$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/7e5e4204-8bcf-499a-999a-8f190e991cc4.roa File: 7e5e4204-8bcf-499a-999a-8f190e991cc4.roa (raw, json) Hash identifier: ycJI710rCAp6IqBWejFhP46GUAdiETWkPWkcXWU+KaU= Subject key identifier: 54:88:CC:04:6A:57:4F:AA:0A:10:0B:C7:E9:47:1A:05:CB:7E:DB:83 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 19A4A7827C07D44201559DBFB1C4536DF10B814C Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/7e5e4204-8bcf-499a-999a-8f190e991cc4.roa Signing time: Tue 01 Jul 2025 00:20:18 +0000 ROA not before: Tue 01 Jul 2025 00:20:18 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 62785 IP address blocks: 2605:b140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a4:a7:82:7c:07:d4:42:01:55:9d:bf:b1:c4:53:6d:f1:0b:81:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Jul 1 00:20:18 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=7997f363aef30a7e1b92fc9d359940df47fba7f0964882fda9190ac3e47288ba, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6d:18:fa:56:15:0e:fb:cf:3a:ff:aa:1c:f2: 0f:c5:6e:78:84:d0:ff:e9:02:f6:53:73:62:16:3a: 22:0a:62:29:47:a6:1e:ea:9e:5f:32:ad:47:41:9b: 88:23:d4:9d:8f:37:8b:52:e5:01:07:d1:dc:e8:2e: d8:58:8a:10:07:ad:c2:cc:64:16:37:e0:83:fe:a5: e4:4f:7c:20:16:ef:c6:3e:05:1b:a3:d8:bb:d2:4b: 1a:02:9e:b5:84:57:ec:d0:ce:67:f3:35:1f:9f:51: fe:8a:19:70:49:3a:f2:82:61:3e:ab:56:80:1e:eb: 8a:7d:92:fd:d2:cb:aa:50:81:0d:a0:02:f5:40:cf: e9:f2:d7:40:5b:db:ff:4b:3f:db:df:d2:6a:c2:1f: ed:75:53:7d:70:f9:6f:68:26:14:27:69:95:f4:fe: 68:2b:c0:d5:ac:6b:13:b7:be:7f:b0:ae:84:04:fe: 90:9c:ed:77:5f:b0:f2:a7:a8:f7:fa:da:27:2d:2a: 3a:84:18:47:a5:81:f7:86:fa:09:0e:1b:7d:8e:e1: bf:d6:7b:20:0d:ed:d0:69:ce:49:27:38:9d:25:9f: 8b:7f:42:84:61:ec:e0:8f:6d:b3:f1:ff:53:cb:de: 12:17:72:98:84:ca:9b:28:35:91:03:e2:25:c5:33: 1d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:88:CC:04:6A:57:4F:AA:0A:10:0B:C7:E9:47:1A:05:CB:7E:DB:83 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/7e5e4204-8bcf-499a-999a-8f190e991cc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b140::/32 Signature Algorithm: sha256WithRSAEncryption 7e:c0:46:12:ce:cf:b4:42:08:38:f8:8d:81:33:ec:f1:69:62: 89:8a:d1:46:3b:79:4d:1d:29:0a:aa:03:e1:de:5c:97:6f:ad: fb:94:47:d8:37:01:a0:7d:0f:ea:bc:5e:26:5f:50:4a:10:8c: a2:b7:a9:45:19:3f:f2:34:d6:b0:8b:ea:ce:43:21:cf:6b:03: 55:5d:67:3d:d2:93:d6:c5:47:52:9f:db:de:3b:ba:1a:d0:42: 23:21:20:ea:8e:76:5a:87:16:70:01:5d:d8:4b:f6:a6:60:83: 73:83:07:76:39:1e:3a:61:38:75:70:c5:f5:c7:83:ac:11:c7: 31:86:c6:53:37:2e:f2:aa:32:e5:e2:0c:48:9c:a3:88:a3:94: 0d:b2:32:26:53:39:9f:54:ab:f8:71:b1:a4:c4:1f:5c:24:14: 18:0b:5a:e0:0d:18:b3:f5:fd:ca:77:40:4f:c1:63:03:26:df: fa:4b:b1:52:17:78:6b:c2:97:f5:93:ee:c4:92:72:11:5a:4a: 10:e9:94:dc:5b:c2:e1:7e:58:62:3b:6b:10:88:de:da:be:4c: 10:1f:63:c7:f7:b8:24:9c:e0:f7:71:b9:62:59:b9:02:19:e3: ab:66:b2:97:ca:ff:c6:43:64:2a:18:6c:98:d4:ce:a1:b7:68: 1e:54:0e:84 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUGaSngnwH1EIBVZ2/scRTbfELgUwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwNzAxMDAyMDE4WhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTk3ZjM2M2FlZjMwYTdlMWI5MmZjOWQzNTk5NDBkZjQ3 ZmJhN2YwOTY0ODgyZmRhOTE5MGFjM2U0NzI4OGJhMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWbRj6VhUO+886/6oc8g/FbniE0P/pAvZTc2IWOiIKYilH ph7qnl8yrUdBm4gj1J2PN4tS5QEH0dzoLthYihAHrcLMZBY34IP+peRPfCAW78Y+ BRuj2LvSSxoCnrWEV+zQzmfzNR+fUf6KGXBJOvKCYT6rVoAe64p9kv3Sy6pQgQ2g AvVAz+ny10Bb2/9LP9vf0mrCH+11U31w+W9oJhQnaZX0/mgrwNWsaxO3vn+wroQE /pCc7XdfsPKnqPf62ictKjqEGEelgfeG+gkOG32O4b/WeyAN7dBpzkknOJ0ln4t/ QoRh7OCPbbPx/1PL3hIXcpiEypsoNZED4iXFMx05AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUVIjMBGpXT6oKEAvH6UcaBct+24MwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzdlNWU0MjA0LThiY2YtNDk5YS05OTlhLThmMTkwZTk5MWNjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBbFAMA0GCSqGSIb3DQEBCwUAA4IBAQB+wEYSzs+0Qgg4+I2BM+zxaWKJ itFGO3lNHSkKqgPh3lyXb637lEfYNwGgfQ/qvF4mX1BKEIyit6lFGT/yNNawi+rO QyHPawNVXWc90pPWxUdSn9veO7oa0EIjISDqjnZahxZwAV3YS/amYINzgwd2OR46 YTh1cMX1x4OsEccxhsZTNy7yqjLl4gxInKOIo5QNsjImUzmfVKv4cbGkxB9cJBQY C1rgDRiz9f3Kd0BPwWMDJt/6S7FSF3hrwpf1k+7EknIRWkoQ6ZTcW8LhflhiO2sQ iN7avkwQH2PH97gknOD3cbliWbkCGeOrZrKXyv/GQ2QqGGyY1M6ht2geVA6E -----END CERTIFICATE-----Generated at Tue Jul 1 05:51:45 2025 by rpki-client