$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa File: db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa (raw, json) Hash identifier: TZjvjzXUCe2q7DTmOPLR4rlCAHv+JlO72jj5kbNOT/k= Subject key identifier: 44:48:17:83:52:23:12:54:A2:15:AA:DD:99:8D:0C:5D:61:57:5A:39 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 15BEE01CBE2D724AD99BCDB3AB66696F7DFEFC9A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa Signing time: Wed 25 Jun 2025 00:31:22 +0000 ROA not before: Wed 25 Jun 2025 00:31:22 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:be:e0:1c:be:2d:72:4a:d9:9b:cd:b3:ab:66:69:6f:7d:fe:fc:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 25 00:31:22 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=86df5de85a7d482190f7610d88feb5e61ab9c20c15344ec3d50fed07feea00fa, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:09:6b:6b:b0:8e:2e:e4:2d:6f:aa:04:b6:2f: c9:f7:b6:bd:fb:20:ec:d5:82:9b:07:74:f6:6f:c4: b3:3d:fb:fc:b5:44:49:bb:fd:3f:5d:9a:4a:f2:09: d9:63:a6:ec:be:22:da:b6:6e:e6:dc:04:5d:7a:a0: f8:d0:ad:ee:87:4e:ce:d7:2b:51:36:61:17:71:73: 30:ea:40:ee:16:a0:bb:25:c3:5b:a2:5a:59:54:a5: 92:49:d5:17:42:0e:50:28:5f:fd:c4:58:7a:0f:94: 91:71:e0:0d:79:24:1a:bc:ca:4b:5b:08:46:a2:37: 24:dc:33:ea:d1:b7:86:84:a0:b5:dc:08:e3:62:94: 0b:36:2e:f6:a5:73:2a:23:cc:80:20:a8:4d:32:da: ad:c1:46:04:c7:b9:95:cb:5b:40:92:99:f3:14:63: 92:c4:b8:16:a1:92:3b:cf:ad:0f:73:f7:44:90:54: 56:44:5e:98:21:dc:d8:2f:2c:fe:62:70:31:0e:ee: 95:a0:b8:0d:79:9e:43:ad:73:97:4e:b0:a4:61:db: 89:d0:92:51:78:0f:0b:dc:79:3a:3e:63:9e:99:06: 0c:2b:97:e1:63:17:84:af:24:d6:6b:0a:ca:eb:8b: 58:d9:dc:e6:37:95:67:e5:99:6a:ef:a6:dc:4d:14: 88:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:48:17:83:52:23:12:54:A2:15:AA:DD:99:8D:0C:5D:61:57:5A:39 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c14::/48 Signature Algorithm: sha256WithRSAEncryption 80:be:31:ed:ee:bb:94:c1:74:7d:1b:f3:0f:9e:ac:e5:e3:3a: 6b:12:47:58:33:ca:d1:32:f5:a5:22:d5:16:03:b9:cf:82:ec: 84:ea:0d:ba:bb:9d:6e:ac:f8:ec:7e:04:60:37:81:e1:ba:db: e9:1e:ff:6c:ef:9f:b1:9d:f8:40:35:d6:bb:0e:65:c9:82:08: fa:dc:d9:e7:3f:75:29:4d:0d:47:62:05:54:d2:30:45:80:fc: f0:86:40:25:ef:1b:97:c5:b0:73:df:af:db:2e:93:bc:a7:41: f0:c3:02:49:4e:af:e5:aa:39:5c:3a:80:da:69:2c:b4:7e:f8: cb:ea:6a:81:cb:b9:b1:19:15:7d:cb:58:9f:56:5c:05:06:d3: 1e:b5:6a:46:9d:49:cd:02:91:da:1e:bd:9f:61:12:3c:b7:ad: 0c:05:ac:6e:76:a0:11:4f:ce:91:f4:66:6a:5f:01:e1:b6:df: b9:29:54:84:e7:af:e4:92:1b:30:ab:6b:67:67:4c:b2:26:4b: c8:ff:cb:f7:26:61:7c:83:84:4c:24:55:49:33:6b:64:d0:dc: b4:bd:0b:8d:0d:79:8b:da:6c:30:a1:5a:20:24:c4:81:06:03: 8d:a8:cf:3e:f3:64:de:e9:51:ab:0a:66:ff:4d:17:76:25:0b: 98:01:89:04 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFb7gHL4tckrZm82zq2Zpb33+/JowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjI1MDAzMTIyWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmRmNWRlODVhN2Q0ODIxOTBmNzYxMGQ4OGZlYjVlNjFh YjljMjBjMTUzNDRlYzNkNTBmZWQwN2ZlZWEwMGZhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYCWtrsI4u5C1vqgS2L8n3tr37IOzVgpsHdPZvxLM9+/y1 REm7/T9dmkryCdljpuy+Itq2bubcBF16oPjQre6HTs7XK1E2YRdxczDqQO4WoLsl w1uiWllUpZJJ1RdCDlAoX/3EWHoPlJFx4A15JBq8yktbCEaiNyTcM+rRt4aEoLXc CONilAs2LvalcyojzIAgqE0y2q3BRgTHuZXLW0CSmfMUY5LEuBahkjvPrQ9z90SQ VFZEXpgh3NgvLP5icDEO7pWguA15nkOtc5dOsKRh24nQklF4DwvceTo+Y56ZBgwr l+FjF4SvJNZrCsrri1jZ3OY3lWflmWrvptxNFIhLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUREgXg1IjElSiFardmY0MXWFXWjkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RiM2JiZmU4LTI3MTgtNDVlMS1hM2E1LWFmYmY1NzJkMDBjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBQwDQYJKoZIhvcNAQELBQADggEBAIC+Me3uu5TBdH0b8w+erOXj OmsSR1gzytEy9aUi1RYDuc+C7ITqDbq7nW6s+Ox+BGA3geG62+ke/2zvn7Gd+EA1 1rsOZcmCCPrc2ec/dSlNDUdiBVTSMEWA/PCGQCXvG5fFsHPfr9suk7ynQfDDAklO r+WqOVw6gNppLLR++MvqaoHLubEZFX3LWJ9WXAUG0x61akadSc0CkdoevZ9hEjy3 rQwFrG52oBFPzpH0ZmpfAeG237kpVITnr+SSGzCra2dnTLImS8j/y/cmYXyDhEwk VUkza2TQ3LS9C40NeYvabDChWiAkxIEGA42ozz7zZN7pUasKZv9NF3YlC5gBiQQ= -----END CERTIFICATE-----Generated at Sun Jun 29 15:52:57 2025 by rpki-client