$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c70296e2-c595-4a95-bc2e-ae2732ee3188.roa File: c70296e2-c595-4a95-bc2e-ae2732ee3188.roa (raw, json) Hash identifier: C+aDnWBUEA/PvphC2EFTz9SRMFh2fsQI25ma9B+jXso= Subject key identifier: 04:4A:D0:C5:36:20:47:2F:2E:DB:7E:4B:84:84:E3:CD:BD:34:3F:A4 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 29AB9E4A6BD20B60EB9BE7202DF442CC4CB0EDCC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c70296e2-c595-4a95-bc2e-ae2732ee3188.roa Signing time: Mon 16 Jun 2025 19:00:15 +0000 ROA not before: Mon 16 Jun 2025 19:00:15 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:397::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ab:9e:4a:6b:d2:0b:60:eb:9b:e7:20:2d:f4:42:cc:4c:b0:ed:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 16 19:00:15 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=4418228185a5a15397c1f9314cfc5396e3842d87081c7d8d96a7a60dd8e2b930, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:57:9c:5a:eb:00:eb:65:83:60:04:83:1a: 98:00:91:eb:00:cc:55:2e:cf:54:75:73:0c:1e:75: 65:e0:19:28:81:ea:1f:68:82:99:6a:3c:e6:08:ca: cc:d0:70:d5:42:39:1e:93:74:09:fd:fa:8c:cf:d8: 3f:35:49:90:6f:6c:0b:73:c4:05:c0:ff:79:7a:d6: 41:b5:55:9d:80:5e:55:39:a5:d3:de:c3:75:00:de: e2:68:d7:52:3d:af:ec:bf:30:1d:31:27:9d:62:d2: 70:11:32:17:90:4c:45:66:94:eb:ea:2b:78:46:e2: cb:8e:30:f9:66:95:43:42:d8:db:86:d2:70:34:23: 87:75:12:dc:51:aa:45:5b:fc:6c:40:87:cd:3b:8e: 83:6a:11:de:11:7e:83:db:ba:5c:63:8b:c0:7a:59: b3:67:14:39:f8:d3:6b:23:37:a6:e7:12:35:c5:cc: b7:2f:b9:0c:55:4c:3c:c2:c0:98:bd:ce:84:b7:08: 4e:27:4d:f2:e9:13:d2:75:39:4f:93:92:56:80:67: 1e:81:33:6d:bc:24:0f:5a:c1:90:3c:2c:2c:9d:e0: 4f:fb:d8:f1:dd:63:cd:5e:41:21:e8:b8:b3:87:6a: c4:d8:b3:90:eb:8b:c1:ea:55:62:09:d8:37:fb:86: 72:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:4A:D0:C5:36:20:47:2F:2E:DB:7E:4B:84:84:E3:CD:BD:34:3F:A4 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c70296e2-c595-4a95-bc2e-ae2732ee3188.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:397::/48 Signature Algorithm: sha256WithRSAEncryption a1:2c:35:45:e4:a6:53:7b:91:5b:93:16:e6:a1:0b:1e:d5:99: e6:ac:1a:98:35:7b:72:ad:3b:d7:34:27:96:b1:d3:81:f2:ae: ff:ad:8f:d5:62:ba:75:28:5a:ba:47:83:bf:45:a6:a5:0e:28: bd:03:a8:1c:2d:f0:7e:0a:00:f0:7d:44:2e:97:fc:c1:e8:ad: 6d:a2:d0:f4:0e:23:d2:f9:0b:58:80:8f:c4:c2:a9:59:29:76: e7:fb:8e:73:c3:85:5d:3d:17:e4:36:94:56:67:3c:97:33:04: 17:9f:05:f7:7a:d2:fa:98:ed:5a:c7:99:67:46:61:54:2e:cb: 99:27:a2:71:55:eb:16:d4:f1:3b:15:22:90:6a:9f:1a:62:18: 32:12:1f:e7:0a:c4:94:fc:85:07:16:23:0c:b4:a8:a1:eb:56: 7c:cc:f0:fb:15:2b:82:53:97:f0:66:bb:2d:07:5c:a7:eb:d6: 6c:21:de:a3:49:ee:a8:f8:78:c3:62:3f:3a:ed:8e:3d:0a:bb: 31:bf:c2:5f:3c:5e:d3:68:4e:71:73:ec:94:14:0b:2a:27:06: f3:96:10:94:ae:2a:25:ee:d9:39:2d:59:f3:46:a7:6f:4c:05: 25:ec:63:35:6e:b2:e7:b2:ca:a3:ed:27:f1:be:bc:5e:70:b3: 70:8b:f6:c5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKaueSmvSC2Drm+cgLfRCzEyw7cwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE2MTkwMDE1WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDE4MjI4MTg1YTVhMTUzOTdjMWY5MzE0Y2ZjNTM5NmUz ODQyZDg3MDgxYzdkOGQ5NmE3YTYwZGQ4ZTJiOTMwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9+lecWusA62WDYASDGpgAkesAzFUuz1R1cwwedWXgGSiB 6h9ogplqPOYIyszQcNVCOR6TdAn9+ozP2D81SZBvbAtzxAXA/3l61kG1VZ2AXlU5 pdPew3UA3uJo11I9r+y/MB0xJ51i0nARMheQTEVmlOvqK3hG4suOMPlmlUNC2NuG 0nA0I4d1EtxRqkVb/GxAh807joNqEd4RfoPbulxji8B6WbNnFDn402sjN6bnEjXF zLcvuQxVTDzCwJi9zoS3CE4nTfLpE9J1OU+TklaAZx6BM228JA9awZA8LCyd4E/7 2PHdY81eQSHouLOHasTYs5Dri8HqVWIJ2Df7hnIDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBErQxTYgRy8u235LhITjzb00P6QwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M3MDI5NmUyLWM1OTUtNGE5NS1iYzJlLWFlMjczMmVlMzE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5cwDQYJKoZIhvcNAQELBQADggEBAKEsNUXkplN7kVuTFuahCx7V measGpg1e3KtO9c0J5ax04Hyrv+tj9ViunUoWrpHg79FpqUOKL0DqBwt8H4KAPB9 RC6X/MHorW2i0PQOI9L5C1iAj8TCqVkpduf7jnPDhV09F+Q2lFZnPJczBBefBfd6 0vqY7VrHmWdGYVQuy5knonFV6xbU8TsVIpBqnxpiGDISH+cKxJT8hQcWIwy0qKHr VnzM8PsVK4JTl/Bmuy0HXKfr1mwh3qNJ7qj4eMNiPzrtjj0KuzG/wl88XtNoTnFz 7JQUCyonBvOWEJSuKiXu2TktWfNGp29MBSXsYzVusueyyqPtJ/G+vF5ws3CL9sU= -----END CERTIFICATE-----Generated at Sun Jun 29 06:02:53 2025 by rpki-client