$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ae85743c-c855-42b4-95ab-e8e4d2087c99.roa File: ae85743c-c855-42b4-95ab-e8e4d2087c99.roa (raw, json) Hash identifier: 9shQDyPEixK8qjb7vV1sg5yGeElCjtajNLlih1ylEq8= Subject key identifier: 51:77:0B:7F:B9:EC:C0:CB:70:4C:76:71:4B:F5:62:96:CD:D4:E1:3E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 181702FE149F4CE10D1147606414D86915A62FD3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ae85743c-c855-42b4-95ab-e8e4d2087c99.roa Signing time: Wed 25 Jun 2025 00:30:55 +0000 ROA not before: Wed 25 Jun 2025 00:30:55 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:c0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:17:02:fe:14:9f:4c:e1:0d:11:47:60:64:14:d8:69:15:a6:2f:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 25 00:30:55 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=36d905330672f35042d0e19b53af76e34c397d8fe30cfe5d8fb64009efe2fd45, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:af:0f:bd:a0:72:4d:f1:49:0c:84:2d:4e:65: 23:e0:4e:c5:b2:2d:68:1f:ed:f8:72:96:03:4f:74: 64:cd:53:6c:ad:da:54:1c:d1:c9:f7:79:19:89:3a: 49:bf:71:d2:21:9b:72:9b:1f:8d:5c:1d:73:5e:17: bf:d0:c2:91:23:c3:d0:2f:0f:c6:60:25:70:2a:01: 55:ae:f9:28:10:d2:de:74:47:58:ca:f7:c3:3a:06: 49:c4:ec:98:62:44:f8:f1:3d:29:cb:0f:b3:82:48: 42:64:e4:7a:22:9e:d0:0d:b6:00:4a:81:e3:9a:81: 6b:9c:41:7a:c8:a1:73:c1:97:25:59:13:0b:f1:40: 60:7f:5d:21:49:6d:13:23:67:e1:c3:95:5f:40:82: 74:8a:75:92:b6:28:0d:9c:48:ce:0a:2d:e2:ff:de: f1:47:c9:54:77:df:eb:c5:c0:6c:4d:f9:75:f2:73: 4c:b1:d9:46:9d:44:25:95:8e:42:f1:68:d0:a3:1b: a8:db:c7:9c:47:30:b6:0f:19:9c:c6:be:14:f1:a7: 28:6c:7f:ec:62:f3:79:82:08:40:e0:34:c3:b8:fb: 96:65:ee:ef:79:32:65:76:76:1c:80:3b:1e:80:6d: f6:48:ca:27:b6:18:f6:60:f9:8b:16:e5:f4:54:a5: 0a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:77:0B:7F:B9:EC:C0:CB:70:4C:76:71:4B:F5:62:96:CD:D4:E1:3E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ae85743c-c855-42b4-95ab-e8e4d2087c99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0d::/48 Signature Algorithm: sha256WithRSAEncryption aa:ad:4f:db:4f:90:1b:0e:47:5f:a0:a8:11:8f:03:07:fd:ee: ee:3c:82:24:e4:46:39:c8:5a:d7:e8:e0:f3:13:b4:8a:46:95: 8d:13:08:bb:80:a1:71:66:b9:0c:a9:46:b7:95:73:df:30:fb: 21:c0:0c:bc:d6:aa:31:28:05:dc:2b:cb:bc:f7:d2:94:f3:59: fe:74:b9:30:26:07:75:29:28:0a:73:83:80:b1:06:c9:d1:f5: 1a:fc:61:fc:d4:99:ee:e4:93:18:0e:de:de:a3:7c:91:8a:a1: 25:b4:ef:10:f2:29:fb:26:db:4a:41:2d:d3:1c:21:49:74:9a: ac:d5:f1:f4:79:18:06:58:3d:5a:da:eb:74:81:f7:30:d6:b3: 16:ee:c9:91:1b:8a:c1:e6:87:b7:31:3b:a6:59:05:ff:92:01: 3a:4b:54:6a:5e:56:5e:72:ec:6c:5b:90:91:be:27:d1:57:03: 86:47:05:61:be:8d:b7:ad:8c:04:31:80:96:df:70:9a:cb:94: a9:0a:2a:b4:06:35:10:69:10:49:22:ab:09:83:fe:90:58:6d: 9e:8c:36:0b:68:eb:80:c1:12:a1:c5:8c:cc:fb:41:c6:a1:9e: 29:b7:fb:75:f2:19:46:ce:90:e8:1f:d1:5c:43:b0:aa:19:c9: 88:54:64:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGBcC/hSfTOENEUdgZBTYaRWmL9MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjI1MDAzMDU1WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmQ5MDUzMzA2NzJmMzUwNDJkMGUxOWI1M2FmNzZlMzRj Mzk3ZDhmZTMwY2ZlNWQ4ZmI2NDAwOWVmZTJmZDQ1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXrw+9oHJN8UkMhC1OZSPgTsWyLWgf7fhylgNPdGTNU2yt 2lQc0cn3eRmJOkm/cdIhm3KbH41cHXNeF7/QwpEjw9AvD8ZgJXAqAVWu+SgQ0t50 R1jK98M6BknE7JhiRPjxPSnLD7OCSEJk5HointANtgBKgeOagWucQXrIoXPBlyVZ EwvxQGB/XSFJbRMjZ+HDlV9AgnSKdZK2KA2cSM4KLeL/3vFHyVR33+vFwGxN+XXy c0yx2UadRCWVjkLxaNCjG6jbx5xHMLYPGZzGvhTxpyhsf+xi83mCCEDgNMO4+5Zl 7u95MmV2dhyAOx6AbfZIyie2GPZg+YsW5fRUpQrlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUXcLf7nswMtwTHZxS/Vils3U4T4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2FlODU3NDNjLWM4NTUtNDJiNC05NWFiLWU4ZTRkMjA4N2M5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA0wDQYJKoZIhvcNAQELBQADggEBAKqtT9tPkBsOR1+gqBGPAwf9 7u48giTkRjnIWtfo4PMTtIpGlY0TCLuAoXFmuQypRreVc98w+yHADLzWqjEoBdwr y7z30pTzWf50uTAmB3UpKApzg4CxBsnR9Rr8YfzUme7kkxgO3t6jfJGKoSW07xDy Kfsm20pBLdMcIUl0mqzV8fR5GAZYPVra63SB9zDWsxbuyZEbisHmh7cxO6ZZBf+S ATpLVGpeVl5y7GxbkJG+J9FXA4ZHBWG+jbetjAQxgJbfcJrLlKkKKrQGNRBpEEki qwmD/pBYbZ6MNgto64DBEqHFjMz7Qcahnim3+3XyGUbOkOgf0VxDsKoZyYhUZOA= -----END CERTIFICATE-----Generated at Sun Jun 29 18:20:57 2025 by rpki-client