$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/66f01be3-62cc-4bca-94fa-a48a5f45f2ff.roa File: 66f01be3-62cc-4bca-94fa-a48a5f45f2ff.roa (raw, json) Hash identifier: DyL3CmZpUxMigdQG0tm2GJFWvBAG1M3OT4mWkNtfgvw= Subject key identifier: 57:12:C6:E1:EC:52:C4:2D:11:67:40:D7:88:F7:57:20:56:CE:6E:06 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 639B7C799EEE0560A4BC1A392979A6B7E77C1440 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/66f01be3-62cc-4bca-94fa-a48a5f45f2ff.roa Signing time: Mon 16 Jun 2025 19:00:55 +0000 ROA not before: Mon 16 Jun 2025 19:00:55 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:310::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:9b:7c:79:9e:ee:05:60:a4:bc:1a:39:29:79:a6:b7:e7:7c:14:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 16 19:00:55 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=0b67152d86fc853cc55975a2f912d1a1c70aa05e5bf76523762142b6ac6bda0b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a8:7f:38:b6:ae:20:75:2b:e1:25:aa:91:7d: bc:d5:ac:50:b5:d6:f9:a6:35:b3:39:ff:21:ad:ed: ff:2b:63:55:c9:70:54:55:c0:a4:66:a4:ee:32:ee: 65:8b:63:99:ed:ee:aa:e0:30:fc:b6:09:62:3e:c6: 52:f0:82:48:98:9d:35:db:43:c7:4c:55:8c:e7:f8: d9:1d:92:2a:e2:54:84:30:bc:fe:3a:18:68:39:a0: e5:45:d2:7f:66:b8:ff:10:a0:31:86:5f:9f:22:b8: a6:54:b8:4c:60:9c:b1:44:61:cc:f5:53:8b:04:ad: 87:46:0d:d4:fc:70:53:20:49:43:59:b2:ba:60:07: a4:74:17:6d:5e:d5:8e:4e:1e:64:51:70:c4:03:da: 43:54:36:a7:5a:3e:2d:82:15:03:f2:e4:e5:58:bb: 34:43:15:80:a9:35:72:42:d1:d6:d6:ba:c1:2f:a8: 7d:b0:bf:28:6e:6d:10:a0:47:f4:5d:fe:f2:8c:a5: a2:18:bb:b8:d1:67:18:3b:4e:e1:43:02:b5:4e:ff: 27:80:bf:f6:6f:84:ad:03:f2:80:a7:df:f0:be:79: bf:66:c5:1d:7e:e2:11:6e:dd:73:59:77:fe:0c:4d: ed:05:cb:60:95:50:7a:48:ce:d5:ff:47:50:f9:3f: 4c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:12:C6:E1:EC:52:C4:2D:11:67:40:D7:88:F7:57:20:56:CE:6E:06 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/66f01be3-62cc-4bca-94fa-a48a5f45f2ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:310::/48 Signature Algorithm: sha256WithRSAEncryption 96:af:10:7c:34:33:ef:34:e5:87:e6:9f:dc:b5:2f:0a:f3:4a: 42:9a:d5:a6:8e:e2:b8:68:4c:ac:d3:bd:0e:48:c5:23:a5:b6: 10:14:e7:5b:2a:76:c2:c8:d4:ed:b6:8e:cd:98:d4:dd:9b:2b: ca:f8:49:99:45:59:00:9a:2f:8a:47:b6:be:c7:c1:06:8d:f4: 8d:1a:b4:f0:7d:2e:23:7c:a7:9c:50:b1:1e:c6:4b:bc:0c:0c: e7:a2:a0:ff:22:2b:a8:05:54:50:19:c9:85:75:fa:bf:4c:8a: 30:fc:46:e6:3c:21:de:45:14:dd:3d:d5:e9:99:55:d5:66:c0: 47:a5:ba:f8:cd:77:d9:a4:9f:0f:a8:65:3b:98:1f:8c:8e:98: 7a:9c:d9:38:f8:2b:48:2e:c0:fb:e3:f2:e9:3d:ee:d3:93:08: 75:81:bd:85:e5:c4:7a:71:1c:cc:a7:ed:14:64:11:32:4a:98: 7f:2b:fd:65:52:8d:27:37:29:12:e6:bd:c7:11:61:6b:13:de: 4c:da:af:c8:8b:44:b8:95:25:b5:c8:41:57:a3:ef:60:c2:f9: 25:4d:1d:64:39:8d:50:86:c9:51:a3:2b:c0:87:fe:b6:90:ab: 24:9a:e6:87:ca:57:e5:57:b4:9f:5a:79:0a:11:cb:3c:d7:69: 42:3a:e4:0a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUY5t8eZ7uBWCkvBo5KXmmt+d8FEAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE2MTkwMDU1WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjY3MTUyZDg2ZmM4NTNjYzU1OTc1YTJmOTEyZDFhMWM3 MGFhMDVlNWJmNzY1MjM3NjIxNDJiNmFjNmJkYTBiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzqH84tq4gdSvhJaqRfbzVrFC11vmmNbM5/yGt7f8rY1XJ cFRVwKRmpO4y7mWLY5nt7qrgMPy2CWI+xlLwgkiYnTXbQ8dMVYzn+NkdkiriVIQw vP46GGg5oOVF0n9muP8QoDGGX58iuKZUuExgnLFEYcz1U4sErYdGDdT8cFMgSUNZ srpgB6R0F21e1Y5OHmRRcMQD2kNUNqdaPi2CFQPy5OVYuzRDFYCpNXJC0dbWusEv qH2wvyhubRCgR/Rd/vKMpaIYu7jRZxg7TuFDArVO/yeAv/ZvhK0D8oCn3/C+eb9m xR1+4hFu3XNZd/4MTe0Fy2CVUHpIztX/R1D5P0wVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVxLG4exSxC0RZ0DXiPdXIFbObgYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzY2ZjAxYmUzLTYyY2MtNGJjYS05NGZhLWE0OGE1ZjQ1ZjJmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAxAwDQYJKoZIhvcNAQELBQADggEBAJavEHw0M+805Yfmn9y1Lwrz SkKa1aaO4rhoTKzTvQ5IxSOlthAU51sqdsLI1O22js2Y1N2bK8r4SZlFWQCaL4pH tr7HwQaN9I0atPB9LiN8p5xQsR7GS7wMDOeioP8iK6gFVFAZyYV1+r9MijD8RuY8 Id5FFN091emZVdVmwEeluvjNd9mknw+oZTuYH4yOmHqc2Tj4K0guwPvj8uk97tOT CHWBvYXlxHpxHMyn7RRkETJKmH8r/WVSjSc3KRLmvccRYWsT3kzar8iLRLiVJbXI QVej72DC+SVNHWQ5jVCGyVGjK8CH/raQqySa5ofKV+VXtJ9aeQoRyzzXaUI65Ao= -----END CERTIFICATE-----Generated at Sun Jun 29 15:42:57 2025 by rpki-client