$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f0f08d8e-64f4-4e2b-8f33-26427783e662.roa File: f0f08d8e-64f4-4e2b-8f33-26427783e662.roa (raw, json) Hash identifier: xeO2JsHX+yGxv4P3HPLOkrwIChLh8DgTpAl1gWihdxE= Subject key identifier: DA:43:61:AB:AB:3B:98:7C:83:23:1F:BC:AF:5F:A7:FF:16:88:39:2B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2849F16E695DC26D0A95CB6A393DFFC6E4FE0504 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f0f08d8e-64f4-4e2b-8f33-26427783e662.roa Signing time: Tue 17 Jun 2025 00:30:24 +0000 ROA not before: Tue 17 Jun 2025 00:30:24 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:54a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:49:f1:6e:69:5d:c2:6d:0a:95:cb:6a:39:3d:ff:c6:e4:fe:05:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 17 00:30:24 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=8efaa56059c93ba152918ed88b3a8e4721aca87e9eb5baf4718db92ecc5a3f60, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:b3:c9:84:f9:5d:e4:3f:a9:f7:8a:f4:20:04: 93:e9:1c:e9:12:53:4a:4a:37:28:54:b1:7e:69:b0: 50:4a:0f:56:59:af:bf:20:4b:11:a3:ea:eb:37:14: 89:de:60:47:40:72:d1:17:ea:f1:fe:48:bc:38:61: 2d:6a:7a:4a:ec:ac:15:8d:56:6c:0d:39:f7:0d:f6: 42:70:b6:77:e8:86:39:a2:12:43:93:3b:ec:39:f4: f2:57:68:0d:16:b3:7a:0f:39:d6:e5:50:d1:41:7a: 2c:88:86:92:3f:6c:bf:bf:bd:8a:59:cb:3d:a6:f8: 43:b7:1b:56:4c:91:c7:ba:ff:25:e7:79:16:40:ce: dc:b2:58:3c:95:8c:67:91:b3:b9:f1:2c:c5:8e:37: 45:a6:66:60:b8:a2:33:31:e2:0f:ad:fe:42:15:ad: db:10:f3:c5:f1:8b:5a:6e:41:24:58:3d:5f:30:9c: b9:77:d1:40:2b:d7:25:df:d6:08:78:2c:08:a6:c0: ae:c0:00:d5:1d:bd:a5:20:e3:58:d0:f1:85:5e:5d: f8:b6:7a:e2:f0:5c:52:e8:70:f4:c4:64:5d:b2:ad: 8e:73:0a:c7:39:cc:be:47:ea:8a:68:70:77:32:9b: de:2c:ef:be:1c:1b:55:0a:0a:da:68:bf:b5:78:0a: eb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:43:61:AB:AB:3B:98:7C:83:23:1F:BC:AF:5F:A7:FF:16:88:39:2B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f0f08d8e-64f4-4e2b-8f33-26427783e662.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:54a::/48 Signature Algorithm: sha256WithRSAEncryption a3:ac:e2:59:31:2d:8f:60:0f:cb:a7:6d:69:87:fe:32:ea:5c: 18:4b:48:63:69:87:4e:e3:0f:0e:1f:05:d2:b1:e7:5b:35:b3: 95:bc:ee:01:ca:f3:ee:dc:dc:26:63:b4:6b:f4:31:43:20:ac: 2a:25:58:a2:18:5a:be:9d:bf:d8:e5:ad:c6:08:0c:f4:53:bd: ee:5a:ea:ab:15:ca:29:be:f9:34:39:4c:31:56:35:ed:d5:17: 6c:8d:eb:9c:16:c6:78:49:5a:87:15:db:cf:55:33:cf:93:12: 87:cd:3d:cd:a8:22:ca:98:d3:e1:7c:ff:f9:6d:e5:62:7c:fc: 05:4b:7f:8f:bc:18:e4:e0:5e:7a:53:9c:7d:51:ca:e5:0d:d5: 0b:94:bd:bb:55:7c:77:3a:0f:ac:a1:25:12:eb:3b:f9:62:62: b0:d9:b8:71:73:7c:a4:f1:b0:b4:e5:e8:8c:57:b6:15:a8:2b: 7e:c2:87:35:a4:e8:82:d6:6a:9c:58:d4:db:c8:8d:f7:4b:64: 13:b3:c5:0a:b5:39:c1:53:6d:d2:f6:f8:62:fe:e6:c9:3a:dc: e9:d6:97:15:3a:90:06:93:c0:48:bf:4c:94:a0:6d:2d:63:57: 5f:dd:a1:6c:cf:1e:cc:b5:59:07:84:fc:81:0d:6d:7d:82:30: 77:02:a0:42 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKEnxbmldwm0KlctqOT3/xuT+BQQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE3MDAzMDI0WhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWZhYTU2MDU5YzkzYmExNTI5MThlZDg4YjNhOGU0NzIx YWNhODdlOWViNWJhZjQ3MThkYjkyZWNjNWEzZjYwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJs8mE+V3kP6n3ivQgBJPpHOkSU0pKNyhUsX5psFBKD1ZZ r78gSxGj6us3FIneYEdActEX6vH+SLw4YS1qekrsrBWNVmwNOfcN9kJwtnfohjmi EkOTO+w59PJXaA0Ws3oPOdblUNFBeiyIhpI/bL+/vYpZyz2m+EO3G1ZMkce6/yXn eRZAztyyWDyVjGeRs7nxLMWON0WmZmC4ojMx4g+t/kIVrdsQ88Xxi1puQSRYPV8w nLl30UAr1yXf1gh4LAimwK7AANUdvaUg41jQ8YVeXfi2euLwXFLocPTEZF2yrY5z Csc5zL5H6opocHcym94s774cG1UKCtpov7V4CusvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2kNhq6s7mHyDIx+8r1+n/xaIOSswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2YwZjA4ZDhlLTY0ZjQtNGUyYi04ZjMzLTI2NDI3NzgzZTY2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUowDQYJKoZIhvcNAQELBQADggEBAKOs4lkxLY9gD8unbWmH/jLq XBhLSGNph07jDw4fBdKx51s1s5W87gHK8+7c3CZjtGv0MUMgrColWKIYWr6dv9jl rcYIDPRTve5a6qsVyim++TQ5TDFWNe3VF2yN65wWxnhJWocV289VM8+TEofNPc2o IsqY0+F8//lt5WJ8/AVLf4+8GOTgXnpTnH1RyuUN1QuUvbtVfHc6D6yhJRLrO/li YrDZuHFzfKTxsLTl6IxXthWoK37ChzWk6ILWapxY1NvIjfdLZBOzxQq1OcFTbdL2 +GL+5sk63OnWlxU6kAaTwEi/TJSgbS1jV1/doWzPHsy1WQeE/IENbX2CMHcCoEI= -----END CERTIFICATE-----Generated at Sun Jun 29 04:32:57 2025 by rpki-client