$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0baebc69-c10a-4df5-b60a-747fa56ff200.roa File: 0baebc69-c10a-4df5-b60a-747fa56ff200.roa (raw, json) Hash identifier: dpHe5467akd+vO1KQ2MRM109vIUFVqMaiIIK3McGDqI= Subject key identifier: 45:72:14:2C:BD:00:82:F2:0D:FA:21:F6:67:CD:39:AB:E7:E2:05:19 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4E2C14EAD442EA010C64EDD56125F4DA087E41F2 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0baebc69-c10a-4df5-b60a-747fa56ff200.roa Signing time: Fri 11 Jul 2025 18:01:32 +0000 ROA not before: Fri 11 Jul 2025 18:01:32 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:309::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:2c:14:ea:d4:42:ea:01:0c:64:ed:d5:61:25:f4:da:08:7e:41:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:01:32 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=244ef102e7e2f63a15dee0c9d03c74e687ecb26ea2ef735f59696b22975bdfe2, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fe:fa:1e:0e:ec:47:f4:c5:65:68:0a:df:c1: 63:f6:43:b0:9a:f6:6d:fc:c0:b1:45:15:91:d7:69: 0f:84:41:74:e2:a9:3e:35:9b:d0:f1:82:22:4c:e0: 64:c2:07:2b:c4:93:36:fc:0f:07:b3:51:66:db:9b: 25:ea:ef:ae:15:73:88:b1:b5:f5:f9:e9:b1:cb:09: 5a:ac:dd:db:c2:fc:95:60:56:54:7b:19:5a:f6:a7: 5a:4f:79:62:7b:23:7b:72:e3:e4:8d:6d:85:99:63: 3b:76:1b:f4:e2:a5:68:63:5b:a8:41:25:f9:c5:17: a9:60:15:45:f5:87:df:39:ca:ab:c3:ea:ad:be:ca: 39:40:5a:6f:1a:a6:b7:30:4a:4c:bb:b6:62:0b:75: 47:46:bd:49:96:1f:a7:ce:ed:01:d3:12:5e:54:bf: 2c:98:58:85:d9:ad:81:9c:08:74:08:5a:6b:1b:d0: 8b:b7:da:77:36:35:23:00:db:87:0e:b2:9b:71:e8: 85:36:89:29:dd:3d:8e:c4:30:f1:50:b8:46:4d:51: 92:0b:62:09:98:67:33:ee:b7:31:97:ba:19:8a:ac: ca:67:8c:f5:9f:84:ae:39:0b:81:b7:42:17:5e:16: e5:11:cc:dc:c7:33:20:0d:fa:b2:2b:68:d4:d2:4a: 5d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:72:14:2C:BD:00:82:F2:0D:FA:21:F6:67:CD:39:AB:E7:E2:05:19 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0baebc69-c10a-4df5-b60a-747fa56ff200.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:309::/48 Signature Algorithm: sha256WithRSAEncryption 63:3c:e1:4d:3e:6c:90:33:aa:34:f0:0a:5f:1b:cb:c5:bf:7d: 21:8b:a6:20:21:96:fd:7e:e0:9c:d2:c1:5c:da:d8:14:6e:41: 5e:40:38:b0:7d:fd:be:8d:01:11:d8:09:db:ba:e5:b7:99:9a: d3:7f:75:2e:d1:2a:28:87:8a:ab:bb:ac:aa:2e:c6:78:40:39: cd:66:38:7c:65:f2:96:66:87:bb:8e:5e:23:6b:27:e1:c1:d4: 57:68:99:b2:2b:95:e2:85:d8:17:74:7a:cc:9f:16:c2:d9:82: 5a:e5:a1:83:e7:e4:5c:93:bf:7e:c1:61:7d:18:36:eb:f6:20: 84:d3:6b:a8:71:a6:31:b2:8f:27:27:6f:77:b7:25:65:f1:48: 0f:33:02:50:83:d9:d3:f0:7c:0e:df:26:c9:45:f0:5c:08:7a: 64:44:f1:f3:bd:a4:b6:84:35:cc:94:25:8e:07:26:a7:b8:ce: cc:b5:76:15:3d:e9:a7:9e:9b:d2:12:9e:29:22:12:b3:45:92: af:92:ad:d9:05:42:0e:15:64:a3:8b:f0:31:8b:46:4d:e8:75: 64:25:8d:62:50:76:2b:89:41:df:c2:a6:7a:4f:2e:b5:1b:c4: c2:98:2b:ff:eb:b7:67:3d:2f:bf:18:3a:5e:3c:95:c2:42:e6: 7e:b7:78:02 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTiwU6tRC6gEMZO3VYSX02gh+QfIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgwMTMyWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDRlZjEwMmU3ZTJmNjNhMTVkZWUwYzlkMDNjNzRlNjg3 ZWNiMjZlYTJlZjczNWY1OTY5NmIyMjk3NWJkZmUyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1/voeDuxH9MVlaArfwWP2Q7Ca9m38wLFFFZHXaQ+EQXTi qT41m9DxgiJM4GTCByvEkzb8DwezUWbbmyXq764Vc4ixtfX56bHLCVqs3dvC/JVg VlR7GVr2p1pPeWJ7I3ty4+SNbYWZYzt2G/TipWhjW6hBJfnFF6lgFUX1h985yqvD 6q2+yjlAWm8aprcwSky7tmILdUdGvUmWH6fO7QHTEl5UvyyYWIXZrYGcCHQIWmsb 0Iu32nc2NSMA24cOsptx6IU2iSndPY7EMPFQuEZNUZILYgmYZzPutzGXuhmKrMpn jPWfhK45C4G3QhdeFuURzNzHMyAN+rIraNTSSl2bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURXIULL0AgvIN+iH2Z805q+fiBRkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBiYWViYzY5LWMxMGEtNGRmNS1iNjBhLTc0N2ZhNTZmZjIwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAwkwDQYJKoZIhvcNAQELBQADggEBAGM84U0+bJAzqjTwCl8by8W/ fSGLpiAhlv1+4JzSwVza2BRuQV5AOLB9/b6NARHYCdu65beZmtN/dS7RKiiHiqu7 rKouxnhAOc1mOHxl8pZmh7uOXiNrJ+HB1FdombIrleKF2Bd0esyfFsLZglrloYPn 5FyTv37BYX0YNuv2IITTa6hxpjGyjycnb3e3JWXxSA8zAlCD2dPwfA7fJslF8FwI emRE8fO9pLaENcyUJY4HJqe4zsy1dhU96aeem9ISnikiErNFkq+SrdkFQg4VZKOL 8DGLRk3odWQljWJQdiuJQd/CpnpPLrUbxMKYK//rt2c9L78YOl48lcJC5n63eAI= -----END CERTIFICATE-----Generated at Mon Aug 4 21:41:51 2025 by rpki-client