$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: fWPXnQHEVFaXUadhK4L1BKonlSI+cCYdh+GxqZbHIPQ= Subject key identifier: 95:F8:F8:F0:0F:FC:EC:F8:5D:D6:1B:DD:56:7E:7C:7C:32:6E:60:26 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1939179A564AFC8D15128D5815D59052605EF576 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Fri 23 May 2025 00:30:29 +0000 ROA not before: Fri 23 May 2025 00:30:29 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:39:17:9a:56:4a:fc:8d:15:12:8d:58:15:d5:90:52:60:5e:f5:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 23 00:30:29 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=7e37e24e5c31f3097d68198e7e36976e8907f3a6f5ff25291441ffb84f2c4fff, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a5:12:a8:8c:c3:3e:1f:19:f8:c8:43:3f:ee: a4:92:21:e8:6b:9f:3f:4a:7e:86:4b:56:20:16:c0: 36:7f:57:f2:29:a2:1f:0d:ef:5b:8d:b5:1b:f9:d0: 9d:fc:8e:3c:c3:1c:2b:62:c3:f7:a0:2a:a9:82:a0: 66:bc:20:ad:b1:09:2f:5c:29:b3:90:ae:15:ef:c8: 40:63:4b:77:0b:a9:98:8b:60:7d:57:b8:48:03:6f: 61:0b:c9:f7:8c:a6:d3:81:97:f5:4a:a4:ae:e0:2e: 32:53:55:5c:5b:5e:07:30:a2:41:f9:ca:4b:fe:de: 7d:fe:73:9b:9d:ed:1c:e2:a4:30:cd:ec:1f:ea:99: 6d:d9:7c:a2:fe:56:cd:14:d1:5a:68:76:3f:ce:7d: fd:f0:71:f7:1b:e8:6f:7a:8a:53:2e:61:c3:e1:eb: 72:df:e2:ef:3d:10:d1:8d:a0:f7:fc:89:b0:66:7c: bb:d0:ea:88:2d:94:31:d3:e4:b2:cf:42:ea:6b:8d: ff:f8:66:d5:bf:96:a9:8e:8a:e2:b0:77:1e:78:b7: 31:20:c0:96:e5:fc:7c:bd:fb:59:09:5c:46:d4:26: 3f:7c:98:30:c4:8e:9d:16:2d:33:5f:db:dc:6c:3d: e2:0c:c8:47:56:17:84:e5:85:55:59:ef:d8:c2:8f: 2a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F8:F8:F0:0F:FC:EC:F8:5D:D6:1B:DD:56:7E:7C:7C:32:6E:60:26 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 07:a0:5f:4e:69:08:39:72:59:18:ec:4b:64:e8:d1:5f:a1:2d: 51:d5:ed:f6:a9:e5:5e:36:cb:d0:d2:86:08:d0:f8:2c:8d:4b: e1:8b:83:fd:d5:62:50:0d:1d:ab:ff:ec:88:bc:24:22:d5:8d: d4:5b:49:d6:64:8f:95:dd:4f:ae:a3:04:1b:5b:45:ba:9c:b8: 14:d9:7f:bf:34:88:f4:f8:18:35:87:2f:87:df:00:e4:59:61: 41:ef:08:8a:39:f1:2d:51:8d:07:6c:4a:e4:24:bb:7d:9b:e1: 61:c8:73:e5:c2:c1:27:da:ca:c1:7b:f3:0b:e8:56:ab:77:91: b6:18:42:4f:fd:6f:0f:4c:87:7a:ae:db:55:c6:7e:4e:b6:13: be:ef:7c:71:f7:e4:f1:3a:00:a7:3a:30:9e:e7:76:a4:62:0b: 9c:17:b9:69:cd:59:9e:f5:a6:8c:e6:da:cc:b3:57:f7:37:2f: e2:7b:26:22:40:f5:e9:ac:0a:30:a5:2e:53:cd:63:97:d5:f2: 5e:87:58:1d:61:16:dc:63:01:dc:59:61:d8:82:df:6b:fb:fb: f0:a4:29:c6:ce:f2:c6:24:0d:3b:c1:ea:bf:eb:7c:85:bf:51: b4:b2:5f:c0:c1:84:f4:4e:ed:74:55:2a:23:82:63:5c:fd:49: 30:fb:71:8c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGTkXmlZK/I0VEo1YFdWQUmBe9XYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIzMDAzMDI5WhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTM3ZTI0ZTVjMzFmMzA5N2Q2ODE5OGU3ZTM2OTc2ZTg5 MDdmM2E2ZjVmZjI1MjkxNDQxZmZiODRmMmM0ZmZmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLpRKojMM+Hxn4yEM/7qSSIehrnz9KfoZLViAWwDZ/V/Ip oh8N71uNtRv50J38jjzDHCtiw/egKqmCoGa8IK2xCS9cKbOQrhXvyEBjS3cLqZiL YH1XuEgDb2ELyfeMptOBl/VKpK7gLjJTVVxbXgcwokH5ykv+3n3+c5ud7RzipDDN 7B/qmW3ZfKL+Vs0U0Vpodj/Off3wcfcb6G96ilMuYcPh63Lf4u89ENGNoPf8ibBm fLvQ6ogtlDHT5LLPQuprjf/4ZtW/lqmOiuKwdx54tzEgwJbl/Hy9+1kJXEbUJj98 mDDEjp0WLTNf29xsPeIMyEdWF4TlhVVZ79jCjypxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlfj48A/87Phd1hvdVn58fDJuYCYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAAegX05pCDlyWRjsS2To0V+h LVHV7fap5V42y9DShgjQ+CyNS+GLg/3VYlANHav/7Ii8JCLVjdRbSdZkj5XdT66j BBtbRbqcuBTZf780iPT4GDWHL4ffAORZYUHvCIo58S1RjQdsSuQku32b4WHIc+XC wSfaysF78wvoVqt3kbYYQk/9bw9Mh3qu21XGfk62E77vfHH35PE6AKc6MJ7ndqRi C5wXuWnNWZ71pozm2syzV/c3L+J7JiJA9emsCjClLlPNY5fV8l6HWB1hFtxjAdxZ YdiC32v7+/CkKcbO8sYkDTvB6r/rfIW/UbSyX8DBhPRO7XRVKiOCY1z9STD7cYw= -----END CERTIFICATE-----Generated at Mon Jun 16 15:32:54 2025 by rpki-client