$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa File: 35efcf72-708d-4456-b1d1-8419a2636e00.roa (raw, json) Hash identifier: fZewNaMcbgcecxR0eW0a4UfDvgGqUImQ44x4WXa26dE= Subject key identifier: EB:4F:7A:BC:06:7E:A4:2C:E1:BC:B8:6A:36:08:6C:3C:6D:4F:D3:78 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 59DFB6EEA8C3BA27B3244DC146B04DBA389029F4 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa Signing time: Mon 16 Jun 2025 19:10:04 +0000 ROA not before: Mon 16 Jun 2025 19:10:04 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:f03d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:df:b6:ee:a8:c3:ba:27:b3:24:4d:c1:46:b0:4d:ba:38:90:29:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 16 19:10:04 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=2c686fe27827832d8636098da52e18aebe4163bf71aadefc22111e08062419eb, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bc:66:c9:2e:4d:7f:16:26:31:21:95:af:78: a8:ca:d4:89:6c:c2:01:eb:29:0c:49:42:b5:e2:1b: 50:7b:5c:80:ec:9b:b9:9e:8f:8e:51:c2:53:7b:c6: 87:b0:41:89:68:eb:a7:54:bb:f9:01:f9:96:90:6b: 71:2f:34:1c:4f:64:3e:1d:c8:00:33:ee:34:7d:9e: d9:7d:8e:d6:41:6c:8c:d0:1c:9c:c9:00:d3:ae:5c: fb:b2:b4:a3:26:a6:71:02:d1:47:07:18:5d:94:bf: 45:c8:30:e3:01:b1:00:a2:c2:b0:4f:74:63:8b:14: 9d:58:b9:9f:0d:06:13:0d:29:d0:7e:44:4e:2e:b8: b1:5a:04:6a:9a:3d:de:33:b5:3d:03:32:47:29:dd: 5b:34:3a:57:26:bb:c4:0a:63:fb:41:da:90:e6:a2: b0:db:71:98:33:5f:88:36:b9:ac:85:65:ee:0d:ec: cf:a2:7f:f8:a4:06:90:44:41:db:2b:e4:3a:99:9e: 03:ef:61:3a:47:25:4e:96:0a:64:c2:6a:6e:dd:8d: f3:94:5e:71:f3:1b:74:b7:3f:b5:24:e6:99:39:3b: af:89:02:7a:ee:18:3a:8d:f4:49:0d:fd:f9:eb:d9: 13:3f:d2:42:d5:0a:d3:e8:ef:a6:f8:77:16:02:74: e9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:4F:7A:BC:06:7E:A4:2C:E1:BC:B8:6A:36:08:6C:3C:6D:4F:D3:78 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03d::/48 Signature Algorithm: sha256WithRSAEncryption 66:09:26:ad:88:de:a8:26:b0:73:93:f9:f5:07:f2:c8:03:dd: 8b:e0:94:4e:8d:c0:55:e9:1c:0c:20:17:b4:e8:e9:4a:48:75: 04:70:21:01:77:3b:39:a3:cf:d5:06:8c:25:03:ed:d9:27:19: ee:9f:00:fa:7b:48:33:dc:1b:9b:c1:c5:4f:31:87:5d:0e:51: f2:fb:e9:6f:64:cd:b8:89:ad:98:94:1b:56:d9:b7:c7:1a:1c: e7:bf:4c:76:9b:b5:96:32:26:8c:7a:2b:81:d4:0e:e2:7a:8b: c9:32:87:88:19:f7:e5:db:38:ca:69:8a:58:e1:f6:0c:69:29: b7:c5:1c:c5:6e:38:8e:8f:86:31:c2:6e:50:e2:3b:e7:d2:4d: 85:f4:57:3f:98:c8:01:19:1b:ee:7a:36:82:4a:29:76:41:12: d9:33:c9:b1:59:51:87:1b:0d:52:a3:ce:06:1d:15:ea:35:17: 49:71:91:c6:d5:86:b5:95:f6:ce:d2:8c:2c:89:3b:f1:90:75: 68:81:c2:69:04:92:81:b4:06:5b:42:ab:bb:fb:89:c5:cf:d9: 8e:ca:3c:98:13:8f:03:d5:10:ca:fb:3b:f4:90:e7:48:64:02: 8b:34:ec:b6:82:c5:52:d5:7f:16:4f:ae:ab:b0:fb:70:01:ca: 33:0e:b7:53 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWd+27qjDuiezJE3BRrBNujiQKfQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE2MTkxMDA0WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzY4NmZlMjc4Mjc4MzJkODYzNjA5OGRhNTJlMThhZWJl NDE2M2JmNzFhYWRlZmMyMjExMWUwODA2MjQxOWViMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTvGbJLk1/FiYxIZWveKjK1IlswgHrKQxJQrXiG1B7XIDs m7mej45RwlN7xoewQYlo66dUu/kB+ZaQa3EvNBxPZD4dyAAz7jR9ntl9jtZBbIzQ HJzJANOuXPuytKMmpnEC0UcHGF2Uv0XIMOMBsQCiwrBPdGOLFJ1YuZ8NBhMNKdB+ RE4uuLFaBGqaPd4ztT0DMkcp3Vs0Olcmu8QKY/tB2pDmorDbcZgzX4g2uayFZe4N 7M+if/ikBpBEQdsr5DqZngPvYTpHJU6WCmTCam7djfOUXnHzG3S3P7Uk5pk5O6+J AnruGDqN9EkN/fnr2RM/0kLVCtPo76b4dxYCdOntAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6096vAZ+pCzhvLhqNghsPG1P03gwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1ZWZjZjcyLTcwOGQtNDQ1Ni1iMWQxLTg0MTlhMjYzNmUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D0wDQYJKoZIhvcNAQELBQADggEBAGYJJq2I3qgmsHOT+fUH8sgD 3YvglE6NwFXpHAwgF7To6UpIdQRwIQF3Ozmjz9UGjCUD7dknGe6fAPp7SDPcG5vB xU8xh10OUfL76W9kzbiJrZiUG1bZt8caHOe/THabtZYyJox6K4HUDuJ6i8kyh4gZ 9+XbOMppiljh9gxpKbfFHMVuOI6PhjHCblDiO+fSTYX0Vz+YyAEZG+56NoJKKXZB EtkzybFZUYcbDVKjzgYdFeo1F0lxkcbVhrWV9s7SjCyJO/GQdWiBwmkEkoG0BltC q7v7icXP2Y7KPJgTjwPVEMr7O/SQ50hkAos07LaCxVLVfxZPrquw+3AByjMOt1M= -----END CERTIFICATE-----Generated at Sun Jun 29 16:42:22 2025 by rpki-client