$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa File: 3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa (raw, json) Hash identifier: W8aD1zHo0kDDJd/xcjZH1yNXaF8nPUaRcE5a8lCZQpo= Subject key identifier: 10:D8:28:2A:68:CE:1A:C9:C8:4D:D1:A4:32:C0:E5:20:9D:2F:13:E0 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 440DD163121A7D04DAD075907E9C576394EB07C0 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa Signing time: Tue 17 Jun 2025 00:30:32 +0000 ROA not before: Tue 17 Jun 2025 00:30:32 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:0d:d1:63:12:1a:7d:04:da:d0:75:90:7e:9c:57:63:94:eb:07:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 17 00:30:32 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=c91c25db7d93e9eac3a400f0c82ae56f597bc44ae12091fb7319776758db5d9c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:1f:bf:d3:9d:d8:76:15:c3:c5:1c:9f:fd:25: 96:0f:c4:4b:5d:f9:f2:09:c3:65:85:53:85:cc:83: d3:c7:2e:0d:23:29:bb:55:d9:52:98:f4:23:af:27: 4c:bb:47:32:e5:fc:5d:a6:ad:fa:06:fa:e8:8b:22: 28:59:c1:67:cd:73:02:f8:31:83:1a:8e:4e:1f:c3: ed:10:ca:91:fc:4a:10:c2:db:fe:ad:f8:0f:22:e3: 45:86:cd:5b:ff:69:3f:de:4f:54:ae:a9:2a:76:b0: 7f:5b:9f:ae:79:c4:0e:31:b6:31:1f:2a:4d:48:71: 9e:ae:02:f7:9f:4e:d2:40:f9:e3:d7:44:31:1e:23: 21:d1:04:36:88:fc:65:0c:e9:2a:91:ac:2e:06:8e: 34:74:13:0a:5e:e4:57:04:d4:e4:cb:03:9b:1f:14: d0:75:1d:96:3a:99:5f:79:eb:d8:61:90:09:53:ef: 0e:2f:09:8f:97:87:d0:99:7c:95:d1:45:49:08:a9: 8e:17:ee:7a:6c:26:19:ea:f3:aa:b1:af:14:28:09: 6a:81:ca:8a:93:7f:e2:77:74:f6:ef:dc:d6:eb:24: dc:f7:5a:66:e6:77:f7:64:cf:31:74:f4:25:cb:32: f0:50:34:65:4d:ae:3f:c4:2c:b3:aa:d5:aa:45:0f: ae:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:D8:28:2A:68:CE:1A:C9:C8:4D:D1:A4:32:C0:E5:20:9D:2F:13:E0 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 30:06:85:ee:7d:a8:a3:16:c8:b0:fb:07:f7:02:41:a5:34:7d: ac:de:66:e7:d8:45:c4:58:94:a4:51:7e:db:83:26:1e:f0:1c: 0e:c2:a3:b6:53:40:53:7e:15:fd:aa:69:17:e8:19:92:3e:69: 87:44:37:ae:73:6e:46:a4:1b:11:a1:d6:0d:3c:0f:ac:57:5f: 57:ac:43:eb:6b:10:ce:48:d9:49:f4:7d:22:03:1c:de:6a:51: 9d:ac:9a:a2:d4:27:67:7f:0f:47:81:24:f2:69:14:35:68:da: 64:2f:86:05:bd:93:48:3a:80:67:5f:f7:71:3a:78:7a:45:e5: 8f:cb:7c:a7:ee:f0:18:f5:c8:2d:9e:94:db:2b:8d:7a:0a:68: f0:68:26:7f:81:bc:8d:b5:59:67:b1:ca:73:93:aa:99:98:7f: f7:4c:5d:f7:26:d0:59:5f:9b:73:9c:d7:7c:ca:6b:70:c0:64: 7a:f2:97:0a:be:39:13:6a:98:7c:d6:a7:2b:9c:8d:af:1a:69: f5:94:bd:1f:37:8e:ad:57:e6:b6:ad:13:86:9a:f6:0a:49:c3: c0:e6:17:bf:8b:31:76:a2:6d:d5:d8:a4:6c:73:4b:f0:94:f8: 07:11:10:60:d6:a1:8d:f7:be:17:6b:c6:9a:a4:c1:72:c2:d5: be:73:bd:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURA3RYxIafQTa0HWQfpxXY5TrB8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE3MDAzMDMyWhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTFjMjVkYjdkOTNlOWVhYzNhNDAwZjBjODJhZTU2ZjU5 N2JjNDRhZTEyMDkxZmI3MzE5Nzc2NzU4ZGI1ZDljMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPH7/Tndh2FcPFHJ/9JZYPxEtd+fIJw2WFU4XMg9PHLg0j KbtV2VKY9COvJ0y7RzLl/F2mrfoG+uiLIihZwWfNcwL4MYMajk4fw+0QypH8ShDC 2/6t+A8i40WGzVv/aT/eT1SuqSp2sH9bn655xA4xtjEfKk1IcZ6uAvefTtJA+ePX RDEeIyHRBDaI/GUM6SqRrC4GjjR0Ewpe5FcE1OTLA5sfFNB1HZY6mV9569hhkAlT 7w4vCY+Xh9CZfJXRRUkIqY4X7npsJhnq86qxrxQoCWqByoqTf+J3dPbv3NbrJNz3 Wmbmd/dkzzF09CXLMvBQNGVNrj/ELLOq1apFD67HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUENgoKmjOGsnITdGkMsDlIJ0vE+AwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZWY5ZDNlLTJhZDItNGUzOC05MmZjLTVlYWI3NmE1Mzk1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBADAGhe59qKMWyLD7B/cCQaU0 fazeZufYRcRYlKRRftuDJh7wHA7Co7ZTQFN+Ff2qaRfoGZI+aYdEN65zbkakGxGh 1g08D6xXX1esQ+trEM5I2Un0fSIDHN5qUZ2smqLUJ2d/D0eBJPJpFDVo2mQvhgW9 k0g6gGdf93E6eHpF5Y/LfKfu8Bj1yC2elNsrjXoKaPBoJn+BvI21WWexynOTqpmY f/dMXfcm0Flfm3Oc13zKa3DAZHrylwq+ORNqmHzWpyucja8aafWUvR83jq1X5rat E4aa9gpJw8DmF7+LMXaibdXYpGxzS/CU+AcREGDWoY33vhdrxpqkwXLC1b5zvVs= -----END CERTIFICATE-----Generated at Sun Jun 29 00:43:11 2025 by rpki-client