$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b6c99ca5-333b-4905-96bb-8272aaedfc25.roa File: b6c99ca5-333b-4905-96bb-8272aaedfc25.roa (raw, json) Hash identifier: FIDvoJQ0mLyN1ZUlvB2nYZYwr4yzfCIMSVhgAUk15e8= Subject key identifier: 71:93:57:7D:7D:87:46:C8:20:8C:09:B5:A7:09:C5:EB:E6:4A:CA:70 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7AC195DD954166C3E9E4EBBB41310B2A410CA52A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b6c99ca5-333b-4905-96bb-8272aaedfc25.roa Signing time: Fri 11 Jul 2025 18:10:50 +0000 ROA not before: Fri 11 Jul 2025 18:10:50 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:397::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c1:95:dd:95:41:66:c3:e9:e4:eb:bb:41:31:0b:2a:41:0c:a5:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:10:50 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=cfa894debda01563b056b137068f83834f0038cd62421ca9402ebab285761b68, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:61:4e:b4:78:25:30:eb:2e:c0:fa:8f:08:0f: f8:2f:5c:d2:27:59:da:ff:63:ab:7d:d5:87:5f:ba: 1d:b0:ce:10:07:a5:33:a7:da:6e:ba:24:a0:d7:ee: f2:56:76:62:e3:ff:93:32:5a:6f:a2:44:9c:02:35: 7d:33:de:b8:33:b1:bc:68:6e:71:5c:17:f1:8a:3b: a4:12:ec:2a:8b:3c:a4:a2:a1:c3:e9:e4:32:e5:7f: ce:b7:93:d3:38:33:6d:0d:69:82:5f:87:fc:e7:c8: 66:7c:ac:5e:6d:98:90:8a:01:53:03:0d:00:69:cb: 60:2b:46:11:20:26:be:ad:07:ff:0f:3a:a6:da:9b: eb:0a:68:df:ad:e3:88:ea:52:18:12:06:5b:08:58: 36:44:33:2a:bc:d3:a5:91:56:ba:01:de:37:d0:88: e2:20:a9:11:2d:f6:51:13:84:85:1f:26:8f:dd:55: d5:60:18:17:d3:a0:93:e1:63:84:54:ed:3b:ea:96: 47:45:49:17:c2:40:15:3a:e9:d4:ea:72:33:fa:de: ac:6e:9d:ae:98:83:55:23:46:96:89:5c:22:2c:b7: ce:f7:a8:34:f4:41:04:47:3d:7b:b0:01:63:e5:23: cc:ea:d5:04:93:d4:52:77:ae:de:95:1d:ac:87:3f: a5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:93:57:7D:7D:87:46:C8:20:8C:09:B5:A7:09:C5:EB:E6:4A:CA:70 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b6c99ca5-333b-4905-96bb-8272aaedfc25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:397::/48 Signature Algorithm: sha256WithRSAEncryption 7b:42:16:09:96:f1:8c:84:6d:e3:5f:75:2c:ca:f6:d2:28:42: 7b:5e:d4:45:9c:d8:d5:79:b0:9b:43:40:28:a5:e9:96:61:1d: 93:59:ef:55:d7:82:cb:97:ac:83:ed:98:c4:8a:04:46:00:73: 96:74:74:92:2f:64:03:0c:0f:9a:71:9d:8a:50:59:fa:22:bf: 27:f1:64:a7:69:22:46:51:95:03:7b:08:2b:0f:f5:8e:6f:f6: 71:d5:bc:ed:de:44:42:1c:d3:e5:6a:00:0c:63:55:fa:66:c2: 6c:b8:9b:3b:ad:f7:d7:d8:01:fe:73:3b:72:57:5b:61:07:d1: b1:11:b4:46:b1:d6:b4:c2:8a:19:bd:4d:79:30:2b:f4:00:f5: 3e:11:cb:f4:22:65:b1:8d:95:37:cd:b8:8c:bd:78:90:42:ba: 8e:5a:26:a9:48:f7:5e:fd:52:3e:f1:2c:3c:40:71:e6:6e:44: a1:dc:bd:68:22:c5:7c:13:6e:5a:b6:09:5b:f0:35:41:fe:ea: da:61:2c:2c:0b:c0:12:be:ae:6a:6d:f3:9c:d5:62:c2:dd:d3: 61:58:ed:4b:11:f5:96:ac:23:94:c0:bb:b4:0a:ce:31:43:8c: a5:73:2b:11:b2:64:8f:fc:c9:1d:0d:ee:51:a5:ab:b3:68:63: e0:54:fb:da -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUesGV3ZVBZsPp5Ou7QTELKkEMpSowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgxMDUwWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmE4OTRkZWJkYTAxNTYzYjA1NmIxMzcwNjhmODM4MzRm MDAzOGNkNjI0MjFjYTk0MDJlYmFiMjg1NzYxYjY4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrYU60eCUw6y7A+o8ID/gvXNInWdr/Y6t91Ydfuh2wzhAH pTOn2m66JKDX7vJWdmLj/5MyWm+iRJwCNX0z3rgzsbxobnFcF/GKO6QS7CqLPKSi ocPp5DLlf863k9M4M20NaYJfh/znyGZ8rF5tmJCKAVMDDQBpy2ArRhEgJr6tB/8P Oqbam+sKaN+t44jqUhgSBlsIWDZEMyq806WRVroB3jfQiOIgqREt9lEThIUfJo/d VdVgGBfToJPhY4RU7TvqlkdFSRfCQBU66dTqcjP63qxuna6Yg1UjRpaJXCIst873 qDT0QQRHPXuwAWPlI8zq1QST1FJ3rt6VHayHP6UDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcZNXfX2HRsggjAm1pwnF6+ZKynAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2I2Yzk5Y2E1LTMzM2ItNDkwNS05NmJiLTgyNzJhYWVkZmMyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5cwDQYJKoZIhvcNAQELBQADggEBAHtCFgmW8YyEbeNfdSzK9tIo Qnte1EWc2NV5sJtDQCil6ZZhHZNZ71XXgsuXrIPtmMSKBEYAc5Z0dJIvZAMMD5px nYpQWfoivyfxZKdpIkZRlQN7CCsP9Y5v9nHVvO3eREIc0+VqAAxjVfpmwmy4mzut 99fYAf5zO3JXW2EH0bERtEax1rTCihm9TXkwK/QA9T4Ry/QiZbGNlTfNuIy9eJBC uo5aJqlI9179Uj7xLDxAceZuRKHcvWgixXwTblq2CVvwNUH+6tphLCwLwBK+rmpt 85zVYsLd02FY7UsR9ZasI5TAu7QKzjFDjKVzKxGyZI/8yR0N7lGlq7NoY+BU+9o= -----END CERTIFICATE-----Generated at Tue Aug 5 16:52:38 2025 by rpki-client