$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5c3979d3-e1c0-4d6d-94a7-34bc1e7b3b0e.roa File: 5c3979d3-e1c0-4d6d-94a7-34bc1e7b3b0e.roa (raw, json) Hash identifier: GJ6wDThajLAgduPg5lcClEeGvcTQ4UkuFS00K0wZ3GA= Subject key identifier: 18:D3:0D:76:EA:B1:ED:A6:99:E1:26:04:DD:44:5C:08:BB:6E:81:01 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4FA1B7DE84FB3FE44578065B7D9F158A11D9DA20 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5c3979d3-e1c0-4d6d-94a7-34bc1e7b3b0e.roa Signing time: Wed 25 Jun 2025 00:40:46 +0000 ROA not before: Wed 25 Jun 2025 00:40:46 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a1:b7:de:84:fb:3f:e4:45:78:06:5b:7d:9f:15:8a:11:d9:da:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 25 00:40:46 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=5f654a2def37122a859dd4acaa4f5ea966f1d486dd7beb5413dcdc8e61d3c827, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ed:91:c9:4a:67:5f:fe:8d:64:b7:61:28:b2: 34:bd:d4:fb:e3:f7:2c:30:a8:01:3a:08:a6:53:e2: ae:82:e0:30:c1:e4:79:d5:c2:77:48:05:fa:f6:5c: 47:4c:e4:7d:77:df:93:82:79:5e:6d:b0:fb:da:73: bf:47:85:72:37:bd:19:67:ea:7f:e1:de:d8:fb:2e: ec:60:62:8f:b3:d9:d8:b8:b3:a5:67:78:cd:ea:4d: 5a:ae:a5:a0:52:82:ac:66:66:ce:09:92:ed:df:4c: e7:9a:3e:96:da:1b:35:ba:10:54:02:99:55:1e:fe: c6:4b:fa:fc:48:77:49:66:ec:da:8d:9c:b4:21:56: af:da:c3:57:8d:7c:b8:0f:6f:c4:ba:35:21:7e:e0: 24:6c:46:59:45:ac:55:44:53:18:25:c7:fd:ac:e3: 13:f7:91:4a:13:1a:99:35:5b:60:04:21:af:b2:ae: b3:de:9d:57:39:b7:57:fe:60:61:48:e5:84:ab:64: f9:e1:2b:97:d1:fc:56:7e:23:16:cf:06:a0:9c:ce: 5b:93:e6:d5:5e:df:67:19:df:39:65:43:9b:55:5c: 99:15:e0:36:a1:f2:ec:be:75:ab:e2:a9:37:30:0b: 47:d7:a4:07:a1:da:b0:e9:fa:9e:e8:3a:bd:88:67: a3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D3:0D:76:EA:B1:ED:A6:99:E1:26:04:DD:44:5C:08:BB:6E:81:01 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5c3979d3-e1c0-4d6d-94a7-34bc1e7b3b0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c16::/48 Signature Algorithm: sha256WithRSAEncryption 29:b7:81:8f:a9:55:6b:4b:09:4c:62:46:52:90:13:91:1c:14: 2a:03:6a:c1:5f:00:65:f5:35:7b:91:e3:ff:36:0c:e4:d8:d5: 00:74:23:07:1b:e9:8f:14:83:40:8b:cc:a5:81:ec:da:55:fa: d8:ab:67:7a:d4:91:31:f6:f0:80:ee:c6:0f:8f:60:a5:ea:39: de:bc:25:75:f9:35:fd:ea:c9:7a:08:d8:f8:a0:30:82:31:f4: b6:0b:c7:7d:4f:67:3c:6e:a9:52:ba:7d:fa:dc:fb:6b:19:20: 09:99:50:0b:18:0e:d0:67:b3:cd:02:af:de:7e:42:57:47:95: 0f:11:89:50:6b:b6:7b:8e:a9:eb:d5:a6:64:a1:3b:21:8c:23: b6:2f:10:4b:33:0f:3a:2a:26:83:2d:28:68:c7:1d:75:6b:53: 4f:b5:f1:19:0e:f2:e8:9d:28:89:c5:83:4f:4b:0f:a5:9f:d9: be:46:4d:e6:fd:cb:c9:1b:87:91:c1:74:c0:b2:1e:7b:52:5b: 20:54:68:a7:8b:8a:38:ee:3d:55:de:bd:59:69:ef:f4:60:20: 67:19:1e:3d:6d:73:6b:97:58:e1:08:32:08:36:c4:02:29:c7: 20:2a:5b:12:1a:9d:c8:42:a6:aa:29:c4:22:24:13:cb:cd:ed: 4e:b9:ee:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT6G33oT7P+RFeAZbfZ8VihHZ2iAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjI1MDA0MDQ2WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjY1NGEyZGVmMzcxMjJhODU5ZGQ0YWNhYTRmNWVhOTY2 ZjFkNDg2ZGQ3YmViNTQxM2RjZGM4ZTYxZDNjODI3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA7ZHJSmdf/o1kt2EosjS91Pvj9ywwqAE6CKZT4q6C4DDB 5HnVwndIBfr2XEdM5H1335OCeV5tsPvac79HhXI3vRln6n/h3tj7LuxgYo+z2di4 s6VneM3qTVqupaBSgqxmZs4Jku3fTOeaPpbaGzW6EFQCmVUe/sZL+vxId0lm7NqN nLQhVq/aw1eNfLgPb8S6NSF+4CRsRllFrFVEUxglx/2s4xP3kUoTGpk1W2AEIa+y rrPenVc5t1f+YGFI5YSrZPnhK5fR/FZ+IxbPBqCczluT5tVe32cZ3zllQ5tVXJkV 4Dah8uy+daviqTcwC0fXpAeh2rDp+p7oOr2IZ6P1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGNMNduqx7aaZ4SYE3URcCLtugQEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzVjMzk3OWQzLWUxYzAtNGQ2ZC05NGE3LTM0YmMxZTdiM2IwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBYwDQYJKoZIhvcNAQELBQADggEBACm3gY+pVWtLCUxiRlKQE5Ec FCoDasFfAGX1NXuR4/82DOTY1QB0Iwcb6Y8Ug0CLzKWB7NpV+tirZ3rUkTH28IDu xg+PYKXqOd68JXX5Nf3qyXoI2PigMIIx9LYLx31PZzxuqVK6ffrc+2sZIAmZUAsY DtBns80Cr95+QldHlQ8RiVBrtnuOqevVpmShOyGMI7YvEEszDzoqJoMtKGjHHXVr U0+18RkO8uidKInFg09LD6Wf2b5GTeb9y8kbh5HBdMCyHntSWyBUaKeLijjuPVXe vVlp7/RgIGcZHj1tc2uXWOEIMgg2xAIpxyAqWxIanchCpqopxCIkE8vN7U657uY= -----END CERTIFICATE-----Generated at Sun Jun 29 07:18:08 2025 by rpki-client