$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa File: 0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa (raw, json) Hash identifier: nHt+Skbfe+BJYOIU4t8kNUVwz8KPZXnKG4Wd4Yb4IHo= Subject key identifier: D7:7C:6B:97:9E:21:D9:E4:46:EC:DC:C4:A0:2C:F8:52:EB:CC:C9:42 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 18215F48606D19556E4958EC9A9ABE55EB55B1B8 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa Signing time: Wed 25 Jun 2025 00:30:17 +0000 ROA not before: Wed 25 Jun 2025 00:30:17 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c03::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:21:5f:48:60:6d:19:55:6e:49:58:ec:9a:9a:be:55:eb:55:b1:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 25 00:30:17 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=6c79fefcdba0d375daea9882864e06dcff55f831cd2155bdb747b0083edf7586, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:02:8f:db:ce:00:74:79:f4:bf:75:3c:83:36: d9:e8:2a:b1:80:03:71:b2:bc:6c:38:d8:8f:16:c3: ee:94:a7:71:16:68:fa:ad:09:09:79:bf:36:cc:c2: a7:ce:ea:69:bd:03:aa:15:08:9a:e8:48:01:ff:c1: be:02:13:07:be:69:39:79:2e:50:34:f3:e0:4c:74: 44:23:0d:c9:10:f5:4f:4d:45:f7:cf:be:24:63:f3: 5d:74:00:b3:bc:72:5d:43:b8:77:b1:58:6b:1d:49: 34:a6:87:93:48:2f:87:e7:c8:4e:8b:2f:5a:58:08: 5c:43:28:3d:29:5c:1a:63:e6:4d:52:7b:97:f4:ed: 0d:f4:60:82:32:3d:0a:b3:33:d2:7a:e8:ac:b3:49: eb:c4:67:04:d6:4c:96:00:c0:18:bc:2c:4f:28:76: c8:71:80:1a:a8:77:91:a1:ce:64:a6:73:71:29:0d: 0e:15:04:10:96:16:76:d4:ff:a1:80:29:fa:c6:92: 33:53:2b:36:50:42:42:37:8f:cb:e9:64:73:e2:31: a7:80:74:71:ff:e7:57:ab:01:cc:18:b0:81:8e:0f: 64:fc:dd:97:5b:33:d3:5c:d9:ec:9c:f7:ae:41:06: 2b:d2:c9:c3:28:55:9b:65:4d:41:61:5c:f2:c4:41: 52:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:7C:6B:97:9E:21:D9:E4:46:EC:DC:C4:A0:2C:F8:52:EB:CC:C9:42 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c03::/48 Signature Algorithm: sha256WithRSAEncryption 6b:2a:f2:fd:56:91:8f:54:ad:3b:55:d9:f7:a8:9f:e6:23:4c: 78:9d:78:38:21:2f:8b:9f:e7:31:ce:23:e3:92:24:4d:2e:79: b8:fb:50:c4:da:f5:47:88:89:07:85:99:51:7f:de:85:c2:bb: e0:e5:f7:9a:47:5f:9c:0e:8d:e0:59:05:0c:6f:11:cd:16:a2: 09:c7:86:1d:d0:1f:5c:74:99:9e:88:1f:84:c7:60:6b:63:7f: c0:79:29:5d:ed:38:92:c9:28:52:4a:bd:13:84:d8:f9:94:c4: f7:c3:f8:b9:e2:bb:85:ec:c5:82:bb:f8:6d:96:01:53:31:e3: 7a:8e:33:ca:61:c3:60:cc:b8:91:b0:55:ae:2b:33:6f:8f:0f: 12:28:84:c5:89:cf:98:28:41:a6:3c:68:6a:1e:2f:be:ef:b3: 44:78:02:89:bf:1e:06:49:8b:0c:f4:d9:cc:41:09:ca:0d:6e: 39:b1:8d:57:28:94:36:4d:e9:02:00:1e:27:94:f3:a4:da:ac: 6b:dc:43:ad:ce:3a:b2:24:c4:aa:8f:ca:47:69:0c:be:83:18: 90:89:84:d3:22:80:38:d4:8b:74:08:0c:d2:2d:63:4b:a6:48: 9a:8d:37:c7:11:4e:04:ca:60:ad:0f:fd:4d:6f:b6:81:c9:79: 61:ba:77:b1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGCFfSGBtGVVuSVjsmpq+VetVsbgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjI1MDAzMDE3WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2Yzc5ZmVmY2RiYTBkMzc1ZGFlYTk4ODI4NjRlMDZkY2Zm NTVmODMxY2QyMTU1YmRiNzQ3YjAwODNlZGY3NTg2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgAo/bzgB0efS/dTyDNtnoKrGAA3GyvGw42I8Ww+6Up3EW aPqtCQl5vzbMwqfO6mm9A6oVCJroSAH/wb4CEwe+aTl5LlA08+BMdEQjDckQ9U9N RffPviRj8110ALO8cl1DuHexWGsdSTSmh5NIL4fnyE6LL1pYCFxDKD0pXBpj5k1S e5f07Q30YIIyPQqzM9J66KyzSevEZwTWTJYAwBi8LE8odshxgBqod5GhzmSmc3Ep DQ4VBBCWFnbU/6GAKfrGkjNTKzZQQkI3j8vpZHPiMaeAdHH/51erAcwYsIGOD2T8 3ZdbM9Nc2eyc965BBivSycMoVZtlTUFhXPLEQVJjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU13xrl54h2eRG7NzEoCz4UuvMyUIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBjOGZiOTdkLThlN2UtNDVjOS05YjNhLTgzOGRkNjY5ZGQ0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAMwDQYJKoZIhvcNAQELBQADggEBAGsq8v1WkY9UrTtV2feon+Yj THideDghL4uf5zHOI+OSJE0uebj7UMTa9UeIiQeFmVF/3oXCu+Dl95pHX5wOjeBZ BQxvEc0WognHhh3QH1x0mZ6IH4THYGtjf8B5KV3tOJLJKFJKvROE2PmUxPfD+Lni u4XsxYK7+G2WAVMx43qOM8phw2DMuJGwVa4rM2+PDxIohMWJz5goQaY8aGoeL77v s0R4Aom/HgZJiwz02cxBCcoNbjmxjVcolDZN6QIAHieU86TarGvcQ63OOrIkxKqP ykdpDL6DGJCJhNMigDjUi3QIDNItY0umSJqNN8cRTgTKYK0P/U1vtoHJeWG6d7E= -----END CERTIFICATE-----Generated at Sun Jun 29 15:59:56 2025 by rpki-client