$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa File: fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa (raw, json) Hash identifier: mmM7lVKID4+AdMhYX3MVTIUclTf+bbA45vq1MrsRRII= Subject key identifier: EE:5B:F1:18:9A:DF:F3:E0:0A:8C:29:D2:F1:45:54:BE:CA:6C:2F:C6 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 55E25562B288D1696C9D8165D3344C64B11D73A6 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa Signing time: Mon 21 Jul 2025 16:10:26 +0000 ROA not before: Mon 21 Jul 2025 16:10:26 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c04::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:e2:55:62:b2:88:d1:69:6c:9d:81:65:d3:34:4c:64:b1:1d:73:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 21 16:10:26 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=cfe65ac5dfcfd4125a548ddc3967f2a1db8c47c5d0e7bf04d4c560f61306fb4c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:25:5b:e1:fb:d2:99:e7:17:fe:9b:00:2c:d5: 60:49:5e:d5:0e:1f:46:7f:44:4f:9b:bc:bf:a7:37: 19:0c:4f:c7:c2:f3:b0:e1:73:d2:06:aa:08:1d:a9: 73:8b:9e:d7:37:42:e2:50:2e:32:d0:f5:d1:d6:f5: e5:66:a0:c1:5a:fd:39:5b:10:e8:29:58:03:18:3b: 6b:da:94:27:4c:3e:29:42:d8:9a:f4:d7:53:bd:36: 0c:b8:05:21:80:00:63:5e:47:91:3d:b1:ed:5e:e3: 46:41:e4:8d:c4:cb:bf:3a:d8:4c:92:a8:94:c7:96: aa:48:68:54:59:ce:71:13:6b:4f:17:40:47:65:dc: a5:3c:37:38:4f:b2:16:fc:36:80:80:e1:59:48:4d: 09:1a:8a:40:45:1f:87:8e:fe:50:43:43:73:f1:18: 83:02:93:46:98:83:15:fb:10:83:03:78:35:e5:75: da:b5:ef:54:39:0f:ea:5f:89:91:9e:44:0f:ad:90: 2f:40:80:1b:8f:38:c4:e0:e6:d0:bf:a2:65:f8:ac: 04:78:53:2f:50:ba:11:ba:44:ec:7c:af:cb:b3:28: 1b:0d:b2:09:8d:e4:78:ac:c3:d2:88:75:0e:1e:7c: cc:1a:65:a6:fa:56:48:aa:24:1f:25:95:ec:15:0f: 46:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:5B:F1:18:9A:DF:F3:E0:0A:8C:29:D2:F1:45:54:BE:CA:6C:2F:C6 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c04::/48 Signature Algorithm: sha256WithRSAEncryption 9f:e2:54:ce:42:be:22:4f:af:28:a3:6a:17:02:9e:dd:80:e2: 3b:9d:ec:82:27:a5:5f:d0:53:21:82:36:6d:26:f7:eb:1a:46: e1:76:03:2a:ae:b7:a1:1c:07:c5:cb:e4:a2:0c:73:a6:a6:e9: 1b:bd:a1:11:8d:77:3a:c0:6c:dd:63:17:a3:0b:27:b7:42:b5: 22:2a:45:35:44:1c:21:6e:35:62:18:33:58:5c:80:d8:ba:0a: 62:70:8d:5d:fd:2c:17:56:7f:56:70:4f:af:06:23:e8:f7:28: a3:b0:51:58:2d:3a:11:6f:b4:33:8e:24:9d:c1:39:0a:6f:1d: 83:8f:4f:c0:13:a1:a7:1c:b1:ba:d4:e3:b4:67:e1:a3:29:29: 06:bd:00:82:9a:fa:3a:92:57:42:2b:5e:e8:6b:ad:92:5c:33: a9:9b:88:12:f5:60:65:86:74:ea:00:ad:b5:4a:f9:0c:90:5b: cb:87:89:4d:28:39:cc:f4:c3:b7:97:02:eb:93:9c:1e:2b:6c: e6:d5:65:d2:44:4c:c4:43:1b:8b:2c:04:eb:6e:f8:6f:c8:2d: 06:03:eb:92:ae:42:f0:5a:7e:57:a8:52:04:ec:28:dc:61:3e: e3:b6:74:91:1f:ee:f6:13:0a:ff:36:21:d7:60:d3:9d:b5:9e: e3:cc:a3:32 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVeJVYrKI0WlsnYFl0zRMZLEdc6YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzIxMTYxMDI2WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmU2NWFjNWRmY2ZkNDEyNWE1NDhkZGMzOTY3ZjJhMWRi OGM0N2M1ZDBlN2JmMDRkNGM1NjBmNjEzMDZmYjRjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhJVvh+9KZ5xf+mwAs1WBJXtUOH0Z/RE+bvL+nNxkMT8fC 87Dhc9IGqggdqXOLntc3QuJQLjLQ9dHW9eVmoMFa/TlbEOgpWAMYO2valCdMPilC 2Jr011O9Ngy4BSGAAGNeR5E9se1e40ZB5I3Ey7862EySqJTHlqpIaFRZznETa08X QEdl3KU8NzhPshb8NoCA4VlITQkaikBFH4eO/lBDQ3PxGIMCk0aYgxX7EIMDeDXl ddq171Q5D+pfiZGeRA+tkC9AgBuPOMTg5tC/omX4rAR4Uy9QuhG6ROx8r8uzKBsN sgmN5Hisw9KIdQ4efMwaZab6VkiqJB8llewVD0b1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7lvxGJrf8+AKjCnS8UVUvspsL8YwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2ZkZmNlNTA1LWQyMmEtNDBiOS1hMjUzLTdiNzdiMGY5ZjFjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAQwDQYJKoZIhvcNAQELBQADggEBAJ/iVM5CviJPryijahcCnt2A 4jud7IInpV/QUyGCNm0m9+saRuF2Ayqut6EcB8XL5KIMc6am6Ru9oRGNdzrAbN1j F6MLJ7dCtSIqRTVEHCFuNWIYM1hcgNi6CmJwjV39LBdWf1ZwT68GI+j3KKOwUVgt OhFvtDOOJJ3BOQpvHYOPT8AToaccsbrU47Rn4aMpKQa9AIKa+jqSV0IrXuhrrZJc M6mbiBL1YGWGdOoArbVK+QyQW8uHiU0oOcz0w7eXAuuTnB4rbObVZdJETMRDG4ss BOtu+G/ILQYD65KuQvBafleoUgTsKNxhPuO2dJEf7vYTCv82Iddg0521nuPMozI= -----END CERTIFICATE-----Generated at Mon Aug 4 21:47:58 2025 by rpki-client