$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2ff0469b-9f32-4585-929d-a8709323cfa2.roa File: 2ff0469b-9f32-4585-929d-a8709323cfa2.roa (raw, json) Hash identifier: MqwIrHEpPEvnIMzlMXcntrhpGgcG1tXYwqi0DdynDAY= Subject key identifier: 51:4B:BC:8D:10:FC:97:1A:3D:7B:87:78:FB:BB:FE:9C:25:F9:42:3A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0822D1AD287FB29D87B06E9C89951994041A0B59 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2ff0469b-9f32-4585-929d-a8709323cfa2.roa Signing time: Wed 25 Jun 2025 00:31:06 +0000 ROA not before: Wed 25 Jun 2025 00:31:06 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c0e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:22:d1:ad:28:7f:b2:9d:87:b0:6e:9c:89:95:19:94:04:1a:0b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 25 00:31:06 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=e67a837f541ca4ae1333aa98b890d10d9ac1414386f958f5122083c897bd1da8, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b5:1f:10:2a:7b:e4:2a:79:57:dc:1d:92:4d: 4e:b1:ca:fc:bb:54:49:38:46:12:7c:3c:26:70:59: cf:a8:6e:2b:01:71:4e:10:bb:5f:68:fd:f2:50:b8: 4e:50:4a:f4:52:c5:1d:a4:d3:97:4e:7d:20:09:18: 33:32:34:84:02:20:73:79:05:17:0c:f9:52:33:5b: 5a:cf:ff:78:ba:a0:64:22:f9:0d:29:41:f1:0b:5b: ed:15:a3:b5:fe:a5:86:84:1a:89:58:51:80:ea:10: 96:f4:08:f1:9b:8a:74:c1:b6:44:6b:51:75:1d:12: c4:25:ac:94:9e:10:c0:aa:b0:b6:f6:c3:d1:25:01: b9:70:9d:59:fd:17:c9:4b:31:54:e6:f1:0e:6a:67: 19:81:a9:74:9f:d1:20:fb:db:0c:72:33:1d:ad:e2: 0f:d4:26:af:35:1d:b4:77:95:c0:c7:8b:b6:aa:94: 11:3e:9a:55:2e:d4:d3:77:70:bd:cb:2f:d5:a7:b0: 74:6f:9d:48:0e:06:ae:53:3b:26:3e:9d:5d:bd:da: 7c:e0:c1:22:79:56:04:39:1b:6d:f3:53:68:8d:11: 79:55:2b:2a:54:b5:30:46:7d:2e:18:0c:a8:cc:eb: a1:aa:3a:d1:51:8f:a4:e6:c1:9d:8d:58:31:dc:62: f9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:4B:BC:8D:10:FC:97:1A:3D:7B:87:78:FB:BB:FE:9C:25:F9:42:3A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2ff0469b-9f32-4585-929d-a8709323cfa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0e::/48 Signature Algorithm: sha256WithRSAEncryption 89:4c:f8:40:09:14:96:37:5e:f4:b4:a0:aa:68:b5:8d:f0:86: 29:c1:42:f2:9c:51:15:a9:0e:34:42:eb:12:7f:ba:5d:f2:c2: e0:5a:02:69:30:a3:92:83:60:ba:9a:ad:20:79:9a:33:a8:23: 5e:12:32:f7:3b:73:61:d5:a6:72:58:6c:9f:b5:55:ab:88:80: bc:da:fc:c3:4d:0a:fd:aa:e1:51:1e:4e:1a:37:57:60:5e:b2: 5f:04:5c:ba:0d:3c:1a:67:52:5c:ce:4c:c6:c9:d9:c9:90:99: 48:b2:0f:ca:3d:23:2d:2d:fd:b2:62:f1:e0:0d:9e:53:ed:25: c6:e6:1c:65:d7:07:a8:4c:cc:28:ee:f8:4d:76:84:f5:cb:3c: 1a:55:52:13:cd:0c:68:1c:ae:82:da:07:06:c4:77:4a:7d:86: 43:4e:d9:96:b5:e9:bf:ac:b0:a8:91:3e:1f:4d:12:b8:77:e4: ff:33:59:02:0a:b2:f7:1a:80:ec:94:09:e6:1e:f7:0c:12:84: 71:41:37:c5:6c:cb:82:f3:48:38:fc:9f:18:d6:01:d3:9e:ec: ee:f2:0b:80:05:f4:ce:0f:07:1b:72:76:5b:3b:56:45:21:bd: 3a:81:eb:e1:cd:aa:c4:77:5e:0e:9d:6c:8b:8b:3a:f5:7c:ac: 41:1b:9c:c8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCCLRrSh/sp2HsG6ciZUZlAQaC1kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjI1MDAzMTA2WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjdhODM3ZjU0MWNhNGFlMTMzM2FhOThiODkwZDEwZDlh YzE0MTQzODZmOTU4ZjUxMjIwODNjODk3YmQxZGE4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7tR8QKnvkKnlX3B2STU6xyvy7VEk4RhJ8PCZwWc+obisB cU4Qu19o/fJQuE5QSvRSxR2k05dOfSAJGDMyNIQCIHN5BRcM+VIzW1rP/3i6oGQi +Q0pQfELW+0Vo7X+pYaEGolYUYDqEJb0CPGbinTBtkRrUXUdEsQlrJSeEMCqsLb2 w9ElAblwnVn9F8lLMVTm8Q5qZxmBqXSf0SD72wxyMx2t4g/UJq81HbR3lcDHi7aq lBE+mlUu1NN3cL3LL9WnsHRvnUgOBq5TOyY+nV292nzgwSJ5VgQ5G23zU2iNEXlV KypUtTBGfS4YDKjM66GqOtFRj6TmwZ2NWDHcYvkVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUUu8jRD8lxo9e4d4+7v+nCX5QjowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJmZjA0NjliLTlmMzItNDU4NS05MjlkLWE4NzA5MzIzY2ZhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA4wDQYJKoZIhvcNAQELBQADggEBAIlM+EAJFJY3XvS0oKpotY3w hinBQvKcURWpDjRC6xJ/ul3ywuBaAmkwo5KDYLqarSB5mjOoI14SMvc7c2HVpnJY bJ+1VauIgLza/MNNCv2q4VEeTho3V2Besl8EXLoNPBpnUlzOTMbJ2cmQmUiyD8o9 Iy0t/bJi8eANnlPtJcbmHGXXB6hMzCju+E12hPXLPBpVUhPNDGgcroLaBwbEd0p9 hkNO2Za16b+ssKiRPh9NErh35P8zWQIKsvcagOyUCeYe9wwShHFBN8Vsy4LzSDj8 nxjWAdOe7O7yC4AF9M4PBxtydls7VkUhvTqB6+HNqsR3Xg6dbIuLOvV8rEEbnMg= -----END CERTIFICATE-----Generated at Sun Jun 29 15:51:29 2025 by rpki-client