$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa File: 03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa (raw, json) Hash identifier: xcIceX7LdU5ISxZaWhUQtY6Qk8fLnCdr8LkbZfw3+XA= Subject key identifier: 74:3A:F7:14:B0:04:5F:96:57:B4:CE:B1:01:93:5A:7B:25:99:0F:0F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 71236B3CA3721A9B20CF83C8037E902B6248E507 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa Signing time: Sat 31 May 2025 00:31:27 +0000 ROA not before: Sat 31 May 2025 00:31:27 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:23:6b:3c:a3:72:1a:9b:20:cf:83:c8:03:7e:90:2b:62:48:e5:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 31 00:31:27 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=1e8ded1b7543500f7f662fe93a9d7e1d3dbf4b0f5d3a6b96add6a8ae33162477, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:41:8a:76:91:07:f7:06:0e:5d:b9:da:8c:15: 3a:c6:39:75:03:02:52:59:14:46:71:f5:83:da:cb: fd:f3:96:b7:a5:65:11:95:02:53:cb:dc:5a:3b:45: 41:fb:c4:9d:d6:07:81:d5:b8:c4:e5:a4:52:d7:75: 57:46:8b:b4:96:1a:cc:f1:dd:44:05:d8:48:ad:8d: a4:61:17:c1:4e:be:3c:da:4a:68:3e:55:f1:2a:1d: 0b:20:e2:f8:ea:ad:42:73:d1:f3:90:7d:00:5a:78: 88:f4:50:c4:6e:93:b5:cc:41:74:43:a1:4a:88:7f: 82:c9:c0:e2:1e:e9:19:c6:11:36:20:61:4b:fa:78: 0e:cb:03:80:b5:d6:28:fa:71:01:00:04:19:3c:86: 4e:5e:a0:b1:80:0e:2a:05:04:fc:15:d2:96:c2:15: 49:ef:91:ff:1f:96:8d:91:2e:20:ad:68:83:92:8c: 41:a0:0a:61:68:ee:0f:fc:dc:1a:4d:53:7d:d9:82: d2:55:af:68:e2:2c:58:26:b9:8a:bb:55:6e:09:9e: 37:85:1c:2b:3e:20:ea:8a:c8:ed:bc:bb:2e:db:5c: 70:6c:87:4e:a1:a1:20:2f:ac:8a:94:4c:d5:86:07: 2b:81:8d:9c:86:f7:06:6f:2b:16:ef:00:48:74:30: ad:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:3A:F7:14:B0:04:5F:96:57:B4:CE:B1:01:93:5A:7B:25:99:0F:0F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0d::/48 Signature Algorithm: sha256WithRSAEncryption 54:63:f7:84:35:ea:85:1c:a2:13:1e:13:f2:0e:f4:35:57:27: b9:44:ed:da:e7:b9:17:48:ee:7e:66:73:d6:cd:36:63:71:36: 46:95:d1:1a:dd:71:3e:b6:32:a2:ea:11:61:ce:7c:1b:f1:4b: 62:d1:34:4d:e2:9f:8a:68:91:4f:a6:cc:44:a4:74:26:8b:54: ac:81:a1:0d:48:16:f3:3e:0b:a8:f0:c1:ac:d1:f1:51:89:96: 39:b3:69:0a:fb:91:b3:d1:ac:a9:27:f0:c4:f6:5d:4f:1c:50: d9:d3:0e:0f:8e:1b:67:16:27:c7:48:61:fb:7a:fe:cf:01:37: 20:ac:30:74:e7:15:da:67:95:d3:74:18:8e:e6:ee:75:20:6c: a6:3f:46:d2:24:02:fe:fa:40:3f:5f:78:9d:3d:72:65:50:96: 34:d5:32:72:5c:68:70:54:77:d9:a1:d5:e0:ae:73:a2:5d:61: 67:a4:1b:98:b4:ce:d4:ed:9c:d3:14:c1:f8:b5:99:88:d4:b6: 06:7c:1e:d8:0b:c8:c7:a3:29:20:fc:b4:79:6b:ed:7d:7e:32: 6f:4f:85:84:8c:84:91:37:0e:16:a4:9c:f2:66:5f:8b:a8:7f: 3f:58:e1:c5:f1:e3:65:0b:58:bc:54:82:53:ab:41:ec:c6:89: e7:4b:e3:23 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcSNrPKNyGpsgz4PIA36QK2JI5QcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTMxMDAzMTI3WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZThkZWQxYjc1NDM1MDBmN2Y2NjJmZTkzYTlkN2UxZDNk YmY0YjBmNWQzYTZiOTZhZGQ2YThhZTMzMTYyNDc3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpQYp2kQf3Bg5dudqMFTrGOXUDAlJZFEZx9YPay/3zlrel ZRGVAlPL3Fo7RUH7xJ3WB4HVuMTlpFLXdVdGi7SWGszx3UQF2EitjaRhF8FOvjza Smg+VfEqHQsg4vjqrUJz0fOQfQBaeIj0UMRuk7XMQXRDoUqIf4LJwOIe6RnGETYg YUv6eA7LA4C11ij6cQEABBk8hk5eoLGADioFBPwV0pbCFUnvkf8flo2RLiCtaIOS jEGgCmFo7g/83BpNU33ZgtJVr2jiLFgmuYq7VW4JnjeFHCs+IOqKyO28uy7bXHBs h06hoSAvrIqUTNWGByuBjZyG9wZvKxbvAEh0MK0nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdDr3FLAEX5ZXtM6xAZNaeyWZDw8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAzZjVhOWQ2LWRkOTctNDdiNC04MDhkLTQ1MzZhZWE3YzAzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA0wDQYJKoZIhvcNAQELBQADggEBAFRj94Q16oUcohMeE/IO9DVX J7lE7drnuRdI7n5mc9bNNmNxNkaV0RrdcT62MqLqEWHOfBvxS2LRNE3in4pokU+m zESkdCaLVKyBoQ1IFvM+C6jwwazR8VGJljmzaQr7kbPRrKkn8MT2XU8cUNnTDg+O G2cWJ8dIYft6/s8BNyCsMHTnFdpnldN0GI7m7nUgbKY/RtIkAv76QD9feJ09cmVQ ljTVMnJcaHBUd9mh1eCuc6JdYWekG5i0ztTtnNMUwfi1mYjUtgZ8HtgLyMejKSD8 tHlr7X1+Mm9PhYSMhJE3DhaknPJmX4uofz9Y4cXx42ULWLxUglOrQezGiedL4yM= -----END CERTIFICATE-----Generated at Sat Jun 14 06:06:27 2025 by rpki-client