$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0baebc69-c10a-4df5-b60a-747fa56ff200.roa File: 0baebc69-c10a-4df5-b60a-747fa56ff200.roa (raw, json) Hash identifier: Yhaf8IbEszytQUwXVNQNcAST8DMt5UA+J9rIWKzpsmY= Subject key identifier: CA:45:8A:FB:99:A9:1A:D6:BF:4E:60:17:D0:EA:04:D5:BC:AE:1E:73 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3ED8335FD9C7D61AE9055D34883F0921217D29CD Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0baebc69-c10a-4df5-b60a-747fa56ff200.roa Signing time: Wed 21 May 2025 00:50:20 +0000 ROA not before: Wed 21 May 2025 00:50:20 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:309::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:d8:33:5f:d9:c7:d6:1a:e9:05:5d:34:88:3f:09:21:21:7d:29:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 21 00:50:20 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=6e45e84501169e57a19a5617c41e9087b553241110001b7d92c6e6273a43fb2c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:21:09:d9:66:fc:cb:a6:ac:b9:cc:63:c8:e3: 6d:88:79:32:5a:80:37:89:cb:21:a8:15:2d:dc:c8: 32:32:02:f5:d2:3c:49:80:c4:47:dc:ae:40:43:3e: 84:94:6c:13:37:54:2e:e8:09:c5:45:6c:e9:a5:ca: e8:34:fe:57:f1:43:5e:28:43:e0:fe:60:3b:4d:02: c1:4d:6f:c9:e3:37:7c:97:3f:14:09:74:e1:9b:39: 01:ed:9e:77:82:e8:fb:9f:73:dc:4b:da:bb:2a:24: 73:83:c6:76:94:96:00:de:9d:90:b5:a3:ec:f0:b0: 41:8c:37:d3:08:99:e4:9a:39:3b:ec:c3:98:18:74: bc:f4:b0:58:39:8e:ac:01:0f:1b:ca:f1:bd:52:4d: 32:de:d8:7d:4e:44:b6:e6:e4:ed:67:75:63:d3:76: 4c:c8:f2:62:be:24:b2:86:fa:c9:5d:11:66:5b:ec: 4e:27:1a:51:e5:d8:12:c5:b1:96:ed:30:85:48:c8: 73:d4:34:c0:df:b9:10:a1:65:22:cc:cc:17:08:e0: 1d:8c:25:d9:5b:a1:8b:3c:7a:e9:ad:02:02:d8:e8: 9c:81:7f:e1:f3:23:2e:ee:3a:18:a5:68:85:31:de: f2:21:46:ae:fe:49:ff:df:18:4d:d7:30:76:43:1f: 56:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:45:8A:FB:99:A9:1A:D6:BF:4E:60:17:D0:EA:04:D5:BC:AE:1E:73 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0baebc69-c10a-4df5-b60a-747fa56ff200.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:309::/48 Signature Algorithm: sha256WithRSAEncryption 08:d7:bc:8f:fd:24:7b:2c:7e:73:de:86:29:fd:31:eb:f8:b1: 13:d8:ae:d6:af:c0:f6:3b:8f:60:05:55:e1:f8:16:6e:99:f3: 9b:7f:c4:4f:b7:7c:bd:fd:ca:d6:c5:ba:b1:4e:0a:a7:66:38: e7:2a:d3:c0:ef:d2:66:71:5c:18:3f:d9:ee:18:7b:cb:b4:aa: 17:fe:81:55:67:ac:e2:7a:34:71:0c:78:2e:b8:03:28:54:28: f2:2e:d2:1c:63:91:cd:88:3e:a2:6b:23:d0:c8:a2:79:d6:5f: c3:ff:cc:67:15:c1:7c:2e:ad:52:0d:18:50:e8:fa:5b:7b:57: 1a:50:31:c0:15:23:30:00:86:29:23:a1:13:d6:f5:f9:89:8a: 11:1b:11:35:ce:aa:68:30:01:f9:af:75:a4:1a:df:31:a8:1a: ba:cb:69:15:4a:74:71:8a:6a:5c:6b:ef:c4:41:71:96:07:c7: c5:77:f9:3c:73:48:bb:64:5e:73:6c:6a:ab:5c:0e:25:05:9a: 31:e2:be:45:59:17:b8:de:48:f3:1b:f5:ec:75:b8:50:3d:8c: fa:73:00:f9:ec:7b:41:4a:5c:0a:8b:8f:cf:76:6f:9a:cc:3a: d6:87:c8:b6:ba:8b:b7:05:b1:73:b7:e2:6a:2c:6f:ba:c4:f3: cb:4d:77:70 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPtgzX9nH1hrpBV00iD8JISF9Kc0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIxMDA1MDIwWhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTQ1ZTg0NTAxMTY5ZTU3YTE5YTU2MTdjNDFlOTA4N2I1 NTMyNDExMTAwMDFiN2Q5MmM2ZTYyNzNhNDNmYjJjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnIQnZZvzLpqy5zGPI422IeTJagDeJyyGoFS3cyDIyAvXS PEmAxEfcrkBDPoSUbBM3VC7oCcVFbOmlyug0/lfxQ14oQ+D+YDtNAsFNb8njN3yX PxQJdOGbOQHtnneC6Pufc9xL2rsqJHODxnaUlgDenZC1o+zwsEGMN9MImeSaOTvs w5gYdLz0sFg5jqwBDxvK8b1STTLe2H1ORLbm5O1ndWPTdkzI8mK+JLKG+sldEWZb 7E4nGlHl2BLFsZbtMIVIyHPUNMDfuRChZSLMzBcI4B2MJdlboYs8eumtAgLY6JyB f+HzIy7uOhilaIUx3vIhRq7+Sf/fGE3XMHZDH1apAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUykWK+5mpGta/TmAX0OoE1byuHnMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBiYWViYzY5LWMxMGEtNGRmNS1iNjBhLTc0N2ZhNTZmZjIwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAwkwDQYJKoZIhvcNAQELBQADggEBAAjXvI/9JHssfnPehin9Mev4 sRPYrtavwPY7j2AFVeH4Fm6Z85t/xE+3fL39ytbFurFOCqdmOOcq08Dv0mZxXBg/ 2e4Ye8u0qhf+gVVnrOJ6NHEMeC64AyhUKPIu0hxjkc2IPqJrI9DIonnWX8P/zGcV wXwurVINGFDo+lt7VxpQMcAVIzAAhikjoRPW9fmJihEbETXOqmgwAfmvdaQa3zGo GrrLaRVKdHGKalxr78RBcZYHx8V3+TxzSLtkXnNsaqtcDiUFmjHivkVZF7jeSPMb 9ex1uFA9jPpzAPnse0FKXAqLj892b5rMOtaHyLa6i7cFsXO34mosb7rE88tNd3A= -----END CERTIFICATE-----Generated at Sat Jun 14 05:54:57 2025 by rpki-client