$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2f789924-a980-48eb-b42e-463688379f41.roa File: 2f789924-a980-48eb-b42e-463688379f41.roa (raw, json) Hash identifier: OeOsQ08PUB6xSFgn51pqgkkOClHXxTdGHU3f1c9ieSA= Subject key identifier: 02:18:C9:AE:77:85:1C:7B:61:4E:44:DB:54:10:ED:92:CA:32:0A:AF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1BF3510B4AEDF9C1785F3C267786507322FA52B6 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2f789924-a980-48eb-b42e-463688379f41.roa Signing time: Wed 25 Jun 2025 00:20:35 +0000 ROA not before: Wed 25 Jun 2025 00:20:35 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:64c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f3:51:0b:4a:ed:f9:c1:78:5f:3c:26:77:86:50:73:22:fa:52:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 25 00:20:35 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=9f8e63026ee38f6613df896ec4b5ec9bb60ab06531cc2770ecfdc180db3c80ef, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:7e:d4:83:7f:75:72:15:ba:e1:f8:af:cc:37: e7:f2:a3:aa:dd:a4:3c:9b:59:96:3a:a1:56:0b:28: 43:f1:df:37:3d:24:8b:90:67:fd:8f:10:73:5f:77: ef:ff:3b:a8:3d:09:9c:af:9b:45:3d:f3:8e:f1:4b: 77:4f:e3:18:4a:97:b2:cf:eb:b6:12:1d:d0:c3:9b: 88:81:31:6f:67:59:78:5b:38:41:3a:60:ed:d2:94: 89:80:4b:23:42:48:de:ab:c5:f8:58:c5:90:6c:0b: 34:de:10:c6:e0:39:70:3c:f2:31:66:7f:b9:f0:d9: 4f:49:d2:aa:f0:6c:b0:dc:66:68:c1:ad:33:e4:2b: 3d:1a:22:b0:6d:c4:bd:c4:0f:14:3a:4f:23:23:72: 45:81:ba:a1:89:b5:22:17:bd:71:fb:46:34:19:9c: 3b:26:f3:e2:55:09:a5:14:56:51:81:62:3b:ee:d9: 67:e2:fe:43:06:c1:0e:e8:5a:5a:df:3f:23:96:c1: a1:66:7a:32:89:dc:01:0b:93:c4:57:85:8a:2c:0d: f3:7d:b5:db:a9:b6:03:2f:58:8a:a0:77:b6:08:6d: 9d:d0:66:82:6e:f8:07:0c:4a:87:41:66:8a:8a:ad: 22:e0:6d:61:71:17:3c:10:63:aa:60:1a:40:93:4c: 0a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:18:C9:AE:77:85:1C:7B:61:4E:44:DB:54:10:ED:92:CA:32:0A:AF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2f789924-a980-48eb-b42e-463688379f41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64c::/48 Signature Algorithm: sha256WithRSAEncryption 80:35:3b:09:35:a8:a1:be:21:bf:31:08:b3:53:ef:82:b5:c5: 5e:56:1b:e0:40:de:7b:25:a3:5d:91:9a:9f:96:37:32:a0:90: 91:67:4a:38:51:3c:49:d8:87:8d:bc:00:3e:31:42:bf:d9:03: b8:28:6f:d7:13:e8:47:79:0f:b7:c9:23:2e:34:10:b8:f7:3d: 7c:ff:c1:2e:32:45:7e:d1:8c:db:97:77:42:87:23:c8:2f:a4: 92:84:f7:8b:f7:f8:66:6c:a6:86:03:57:ec:e4:1c:57:19:36: a4:da:f6:59:db:77:11:29:57:23:36:76:89:3a:0e:b8:d4:75: 07:93:24:56:b7:f9:57:2d:9b:30:6c:ee:58:a7:9c:e2:b2:db: 79:65:cd:57:80:21:61:a8:4b:ab:1a:df:1a:60:55:85:02:43: 98:d9:68:ac:46:a9:a6:f1:55:3f:15:e6:34:c4:72:91:1b:51: 68:60:bd:a8:07:d9:50:88:ab:99:1f:d5:68:34:3a:0c:24:9f: 55:ce:77:55:fa:55:84:02:c9:bd:a5:ff:a1:91:e9:ae:eb:be: 20:e7:09:b0:f8:67:5d:c1:a4:a4:75:a6:3f:f2:5e:cd:a4:0b: b8:b3:c2:01:d0:53:31:40:5e:75:51:d3:95:b2:2c:a0:71:ba: 89:2d:25:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG/NRC0rt+cF4Xzwmd4ZQcyL6UrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjI1MDAyMDM1WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjhlNjMwMjZlZTM4ZjY2MTNkZjg5NmVjNGI1ZWM5YmI2 MGFiMDY1MzFjYzI3NzBlY2ZkYzE4MGRiM2M4MGVmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPftSDf3VyFbrh+K/MN+fyo6rdpDybWZY6oVYLKEPx3zc9 JIuQZ/2PEHNfd+//O6g9CZyvm0U9847xS3dP4xhKl7LP67YSHdDDm4iBMW9nWXhb OEE6YO3SlImASyNCSN6rxfhYxZBsCzTeEMbgOXA88jFmf7nw2U9J0qrwbLDcZmjB rTPkKz0aIrBtxL3EDxQ6TyMjckWBuqGJtSIXvXH7RjQZnDsm8+JVCaUUVlGBYjvu 2Wfi/kMGwQ7oWlrfPyOWwaFmejKJ3AELk8RXhYosDfN9tduptgMvWIqgd7YIbZ3Q ZoJu+AcMSodBZoqKrSLgbWFxFzwQY6pgGkCTTAonAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAhjJrneFHHthTkTbVBDtksoyCq8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJmNzg5OTI0LWE5ODAtNDhlYi1iNDJlLTQ2MzY4ODM3OWY0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkwwDQYJKoZIhvcNAQELBQADggEBAIA1Owk1qKG+Ib8xCLNT74K1 xV5WG+BA3nslo12Rmp+WNzKgkJFnSjhRPEnYh428AD4xQr/ZA7gob9cT6Ed5D7fJ Iy40ELj3PXz/wS4yRX7RjNuXd0KHI8gvpJKE94v3+GZspoYDV+zkHFcZNqTa9lnb dxEpVyM2dok6DrjUdQeTJFa3+VctmzBs7linnOKy23llzVeAIWGoS6sa3xpgVYUC Q5jZaKxGqabxVT8V5jTEcpEbUWhgvagH2VCIq5kf1Wg0Ogwkn1XOd1X6VYQCyb2l /6GR6a7rviDnCbD4Z13BpKR1pj/yXs2kC7izwgHQUzFAXnVR05WyLKBxuoktJVo= -----END CERTIFICATE-----Generated at Sun Jun 29 20:21:34 2025 by rpki-client