$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa File: c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa (raw, json) Hash identifier: 8XAWOxQuC5Ig6zvihUN8tPSZTuw6/Q43ehzCt6NOiyE= Subject key identifier: 14:1E:AE:59:61:72:77:B5:62:75:DC:15:12:3C:74:BE:F6:42:ED:5F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 06DDA6027215CD328DEF74A24CBB7FCCEB0872D3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa Signing time: Tue 20 May 2025 17:50:38 +0000 ROA not before: Tue 20 May 2025 17:50:38 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:399::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:dd:a6:02:72:15:cd:32:8d:ef:74:a2:4c:bb:7f:cc:eb:08:72:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:50:38 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=385b7805eba33046d7483cec7393df57811ca66b65cb942b8cae93c066f04a3f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3c:83:64:11:7f:c7:b2:d7:a9:d1:9d:da:50: 0c:2e:de:74:fa:e6:92:9e:8b:f2:8a:9f:6c:d4:7a: dd:8a:82:24:5e:d4:73:e1:22:20:e2:75:d3:78:e2: 91:04:86:62:03:f0:0c:f3:b6:60:24:70:e3:d5:d1: 40:8d:09:69:2b:97:e7:e5:9c:54:d6:12:66:b4:49: d6:a5:06:31:eb:6c:28:49:0d:5a:5a:97:4a:67:da: 83:34:94:80:0a:01:2f:a1:f9:65:8e:08:80:6b:5e: 8d:f1:5b:69:72:77:1c:3c:ed:e0:80:cd:4f:30:40: 28:03:8b:5b:bd:77:fd:6a:9c:ed:d9:22:99:b2:2d: 50:b5:cf:cf:e2:a4:0f:9a:b3:12:c5:35:28:06:27: 28:f7:1a:e3:bb:7c:21:6c:36:c5:17:fa:c3:ca:41: 37:60:04:e3:22:88:0e:18:43:96:de:63:85:05:e1: 26:22:4b:56:ce:41:f3:57:ef:8e:82:79:11:15:20: c2:88:72:99:e7:88:04:29:1a:f8:b9:c6:28:c4:e6: a0:d7:f0:e1:72:23:76:03:28:52:59:9c:18:58:35: 7b:71:dc:1d:96:d4:30:7a:46:cc:d5:36:6d:a1:db: b8:5c:27:1a:38:82:18:bc:bf:d3:9c:f0:48:69:80: f0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1E:AE:59:61:72:77:B5:62:75:DC:15:12:3C:74:BE:F6:42:ED:5F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:399::/48 Signature Algorithm: sha256WithRSAEncryption 3f:3e:91:b8:b3:6a:bd:50:ef:f9:dc:3e:0e:b8:d8:47:62:f0: 79:36:8c:92:75:91:c0:68:24:a4:da:75:4b:9d:a1:4b:6b:e8: c2:6d:28:69:c0:64:67:2f:5f:6f:1b:24:36:14:60:d7:b8:5a: c1:83:4a:40:02:f6:c4:58:ac:b6:a3:85:19:37:ea:20:9d:6f: 73:09:97:a3:56:8f:b4:17:59:e0:05:9e:22:0e:22:c0:af:23: 9b:01:a4:9b:66:95:0c:2e:65:a5:93:50:cf:40:78:24:e7:cd: 3b:5b:c5:69:21:30:c9:2d:80:8b:71:93:90:da:83:80:ba:4e: 9c:f6:02:b6:25:c6:0e:c3:11:f6:d3:aa:63:42:95:4c:0f:ed: 2e:34:f4:13:1b:8a:a9:ec:3b:df:5c:a1:23:aa:81:01:ae:db: da:cd:cf:1a:c8:84:4b:9d:31:08:0c:16:31:e5:fb:52:ba:84: c0:a1:29:e9:df:ce:5f:29:a0:10:e8:b4:86:da:94:03:0f:6e: 31:66:76:17:f4:a7:e1:51:0e:62:af:16:40:47:a9:66:c4:95: dd:62:60:bd:90:13:11:7d:ad:e6:27:07:38:b3:07:33:e9:79: 86:2c:51:e6:1e:86:1a:0e:b8:e1:1f:c8:14:bd:e5:1a:57:44: fc:e2:b6:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBt2mAnIVzTKN73SiTLt/zOsIctMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MDM4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODViNzgwNWViYTMzMDQ2ZDc0ODNjZWM3MzkzZGY1Nzgx MWNhNjZiNjVjYjk0MmI4Y2FlOTNjMDY2ZjA0YTNmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5PINkEX/Hstep0Z3aUAwu3nT65pKei/KKn2zUet2KgiRe 1HPhIiDiddN44pEEhmID8AzztmAkcOPV0UCNCWkrl+flnFTWEma0SdalBjHrbChJ DVpal0pn2oM0lIAKAS+h+WWOCIBrXo3xW2lydxw87eCAzU8wQCgDi1u9d/1qnO3Z IpmyLVC1z8/ipA+asxLFNSgGJyj3GuO7fCFsNsUX+sPKQTdgBOMiiA4YQ5beY4UF 4SYiS1bOQfNX746CeREVIMKIcpnniAQpGvi5xijE5qDX8OFyI3YDKFJZnBhYNXtx 3B2W1DB6RszVNm2h27hcJxo4ghi8v9Oc8EhpgPBJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFB6uWWFyd7ViddwVEjx0vvZC7V8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2MzY2ZjODExLTIzNzktNDBkMC05MTFkLWJlYTBiYTJiOWMzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5kwDQYJKoZIhvcNAQELBQADggEBAD8+kbizar1Q7/ncPg642Edi 8Hk2jJJ1kcBoJKTadUudoUtr6MJtKGnAZGcvX28bJDYUYNe4WsGDSkAC9sRYrLaj hRk36iCdb3MJl6NWj7QXWeAFniIOIsCvI5sBpJtmlQwuZaWTUM9AeCTnzTtbxWkh MMktgItxk5Dag4C6Tpz2ArYlxg7DEfbTqmNClUwP7S409BMbiqnsO99coSOqgQGu 29rNzxrIhEudMQgMFjHl+1K6hMChKenfzl8poBDotIbalAMPbjFmdhf0p+FRDmKv FkBHqWbEld1iYL2QExF9reYnBzizBzPpeYYsUeYehhoOuOEfyBS95RpXRPzittE= -----END CERTIFICATE-----Generated at Sat Jun 14 06:11:56 2025 by rpki-client