$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb75fc4b-0627-4c79-b591-308eee344e77.roa File: bb75fc4b-0627-4c79-b591-308eee344e77.roa (raw, json) Hash identifier: GVOVPZ+fIU+dH7Me0rwpIYvPIFqFAYmmjYqkdJ6SK/I= Subject key identifier: F3:2C:F2:D6:03:11:5C:DB:76:9D:EC:ED:4F:83:BB:A9:AC:3B:B8:71 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 163D1D0ABCEAB553D720EF3BCAF50A514E347A3A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb75fc4b-0627-4c79-b591-308eee344e77.roa Signing time: Sat 12 Jul 2025 00:40:24 +0000 ROA not before: Sat 12 Jul 2025 00:40:24 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:610::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:3d:1d:0a:bc:ea:b5:53:d7:20:ef:3b:ca:f5:0a:51:4e:34:7a:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 12 00:40:24 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=7ab60105a3324e4194ba7b6b3dc6a1b24e4cf2f8e5aa4f3f1b2cf776c71117d1, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e7:49:4b:e1:a5:8d:7b:e2:98:a3:40:ea:56: 62:37:f3:2d:dc:12:63:bb:28:d8:3c:b8:de:d5:00: f4:2f:bc:60:bf:53:f3:c4:d7:c0:c4:75:7c:e3:eb: 2d:c4:6e:e8:40:8e:ac:c0:ae:90:51:fa:b7:b1:71: d8:1e:81:18:51:a0:ed:0e:f9:85:a0:25:e7:fc:2a: 2a:fd:38:a6:6b:1d:4a:b3:2c:3d:38:13:01:c5:3e: 88:6c:c6:0b:74:55:62:a0:d7:7b:32:39:2f:92:7b: f9:2a:cd:a5:7a:6a:c5:34:10:c8:0d:ed:ba:90:83: a7:15:9c:0e:f2:3a:f9:55:cd:2d:06:f5:f0:dd:ad: 8a:6c:20:9d:94:d8:da:2e:0b:15:4a:de:15:5b:10: 3d:44:19:da:92:77:9e:62:25:9f:11:63:b1:cd:3c: 0b:3a:e7:2d:c3:d6:e0:1a:5a:8d:79:1b:1a:6a:f2: 72:c9:4b:c2:7c:78:69:f8:9e:43:3f:23:94:25:b9: fb:08:12:d0:e7:e3:6b:6b:d9:f9:2e:8c:da:e0:13: 2c:5b:51:42:7a:11:90:72:3f:71:f2:cc:5d:50:0f: 8b:1e:d0:4b:7a:c4:e3:da:20:46:ab:32:d3:df:0a: 4d:31:98:9c:19:11:ff:6b:9a:73:83:e7:28:d8:26: 10:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:2C:F2:D6:03:11:5C:DB:76:9D:EC:ED:4F:83:BB:A9:AC:3B:B8:71 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb75fc4b-0627-4c79-b591-308eee344e77.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:610::/48 Signature Algorithm: sha256WithRSAEncryption 5c:80:de:8f:b2:b3:78:82:90:b6:8f:53:79:1a:06:dd:05:00: 5d:b2:b8:a3:7a:cf:1b:7d:1a:d2:6c:3a:a7:43:c1:07:9c:70: 25:6f:4a:f7:cc:90:38:5c:cd:c2:30:27:b0:60:c7:c7:df:58: d0:46:e0:92:c9:a5:5f:61:a7:52:b8:0e:c0:21:d3:bc:13:78: 89:b1:fe:c3:fd:74:d0:c5:ef:cb:3f:24:31:4c:da:1f:31:93: 8c:b0:a2:eb:f7:a3:e7:9d:db:59:da:2c:af:9c:7f:5c:1a:17: 75:54:a3:82:8e:0c:86:ec:26:27:93:f3:f7:1e:3d:86:4a:54: 28:df:19:6e:9a:29:96:86:dc:d4:e6:85:ff:6d:c9:17:91:02: b4:14:ed:3d:d8:48:c4:7f:f0:c2:a2:ae:e9:57:97:3e:5c:2f: 4e:74:fc:af:4a:df:a9:ae:54:a3:fe:67:0b:8a:a2:88:72:69: f8:1f:b4:d2:45:f0:f7:91:9a:86:6b:20:c2:2f:01:d9:ed:54: 5a:0e:6e:f4:78:45:7a:71:5f:37:d5:46:f8:53:a5:11:66:db: ba:47:f9:4a:f4:ef:39:98:7c:6d:fd:ab:5f:22:90:4b:96:41: ad:03:34:ad:a9:9c:03:a1:b3:ca:10:5e:98:71:9f:6a:32:60: c7:5d:3a:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFj0dCrzqtVPXIO87yvUKUU40ejowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzEyMDA0MDI0WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWI2MDEwNWEzMzI0ZTQxOTRiYTdiNmIzZGM2YTFiMjRl NGNmMmY4ZTVhYTRmM2YxYjJjZjc3NmM3MTExN2QxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW50lL4aWNe+KYo0DqVmI38y3cEmO7KNg8uN7VAPQvvGC/ U/PE18DEdXzj6y3EbuhAjqzArpBR+rexcdgegRhRoO0O+YWgJef8Kir9OKZrHUqz LD04EwHFPohsxgt0VWKg13syOS+Se/kqzaV6asU0EMgN7bqQg6cVnA7yOvlVzS0G 9fDdrYpsIJ2U2NouCxVK3hVbED1EGdqSd55iJZ8RY7HNPAs65y3D1uAaWo15Gxpq 8nLJS8J8eGn4nkM/I5QlufsIEtDn42tr2fkujNrgEyxbUUJ6EZByP3HyzF1QD4se 0Et6xOPaIEarMtPfCk0xmJwZEf9rmnOD5yjYJhC7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8yzy1gMRXNt2neztT4O7qaw7uHEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JiNzVmYzRiLTA2MjctNGM3OS1iNTkxLTMwOGVlZTM0NGU3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhAwDQYJKoZIhvcNAQELBQADggEBAFyA3o+ys3iCkLaPU3kaBt0F AF2yuKN6zxt9GtJsOqdDwQeccCVvSvfMkDhczcIwJ7Bgx8ffWNBG4JLJpV9hp1K4 DsAh07wTeImx/sP9dNDF78s/JDFM2h8xk4ywouv3o+ed21naLK+cf1waF3VUo4KO DIbsJieT8/cePYZKVCjfGW6aKZaG3NTmhf9tyReRArQU7T3YSMR/8MKirulXlz5c L050/K9K36muVKP+ZwuKoohyafgftNJF8PeRmoZrIMIvAdntVFoObvR4RXpxXzfV RvhTpRFm27pH+Ur07zmYfG39q18ikEuWQa0DNK2pnAOhs8oQXphxn2oyYMddOis= -----END CERTIFICATE-----Generated at Wed Aug 6 00:48:24 2025 by rpki-client