$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa File: c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa (raw, json) Hash identifier: EG4NS8jnO49tpe/RiVpJX4WZH3Hf98qbvuWE+PdNaEs= Subject key identifier: 9D:D8:30:70:C1:9E:5E:A5:CA:94:03:41:B2:B7:AD:A0:0C:5F:43:45 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3740D8106A939B2FDCE5FCA29E4EAE9BEA3A308A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa Signing time: Fri 11 Jul 2025 18:10:54 +0000 ROA not before: Fri 11 Jul 2025 18:10:54 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:399::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:40:d8:10:6a:93:9b:2f:dc:e5:fc:a2:9e:4e:ae:9b:ea:3a:30:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:10:54 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=2f0e9e2d7626674e654e52a9542d36872787ecc2311553684dff56a5c170eab7, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:63:37:ce:1d:32:ff:11:3d:fc:9a:a0:ae:20: 32:e5:2d:aa:59:80:93:68:a9:43:a9:e7:1d:9c:1e: 1b:d2:b2:ca:83:dc:a6:e1:04:5e:39:29:25:da:b9: 11:34:8f:48:96:65:0a:27:66:10:d5:ef:44:3f:94: f3:17:17:53:31:5c:29:9c:d7:93:82:1d:b7:e3:ea: 82:d2:ca:7e:b5:0c:52:0f:05:1c:5e:d6:88:cd:09: bd:a1:0f:e8:83:65:c9:20:d6:34:5d:c3:45:95:8a: e2:b9:12:d8:49:5e:ce:33:1b:81:e3:6d:fe:a7:aa: 05:2a:f5:ad:21:a9:68:07:3e:7f:5a:ee:f7:71:9f: f8:db:15:b2:eb:f5:d0:df:00:a0:38:e0:0f:6b:b5: 4c:c1:66:25:0a:66:e7:f7:7b:a7:49:51:0d:f7:b8: 1f:a5:2d:75:00:45:59:65:22:19:90:1a:cf:b4:48: 12:52:41:6b:80:0d:e9:02:14:42:4a:38:d3:1f:1d: 41:e7:30:d4:e0:7c:34:e1:d9:a4:4c:db:57:6c:f4: 10:44:c2:b6:8e:73:a4:13:9d:8e:d0:3b:28:1f:dd: d9:62:7a:cb:e4:45:77:64:61:07:97:bb:92:db:c4: 4a:62:d8:e6:5f:97:72:79:8c:f6:bd:15:27:e7:34: c3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D8:30:70:C1:9E:5E:A5:CA:94:03:41:B2:B7:AD:A0:0C:5F:43:45 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:399::/48 Signature Algorithm: sha256WithRSAEncryption 63:22:f5:1b:6c:28:a6:22:25:0d:4d:a4:ae:5c:96:19:41:57: cc:8d:7f:63:c1:49:2e:d3:ed:49:67:4f:e2:82:41:db:cc:5f: 0a:7c:27:93:d7:8f:fc:a6:0f:dd:f0:32:fc:2c:c6:ac:b8:e6: 87:34:e3:c6:ce:c4:e9:0b:e1:39:13:10:80:e9:e2:3a:89:9d: 20:11:82:1f:b5:22:28:3c:01:f0:9e:80:f1:49:ad:f1:46:51: f4:b4:83:f9:35:81:86:d6:c9:90:37:63:aa:9d:29:28:95:a5: 87:f2:ae:4c:9f:64:ca:e8:7d:2e:e3:69:af:db:97:bc:86:e1: 35:95:bf:ac:de:36:c5:bc:4d:f0:c0:9c:08:71:09:4e:a2:ca: 7d:13:41:58:66:b7:4c:d4:19:c8:ee:98:62:a4:ca:e6:e4:87: a9:26:81:98:da:b8:92:cf:d0:f2:10:1f:6d:81:a4:34:17:77: 21:bc:e9:ff:86:9e:18:6c:0f:8e:80:17:18:d3:0c:d5:ff:9a: 26:9f:40:b7:b1:0c:ac:1e:87:28:3a:04:7f:8d:30:e3:02:4a: 99:47:3e:43:4b:99:2e:38:9d:29:93:c1:b2:92:97:79:c3:e9: 92:fb:28:18:f1:a4:e0:08:db:fe:7e:68:e8:81:68:70:06:5b: bc:0e:f2:98 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN0DYEGqTmy/c5fyink6um+o6MIowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgxMDU0WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjBlOWUyZDc2MjY2NzRlNjU0ZTUyYTk1NDJkMzY4NzI3 ODdlY2MyMzExNTUzNjg0ZGZmNTZhNWMxNzBlYWI3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRYzfOHTL/ET38mqCuIDLlLapZgJNoqUOp5x2cHhvSssqD 3KbhBF45KSXauRE0j0iWZQonZhDV70Q/lPMXF1MxXCmc15OCHbfj6oLSyn61DFIP BRxe1ojNCb2hD+iDZckg1jRdw0WViuK5EthJXs4zG4Hjbf6nqgUq9a0hqWgHPn9a 7vdxn/jbFbLr9dDfAKA44A9rtUzBZiUKZuf3e6dJUQ33uB+lLXUARVllIhmQGs+0 SBJSQWuADekCFEJKONMfHUHnMNTgfDTh2aRM21ds9BBEwraOc6QTnY7QOygf3dli esvkRXdkYQeXu5LbxEpi2OZfl3J5jPa9FSfnNMOzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUndgwcMGeXqXKlANBsretoAxfQ0UwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2MzY2ZjODExLTIzNzktNDBkMC05MTFkLWJlYTBiYTJiOWMzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5kwDQYJKoZIhvcNAQELBQADggEBAGMi9RtsKKYiJQ1NpK5clhlB V8yNf2PBSS7T7UlnT+KCQdvMXwp8J5PXj/ymD93wMvwsxqy45oc048bOxOkL4TkT EIDp4jqJnSARgh+1Iig8AfCegPFJrfFGUfS0g/k1gYbWyZA3Y6qdKSiVpYfyrkyf ZMrofS7jaa/bl7yG4TWVv6zeNsW8TfDAnAhxCU6iyn0TQVhmt0zUGcjumGKkyubk h6kmgZjauJLP0PIQH22BpDQXdyG86f+GnhhsD46AFxjTDNX/miafQLexDKwehyg6 BH+NMOMCSplHPkNLmS44nSmTwbKSl3nD6ZL7KBjxpOAI2/5+aOiBaHAGW7wO8pg= -----END CERTIFICATE-----Generated at Tue Aug 5 08:20:05 2025 by rpki-client