$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: F0anARwDsi6t1rlrSvQWhvZXdJc8krU188ef54ny6lA= Subject key identifier: D3:BD:EF:91:39:53:9D:1B:24:5E:CD:DA:C7:7B:94:22:38:DC:26:59 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 24AC3B403CE3192F71078F45D4C1AF90F4F4F005 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Tue 17 Jun 2025 00:31:12 +0000 ROA not before: Tue 17 Jun 2025 00:31:12 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:ac:3b:40:3c:e3:19:2f:71:07:8f:45:d4:c1:af:90:f4:f4:f0:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 17 00:31:12 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=536a66a8078c5ff219042e41e4057da696342aa8e4a4ddaf3c5882b71ebb9775, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:77:85:72:c0:9e:fd:11:07:dd:f0:88:97:56: 3b:4e:3d:8a:3b:31:be:0c:a9:df:ef:ed:25:4f:96: 00:96:6b:39:75:7a:a0:88:91:e6:02:80:32:86:57: 5c:34:1f:cd:81:b5:66:eb:a2:10:48:20:fa:6f:7b: 17:5b:11:f0:ca:50:0e:be:78:34:09:8b:b3:0d:6b: f7:36:a3:6a:d9:c2:d4:d0:ee:76:f1:b3:f2:f8:6f: 3f:f6:51:74:ff:8e:f8:a3:ad:f0:4f:db:d1:80:e6: b3:c5:2a:e0:b3:3d:7a:1a:d6:88:85:2b:9d:32:34: 8a:e2:d0:7b:28:e6:1b:49:9d:fb:54:94:a1:70:a1: 70:4c:2c:50:90:97:db:f9:9b:79:df:6d:af:a7:d7: ae:0b:6b:83:ec:24:de:7c:7d:c3:ff:20:46:45:66: 5a:df:79:0d:cc:54:d0:ae:34:fd:5a:27:d5:fb:38: b9:2c:59:47:78:66:38:12:d5:0f:4b:33:f8:33:c0: c4:18:66:55:8d:55:11:d9:83:d2:0b:ea:99:5b:da: 0d:95:28:52:1c:29:5f:b7:a8:32:93:77:27:fa:f1: b7:1d:d1:ec:76:48:a0:82:b1:fa:28:91:e6:32:4e: 10:03:9b:c0:15:60:6d:43:92:e2:27:c9:9a:c6:94: 93:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BD:EF:91:39:53:9D:1B:24:5E:CD:DA:C7:7B:94:22:38:DC:26:59 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 53:91:02:16:ee:2f:a6:7c:96:04:9a:fa:a2:22:63:69:61:65: 4e:d0:71:e7:e6:d8:55:7d:99:b5:9d:52:48:67:65:38:6a:4a: 55:0c:8c:d9:fc:9c:e0:c5:c5:1b:66:8e:3a:22:47:76:5a:ac: 80:3a:23:ae:df:e5:45:f0:1d:86:4e:78:55:78:4b:b7:01:a6: c8:f6:95:60:50:d2:1f:03:30:be:6e:56:30:ff:32:bf:ac:11: ce:55:8f:db:52:21:3d:5e:a1:d7:9a:2d:f0:21:f1:2b:fb:75: 46:28:13:9d:63:43:18:3a:55:10:15:35:03:0d:7e:90:9d:0e: dc:57:e7:b5:f2:d5:db:02:75:a3:02:ff:19:4b:74:36:54:56: cc:d2:f0:eb:c9:c7:4a:04:79:44:77:eb:bb:3d:61:ac:52:f6: 67:69:13:35:51:ab:ea:2d:90:52:58:0c:15:32:8a:c9:a7:65: 20:d3:13:dc:80:f2:8c:e0:3d:06:69:a2:44:c0:a7:cb:fd:86: 57:8f:da:77:ee:38:d5:2a:84:c0:95:2a:5a:05:8d:d6:41:b6: d1:3b:05:23:0e:a9:1d:5e:00:16:65:32:1b:fc:66:ad:9c:c2: 82:3e:01:07:7d:2e:b8:e9:85:30:8f:de:1c:9a:04:d2:8f:2c: 00:c9:1e:cd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJKw7QDzjGS9xB49F1MGvkPT08AUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE3MDAzMTEyWhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzZhNjZhODA3OGM1ZmYyMTkwNDJlNDFlNDA1N2RhNjk2 MzQyYWE4ZTRhNGRkYWYzYzU4ODJiNzFlYmI5Nzc1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvd4VywJ79EQfd8IiXVjtOPYo7Mb4Mqd/v7SVPlgCWazl1 eqCIkeYCgDKGV1w0H82BtWbrohBIIPpvexdbEfDKUA6+eDQJi7MNa/c2o2rZwtTQ 7nbxs/L4bz/2UXT/jvijrfBP29GA5rPFKuCzPXoa1oiFK50yNIri0Hso5htJnftU lKFwoXBMLFCQl9v5m3nfba+n164La4PsJN58fcP/IEZFZlrfeQ3MVNCuNP1aJ9X7 OLksWUd4ZjgS1Q9LM/gzwMQYZlWNVRHZg9IL6plb2g2VKFIcKV+3qDKTdyf68bcd 0ex2SKCCsfookeYyThADm8AVYG1DkuInyZrGlJOtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU073vkTlTnRskXs3ax3uUIjjcJlkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAFORAhbuL6Z8lgSa+qIiY2lh ZU7Qcefm2FV9mbWdUkhnZThqSlUMjNn8nODFxRtmjjoiR3ZarIA6I67f5UXwHYZO eFV4S7cBpsj2lWBQ0h8DML5uVjD/Mr+sEc5Vj9tSIT1eodeaLfAh8Sv7dUYoE51j Qxg6VRAVNQMNfpCdDtxX57Xy1dsCdaMC/xlLdDZUVszS8OvJx0oEeUR367s9YaxS 9mdpEzVRq+otkFJYDBUyismnZSDTE9yA8ozgPQZpokTAp8v9hleP2nfuONUqhMCV KloFjdZBttE7BSMOqR1eABZlMhv8Zq2cwoI+AQd9LrjphTCP3hyaBNKPLADJHs0= -----END CERTIFICATE-----Generated at Sun Jun 29 15:42:55 2025 by rpki-client