$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa File: 462f61ba-5748-496a-8795-61c32daf9775.roa (raw, json) Hash identifier: lz/yPnEyYRqem5fkdGmPuI9tnJ5keTQhYYzI5n2aS1g= Subject key identifier: 4B:57:B4:26:6B:4A:7F:BB:65:D7:68:02:7B:07:68:FA:D7:33:9A:95 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2E7875A52DCE10634B6AEC82148C32B5ED31C1D4 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa Signing time: Wed 25 Jun 2025 00:40:49 +0000 ROA not before: Wed 25 Jun 2025 00:40:49 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c17::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:78:75:a5:2d:ce:10:63:4b:6a:ec:82:14:8c:32:b5:ed:31:c1:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 25 00:40:49 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=4068b1c6030343cf798a70a74dbd9bf6fd8959aa43ad50c5c8df4ba5b2d7edb6, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:95:e1:63:b5:41:94:d0:28:21:19:0d:91:78: 61:2e:76:44:14:b9:c0:27:d8:7e:0c:b5:2c:ed:c0: a6:79:8e:b0:f8:29:1f:d3:32:38:50:fb:42:e3:ef: 35:5b:e7:6a:67:d0:03:62:a0:ec:0c:10:23:8c:f3: 4f:af:a2:7d:0c:64:db:10:07:ea:06:09:71:07:a6: 22:73:18:79:72:50:06:2a:3b:0d:00:c8:0e:33:7f: 68:f3:7c:37:f0:9d:bb:98:86:82:04:63:30:8c:53: f1:6a:fd:e4:a3:2c:e4:b3:4a:85:2d:05:f2:7b:5a: 1b:eb:b4:f7:53:fb:15:b6:3d:3d:c8:1a:ce:81:53: 12:fc:c3:77:44:2f:7f:1c:cc:86:50:bd:24:10:ba: 76:50:c7:1b:e8:85:2d:91:cd:c3:eb:77:f8:03:de: 30:39:d3:53:9d:fc:29:4b:90:74:42:d1:fc:06:bb: 67:96:91:6f:b5:c9:97:cc:00:de:cc:a3:24:d4:6e: 49:b8:10:cc:1a:04:7f:e7:a4:45:1c:bc:54:24:9f: 67:c0:5a:87:a5:0a:3d:02:a6:12:20:79:22:9c:c4: b6:cb:a5:31:ef:14:0a:2d:9d:b9:c4:6c:0a:af:05: b5:f3:aa:e1:9a:0e:3b:d7:d3:7a:b4:96:cd:e8:de: bb:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:57:B4:26:6B:4A:7F:BB:65:D7:68:02:7B:07:68:FA:D7:33:9A:95 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c17::/48 Signature Algorithm: sha256WithRSAEncryption 5f:d7:53:db:d3:7d:d7:1f:7e:5d:90:1f:c8:2c:5b:0f:e7:19: fd:53:c8:85:0a:b6:ec:b0:67:31:56:4b:d9:a4:51:b0:28:22: 2c:8b:bd:24:14:e0:97:96:e1:77:b9:56:de:04:e8:21:cd:52: bd:f5:ca:ef:b1:75:6d:9f:1d:09:e6:82:a9:e7:61:74:3b:b0: 29:2b:b0:6d:15:f3:8c:42:cd:b1:aa:f8:85:98:c1:97:5b:6b: 77:7e:b6:72:15:5f:b0:3a:3e:b0:8d:1f:e5:c4:4f:ba:07:8e: da:a9:bf:aa:f8:58:69:9e:1d:e6:ba:c1:f6:57:c8:a6:10:5c: d0:38:b4:e8:f0:56:fd:7c:a3:a1:7c:45:70:e6:92:ea:ba:ed: 84:d0:1d:2f:3d:1c:06:a6:d7:7e:3d:1f:8b:cf:0d:50:e8:11: e2:84:0a:5f:f4:c1:33:de:82:6e:2c:a4:84:8c:40:80:ef:3d: 8d:38:54:54:e6:19:c2:a5:b9:b1:3b:8e:24:f4:f2:8d:ea:8d: 47:f0:40:21:0a:93:f5:bc:c1:93:3a:0d:14:cb:4c:7c:d7:cf: cb:3d:23:ca:69:71:ed:5a:68:1f:5e:e1:5f:6f:3b:05:17:12: bb:cd:c8:08:cd:8d:d0:b6:e8:5c:31:1b:bb:f4:62:20:c4:37: ee:03:32:57 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULnh1pS3OEGNLauyCFIwyte0xwdQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjI1MDA0MDQ5WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDY4YjFjNjAzMDM0M2NmNzk4YTcwYTc0ZGJkOWJmNmZk ODk1OWFhNDNhZDUwYzVjOGRmNGJhNWIyZDdlZGI2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBleFjtUGU0CghGQ2ReGEudkQUucAn2H4MtSztwKZ5jrD4 KR/TMjhQ+0Lj7zVb52pn0ANioOwMECOM80+von0MZNsQB+oGCXEHpiJzGHlyUAYq Ow0AyA4zf2jzfDfwnbuYhoIEYzCMU/Fq/eSjLOSzSoUtBfJ7WhvrtPdT+xW2PT3I Gs6BUxL8w3dEL38czIZQvSQQunZQxxvohS2RzcPrd/gD3jA501Od/ClLkHRC0fwG u2eWkW+1yZfMAN7MoyTUbkm4EMwaBH/npEUcvFQkn2fAWoelCj0CphIgeSKcxLbL pTHvFAotnbnEbAqvBbXzquGaDjvX03q0ls3o3rtRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUS1e0JmtKf7tl12gCewdo+tczmpUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQ2MmY2MWJhLTU3NDgtNDk2YS04Nzk1LTYxYzMyZGFmOTc3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBcwDQYJKoZIhvcNAQELBQADggEBAF/XU9vTfdcffl2QH8gsWw/n Gf1TyIUKtuywZzFWS9mkUbAoIiyLvSQU4JeW4Xe5Vt4E6CHNUr31yu+xdW2fHQnm gqnnYXQ7sCkrsG0V84xCzbGq+IWYwZdba3d+tnIVX7A6PrCNH+XET7oHjtqpv6r4 WGmeHea6wfZXyKYQXNA4tOjwVv18o6F8RXDmkuq67YTQHS89HAam1349H4vPDVDo EeKECl/0wTPegm4spISMQIDvPY04VFTmGcKlubE7jiT08o3qjUfwQCEKk/W8wZM6 DRTLTHzXz8s9I8ppce1aaB9e4V9vOwUXErvNyAjNjdC26FwxG7v0YiDEN+4DMlc= -----END CERTIFICATE-----Generated at Mon Jun 30 17:22:01 2025 by rpki-client