$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e52fa04b-f965-4052-87cb-6e539ccd0345.roa File: e52fa04b-f965-4052-87cb-6e539ccd0345.roa (raw, json) Hash identifier: 0ErvxzMJsbJyrS4Vx8TcQGAZf6yOlgtSU3DCTPfbcjQ= Subject key identifier: 8B:8B:67:69:9B:49:7C:CC:8C:9F:2B:FC:9E:94:EE:EA:7A:6E:2A:AB Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3539D9294F6FD155C0C46D561B0BC5CF08E282F5 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e52fa04b-f965-4052-87cb-6e539ccd0345.roa Signing time: Sat 31 May 2025 00:40:19 +0000 ROA not before: Sat 31 May 2025 00:40:19 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c1b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:39:d9:29:4f:6f:d1:55:c0:c4:6d:56:1b:0b:c5:cf:08:e2:82:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 31 00:40:19 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=1cb820896ec337dfce72cb1c89842f71a72fe56ca58b3ac0e2871ca4ba0c5411, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:75:11:6e:53:9c:5c:4d:de:22:c1:a7:d1:66: 2f:1b:c9:21:86:13:e0:09:2e:47:5e:3e:44:be:fd: 3b:95:3d:f0:ab:78:ae:8a:c4:13:c4:e8:3c:f4:af: e4:4c:d5:d8:51:a9:b2:90:3e:5c:4e:15:8c:94:5a: f9:ca:ba:55:40:d9:ba:47:f7:b7:e0:7c:e0:ac:c6: f1:ba:84:81:f4:58:af:a7:44:0b:45:43:68:a9:2c: 11:62:6c:37:72:16:c9:48:21:fc:b8:e7:02:49:c8: b1:4e:4a:8f:87:2f:e7:ac:4b:57:f9:ff:3a:ef:94: a5:bf:1d:66:6d:58:e6:40:a9:de:e0:ba:e0:4e:f7: ff:88:b8:87:e3:83:49:3f:e9:32:ec:99:d2:18:98: d6:d9:74:e3:e5:bc:6c:0d:d7:1e:6c:35:4e:2c:ef: 57:ea:bb:81:1e:e2:b2:27:ec:5f:b8:00:0e:b1:39: 42:df:8e:4d:03:f0:cf:f3:5e:52:d0:7f:77:32:d3: fd:ce:17:ef:1e:81:e2:71:75:b6:5e:ed:36:98:95: be:c0:26:33:9c:d9:8c:30:c3:bd:91:ab:cc:10:92: 4f:5c:4a:a8:f4:67:22:d6:47:83:94:9e:da:40:57: 72:61:1d:b4:4d:61:80:4e:19:97:83:9c:f6:39:ea: a2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8B:67:69:9B:49:7C:CC:8C:9F:2B:FC:9E:94:EE:EA:7A:6E:2A:AB X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e52fa04b-f965-4052-87cb-6e539ccd0345.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1b::/48 Signature Algorithm: sha256WithRSAEncryption 5f:bb:60:21:b3:1b:7c:ff:fa:9d:d2:40:3c:40:0d:0a:7b:35: e3:f9:2e:51:0b:34:20:67:8b:e9:fb:9f:94:92:3e:f2:60:f2: 3b:2e:d4:cd:ad:60:2a:c2:c1:8c:4f:48:a6:a7:71:90:5e:a9: b9:5d:ff:72:01:ba:33:3a:89:01:5d:6c:c0:5d:09:3e:af:8d: 49:4b:66:3c:68:b7:fb:45:0a:6c:9a:70:d4:87:9c:90:53:a8: 81:a6:22:56:00:d5:80:58:8c:54:7b:e0:68:77:cf:c2:66:f8: ce:43:80:da:72:b8:a3:47:95:16:b7:26:12:59:24:92:1f:53: 74:fd:bf:bf:81:b5:16:55:7d:73:45:e7:41:1f:f7:d0:d1:94: ae:68:71:9d:4e:05:8a:54:34:9b:f0:5d:47:72:16:99:7c:40: 9e:cc:63:95:66:cf:c8:b8:da:36:68:7c:09:60:9a:7d:fe:94: e2:e6:57:37:74:89:7e:c8:c2:79:9c:5d:e8:7f:0c:18:d7:6a: 0c:c8:1e:44:f6:aa:4e:da:e2:25:57:be:44:56:8b:6e:7d:d1: 5c:bc:57:c8:c1:22:51:a3:c8:a1:83:8c:03:72:01:29:2f:3d: 78:42:fa:b6:35:9e:4e:48:84:6f:48:22:79:d9:b2:d4:40:6f: 5d:15:9e:cd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNTnZKU9v0VXAxG1WGwvFzwjigvUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTMxMDA0MDE5WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2I4MjA4OTZlYzMzN2RmY2U3MmNiMWM4OTg0MmY3MWE3 MmZlNTZjYTU4YjNhYzBlMjg3MWNhNGJhMGM1NDExMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrdRFuU5xcTd4iwafRZi8bySGGE+AJLkdePkS+/TuVPfCr eK6KxBPE6Dz0r+RM1dhRqbKQPlxOFYyUWvnKulVA2bpH97fgfOCsxvG6hIH0WK+n RAtFQ2ipLBFibDdyFslIIfy45wJJyLFOSo+HL+esS1f5/zrvlKW/HWZtWOZAqd7g uuBO9/+IuIfjg0k/6TLsmdIYmNbZdOPlvGwN1x5sNU4s71fqu4Ee4rIn7F+4AA6x OULfjk0D8M/zXlLQf3cy0/3OF+8egeJxdbZe7TaYlb7AJjOc2Ywww72Rq8wQkk9c Sqj0ZyLWR4OUntpAV3JhHbRNYYBOGZeDnPY56qK1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUi4tnaZtJfMyMnyv8npTu6npuKqswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U1MmZhMDRiLWY5NjUtNDA1Mi04N2NiLTZlNTM5Y2NkMDM0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBswDQYJKoZIhvcNAQELBQADggEBAF+7YCGzG3z/+p3SQDxADQp7 NeP5LlELNCBni+n7n5SSPvJg8jsu1M2tYCrCwYxPSKancZBeqbld/3IBujM6iQFd bMBdCT6vjUlLZjxot/tFCmyacNSHnJBTqIGmIlYA1YBYjFR74Gh3z8Jm+M5DgNpy uKNHlRa3JhJZJJIfU3T9v7+BtRZVfXNF50Ef99DRlK5ocZ1OBYpUNJvwXUdyFpl8 QJ7MY5Vmz8i42jZofAlgmn3+lOLmVzd0iX7IwnmcXeh/DBjXagzIHkT2qk7a4iVX vkRWi2590Vy8V8jBIlGjyKGDjANyASkvPXhC+rY1nk5IhG9IInnZstRAb10Vns0= -----END CERTIFICATE-----Generated at Sat Jun 14 06:32:27 2025 by rpki-client