$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa File: c91e5573-a757-4c6b-9000-0403e0e4fa00.roa (raw, json) Hash identifier: AlEtGpy3IKPVuUbSC0x2r4kcINjAes0jp8nUDjg13VA= Subject key identifier: 03:4D:82:97:9A:DE:94:C1:50:2C:7A:8A:0F:52:72:14:6C:C2:0C:E9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1D833074B5F38B54FAE884E67E5AE141C7618B69 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa Signing time: Mon 16 Jun 2025 19:01:25 +0000 ROA not before: Mon 16 Jun 2025 19:01:25 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:544::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:83:30:74:b5:f3:8b:54:fa:e8:84:e6:7e:5a:e1:41:c7:61:8b:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 16 19:01:25 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=c7c05e6d2460d0bfee4f251e03cc1079d2e89d1bad7f9ccf8c48dc31f4baf1c3, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:26:27:71:3b:57:7b:27:ed:ee:4f:13:b3:21: 95:4a:ae:00:b1:c6:eb:b7:c3:ed:a3:5a:28:6e:e3: fa:ad:82:11:38:94:cf:2f:db:6c:38:41:be:1d:0c: ee:6f:00:09:d5:f0:94:26:e2:b3:8e:48:ee:b5:f7: c5:59:6f:8d:2f:fc:2e:40:8b:60:6c:47:58:1c:2c: e2:b5:66:58:02:55:d3:9b:b3:40:2d:b6:88:17:53: 04:8b:ca:5b:be:ba:51:0d:69:8e:8c:08:6a:1d:bf: 40:b0:50:50:0c:10:96:b4:a2:37:a8:a4:60:65:aa: 78:a0:4c:3f:bf:60:cc:c3:db:43:28:07:6b:42:4e: 26:e8:b9:d7:09:1b:fd:18:c5:07:7b:13:9c:8e:03: df:83:88:13:d4:08:cf:ae:49:1c:aa:83:d1:61:bd: 0b:2e:72:62:91:af:75:4f:07:dc:b5:17:09:dd:c6: d5:e5:23:f1:05:81:05:b1:58:1e:94:be:2b:6e:b9: 6d:13:db:91:ab:45:c9:02:98:a3:fb:77:ae:91:6a: b3:d8:58:b3:06:cc:85:22:0e:de:d6:cf:4d:90:c5: b5:81:9b:15:e3:2b:77:fc:3e:32:25:5a:95:7f:6f: c5:2b:2a:89:bc:9c:9f:e9:7f:f1:30:82:16:82:58: 16:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4D:82:97:9A:DE:94:C1:50:2C:7A:8A:0F:52:72:14:6C:C2:0C:E9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c91e5573-a757-4c6b-9000-0403e0e4fa00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:544::/48 Signature Algorithm: sha256WithRSAEncryption 77:34:3d:6d:50:0d:c8:7e:65:b5:ac:df:e8:dc:46:ce:0d:6d: bb:8c:19:f5:6e:b8:a8:ef:81:3a:5f:3d:1f:80:4b:3f:3d:3e: d2:00:77:41:8a:20:71:5e:21:cb:16:29:7f:c1:93:4b:0a:dd: ed:55:28:71:15:93:0d:30:fd:78:87:53:d0:3e:9c:9a:03:72: b3:c8:d6:df:81:62:50:a1:61:8d:53:fe:b0:ac:4d:75:a6:0d: 2c:9e:f3:47:70:e3:ec:db:c3:e8:7b:6f:61:e6:59:51:11:4b: f2:3e:d4:8a:cf:5a:f8:4d:c5:d3:56:53:44:de:e5:b0:91:02: 9a:a3:d1:f8:89:3e:34:74:34:67:c6:d8:1c:c1:88:94:8e:01: 22:ce:d1:6e:69:8d:eb:5b:a0:70:c5:37:cf:48:b8:42:52:3f: 54:a3:35:03:fe:94:b9:96:9f:9f:68:74:0c:ed:1c:6d:3d:51: d4:90:94:60:58:4a:ea:c1:81:91:69:71:b7:3b:8e:8e:cc:87: 8d:39:0f:48:57:bf:28:fd:9b:8a:6b:5a:a1:46:26:44:ff:e1: 44:26:92:7b:c7:d7:62:b2:16:2e:ec:54:7b:2b:62:94:dc:22: f1:f5:9e:d5:7a:21:6f:8b:cd:40:ac:a9:20:20:09:e2:c2:17: 97:d4:2c:e1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHYMwdLXzi1T66ITmflrhQcdhi2kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE2MTkwMTI1WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2MwNWU2ZDI0NjBkMGJmZWU0ZjI1MWUwM2NjMTA3OWQy ZTg5ZDFiYWQ3ZjljY2Y4YzQ4ZGMzMWY0YmFmMWMzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiJidxO1d7J+3uTxOzIZVKrgCxxuu3w+2jWihu4/qtghE4 lM8v22w4Qb4dDO5vAAnV8JQm4rOOSO6198VZb40v/C5Ai2BsR1gcLOK1ZlgCVdOb s0AttogXUwSLylu+ulENaY6MCGodv0CwUFAMEJa0ojeopGBlqnigTD+/YMzD20Mo B2tCTiboudcJG/0YxQd7E5yOA9+DiBPUCM+uSRyqg9FhvQsucmKRr3VPB9y1Fwnd xtXlI/EFgQWxWB6UvituuW0T25GrRckCmKP7d66RarPYWLMGzIUiDt7Wz02QxbWB mxXjK3f8PjIlWpV/b8UrKom8nJ/pf/EwghaCWBYPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUA02Cl5relMFQLHqKD1JyFGzCDOkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M5MWU1NTczLWE3NTctNGM2Yi05MDAwLTA0MDNlMGU0ZmEwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUQwDQYJKoZIhvcNAQELBQADggEBAHc0PW1QDch+ZbWs3+jcRs4N bbuMGfVuuKjvgTpfPR+ASz89PtIAd0GKIHFeIcsWKX/Bk0sK3e1VKHEVkw0w/XiH U9A+nJoDcrPI1t+BYlChYY1T/rCsTXWmDSye80dw4+zbw+h7b2HmWVERS/I+1IrP WvhNxdNWU0Te5bCRApqj0fiJPjR0NGfG2BzBiJSOASLO0W5pjetboHDFN89IuEJS P1SjNQP+lLmWn59odAztHG09UdSQlGBYSurBgZFpcbc7jo7Mh405D0hXvyj9m4pr WqFGJkT/4UQmknvH12KyFi7sVHsrYpTcIvH1ntV6IW+LzUCsqSAgCeLCF5fULOE= -----END CERTIFICATE-----Generated at Sun Jun 29 16:09:56 2025 by rpki-client