$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/31d03eb7-31b2-4971-9bea-307c9639659f.roa File: 31d03eb7-31b2-4971-9bea-307c9639659f.roa (raw, json) Hash identifier: 7gQcwP2fTcx0NOCYMEcUTF+SUi2a3j1oU1/HAJkUzM8= Subject key identifier: F8:CA:47:76:51:09:75:44:A2:32:DF:4C:16:50:23:33:BD:02:4C:BA Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5FD1FBD38DF3CEB7F947A8A47C16B5318685C76D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/31d03eb7-31b2-4971-9bea-307c9639659f.roa Signing time: Sat 12 Jul 2025 00:41:00 +0000 ROA not before: Sat 12 Jul 2025 00:41:00 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:62b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:d1:fb:d3:8d:f3:ce:b7:f9:47:a8:a4:7c:16:b5:31:86:85:c7:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 12 00:41:00 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=620db53136b27bd87ad1fcd21b31a66be9dd20b76cbba09913933c9012c8ba67, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:98:96:41:44:90:3c:f5:ef:58:61:94:16:96: 5e:4c:bf:ff:49:45:4f:82:7a:2a:c1:64:03:31:24: 64:d8:bb:d4:c3:67:c1:10:6e:09:fe:51:96:9d:39: 8c:4a:5c:73:28:28:fe:be:b8:0b:b2:bf:6a:90:b8: f4:31:37:98:5d:8b:78:7d:61:92:12:20:6a:42:a8: a3:00:73:be:b7:2c:0c:ad:fc:d9:15:84:1f:99:d2: 9e:c0:f3:32:c1:13:f8:cc:68:ac:24:b7:70:0e:39: 6f:5c:f9:55:af:46:7e:67:a7:61:69:fc:da:b5:f2: b4:90:0e:d8:21:88:89:c8:c4:8f:75:d2:71:c5:00: c3:db:64:c1:86:c2:5f:aa:fe:95:56:8a:5c:d8:7d: 95:ac:f1:82:7a:27:d6:0b:66:45:57:60:25:12:82: 9f:0e:4a:15:65:4d:60:d2:30:e9:a0:5d:30:35:40: 38:1d:07:12:79:12:da:43:d7:9b:89:8d:dc:6c:36: d3:28:9a:58:9a:2b:0a:7c:d4:69:5c:ef:62:e0:c3: a2:5e:87:8e:ab:96:f2:2c:09:d4:0a:f4:2b:e3:d8: 12:9e:68:fb:f1:cb:6d:05:72:91:c1:20:ea:aa:a2: 10:89:a8:36:43:8d:3d:67:b0:44:6b:1c:81:4d:60: da:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CA:47:76:51:09:75:44:A2:32:DF:4C:16:50:23:33:BD:02:4C:BA X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/31d03eb7-31b2-4971-9bea-307c9639659f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:62b::/48 Signature Algorithm: sha256WithRSAEncryption 45:ab:93:fb:01:19:eb:c6:9e:bc:a3:70:18:f0:cc:7c:e5:ac: 71:d2:ee:d1:80:fd:b2:32:0b:3a:57:ee:2a:f9:0c:c8:c6:f4: be:0b:e9:fe:d4:ea:22:ed:9e:29:14:8d:3f:e7:c6:d4:fe:47: ad:bf:a4:a5:cd:ca:dc:73:a8:e5:61:f0:2e:ed:cd:fb:27:70: 2a:de:70:10:88:07:3b:1e:b4:4d:66:64:27:1e:0f:2a:db:01: f7:73:9e:71:36:78:1b:d6:7a:c2:7f:01:52:d4:3f:39:0e:d2: d1:66:72:f2:34:df:f6:88:8f:d1:a1:ca:6b:b8:23:89:7c:35: b8:f4:d8:d9:4f:c7:76:2b:cc:4b:c1:15:9b:a4:d4:64:48:e0: f8:ce:16:f1:89:12:07:99:fa:26:1b:44:7d:25:bb:e9:09:8a: 14:75:3c:82:50:a5:cc:f5:11:ca:47:4d:8d:f0:8f:25:b3:00: b9:f8:5b:be:70:64:95:2b:7c:91:a4:8c:f9:68:57:60:5a:15: af:63:e0:2c:1b:1d:46:80:7d:92:1a:93:69:a2:93:54:88:1d: c8:4a:a0:ed:98:cf:2a:4b:26:d7:aa:e0:a5:7d:8f:c4:d0:4d: ba:f4:7e:5b:6f:d1:62:7a:e1:d6:fa:5c:a4:45:5e:35:23:b6: 9e:61:fe:9a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUX9H7043zzrf5R6ikfBa1MYaFx20wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzEyMDA0MTAwWhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjBkYjUzMTM2YjI3YmQ4N2FkMWZjZDIxYjMxYTY2YmU5 ZGQyMGI3NmNiYmEwOTkxMzkzM2M5MDEyYzhiYTY3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcmJZBRJA89e9YYZQWll5Mv/9JRU+CeirBZAMxJGTYu9TD Z8EQbgn+UZadOYxKXHMoKP6+uAuyv2qQuPQxN5hdi3h9YZISIGpCqKMAc763LAyt /NkVhB+Z0p7A8zLBE/jMaKwkt3AOOW9c+VWvRn5np2Fp/Nq18rSQDtghiInIxI91 0nHFAMPbZMGGwl+q/pVWilzYfZWs8YJ6J9YLZkVXYCUSgp8OShVlTWDSMOmgXTA1 QDgdBxJ5EtpD15uJjdxsNtMomliaKwp81Glc72Lgw6Jeh46rlvIsCdQK9Cvj2BKe aPvxy20FcpHBIOqqohCJqDZDjT1nsERrHIFNYNq1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+MpHdlEJdUSiMt9MFlAjM70CTLowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzMxZDAzZWI3LTMxYjItNDk3MS05YmVhLTMwN2M5NjM5NjU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABiswDQYJKoZIhvcNAQELBQADggEBAEWrk/sBGevGnryjcBjwzHzl rHHS7tGA/bIyCzpX7ir5DMjG9L4L6f7U6iLtnikUjT/nxtT+R62/pKXNytxzqOVh 8C7tzfsncCrecBCIBzsetE1mZCceDyrbAfdznnE2eBvWesJ/AVLUPzkO0tFmcvI0 3/aIj9Ghymu4I4l8Nbj02NlPx3YrzEvBFZuk1GRI4PjOFvGJEgeZ+iYbRH0lu+kJ ihR1PIJQpcz1EcpHTY3wjyWzALn4W75wZJUrfJGkjPloV2BaFa9j4CwbHUaAfZIa k2mik1SIHchKoO2YzypLJteq4KV9j8TQTbr0fltv0WJ64db6XKRFXjUjtp5h/po= -----END CERTIFICATE-----Generated at Tue Aug 5 17:08:11 2025 by rpki-client