$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/088d5754-cda4-4d89-86f5-f70a4d75e7fc.roa File: 088d5754-cda4-4d89-86f5-f70a4d75e7fc.roa (raw, json) Hash identifier: BQDNpZVGX+URQVZYOm3I6y4GI9avDMttad6LNc078jQ= Subject key identifier: E0:83:3E:2A:4B:40:CA:1B:C8:69:E8:22:19:7B:28:55:79:D2:9F:45 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 709E59BEED8811A18D90D79DB16918B0E7385DFF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/088d5754-cda4-4d89-86f5-f70a4d75e7fc.roa Signing time: Sat 31 May 2025 00:20:45 +0000 ROA not before: Sat 31 May 2025 00:20:45 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:64c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:9e:59:be:ed:88:11:a1:8d:90:d7:9d:b1:69:18:b0:e7:38:5d:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 31 00:20:45 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=7ecb6d97efc32cc96fbb1cd5599ac6c631f93f619655bda7586254dcc306c3d6, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5d:02:d7:24:e9:90:b0:3b:61:90:90:92:5c: 0c:c1:09:b7:8a:bd:7c:be:6a:9e:88:cc:0c:5b:83: 35:34:6c:75:f9:98:39:39:eb:4d:a1:5e:f7:a8:4d: 4b:24:f4:f8:00:5b:e3:1b:85:04:20:f5:0b:80:a1: 0f:ce:3c:86:c2:d5:f9:a3:3f:cc:d9:5c:02:32:51: 79:75:c6:2d:b5:38:db:64:23:c4:86:0b:9d:ee:ad: fb:c8:76:4c:e2:72:0c:07:71:54:fd:c6:5f:da:2c: 9e:2d:f8:78:84:dd:f4:44:a8:37:e1:7f:3c:99:92: e8:1a:ee:0d:29:e8:f5:e5:2d:8b:06:f6:dc:e2:72: 3c:41:bf:bf:bd:78:16:6b:09:c5:e7:2d:c8:f8:f4: b0:95:9b:7c:d8:49:5c:f9:91:76:b4:fd:d1:aa:1c: d5:06:99:3c:50:1b:0e:e4:8c:06:74:9a:03:94:e8: 72:9b:aa:9c:2f:b1:cb:61:e6:11:5f:7f:8f:dd:75: bb:38:45:f2:0c:a8:5a:1a:22:0d:5a:94:36:fa:fd: c5:b8:b4:86:16:68:a2:18:37:87:9d:10:35:57:32: 1c:7e:cb:b1:be:3d:a5:14:41:fc:e1:59:fd:55:06: af:33:5f:4c:61:28:5a:5c:8a:a1:ad:a7:cc:33:e6: 48:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:83:3E:2A:4B:40:CA:1B:C8:69:E8:22:19:7B:28:55:79:D2:9F:45 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/088d5754-cda4-4d89-86f5-f70a4d75e7fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64c::/48 Signature Algorithm: sha256WithRSAEncryption 06:83:86:16:b6:1d:b2:2d:e6:4f:a9:78:ad:26:7b:38:16:38: 01:0a:b2:a0:36:58:58:ed:85:4b:d4:51:64:4c:73:1d:02:6f: d2:43:e8:97:a2:7d:e2:ce:b4:c0:c2:48:03:00:5a:4d:07:08: 73:df:9d:fe:56:79:62:e3:e6:57:1b:97:a7:b9:49:9d:37:8d: 26:b0:b9:03:bf:9d:64:93:4b:68:7a:3b:70:70:21:01:36:57: c0:f3:83:de:3e:f1:01:bf:6c:c7:77:11:e7:12:29:01:52:af: 64:51:d4:b9:16:6b:6a:e5:3f:f0:e7:c5:a6:c6:a0:30:34:c4: 43:ef:65:9a:0e:98:6c:c4:7f:38:d6:2f:76:a3:58:92:bb:13: 69:9d:40:0a:5d:1d:b7:82:79:7a:98:40:98:0b:98:75:ac:60: 9d:90:9a:1d:2f:02:c3:dd:d3:39:5d:0e:28:04:23:1c:59:71: 07:df:af:e1:c6:e9:37:28:ed:b3:7d:4e:55:15:1d:f3:5e:e5: 7f:66:f9:48:d4:21:13:f3:c0:1c:8b:bc:bf:70:29:9c:c1:fd: f6:9f:76:45:41:e5:3e:b9:a5:00:dd:f6:4a:a8:71:fb:c5:9f: b8:53:cb:8b:78:f3:14:d1:d2:0d:3a:56:73:3f:d7:38:cf:8d: f7:7d:62:a4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcJ5Zvu2IEaGNkNedsWkYsOc4Xf8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTMxMDAyMDQ1WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZWNiNmQ5N2VmYzMyY2M5NmZiYjFjZDU1OTlhYzZjNjMx ZjkzZjYxOTY1NWJkYTc1ODYyNTRkY2MzMDZjM2Q2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBXQLXJOmQsDthkJCSXAzBCbeKvXy+ap6IzAxbgzU0bHX5 mDk5602hXveoTUsk9PgAW+MbhQQg9QuAoQ/OPIbC1fmjP8zZXAIyUXl1xi21ONtk I8SGC53urfvIdkzicgwHcVT9xl/aLJ4t+HiE3fREqDfhfzyZkuga7g0p6PXlLYsG 9tzicjxBv7+9eBZrCcXnLcj49LCVm3zYSVz5kXa0/dGqHNUGmTxQGw7kjAZ0mgOU 6HKbqpwvscth5hFff4/ddbs4RfIMqFoaIg1alDb6/cW4tIYWaKIYN4edEDVXMhx+ y7G+PaUUQfzhWf1VBq8zX0xhKFpciqGtp8wz5kgNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4IM+KktAyhvIaegiGXsoVXnSn0UwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzA4OGQ1NzU0LWNkYTQtNGQ4OS04NmY1LWY3MGE0ZDc1ZTdmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkwwDQYJKoZIhvcNAQELBQADggEBAAaDhha2HbIt5k+peK0mezgW OAEKsqA2WFjthUvUUWRMcx0Cb9JD6JeifeLOtMDCSAMAWk0HCHPfnf5WeWLj5lcb l6e5SZ03jSawuQO/nWSTS2h6O3BwIQE2V8Dzg94+8QG/bMd3EecSKQFSr2RR1LkW a2rlP/DnxabGoDA0xEPvZZoOmGzEfzjWL3ajWJK7E2mdQApdHbeCeXqYQJgLmHWs YJ2Qmh0vAsPd0zldDigEIxxZcQffr+HG6Tco7bN9TlUVHfNe5X9m+UjUIRPzwByL vL9wKZzB/fafdkVB5T65pQDd9kqocfvFn7hTy4t48xTR0g06VnM/1zjPjfd9YqQ= -----END CERTIFICATE-----Generated at Sat Jun 14 23:43:13 2025 by rpki-client