$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b2526bb0-8744-452b-897e-b0ce9626682b.roa File: b2526bb0-8744-452b-897e-b0ce9626682b.roa (raw, json) Hash identifier: FqTAImkJFBs3TN6Jlq8Qpn6mNrEF6vtlucyxKjgT0jI= Subject key identifier: 19:10:D3:C2:29:06:04:70:71:64:F2:9C:CA:0F:8D:94:56:01:46:29 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1CAB2A7277B5B5F2ACF048950D4D527F82F0046B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b2526bb0-8744-452b-897e-b0ce9626682b.roa Signing time: Wed 25 Jun 2025 00:31:15 +0000 ROA not before: Wed 25 Jun 2025 00:31:15 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ab:2a:72:77:b5:b5:f2:ac:f0:48:95:0d:4d:52:7f:82:f0:04:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 25 00:31:15 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=96ab7fc760b2ee3a999afd599196999566edd5ebe0329e5f4372709ca323cf25, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c7:6d:c0:5c:e1:b1:65:56:74:69:c5:39:36: de:a0:bb:c4:27:a9:99:cb:20:ea:ce:b0:42:9b:66: 94:3c:dd:9b:83:1f:3f:dc:da:de:b0:bc:b6:e1:e4: 71:8e:9e:62:91:da:22:e7:57:47:f3:f4:91:c6:62: bd:aa:39:d6:57:54:8c:39:d6:7b:89:ba:e2:40:b8: 9a:25:db:6e:3b:3d:dc:58:61:ef:01:be:e7:e3:40: 79:60:69:68:a7:c9:f1:8b:d6:eb:70:00:bd:bd:56: 40:4a:5b:fa:cc:86:79:a2:a2:02:95:43:85:6b:34: 2e:d7:0f:73:32:5f:a7:9e:d2:a1:a6:41:26:d3:84: 64:96:92:30:0c:60:bf:cf:aa:88:79:ad:d7:6d:63: 34:17:09:d1:47:1f:33:73:ce:9c:b9:7d:b6:bf:36: a9:0e:b8:10:07:b1:ba:7b:66:04:c0:52:19:0b:72: cb:f5:a6:0f:94:77:b0:97:44:38:6a:83:be:54:4f: 59:3b:68:ae:6e:27:c5:35:60:c7:0a:77:ab:e6:fa: fb:6f:6c:f0:fd:36:22:0d:e8:3b:3f:5a:6e:31:e4: 04:d0:ff:e4:b8:e9:13:a4:d2:9d:4c:75:e6:a9:e8: ee:f8:fd:8e:83:71:0f:3b:29:f0:0d:00:b9:5d:19: 17:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:10:D3:C2:29:06:04:70:71:64:F2:9C:CA:0F:8D:94:56:01:46:29 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b2526bb0-8744-452b-897e-b0ce9626682b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c11::/48 Signature Algorithm: sha256WithRSAEncryption 44:42:62:72:ce:b6:8f:72:ea:17:ba:7e:92:f1:58:f7:1f:d8: 3d:0d:ef:a4:e2:42:bf:5c:f6:53:b3:cb:2c:78:de:a0:b4:9a: 7e:a1:1c:af:d5:ee:e1:5d:c4:ee:c1:39:25:3d:c3:b7:c7:d9: 04:c2:f9:f6:6a:af:e8:d4:70:e1:02:ae:b8:d3:93:dc:a6:22: 26:b9:41:77:80:d5:27:9f:fd:1e:d5:cc:1b:f8:2f:df:b9:d3: f0:e8:fb:75:d9:6b:e3:f3:c1:3c:54:75:48:70:e0:1b:46:bf: ec:8b:f3:15:76:e1:d0:82:a2:8c:c1:2c:d9:71:97:fc:18:6f: 24:0b:e0:79:2f:06:72:a6:34:98:ee:24:0a:3f:1c:c3:f2:32: bf:d3:c4:7b:1e:69:56:2f:9f:24:47:75:d6:c2:72:86:03:cb: da:38:23:88:0f:ed:6a:70:c2:4e:87:c8:9e:56:d2:7f:40:e4: 15:62:90:6d:68:d2:6f:f1:39:d1:f8:76:c1:33:85:1d:2f:82: 26:05:0e:a3:1d:9a:1c:8c:61:98:5c:11:56:fb:5d:ec:c9:b1: d0:e9:9e:87:2d:e0:c3:b9:a5:f2:8e:d5:3a:a9:df:f9:12:9d: f8:4d:7f:da:2a:ee:32:af:49:c5:6f:38:77:c9:f2:69:e1:e7: 1b:f9:07:59 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHKsqcne1tfKs8EiVDU1Sf4LwBGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjI1MDAzMTE1WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NmFiN2ZjNzYwYjJlZTNhOTk5YWZkNTk5MTk2OTk5NTY2 ZWRkNWViZTAzMjllNWY0MzcyNzA5Y2EzMjNjZjI1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCux23AXOGxZVZ0acU5Nt6gu8QnqZnLIOrOsEKbZpQ83ZuD Hz/c2t6wvLbh5HGOnmKR2iLnV0fz9JHGYr2qOdZXVIw51nuJuuJAuJol2247PdxY Ye8BvufjQHlgaWinyfGL1utwAL29VkBKW/rMhnmiogKVQ4VrNC7XD3MyX6ee0qGm QSbThGSWkjAMYL/Pqoh5rddtYzQXCdFHHzNzzpy5fba/NqkOuBAHsbp7ZgTAUhkL csv1pg+Ud7CXRDhqg75UT1k7aK5uJ8U1YMcKd6vm+vtvbPD9NiIN6Ds/Wm4x5ATQ /+S46ROk0p1Mdeap6O74/Y6DcQ87KfANALldGRfrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGRDTwikGBHBxZPKcyg+NlFYBRikwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IyNTI2YmIwLTg3NDQtNDUyYi04OTdlLWIwY2U5NjI2NjgyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBEwDQYJKoZIhvcNAQELBQADggEBAERCYnLOto9y6he6fpLxWPcf 2D0N76TiQr9c9lOzyyx43qC0mn6hHK/V7uFdxO7BOSU9w7fH2QTC+fZqr+jUcOEC rrjTk9ymIia5QXeA1Sef/R7VzBv4L9+50/Do+3XZa+PzwTxUdUhw4BtGv+yL8xV2 4dCCoozBLNlxl/wYbyQL4HkvBnKmNJjuJAo/HMPyMr/TxHseaVYvnyRHddbCcoYD y9o4I4gP7Wpwwk6HyJ5W0n9A5BVikG1o0m/xOdH4dsEzhR0vgiYFDqMdmhyMYZhc EVb7XezJsdDpnoct4MO5pfKO1Tqp3/kSnfhNf9oq7jKvScVvOHfJ8mnh5xv5B1k= -----END CERTIFICATE-----Generated at Sun Jun 29 16:34:31 2025 by rpki-client