$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d50b4be5-b548-4743-92e1-1e17267f722d.roa File: d50b4be5-b548-4743-92e1-1e17267f722d.roa (raw, json) Hash identifier: yoYPHAAqXxd07gl+acdOvKfng4ZviIKyfSkMFQaUUeQ= Subject key identifier: 7C:9C:3E:0E:BB:CF:55:C0:89:1B:F3:FC:81:A1:9C:0E:67:AB:B8:17 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1919B80CFE393AAC9E84B71B96A3DD8312871F17 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d50b4be5-b548-4743-92e1-1e17267f722d.roa Signing time: Mon 16 Jun 2025 19:01:36 +0000 ROA not before: Mon 16 Jun 2025 19:01:36 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:548::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:19:b8:0c:fe:39:3a:ac:9e:84:b7:1b:96:a3:dd:83:12:87:1f:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 16 19:01:36 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=bebcdffe9708cdd502d199bf6f7d9c7b979f7b7ea2cb0655924d424084b74c9e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4c:54:5a:93:14:b6:77:4c:62:fc:3a:d4:16: 0d:b1:82:1a:b5:e2:f6:ea:2b:99:36:21:ff:7e:2b: f9:2c:3d:63:22:68:46:60:e7:d9:f6:96:88:bc:5d: 67:73:0f:0f:de:18:5f:a3:97:c8:7d:44:d6:0a:d7: f7:ac:4d:2f:84:28:dc:55:6b:06:e4:50:b7:ea:82: ea:b8:52:bd:88:b5:08:ec:23:0b:2e:2c:3f:aa:04: a4:36:2c:de:be:5f:16:09:e3:a6:07:51:2b:5d:95: 47:48:0b:d6:98:b3:83:5e:eb:ec:98:3e:bc:43:0b: 70:46:46:b9:02:ca:c4:da:6b:2d:00:db:cb:46:45: e0:f2:8a:14:b9:9c:12:b5:01:cf:24:eb:af:4c:ef: 65:d2:45:47:9b:05:1d:1f:17:19:ea:9a:8e:c1:94: 13:f6:cc:5d:2a:8f:a1:94:04:02:90:6b:06:ae:e5: 56:5c:14:7f:6e:6e:63:6b:3e:ef:b4:f0:f7:2d:1b: aa:43:73:8f:f8:a9:9a:15:e6:db:aa:c3:ba:d5:86: f0:4c:5b:09:14:ce:cf:b0:13:1a:2a:49:15:31:c7: 9d:f5:80:e3:4f:57:f2:c5:91:f0:df:49:53:fa:4a: 36:22:46:50:36:af:f6:16:bf:6a:7c:4d:53:9a:86: 93:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9C:3E:0E:BB:CF:55:C0:89:1B:F3:FC:81:A1:9C:0E:67:AB:B8:17 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d50b4be5-b548-4743-92e1-1e17267f722d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:548::/48 Signature Algorithm: sha256WithRSAEncryption 9a:f5:ad:60:77:27:54:ec:8b:61:00:4e:49:b2:1a:5d:8c:73: 99:72:71:be:6b:ba:66:18:fd:6e:c6:56:82:6e:44:bc:c9:7f: 8b:0a:4d:d9:3f:00:42:7b:9a:45:7e:46:0b:21:77:a9:39:0d: 98:1a:38:d1:ac:7f:e7:31:6f:a4:06:63:98:68:f6:51:70:75: b4:ab:8f:d6:a5:af:ff:b4:04:84:cb:cc:64:83:ba:c0:36:8f: 8b:b6:cd:da:5e:44:6a:10:fa:be:8b:30:28:8c:fa:1f:06:e7: f9:46:f3:dc:cb:7f:e4:fc:57:a1:d5:35:6a:e0:ba:76:44:a3: a1:85:f6:18:9a:61:50:ab:cc:5d:37:50:44:19:92:1e:ca:cd: 9f:f1:5d:00:77:22:11:2c:98:d6:45:ca:d7:24:24:27:82:19: 4d:41:30:f1:ae:8d:34:5f:ab:c9:3d:4c:d3:3b:ed:f4:e2:70: 83:5c:e1:e7:0d:71:8a:f1:8a:01:ad:15:b7:07:f7:7e:86:8b: 63:d6:33:29:af:e4:a4:30:88:de:e5:f6:a0:0f:98:69:1d:fa: 42:33:98:8b:1f:6c:02:85:f1:db:e0:cd:2b:f7:44:65:e8:2c: 44:fb:90:13:ac:33:20:50:39:81:41:11:ac:eb:1f:79:c7:92: 73:b7:18:15 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGRm4DP45OqyehLcblqPdgxKHHxcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE2MTkwMTM2WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWJjZGZmZTk3MDhjZGQ1MDJkMTk5YmY2ZjdkOWM3Yjk3 OWY3YjdlYTJjYjA2NTU5MjRkNDI0MDg0Yjc0YzllMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzTFRakxS2d0xi/DrUFg2xghq14vbqK5k2If9+K/ksPWMi aEZg59n2loi8XWdzDw/eGF+jl8h9RNYK1/esTS+EKNxVawbkULfqguq4Ur2ItQjs IwsuLD+qBKQ2LN6+XxYJ46YHUStdlUdIC9aYs4Ne6+yYPrxDC3BGRrkCysTaay0A 28tGReDyihS5nBK1Ac8k669M72XSRUebBR0fFxnqmo7BlBP2zF0qj6GUBAKQawau 5VZcFH9ubmNrPu+08PctG6pDc4/4qZoV5tuqw7rVhvBMWwkUzs+wExoqSRUxx531 gONPV/LFkfDfSVP6SjYiRlA2r/YWv2p8TVOahpNnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfJw+DrvPVcCJG/P8gaGcDmeruBcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q1MGI0YmU1LWI1NDgtNDc0My05MmUxLTFlMTcyNjdmNzIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUgwDQYJKoZIhvcNAQELBQADggEBAJr1rWB3J1Tsi2EATkmyGl2M c5lycb5rumYY/W7GVoJuRLzJf4sKTdk/AEJ7mkV+Rgshd6k5DZgaONGsf+cxb6QG Y5ho9lFwdbSrj9alr/+0BITLzGSDusA2j4u2zdpeRGoQ+r6LMCiM+h8G5/lG89zL f+T8V6HVNWrgunZEo6GF9hiaYVCrzF03UEQZkh7KzZ/xXQB3IhEsmNZFytckJCeC GU1BMPGujTRfq8k9TNM77fTicINc4ecNcYrxigGtFbcH936Gi2PWMymv5KQwiN7l 9qAPmGkd+kIzmIsfbAKF8dvgzSv3RGXoLET7kBOsMyBQOYFBEazrH3nHknO3GBU= -----END CERTIFICATE-----Generated at Sun Jun 29 18:29:31 2025 by rpki-client