$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c044dfdf-545b-46de-a181-9b87e5052e28.roa File: c044dfdf-545b-46de-a181-9b87e5052e28.roa (raw, json) Hash identifier: iGZ/3yZlMfozMGBTJVdHoxEhh+OT8e2Plnxgxlf9NsY= Subject key identifier: 63:33:16:3C:D0:15:5C:8B:EC:3A:AF:37:4E:02:B0:B7:47:F3:35:A3 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 13954AF3C900F21EB8FB3084771067CC9F581CAB Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c044dfdf-545b-46de-a181-9b87e5052e28.roa Signing time: Mon 16 Jun 2025 18:50:59 +0000 ROA not before: Mon 16 Jun 2025 18:50:59 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:2110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:95:4a:f3:c9:00:f2:1e:b8:fb:30:84:77:10:67:cc:9f:58:1c:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 16 18:50:59 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=2cf1b54dfb422e36aa8512faabe6c5ee18aa1c3f9eb1172f8ce5fc1b9d7b0662, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3f:28:95:d6:b0:1a:cc:fa:de:68:33:0a:c4: cc:fa:0a:81:c1:9e:8d:91:c1:af:a8:56:a4:85:9c: b8:ac:9a:3c:08:fb:42:46:4b:f3:74:b7:f5:ae:25: b9:fb:7b:b1:e4:1d:ec:0c:f4:29:67:22:7a:9b:4c: 91:ff:16:a5:fa:d3:6f:09:93:e1:f6:d4:3b:dd:a8: 9a:0d:ca:ca:f3:03:26:e9:06:6f:72:17:7f:43:2f: 2b:19:95:64:07:3f:10:da:03:b3:d6:12:6b:97:7e: 33:2b:59:75:a9:87:33:4c:e4:4c:c0:c4:20:57:44: 1b:78:7a:03:4b:60:4d:c8:78:3f:ce:c2:56:97:a1: 0d:7a:f8:26:0b:6a:13:cd:73:a8:a3:71:cf:80:ba: 9f:29:48:a9:c5:fc:c3:88:d9:39:62:17:fa:11:54: 99:45:39:cc:cc:f1:22:70:58:20:37:fb:ed:3f:4c: 92:7d:b1:df:9a:93:51:85:b6:f0:89:13:17:15:97: ab:13:51:0d:6f:37:9b:79:18:96:d6:9b:5c:e0:10: db:5e:74:5d:16:84:72:a6:ce:45:8e:f6:28:e4:a9: 32:fc:29:7f:60:a9:83:f6:fc:13:4d:af:5f:97:9c: 9c:8f:76:5a:8e:ca:07:87:81:ed:9d:d9:9c:84:b1: 1f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:33:16:3C:D0:15:5C:8B:EC:3A:AF:37:4E:02:B0:B7:47:F3:35:A3 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c044dfdf-545b-46de-a181-9b87e5052e28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:2110::/44 Signature Algorithm: sha256WithRSAEncryption 26:f5:fb:b9:7b:1b:76:c4:6b:d0:cd:4f:75:80:ba:06:f7:b2: c4:92:e2:01:5e:a7:2b:7d:37:fa:02:6b:1d:95:28:63:9c:5b: f7:66:12:1e:b1:9b:4a:26:40:39:88:b8:aa:53:84:d3:d4:3d: 42:06:5b:2b:e9:92:c0:30:d5:89:5b:00:35:04:10:32:e5:e1: 80:b2:d7:07:a6:67:e2:c9:80:c6:e9:1f:e7:9b:b5:66:7f:48: b7:de:ba:90:c5:3e:c1:93:89:a8:0b:3b:97:57:70:a7:8e:77: ec:1f:f6:14:04:a0:fb:1f:86:5f:29:26:3b:f3:8d:19:36:a5: d3:1e:b0:93:df:f7:2e:ae:e0:46:c9:c4:d2:19:49:d5:92:84: 9e:91:b5:3c:c9:0a:a4:b2:3b:e6:47:c8:0f:c4:47:04:c0:04: ff:40:dc:8d:e9:15:a2:ad:b1:38:b1:52:75:d1:b7:e8:e9:67: 01:0e:cf:fb:88:e3:50:3b:3d:d5:64:7d:bc:31:31:02:63:dd: f9:b3:b0:6d:82:b4:85:76:73:91:8d:a1:27:de:3f:f0:13:79: e0:66:74:a9:ec:0f:e5:54:26:32:ea:49:87:9c:b4:95:2f:b2: 03:42:e8:ba:cf:8e:07:58:cc:c8:66:12:16:67:81:fa:7e:94: c6:7b:1b:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE5VK88kA8h64+zCEdxBnzJ9YHKswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE2MTg1MDU5WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2YxYjU0ZGZiNDIyZTM2YWE4NTEyZmFhYmU2YzVlZTE4 YWExYzNmOWViMTE3MmY4Y2U1ZmMxYjlkN2IwNjYyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDuPyiV1rAazPreaDMKxMz6CoHBno2Rwa+oVqSFnLismjwI +0JGS/N0t/WuJbn7e7HkHewM9ClnInqbTJH/FqX6028Jk+H21DvdqJoNysrzAybp Bm9yF39DLysZlWQHPxDaA7PWEmuXfjMrWXWphzNM5EzAxCBXRBt4egNLYE3IeD/O wlaXoQ16+CYLahPNc6ijcc+Aup8pSKnF/MOI2TliF/oRVJlFOczM8SJwWCA3++0/ TJJ9sd+ak1GFtvCJExcVl6sTUQ1vN5t5GJbWm1zgENtedF0WhHKmzkWO9ijkqTL8 KX9gqYP2/BNNr1+XnJyPdlqOygeHge2d2ZyEsR9xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYzMWPNAVXIvsOq83TgKwt0fzNaMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2MwNDRkZmRmLTU0NWItNDZkZS1hMTgxLTliODdlNTA1MmUyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmBZzAIRAwDQYJKoZIhvcNAQELBQADggEBACb1+7l7G3bEa9DNT3WAugb3 ssSS4gFepyt9N/oCax2VKGOcW/dmEh6xm0omQDmIuKpThNPUPUIGWyvpksAw1Ylb ADUEEDLl4YCy1wemZ+LJgMbpH+ebtWZ/SLfeupDFPsGTiagLO5dXcKeOd+wf9hQE oPsfhl8pJjvzjRk2pdMesJPf9y6u4EbJxNIZSdWShJ6RtTzJCqSyO+ZHyA/ERwTA BP9A3I3pFaKtsTixUnXRt+jpZwEOz/uI41A7PdVkfbwxMQJj3fmzsG2CtIV2c5GN oSfeP/ATeeBmdKnsD+VUJjLqSYectJUvsgNC6LrPjgdYzMhmEhZngfp+lMZ7G3I= -----END CERTIFICATE-----Generated at Sun Jun 29 03:46:00 2025 by rpki-client