$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa File: 07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa (raw, json) Hash identifier: 9g3sJqfLnMVbvdq6585pOq1YQOr4ALS51vO9oGlI/BA= Subject key identifier: FC:1C:BB:E5:51:9A:16:35:C0:93:E8:BE:97:EB:0D:2F:4A:5E:55:00 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 17C2EF7573157A5D3F426FF381F97FC3A94F1C1F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa Signing time: Tue 17 Jun 2025 00:31:11 +0000 ROA not before: Tue 17 Jun 2025 00:31:11 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c2:ef:75:73:15:7a:5d:3f:42:6f:f3:81:f9:7f:c3:a9:4f:1c:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 17 00:31:11 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=bb50fd63911d6967fa7e32e1fd2aa29535831307298b771fa17ad343f1a0dcb6, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cd:09:d7:44:87:44:02:79:98:21:05:a1:47: 89:a5:dc:97:11:7f:00:27:89:0b:3d:52:b3:f0:73: 05:ef:c5:6c:90:db:24:3e:37:62:f1:af:1f:6f:91: 43:b5:1e:a4:30:83:17:ed:fa:d1:6f:ed:f7:55:be: ec:c1:d4:d7:a2:9c:e8:dd:6a:ba:04:f8:5f:de:8e: ff:bb:fe:ff:0a:9d:e9:2f:7e:c7:9a:1c:86:63:18: cd:96:b5:ac:c4:4a:5a:fc:21:b2:9c:f4:29:88:57: 4d:90:e8:24:bb:9f:6d:e7:20:7d:6a:c5:01:c4:fa: 5a:ee:8a:dd:e1:5b:81:9d:86:04:85:d1:d1:da:ca: 91:10:57:88:ff:52:0e:22:60:75:a3:03:81:c1:85: d2:b5:5c:ad:0f:fe:2e:48:3f:b9:d1:c7:c5:05:c0: 2e:d1:80:5c:ac:a7:65:fe:12:0c:a8:a8:ae:0d:37: 29:68:db:dd:8c:98:1b:8f:48:ac:03:db:a5:53:82: f1:d3:a0:78:81:ab:51:aa:35:94:9f:56:5a:e6:6c: a0:fa:71:44:06:1d:7a:97:30:9d:6b:2a:77:fe:c0: 3b:14:eb:41:1f:d2:1e:73:f6:0c:16:fb:a9:40:0f: dd:2b:bc:65:12:13:3e:a9:f6:48:1e:8c:fc:ca:29: b5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:1C:BB:E5:51:9A:16:35:C0:93:E8:BE:97:EB:0D:2F:4A:5E:55:00 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 59:08:ca:a3:e2:4c:ec:be:51:09:79:a6:93:eb:42:df:74:e6: 60:2f:12:41:13:33:55:d6:6b:24:c9:41:31:1e:d8:31:1d:fe: 0a:4e:69:8c:fe:d8:87:5d:d3:7b:8e:c8:7f:59:b8:f4:00:b4: 72:71:39:ac:85:15:c8:44:87:78:ff:39:55:8e:53:cd:5b:ee: 77:37:3f:94:a5:1a:cb:db:e5:10:ec:f0:c1:64:59:67:79:5e: da:da:85:f5:5c:ad:4b:14:ee:e4:0f:fd:8e:99:18:b6:cb:2e: 55:5f:bc:6a:ca:c3:01:98:f6:c8:22:0e:a1:f6:f2:9f:2a:12: 67:71:bc:05:7c:ed:7c:15:73:eb:1d:66:0d:be:27:bd:30:a4: 66:7f:a3:86:37:c4:d1:62:31:24:ef:b2:35:91:08:13:7c:67: 6c:0b:3b:b3:e5:4b:d9:c6:e1:79:76:69:1b:e9:61:5f:5a:54: 92:51:e0:c5:25:df:5e:d7:25:ab:db:97:7e:1c:2b:d1:70:f0: 3c:ca:7a:9a:07:86:06:a3:56:f9:1d:22:4d:df:24:a7:87:d9: a4:cf:a4:a9:3f:db:62:1c:c3:91:61:48:99:14:68:5c:fa:91: e2:71:e7:b4:4b:32:9f:60:a0:35:2f:30:c3:7e:82:f0:fd:2f: d8:3d:79:6c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF8LvdXMVel0/Qm/zgfl/w6lPHB8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE3MDAzMTExWhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjUwZmQ2MzkxMWQ2OTY3ZmE3ZTMyZTFmZDJhYTI5NTM1 ODMxMzA3Mjk4Yjc3MWZhMTdhZDM0M2YxYTBkY2I2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4zQnXRIdEAnmYIQWhR4ml3JcRfwAniQs9UrPwcwXvxWyQ 2yQ+N2Lxrx9vkUO1HqQwgxft+tFv7fdVvuzB1NeinOjdaroE+F/ejv+7/v8Knekv fseaHIZjGM2WtazESlr8IbKc9CmIV02Q6CS7n23nIH1qxQHE+lruit3hW4GdhgSF 0dHaypEQV4j/Ug4iYHWjA4HBhdK1XK0P/i5IP7nRx8UFwC7RgFysp2X+EgyoqK4N Nylo292MmBuPSKwD26VTgvHToHiBq1GqNZSfVlrmbKD6cUQGHXqXMJ1rKnf+wDsU 60Ef0h5z9gwW+6lAD90rvGUSEz6p9kgejPzKKbW/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/By75VGaFjXAk+i+l+sNL0peVQAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzA3YzlhYmZlLWI1YzMtNDI5MS1hZjVmLTNlYWEzMWIxMWFkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAFkIyqPiTOy+UQl5ppPrQt90 5mAvEkETM1XWayTJQTEe2DEd/gpOaYz+2Idd03uOyH9ZuPQAtHJxOayFFchEh3j/ OVWOU81b7nc3P5SlGsvb5RDs8MFkWWd5XtrahfVcrUsU7uQP/Y6ZGLbLLlVfvGrK wwGY9sgiDqH28p8qEmdxvAV87XwVc+sdZg2+J70wpGZ/o4Y3xNFiMSTvsjWRCBN8 Z2wLO7PlS9nG4Xl2aRvpYV9aVJJR4MUl317XJavbl34cK9Fw8DzKepoHhgajVvkd Ik3fJKeH2aTPpKk/22Icw5FhSJkUaFz6keJx57RLMp9goDUvMMN+gvD9L9g9eWw= -----END CERTIFICATE-----Generated at Sun Jun 29 03:04:22 2025 by rpki-client