$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/34aa606e-0ded-49e0-8124-2799643cf271.roa File: 34aa606e-0ded-49e0-8124-2799643cf271.roa (raw, json) Hash identifier: lvYMNBWAC/QkkI4+/ozCYs5njjLn68XOC5qMMSl5A6s= Subject key identifier: E6:47:6D:31:F5:8D:DC:64:1F:02:F5:55:D4:4C:E3:F1:02:6D:2D:09 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 492F44BBFC4DE2C040C25963C615B5F36AA33E6D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/34aa606e-0ded-49e0-8124-2799643cf271.roa Signing time: Mon 16 Jun 2025 19:00:24 +0000 ROA not before: Mon 16 Jun 2025 19:00:24 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:399::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:2f:44:bb:fc:4d:e2:c0:40:c2:59:63:c6:15:b5:f3:6a:a3:3e:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 16 19:00:24 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=73cd09ec6773ec8dd2bb00ad5993fa463ef7fe9d042b5bad0d322ae07d77c8fb, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b5:e6:b4:2f:61:15:40:b0:35:5a:66:69:f1: 24:9b:a8:d5:cf:ca:bc:73:5f:09:d2:9d:f2:68:cb: 68:7a:bf:ee:6a:09:bd:cb:77:1f:7e:f6:21:97:87: d5:ca:8f:e0:f4:73:2d:95:ad:7a:38:63:6e:46:c7: 7b:d9:69:70:29:21:7e:ae:28:62:9e:69:ea:e9:b2: 23:c0:b6:d9:2f:05:9b:c3:ad:35:6a:ff:57:46:f4: b9:e9:a0:c5:5d:03:a8:64:7c:86:f8:d5:87:d0:2a: 28:3f:2a:38:a3:d6:65:b5:69:ed:9d:10:af:b4:6b: ec:8a:c4:9c:7c:a5:23:16:09:b3:db:90:78:a2:7c: f1:d7:6e:2a:d0:95:06:66:5d:67:e5:0e:0b:20:55: 54:f5:bb:b4:47:f9:2b:e7:da:c2:b4:a3:a9:ba:a4: fa:93:1b:ab:17:f2:d5:9e:83:bc:f6:b4:58:26:e6: f3:7a:23:1e:86:6f:63:fb:5c:7b:40:4a:5e:eb:eb: a6:86:20:b7:ee:e2:67:d8:93:2a:f0:c5:c0:df:60: 1a:62:ca:52:15:e9:44:50:3e:12:69:26:3b:9a:21: 75:26:11:dd:e9:30:65:4d:bd:09:db:c8:0e:a0:55: 02:7b:9c:b8:1a:22:a8:f0:22:65:b6:f3:9e:c1:2e: 66:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:47:6D:31:F5:8D:DC:64:1F:02:F5:55:D4:4C:E3:F1:02:6D:2D:09 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/34aa606e-0ded-49e0-8124-2799643cf271.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:399::/48 Signature Algorithm: sha256WithRSAEncryption 33:df:83:49:89:46:61:37:5c:89:51:ee:35:04:1f:6d:59:14: 7f:8b:18:02:6b:99:04:64:3e:42:f2:ed:e0:97:da:13:b1:44: 9d:ef:b3:32:1e:89:23:fb:72:5c:3b:cf:8a:e4:4a:5a:1b:de: bf:32:bb:75:44:88:75:86:0b:8b:ad:5f:3a:59:4b:7d:33:69: 46:04:70:02:dd:3e:21:96:d3:4c:f0:54:d5:ff:75:7f:58:0b: 11:d1:7e:12:1e:5f:2b:db:67:75:60:ea:7e:ca:14:e7:ed:0b: 25:59:16:73:cd:c7:55:dd:65:6f:b6:d4:25:ce:6b:55:46:64: 75:27:03:27:be:c7:0f:7d:2a:21:3b:b4:6a:aa:56:e4:e6:82: e7:e8:71:eb:c8:0d:b6:65:fb:a0:88:68:6a:af:d9:38:39:5b: cb:85:4f:f0:9c:75:2d:9b:37:c2:46:f6:d8:bd:79:5c:16:ed: 1d:3a:fb:ab:8b:45:23:8c:16:5a:67:7b:96:97:3c:82:e4:3f: d6:7e:f3:bd:83:32:ae:93:e2:3a:5a:f8:ea:40:5f:d5:a5:21: 33:67:c6:5f:f1:7e:e3:96:f7:47:d7:5a:66:14:5e:4b:67:8e: 86:42:68:93:ff:a7:a1:12:93:f0:91:15:05:c0:30:7c:87:34: ba:8a:04:2d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSS9Eu/xN4sBAwlljxhW182qjPm0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE2MTkwMDI0WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3M2NkMDllYzY3NzNlYzhkZDJiYjAwYWQ1OTkzZmE0NjNl ZjdmZTlkMDQyYjViYWQwZDMyMmFlMDdkNzdjOGZiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0tea0L2EVQLA1WmZp8SSbqNXPyrxzXwnSnfJoy2h6v+5q Cb3Ldx9+9iGXh9XKj+D0cy2VrXo4Y25Gx3vZaXApIX6uKGKeaerpsiPAttkvBZvD rTVq/1dG9LnpoMVdA6hkfIb41YfQKig/Kjij1mW1ae2dEK+0a+yKxJx8pSMWCbPb kHiifPHXbirQlQZmXWflDgsgVVT1u7RH+Svn2sK0o6m6pPqTG6sX8tWeg7z2tFgm 5vN6Ix6Gb2P7XHtASl7r66aGILfu4mfYkyrwxcDfYBpiylIV6URQPhJpJjuaIXUm Ed3pMGVNvQnbyA6gVQJ7nLgaIqjwImW2857BLmbHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5kdtMfWN3GQfAvVV1Ezj8QJtLQkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM0YWE2MDZlLTBkZWQtNDllMC04MTI0LTI3OTk2NDNjZjI3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5kwDQYJKoZIhvcNAQELBQADggEBADPfg0mJRmE3XIlR7jUEH21Z FH+LGAJrmQRkPkLy7eCX2hOxRJ3vszIeiSP7clw7z4rkSlob3r8yu3VEiHWGC4ut XzpZS30zaUYEcALdPiGW00zwVNX/dX9YCxHRfhIeXyvbZ3Vg6n7KFOftCyVZFnPN x1XdZW+21CXOa1VGZHUnAye+xw99KiE7tGqqVuTmgufocevIDbZl+6CIaGqv2Tg5 W8uFT/CcdS2bN8JG9ti9eVwW7R06+6uLRSOMFlpne5aXPILkP9Z+872DMq6T4jpa +OpAX9WlITNnxl/xfuOW90fXWmYUXktnjoZCaJP/p6ESk/CRFQXAMHyHNLqKBC0= -----END CERTIFICATE-----Generated at Mon Jun 30 18:26:52 2025 by rpki-client