$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3d2c81ea-9409-45ff-91e4-45a394e9fb80.roa File: 3d2c81ea-9409-45ff-91e4-45a394e9fb80.roa (raw, json) Hash identifier: BPFQKbhkOuwXHyodn9M4t4g/lEJaTMI4nQ2s0CqD9jI= Subject key identifier: 6F:7B:92:D2:31:7D:FD:F9:71:E7:05:2C:1C:82:34:CE:59:3A:AD:F0 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 40BBE868FDDAD9FE6C1A9F5EEDF7342613E8C806 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3d2c81ea-9409-45ff-91e4-45a394e9fb80.roa Signing time: Tue 17 Jun 2025 00:31:09 +0000 ROA not before: Tue 17 Jun 2025 00:31:09 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:62b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:bb:e8:68:fd:da:d9:fe:6c:1a:9f:5e:ed:f7:34:26:13:e8:c8:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 17 00:31:09 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=a5b6d01a90ab2f3c749f080a88e41d5a745b74f6f078cc0769dced2246070f6f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:24:4b:30:0b:92:3e:9d:19:e8:0a:61:29:43: 7d:31:c9:3d:35:9d:37:41:2e:0c:98:26:89:35:83: f8:61:2d:27:87:a8:13:f2:d1:c5:c7:00:c6:ec:83: 96:ef:a6:0e:e4:54:7a:2d:78:4a:6b:bd:71:b7:cb: c3:7f:53:c4:82:2c:ef:ec:35:b7:dc:88:4f:b0:0e: f2:12:fd:6c:89:bc:9e:f4:8a:ad:7e:f1:82:96:ee: 87:b7:9b:ad:9a:87:15:96:de:6c:f1:63:88:24:6b: 35:f2:44:6b:55:b5:50:c9:87:e9:3f:64:55:43:03: 44:c3:8f:c6:80:5d:39:e5:3f:54:ec:b3:79:be:54: e4:62:9a:7a:31:38:7e:c6:51:0f:17:3a:17:66:8c: b6:de:bc:ef:c8:06:3d:36:a7:55:dc:8f:e7:74:ca: ce:48:f6:8f:2e:a2:c8:2b:f9:a4:95:86:77:ec:24: 5f:0e:73:71:44:5e:80:e2:7f:83:1f:5f:43:e7:78: 82:05:8d:99:c2:11:84:f5:73:9b:83:59:07:e4:77: db:44:ed:48:e0:b9:1a:8e:7c:51:b3:c6:83:12:86: 93:ee:77:fc:cb:4f:37:ab:dd:54:71:8d:03:da:76: 1e:67:4b:ec:6b:ef:79:3c:98:f6:91:9b:9c:23:93: b9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:7B:92:D2:31:7D:FD:F9:71:E7:05:2C:1C:82:34:CE:59:3A:AD:F0 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3d2c81ea-9409-45ff-91e4-45a394e9fb80.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:62b::/48 Signature Algorithm: sha256WithRSAEncryption 67:14:a3:d8:96:f2:f8:08:38:69:67:dd:1b:e3:32:82:8b:8c: 80:28:e1:02:48:d8:81:02:fe:77:68:75:00:e3:99:f2:e6:37: 9a:44:83:4a:54:2a:d0:e7:82:c9:b8:53:e0:ab:e3:c7:9c:ba: 28:32:5d:c0:3c:6f:43:b3:a1:c6:0e:d4:dc:fe:bc:db:7e:68: 9f:2f:f3:36:ea:d2:47:f4:66:bb:02:ac:dd:29:a1:57:53:21: 22:58:09:7b:49:2a:cc:e3:65:7d:3a:c0:07:00:30:ba:91:ec: cc:23:3c:3b:c3:a6:21:6a:d6:ca:22:fb:d6:4d:7b:49:4c:cd: d3:4d:da:a0:dc:35:b1:e8:90:e1:a9:76:50:04:f1:c8:29:e0: ad:e7:9c:d2:64:1c:49:ba:61:d3:74:c3:86:2a:be:ba:f4:da: d6:90:bd:a6:b4:0c:d0:c1:45:31:ef:42:77:8e:3b:43:f1:4e: ae:da:4c:b6:50:92:72:42:6e:22:c1:71:23:80:00:de:93:bc: 2e:05:d9:54:ad:a4:69:94:a5:85:68:8f:a3:98:ea:2e:11:eb: 7c:5e:38:fd:9b:da:b0:6e:51:c6:81:c9:af:14:88:98:ac:ce: 36:ce:15:9f:aa:d1:fc:7f:6c:14:df:4e:a0:b1:94:d3:aa:cf: 73:16:85:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQLvoaP3a2f5sGp9e7fc0JhPoyAYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE3MDAzMTA5WhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNWI2ZDAxYTkwYWIyZjNjNzQ5ZjA4MGE4OGU0MWQ1YTc0 NWI3NGY2ZjA3OGNjMDc2OWRjZWQyMjQ2MDcwZjZmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDJEswC5I+nRnoCmEpQ30xyT01nTdBLgyYJok1g/hhLSeH qBPy0cXHAMbsg5bvpg7kVHoteEprvXG3y8N/U8SCLO/sNbfciE+wDvIS/WyJvJ70 iq1+8YKW7oe3m62ahxWW3mzxY4gkazXyRGtVtVDJh+k/ZFVDA0TDj8aAXTnlP1Ts s3m+VORimnoxOH7GUQ8XOhdmjLbevO/IBj02p1Xcj+d0ys5I9o8uosgr+aSVhnfs JF8Oc3FEXoDif4MfX0PneIIFjZnCEYT1c5uDWQfkd9tE7UjguRqOfFGzxoMShpPu d/zLTzer3VRxjQPadh5nS+xr73k8mPaRm5wjk7nRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUb3uS0jF9/flx5wUsHII0zlk6rfAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNkMmM4MWVhLTk0MDktNDVmZi05MWU0LTQ1YTM5NGU5ZmI4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABiswDQYJKoZIhvcNAQELBQADggEBAGcUo9iW8vgIOGln3RvjMoKL jIAo4QJI2IEC/ndodQDjmfLmN5pEg0pUKtDngsm4U+Cr48ecuigyXcA8b0OzocYO 1Nz+vNt+aJ8v8zbq0kf0ZrsCrN0poVdTISJYCXtJKszjZX06wAcAMLqR7MwjPDvD piFq1soi+9ZNe0lMzdNN2qDcNbHokOGpdlAE8cgp4K3nnNJkHEm6YdN0w4Yqvrr0 2taQvaa0DNDBRTHvQneOO0PxTq7aTLZQknJCbiLBcSOAAN6TvC4F2VStpGmUpYVo j6OY6i4R63xeOP2b2rBuUcaBya8UiJiszjbOFZ+q0fx/bBTfTqCxlNOqz3MWhQU= -----END CERTIFICATE-----Generated at Sun Jun 29 15:56:51 2025 by rpki-client