$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a34a1cd9-a6e1-4f90-a908-a66252462eae.roa File: a34a1cd9-a6e1-4f90-a908-a66252462eae.roa (raw, json) Hash identifier: ddFwQTAHk+gtFAiit4GGR65L0ZpxGMFCOCMvBBGaH90= Subject key identifier: 41:3E:E0:00:F5:AA:3D:27:C4:74:92:31:9D:D8:00:A9:F0:E2:B9:F1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6B2A7B94F5E775ED3EC975584D4EC7F9D7FB7FD0 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a34a1cd9-a6e1-4f90-a908-a66252462eae.roa Signing time: Sat 31 May 2025 00:40:00 +0000 ROA not before: Sat 31 May 2025 00:40:00 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c15::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:2a:7b:94:f5:e7:75:ed:3e:c9:75:58:4d:4e:c7:f9:d7:fb:7f:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 31 00:40:00 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=22e999d38756c1877e16da5c0946df4a7e4f6f6610e235f6c1b68484e81a8510, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e6:8c:67:96:ab:ba:c2:f3:87:f1:81:7b:54: 87:8d:34:d9:0a:ae:ee:23:e6:84:6c:b6:ea:f6:12: 76:d4:14:f8:4e:3f:86:37:b7:f9:30:60:cc:cf:68: 9b:9b:b4:c5:2f:31:5f:ee:2c:06:dc:c5:86:50:c7: ee:96:9e:94:87:45:cc:ea:4c:db:fd:39:ad:3e:aa: 70:b1:2f:bc:09:22:10:c3:de:e0:f0:e6:6a:61:79: b6:f2:ca:9c:78:c5:38:7c:4b:c8:f2:56:a7:7b:70: 41:c3:af:f0:b9:81:a4:78:fd:32:50:30:ad:c0:d6: 49:b1:0b:3f:26:f8:fc:d5:2f:1e:6c:a7:d2:1c:a3: 3f:6d:e6:ee:03:ce:30:8a:05:0b:ea:af:56:74:b6: ca:43:85:ea:59:d5:6d:4c:96:7b:4a:b2:9c:6b:79: 78:52:bc:92:2d:ac:ee:da:8b:4b:28:3d:2b:66:4d: f9:4e:be:41:50:07:da:46:11:bf:3d:79:0f:82:7b: d5:81:4e:1e:8b:66:21:87:90:48:bd:f9:32:7d:f6: 91:29:93:72:8b:ec:b4:f8:07:24:83:3d:f6:b4:ba: 90:92:ff:7f:41:00:49:da:03:aa:a2:6e:28:55:b8: ad:95:21:29:8c:d7:8d:f9:d1:68:d2:a3:7a:07:bd: 24:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3E:E0:00:F5:AA:3D:27:C4:74:92:31:9D:D8:00:A9:F0:E2:B9:F1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a34a1cd9-a6e1-4f90-a908-a66252462eae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c15::/48 Signature Algorithm: sha256WithRSAEncryption 67:4f:24:2e:ce:fe:23:b9:7b:eb:1e:28:f2:07:88:63:27:b3: 77:a4:78:be:56:e5:3d:17:01:5d:56:3f:a9:5d:a7:1d:73:ab: af:b8:5b:93:23:9b:84:56:4f:f8:75:c0:56:d3:3a:6b:01:90: 0d:1b:66:64:ac:44:f2:9c:78:ba:e3:16:33:ff:dd:70:a3:fb: 42:6b:90:77:9d:99:cd:53:01:d7:c0:6d:8f:bf:51:3a:c8:8b: 17:47:b4:e7:d5:34:f7:cc:60:04:68:e0:61:85:c0:c8:1c:0f: e8:57:90:27:fa:78:c2:9b:d3:10:fa:40:80:9f:32:eb:65:a2: 5f:19:6c:a0:d0:8a:c0:3f:c0:73:f1:b4:dd:ab:ac:e9:80:b1: 41:cc:a9:cc:59:56:a3:20:b3:44:08:c3:65:95:f5:9b:fb:60: 77:b7:19:2f:b8:f7:1d:e2:71:c5:17:b9:e8:b8:8b:a0:18:b0: 05:23:8f:23:ff:fd:9a:61:e7:8f:da:f4:62:e5:24:b8:ac:27: db:3a:a9:ce:2f:2f:01:eb:ae:24:aa:58:ba:44:1d:9d:dc:3c: 81:64:db:e3:fe:05:aa:3b:f4:55:2c:4d:96:a1:84:e2:9e:80: 66:6d:53:f9:2b:c8:a9:e5:82:d5:cb:ef:e6:40:f5:e6:b4:96: bd:9f:63:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUayp7lPXnde0+yXVYTU7H+df7f9AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTMxMDA0MDAwWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmU5OTlkMzg3NTZjMTg3N2UxNmRhNWMwOTQ2ZGY0YTdl NGY2ZjY2MTBlMjM1ZjZjMWI2ODQ4NGU4MWE4NTEwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC35oxnlqu6wvOH8YF7VIeNNNkKru4j5oRstur2EnbUFPhO P4Y3t/kwYMzPaJubtMUvMV/uLAbcxYZQx+6WnpSHRczqTNv9Oa0+qnCxL7wJIhDD 3uDw5mphebbyypx4xTh8S8jyVqd7cEHDr/C5gaR4/TJQMK3A1kmxCz8m+PzVLx5s p9Icoz9t5u4DzjCKBQvqr1Z0tspDhepZ1W1MlntKspxreXhSvJItrO7ai0soPStm TflOvkFQB9pGEb89eQ+Ce9WBTh6LZiGHkEi9+TJ99pEpk3KL7LT4BySDPfa0upCS /39BAEnaA6qibihVuK2VISmM14350WjSo3oHvSRFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQT7gAPWqPSfEdJIxndgAqfDiufEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2EzNGExY2Q5LWE2ZTEtNGY5MC1hOTA4LWE2NjI1MjQ2MmVhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBUwDQYJKoZIhvcNAQELBQADggEBAGdPJC7O/iO5e+seKPIHiGMn s3ekeL5W5T0XAV1WP6ldpx1zq6+4W5Mjm4RWT/h1wFbTOmsBkA0bZmSsRPKceLrj FjP/3XCj+0JrkHedmc1TAdfAbY+/UTrIixdHtOfVNPfMYARo4GGFwMgcD+hXkCf6 eMKb0xD6QICfMutlol8ZbKDQisA/wHPxtN2rrOmAsUHMqcxZVqMgs0QIw2WV9Zv7 YHe3GS+49x3iccUXuei4i6AYsAUjjyP//Zph54/a9GLlJLisJ9s6qc4vLwHrriSq WLpEHZ3cPIFk2+P+Bao79FUsTZahhOKegGZtU/kryKnlgtXL7+ZA9ea0lr2fYys= -----END CERTIFICATE-----Generated at Sat Jun 14 23:43:50 2025 by rpki-client