:03:14:d8: 88:ed:5a:1a:96:23:3a:04:d6:fb:33:c6:81:03:45: 7b:eb:91:be:07:f5:b2:8a:8a:e2:75:a6:00:64:f0: c3:0d:43:69:d1:0b:82:c1:8d:f5:3c:d6:c5:0c:93: b7:93:ac:1e:d9:07:b0:50:85:5c:ba:4d:18:15:3e: 5e:9f:95:71:11:17:b0:1c:30:85:fa:e1:ce:16:d7: b4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B5:F2:01:89:3B:0E:18:9F:DC:70:E9:E4:80:91:B2:3A:82:2F:E1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a4b43ebf-0d93-4470-9ac2-768f9381f392.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3c2::/48 Signature Algorithm: sha256WithRSAEncryption 53:71:20:36:2b:f3:18:6b:a7:7a:c7:96:e3:02:3f:8d:55:6e: b9:8d:33:6d:39:fa:80:72:08:fa:c5:67:46:79:c7:bf:44:d8: 4c:63:57:bb:5b:29:7b:94:a9:03:86:c0:15:d3:d0:e6:70:24: ed:93:43:90:89:ec:23:4c:eb:3d:86:f7:23:f5:b9:91:f6:11: 74:a2:d3:9d:54:e8:75:35:2e:ea:3d:97:35:3a:65:5e:ef:56: e1:7a:d7:06:e2:a6:f0:65:e3:0f:c7:f3:5f:d2:42:ca:48:4b: 62:62:75:bb:90:45:2d:19:a6:fd:56:a3:75:9c:a4:3b:3a:3a: ed:c0:b2:b7:dc:32:95:34:49:7e:62:90:b6:a5:75:ee:75:7c: 58:74:b6:8d:da:12:b8:a7:fe:f3:4b:f1:91:07:56:a6:5b:0f: 9d:d2:e9:2c:87:fb:87:2d:3d:66:16:7b:22:cd:65:e0:27:85: 40:99:23:fb:13:b1:7b:90:51:19:dd:63:49:68:ad:80:f8:ca: 8d:47:de:97:de:1a:72:c1:29:82:4f:c7:b9:44:b1:7e:50:58: 98:65:9a:19:29:a9:a1:48:ce:7a:76:e0:0e:f0:6e:1c:9d:b2: cd:1b:3e:8d:c8:65:5d:94:3a:47:38:f5:24:11:08:62:fe:cb: c5:1e:9a:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEBUyG5EFHv3V+Pkus4pzLQiAQ4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzI4MTYwMDE0WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTg3ZDY1OWJlOTc2ZDg4N2QzMmYxNTQ2NDBiM2M2YWY1 NmQwYjE0MzYxYjYwZDEwYWU4MmIyMWZmNTJhZjgxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRBxPZnxl9k2lxxaCFf0bGuFQpLUdPJVgKH+H+Zt261kG8 ICA66rWvcCa2iu/OqPnaRmAZk3l0aEjyTQwyKqXzIk4J1J23xDh+g0+RLzQpwvCY 0OLD1K6GXGwAy2Gidk5iUoMEj3MjgDeV2yO4FlSmWu1i06N11I+gWIDiyN6P4Qf+ xlryUKoNQCtaUZauYF+vPNRy2/PRr6D7ZgF9Knq7vkCpGGm8j+s9aws/8eonFwMU 2IjtWhqWIzoE1vszxoEDRXvrkb4H9bKKiuJ1pgBk8MMNQ2nRC4LBjfU81sUMk7eT rB7ZB7BQhVy6TRgVPl6flXERF7AcMIX64c4W17RbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNrXyAYk7Dhif3HDp5ICRsjqCL+EwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2E0YjQzZWJmLTBkOTMtNDQ3MC05YWMyLTc2OGY5MzgxZjM5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA8IwDQYJKoZIhvcNAQELBQADggEBAFNxIDYr8xhrp3rHluMCP41V brmNM205+oByCPrFZ0Z5x79E2ExjV7tbKXuUqQOGwBXT0OZwJO2TQ5CJ7CNM6z2G 9yP1uZH2EXSi051U6HU1Luo9lzU6ZV7vVuF61wbipvBl4w/H81/SQspIS2JidbuQ RS0Zpv1Wo3WcpDs6Ou3AsrfcMpU0SX5ikLalde51fFh0to3aErin/vNL8ZEHVqZb D53S6SyH+4ctPWYWeyLNZeAnhUCZI/sTsXuQURndY0lorYD4yo1H3pfeGnLBKYJP x7lEsX5QWJhlmhkpqaFIznp24A7wbhydss0bPo3IZV2UOkc49SQRCGL+y8UemnI= -----END CERTIFICATE-----Generated at Mon Aug 4 22:24:05 2025 by rpki-client