$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e2efdf3b-dc09-4793-a9e7-fac601e5bcc6.roa File: e2efdf3b-dc09-4793-a9e7-fac601e5bcc6.roa (raw, json) Hash identifier: /Vl9iwisFB4kwHXg3gmHaMYVY3dZl15+QCZKYV+y5eo= Subject key identifier: 7C:5F:03:B0:F6:E0:D8:BB:08:38:DA:46:6A:11:07:83:B6:C6:41:94 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 40C3925A6AD9A3EBBA6BD632F1A06DFE013A4379 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e2efdf3b-dc09-4793-a9e7-fac601e5bcc6.roa Signing time: Mon 21 Jul 2025 16:31:18 +0000 ROA not before: Mon 21 Jul 2025 16:31:18 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c1d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:c3:92:5a:6a:d9:a3:eb:ba:6b:d6:32:f1:a0:6d:fe:01:3a:43:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 21 16:31:18 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=92e508007853c7a3cf45a8f1112f63cde5756a989879fb452f454588a75172b7, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1e:73:4b:d1:63:02:e9:a4:d7:67:3c:d7:7f: bf:54:1a:d2:0c:3f:cf:0c:cc:48:3e:5f:48:f0:b0: 73:5b:58:f5:44:c4:24:ba:fc:39:65:38:54:c4:25: 9b:c0:2c:48:a2:8f:94:29:db:e8:fe:8b:af:2b:5f: fa:53:b8:5c:dc:65:5b:36:59:ce:aa:e6:24:4c:7b: 6e:e6:f9:2f:52:10:f3:ad:8a:5f:7e:1f:aa:81:92: a0:34:ab:fc:cd:1c:1b:e2:ed:3a:1f:4c:3d:35:f3: a6:1d:f6:65:9c:f9:bb:f1:10:d4:a4:45:ec:ef:37: d1:d5:70:6a:24:e6:aa:4d:93:6a:03:a3:be:99:c5: a7:88:00:e1:d3:8b:37:43:2d:15:30:3f:3f:52:f4: 2b:c9:cc:4e:c7:75:e4:2d:df:a5:1a:a5:51:86:d7: ef:42:86:c3:d7:ee:b9:48:d3:b7:f0:86:6e:6a:3e: 68:70:82:13:81:1e:f2:31:82:e2:2c:e5:98:b2:31: db:47:a6:67:d7:27:e7:b4:cb:56:b6:f9:06:33:ea: ef:4c:80:de:0f:5a:67:7d:0e:d5:70:c1:87:dc:40: 2f:38:e0:31:b9:6f:d7:de:e6:e4:df:f0:4a:94:a0: 4c:32:25:b8:3d:4b:9b:97:22:47:98:55:ae:b2:54: 68:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:5F:03:B0:F6:E0:D8:BB:08:38:DA:46:6A:11:07:83:B6:C6:41:94 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e2efdf3b-dc09-4793-a9e7-fac601e5bcc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1d::/48 Signature Algorithm: sha256WithRSAEncryption 70:fc:6e:68:57:63:ff:2c:c3:b8:5c:54:40:b0:3d:11:14:c4: 2c:a3:61:89:3a:1e:39:99:1d:53:5f:84:ba:50:ce:aa:99:5e: f9:3e:fa:b3:00:da:61:53:10:08:b5:9d:37:43:0d:0d:3f:5b: f1:48:78:16:32:b1:6c:17:a7:f4:be:87:64:6e:9b:ff:29:dd: c1:6c:bd:fe:d0:8d:e6:3c:08:5c:d9:26:7c:f9:f8:56:0d:8c: 4a:1c:12:86:73:7e:30:da:31:04:d4:a3:83:3f:1a:23:4a:79: bf:48:3a:e5:9d:21:c7:48:a5:df:97:83:90:31:7f:a8:a9:27: 81:59:ee:dc:8b:f4:52:1c:02:a8:22:5f:d7:3c:cb:95:8c:0f: 72:a4:56:71:f0:da:78:25:8e:d3:26:06:50:0b:76:e1:81:28: 20:82:49:6a:67:24:6a:30:36:bc:e6:71:fd:5b:61:9f:a1:3a: 8d:1e:da:dc:55:9b:a4:80:a1:b5:fe:62:de:10:97:ec:a2:c5: de:9d:ca:7b:e8:73:4f:41:33:02:ab:a5:92:f8:1b:d0:1f:76: f3:97:aa:2a:44:71:37:ca:a1:ec:98:91:5e:2d:b0:f2:f8:fe: 46:5c:e1:5b:63:31:40:b2:5d:6c:f6:7e:ec:02:f6:bd:11:8b: 41:03:ca:16 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQMOSWmrZo+u6a9Yy8aBt/gE6Q3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzIxMTYzMTE4WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MmU1MDgwMDc4NTNjN2EzY2Y0NWE4ZjExMTJmNjNjZGU1 NzU2YTk4OTg3OWZiNDUyZjQ1NDU4OGE3NTE3MmI3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnHnNL0WMC6aTXZzzXf79UGtIMP88MzEg+X0jwsHNbWPVE xCS6/DllOFTEJZvALEiij5Qp2+j+i68rX/pTuFzcZVs2Wc6q5iRMe27m+S9SEPOt il9+H6qBkqA0q/zNHBvi7TofTD0186Yd9mWc+bvxENSkRezvN9HVcGok5qpNk2oD o76ZxaeIAOHTizdDLRUwPz9S9CvJzE7HdeQt36UapVGG1+9ChsPX7rlI07fwhm5q PmhwghOBHvIxguIs5ZiyMdtHpmfXJ+e0y1a2+QYz6u9MgN4PWmd9DtVwwYfcQC84 4DG5b9fe5uTf8EqUoEwyJbg9S5uXIkeYVa6yVGiPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfF8DsPbg2LsIONpGahEHg7bGQZQwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2UyZWZkZjNiLWRjMDktNDc5My1hOWU3LWZhYzYwMWU1YmNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADB0wDQYJKoZIhvcNAQELBQADggEBAHD8bmhXY/8sw7hcVECwPREU xCyjYYk6HjmZHVNfhLpQzqqZXvk++rMA2mFTEAi1nTdDDQ0/W/FIeBYysWwXp/S+ h2Rum/8p3cFsvf7QjeY8CFzZJnz5+FYNjEocEoZzfjDaMQTUo4M/GiNKeb9IOuWd IcdIpd+Xg5Axf6ipJ4FZ7tyL9FIcAqgiX9c8y5WMD3KkVnHw2ngljtMmBlALduGB KCCCSWpnJGowNrzmcf1bYZ+hOo0e2txVm6SAobX+Yt4Ql+yixd6dynvoc09BMwKr pZL4G9AfdvOXqipEcTfKoeyYkV4tsPL4/kZc4VtjMUCyXWz2fuwC9r0Ri0EDyhY= -----END CERTIFICATE-----Generated at Mon Aug 4 21:54:46 2025 by rpki-client