$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa File: 3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa (raw, json) Hash identifier: XrK/F5tK9ZmJmJi/ldhLGUo6MqUf/Uu/JsQwqIujKik= Subject key identifier: 52:F5:F5:D4:28:06:06:5E:9E:BB:35:B1:B8:53:5F:C3:85:54:9D:CE Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 677DA00DC2B4F09376E180C6E7CBEBFF0378F3B5 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa Signing time: Fri 23 May 2025 00:31:17 +0000 ROA not before: Fri 23 May 2025 00:31:17 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:7d:a0:0d:c2:b4:f0:93:76:e1:80:c6:e7:cb:eb:ff:03:78:f3:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 23 00:31:17 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=63cb579f17d977318e9ac9a96f5330be7e65f6e99d6435ad43c188159a099f81, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3c:62:e3:ce:b6:8e:d6:03:13:66:a9:6d:39: 46:ba:e7:1f:32:1f:55:19:6b:55:b6:06:60:05:a7: 84:53:99:84:16:00:2f:38:8a:39:6e:50:6f:b0:0d: 73:08:77:68:43:20:90:be:f4:a1:e5:55:07:7c:cf: 63:17:00:06:60:bc:a9:7a:1b:b0:e6:31:df:f5:c1: 48:6b:4d:01:91:43:d1:d6:29:1b:fd:99:a3:a1:7e: 19:ff:91:9d:23:e7:ac:a4:86:aa:20:2f:87:b9:92: ff:2b:b3:b5:04:12:cf:45:a4:cd:77:dd:bc:da:49: c4:a7:26:09:ca:80:70:f5:94:a8:54:4c:dd:62:02: f4:89:47:80:8d:16:61:1c:2c:0b:0c:42:9a:58:41: 71:79:a0:7b:8f:3d:c9:ad:bb:d0:99:81:95:84:80: c3:91:4c:b7:15:20:c7:c1:1e:72:b4:28:09:58:4a: 35:0a:e6:0e:ec:f4:2c:19:0c:bc:22:cd:03:c7:50: ce:9c:73:55:58:da:78:db:20:e4:9a:56:2c:a3:ac: 85:45:de:62:68:a6:83:7a:b9:4f:58:8e:6b:43:fc: dd:a4:64:74:0a:f1:ae:07:3c:20:70:88:72:06:2e: cd:f7:36:cc:68:98:23:69:be:72:9a:c0:e2:0a:57: 7f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F5:F5:D4:28:06:06:5E:9E:BB:35:B1:B8:53:5F:C3:85:54:9D:CE X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption a0:2b:7a:8b:65:ce:bf:51:5e:b0:cf:d2:2b:f8:94:52:3f:fd: 14:6e:47:97:ed:a6:54:db:67:42:29:32:86:4c:3b:f4:07:b2: 9c:94:b5:b4:0a:56:d5:e6:af:7e:84:a1:04:36:bc:b0:cd:2a: b4:55:21:b5:a3:4c:bc:91:d9:61:9e:f0:37:07:bd:8b:a2:32: 33:3b:ac:6c:88:6b:82:6c:15:eb:9e:32:b3:a8:e7:c3:8c:d9: 30:2d:31:66:23:d7:b1:a4:de:87:46:28:38:06:dd:0a:62:b1: db:69:fc:18:61:26:f7:23:72:c9:13:56:a7:9f:90:8e:00:de: 41:b3:5c:91:27:a0:5f:6f:da:61:76:0f:09:a4:3b:0d:7d:47: 68:aa:cc:39:59:71:9c:1e:b3:d0:23:fa:ff:2f:75:2f:db:55: 4b:82:df:09:32:26:16:d6:29:39:04:b6:72:7b:ff:10:80:f7: a9:d9:03:e0:5b:bd:14:2d:2f:60:4f:8a:6f:66:c5:02:df:07: 15:df:5b:21:9f:45:d9:88:a8:9f:fb:76:91:29:2f:99:4e:53: 19:d3:42:a5:e5:43:93:0e:a7:b1:50:dd:bd:e4:56:b2:80:80: ab:4f:a4:28:d8:cb:0d:25:a8:0b:d4:3a:06:bf:0e:e1:f0:1c: 95:2b:2d:9a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZ32gDcK08JN24YDG58vr/wN487UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIzMDAzMTE3WhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2NiNTc5ZjE3ZDk3NzMxOGU5YWM5YTk2ZjUzMzBiZTdl NjVmNmU5OWQ2NDM1YWQ0M2MxODgxNTlhMDk5ZjgxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoPGLjzraO1gMTZqltOUa65x8yH1UZa1W2BmAFp4RTmYQW AC84ijluUG+wDXMId2hDIJC+9KHlVQd8z2MXAAZgvKl6G7DmMd/1wUhrTQGRQ9HW KRv9maOhfhn/kZ0j56ykhqogL4e5kv8rs7UEEs9FpM133bzaScSnJgnKgHD1lKhU TN1iAvSJR4CNFmEcLAsMQppYQXF5oHuPPcmtu9CZgZWEgMORTLcVIMfBHnK0KAlY SjUK5g7s9CwZDLwizQPHUM6cc1VY2njbIOSaViyjrIVF3mJopoN6uU9YjmtD/N2k ZHQK8a4HPCBwiHIGLs33NsxomCNpvnKawOIKV38PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUvX11CgGBl6euzWxuFNfw4VUnc4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZWY5ZDNlLTJhZDItNGUzOC05MmZjLTVlYWI3NmE1Mzk1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAKAreotlzr9RXrDP0iv4lFI/ /RRuR5ftplTbZ0IpMoZMO/QHspyUtbQKVtXmr36EoQQ2vLDNKrRVIbWjTLyR2WGe 8DcHvYuiMjM7rGyIa4JsFeueMrOo58OM2TAtMWYj17Gk3odGKDgG3Qpisdtp/Bhh JvcjcskTVqefkI4A3kGzXJEnoF9v2mF2DwmkOw19R2iqzDlZcZwes9Aj+v8vdS/b VUuC3wkyJhbWKTkEtnJ7/xCA96nZA+BbvRQtL2BPim9mxQLfBxXfWyGfRdmIqJ/7 dpEpL5lOUxnTQqXlQ5MOp7FQ3b3kVrKAgKtPpCjYyw0lqAvUOga/DuHwHJUrLZo= -----END CERTIFICATE-----Generated at Sat Jun 14 23:52:51 2025 by rpki-client