$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa File: fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa (raw, json) Hash identifier: 095gW7VoXZgR+qi14aREjdJp30BmiExTmpTMBUuDn/s= Subject key identifier: 95:3B:D2:EF:57:A1:6B:67:E3:4F:2E:AE:E1:0D:AA:05:71:AF:D8:CB Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 44AC5050A8CB0C393571F178A8E996FEAA9F1A37 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa Signing time: Wed 25 Jun 2025 00:30:19 +0000 ROA not before: Wed 25 Jun 2025 00:30:19 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c04::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ac:50:50:a8:cb:0c:39:35:71:f1:78:a8:e9:96:fe:aa:9f:1a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 25 00:30:19 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=81607dff66d7044387136294fe23205f43c31276e479f6b669ce27cd3265ec55, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:04:d4:02:6e:36:2e:d0:f7:d2:e2:a6:2c:26: cd:63:c2:49:44:1d:4a:e7:8f:24:40:4b:2c:04:9d: 2b:3d:31:27:f4:4f:60:2c:16:4d:07:1b:5d:bf:6f: 74:de:50:2f:2a:66:33:b4:bf:a8:f7:7e:c9:c6:99: 0b:6b:16:6f:20:66:cf:14:00:98:d5:54:51:53:a0: 5d:4d:a3:0a:d1:08:48:8c:46:84:af:1d:d7:9f:b5: 8f:51:04:3e:d5:61:ac:8c:0d:f1:9e:00:82:f9:53: ef:c2:68:09:74:b3:f5:a5:cb:61:55:11:07:64:e6: 2c:c7:f8:d0:31:24:7b:d0:fc:d9:bc:17:54:79:09: 90:f5:83:2e:0f:7d:bb:8e:ad:65:50:42:ff:89:36: 5b:40:82:4c:ba:e5:04:1a:97:5b:66:cf:3b:e3:b8: b5:8d:21:0c:ca:25:e6:ee:ad:01:9b:88:99:8b:ee: 17:43:5c:8b:25:a7:48:fb:9d:1f:b9:df:0a:01:97: 47:6b:01:79:7f:4a:0e:d2:71:0f:4d:5a:a6:38:21: 20:9b:33:82:d6:db:49:40:f8:dc:34:7a:48:92:ae: cf:fc:5e:13:e5:23:f6:aa:14:61:01:c3:78:b7:3f: 70:f9:13:df:f6:88:26:e5:f7:4a:29:a4:83:ab:63: e1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3B:D2:EF:57:A1:6B:67:E3:4F:2E:AE:E1:0D:AA:05:71:AF:D8:CB X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c04::/48 Signature Algorithm: sha256WithRSAEncryption 9b:1d:44:40:88:35:2e:97:f2:a3:c3:0b:bb:26:3b:b6:90:07: 75:51:a4:df:0c:33:7f:46:52:57:5c:08:e4:a2:f4:d7:9f:9b: 39:8d:27:6d:73:9f:3e:3e:24:9d:90:53:21:97:b5:af:9d:f1: 4b:40:00:d8:96:c4:b1:6c:2d:c2:29:f7:1b:e6:b1:34:cb:c0: 8e:da:97:32:f5:fd:0a:28:3a:e7:ed:c0:54:c2:52:f5:bb:91: f7:e1:f9:14:9d:82:68:e2:5e:a6:05:aa:91:3f:b4:90:8f:87: 5b:68:7e:e5:5e:99:7e:09:03:56:4a:66:af:17:bb:13:ae:9d: 43:76:99:c5:82:4a:f3:dd:37:bc:a4:12:32:7e:a9:09:54:84: 46:ac:61:55:a4:6c:40:74:b0:b6:18:45:c5:1a:d2:93:d5:7a: 82:58:a2:a2:5b:60:a2:ab:c0:da:5b:e4:84:55:71:90:37:d5: 85:c9:70:cf:10:13:e0:9a:7b:4f:36:a1:35:ea:e2:22:8e:d8: 1e:f2:34:83:6e:bc:a6:b6:ef:24:18:0e:90:90:fa:91:00:a7: 83:a1:f4:8f:9c:ec:71:ef:fd:f1:ab:e1:a5:46:a9:a4:63:51: cb:3b:e3:8d:d1:5f:0f:93:42:cd:b2:cc:54:70:af:21:b0:88: bf:ea:c0:58 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURKxQUKjLDDk1cfF4qOmW/qqfGjcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjI1MDAzMDE5WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTYwN2RmZjY2ZDcwNDQzODcxMzYyOTRmZTIzMjA1ZjQz YzMxMjc2ZTQ3OWY2YjY2OWNlMjdjZDMyNjVlYzU1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZBNQCbjYu0PfS4qYsJs1jwklEHUrnjyRASywEnSs9MSf0 T2AsFk0HG12/b3TeUC8qZjO0v6j3fsnGmQtrFm8gZs8UAJjVVFFToF1NowrRCEiM RoSvHdeftY9RBD7VYayMDfGeAIL5U+/CaAl0s/Wly2FVEQdk5izH+NAxJHvQ/Nm8 F1R5CZD1gy4PfbuOrWVQQv+JNltAgky65QQal1tmzzvjuLWNIQzKJeburQGbiJmL 7hdDXIslp0j7nR+53woBl0drAXl/Sg7ScQ9NWqY4ISCbM4LW20lA+Nw0ekiSrs/8 XhPlI/aqFGEBw3i3P3D5E9/2iCbl90oppIOrY+FVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlTvS71eha2fjTy6u4Q2qBXGv2MswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2ZkZmNlNTA1LWQyMmEtNDBiOS1hMjUzLTdiNzdiMGY5ZjFjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAQwDQYJKoZIhvcNAQELBQADggEBAJsdRECINS6X8qPDC7smO7aQ B3VRpN8MM39GUldcCOSi9NefmzmNJ21znz4+JJ2QUyGXta+d8UtAANiWxLFsLcIp 9xvmsTTLwI7alzL1/QooOuftwFTCUvW7kffh+RSdgmjiXqYFqpE/tJCPh1tofuVe mX4JA1ZKZq8XuxOunUN2mcWCSvPdN7ykEjJ+qQlUhEasYVWkbEB0sLYYRcUa0pPV eoJYoqJbYKKrwNpb5IRVcZA31YXJcM8QE+Cae082oTXq4iKO2B7yNINuvKa27yQY DpCQ+pEAp4Oh9I+c7HHv/fGr4aVGqaRjUcs7443RXw+TQs2yzFRwryGwiL/qwFg= -----END CERTIFICATE-----Generated at Sun Jun 29 03:29:08 2025 by rpki-client