$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ce035316-a06e-4b49-a04d-0f1a5ca31246.roa File: ce035316-a06e-4b49-a04d-0f1a5ca31246.roa (raw, json) Hash identifier: ibIym5OMvxo531nEwtngmET72YRwiXJ2pFtFy+q54dg= Subject key identifier: 18:36:06:EE:57:10:F2:37:16:8D:E5:A5:75:11:3F:FF:99:88:B4:46 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 599267C41223F0965B8F32EE828D1F2A8F574197 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ce035316-a06e-4b49-a04d-0f1a5ca31246.roa Signing time: Sat 31 May 2025 00:40:10 +0000 ROA not before: Sat 31 May 2025 00:40:10 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:92:67:c4:12:23:f0:96:5b:8f:32:ee:82:8d:1f:2a:8f:57:41:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 31 00:40:10 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=fadf2ee66b0fc7d60a4673701e10d86295b66099e7e8942b88317bf17d779791, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8a:51:2c:86:4e:25:be:b9:36:e4:cf:8a:85: ce:60:ee:51:04:de:8d:04:76:b8:fe:08:e0:78:c8: 9a:ff:27:ea:bf:bd:41:9e:9c:84:8e:5c:95:4b:79: fb:03:69:d6:43:98:09:3e:27:a3:09:1f:9f:2d:ca: d8:a1:9a:bf:6c:ec:b8:e5:f5:93:17:6e:36:1a:2e: 26:c4:d3:b6:64:01:d6:e7:f4:00:a4:e8:5b:04:7f: 5e:65:0b:f9:53:aa:ce:04:1f:46:a4:22:8d:8e:28: 3e:c9:2b:4c:14:09:2b:34:18:33:9d:59:02:47:5b: c9:97:7d:39:db:4d:76:45:7d:42:06:13:58:d9:b8: 5b:e2:30:2e:9a:f9:e4:af:7e:62:79:1f:11:45:e4: bb:85:31:7e:88:0d:94:69:45:5b:1c:05:cd:4d:43: e3:e0:47:22:f3:7e:6a:f9:d2:9c:6c:c4:cb:f2:6f: ef:e7:a2:90:89:b3:8b:38:20:a2:ca:88:91:f7:f5: 46:17:fd:f5:f2:c5:90:6e:f8:5e:6d:3b:e2:d6:29: 1b:21:eb:9e:22:19:59:2a:01:f7:64:28:38:48:eb: a2:d2:f3:c9:8f:ef:0e:d2:ae:79:83:e9:c7:ff:fb: 21:ee:fe:e0:7f:ce:3f:ad:4e:8d:28:46:88:4b:d0: 60:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:36:06:EE:57:10:F2:37:16:8D:E5:A5:75:11:3F:FF:99:88:B4:46 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ce035316-a06e-4b49-a04d-0f1a5ca31246.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c18::/48 Signature Algorithm: sha256WithRSAEncryption ac:b0:13:b2:c4:e0:6f:8f:63:85:7c:cf:20:21:48:12:f7:d1: e7:5c:39:6b:5c:83:52:36:69:d3:5a:e2:d3:f4:1c:da:94:9e: 8d:f5:77:7d:56:be:00:e9:eb:16:da:87:44:57:c4:8d:43:ec: f5:8c:5a:ce:57:61:d4:cd:ba:4b:b5:91:61:7f:d2:9e:59:06: 1b:c1:e1:20:6e:f4:9b:a2:13:6e:61:1e:05:2f:5b:8c:80:87: 51:0f:b6:77:c2:6e:4b:60:6f:2f:7c:d1:42:91:dc:1c:24:26: 9d:5c:a5:bb:8e:52:f0:91:fb:7f:ef:59:c7:c6:7d:a6:84:81: ca:34:a1:2a:e3:c9:98:d9:6a:3f:d5:61:9e:3e:75:80:6d:0a: 27:e1:08:75:50:d2:fd:af:f6:44:5f:fc:35:f3:ce:a7:99:ac: 59:34:94:fa:56:dd:a7:3f:e0:b9:04:e3:db:25:f8:05:2c:39: 1a:8a:84:0e:fe:3c:ca:b0:d4:7a:90:c2:c9:33:60:15:4d:cd: ef:ad:74:75:a7:57:3c:00:a6:c3:6a:42:12:4b:8a:b9:51:9a: 54:8a:a9:81:1d:c6:a0:fa:da:09:cf:af:0e:ee:01:82:21:d8: 4a:3f:ac:a0:13:8c:65:9e:71:ec:db:55:83:06:4c:d8:ed:32: da:89:bb:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWZJnxBIj8JZbjzLugo0fKo9XQZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTMxMDA0MDEwWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWRmMmVlNjZiMGZjN2Q2MGE0NjczNzAxZTEwZDg2Mjk1 YjY2MDk5ZTdlODk0MmI4ODMxN2JmMTdkNzc5NzkxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxilEshk4lvrk25M+Khc5g7lEE3o0Edrj+COB4yJr/J+q/ vUGenISOXJVLefsDadZDmAk+J6MJH58tytihmr9s7Ljl9ZMXbjYaLibE07ZkAdbn 9ACk6FsEf15lC/lTqs4EH0akIo2OKD7JK0wUCSs0GDOdWQJHW8mXfTnbTXZFfUIG E1jZuFviMC6a+eSvfmJ5HxFF5LuFMX6IDZRpRVscBc1NQ+PgRyLzfmr50pxsxMvy b+/nopCJs4s4IKLKiJH39UYX/fXyxZBu+F5tO+LWKRsh654iGVkqAfdkKDhI66LS 88mP7w7SrnmD6cf/+yHu/uB/zj+tTo0oRohL0GB3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGDYG7lcQ8jcWjeWldRE//5mItEYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2NlMDM1MzE2LWEwNmUtNGI0OS1hMDRkLTBmMWE1Y2EzMTI0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBgwDQYJKoZIhvcNAQELBQADggEBAKywE7LE4G+PY4V8zyAhSBL3 0edcOWtcg1I2adNa4tP0HNqUno31d31WvgDp6xbah0RXxI1D7PWMWs5XYdTNuku1 kWF/0p5ZBhvB4SBu9JuiE25hHgUvW4yAh1EPtnfCbktgby980UKR3BwkJp1cpbuO UvCR+3/vWcfGfaaEgco0oSrjyZjZaj/VYZ4+dYBtCifhCHVQ0v2v9kRf/DXzzqeZ rFk0lPpW3ac/4LkE49sl+AUsORqKhA7+PMqw1HqQwskzYBVNze+tdHWnVzwApsNq QhJLirlRmlSKqYEdxqD62gnPrw7uAYIh2Eo/rKATjGWecezbVYMGTNjtMtqJu+s= -----END CERTIFICATE-----Generated at Sat Jun 14 05:53:54 2025 by rpki-client