$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e7607360-6fe5-44db-bbe5-edd1b127da54.roa File: e7607360-6fe5-44db-bbe5-edd1b127da54.roa (raw, json) Hash identifier: 4zyM5pv23JOklYKDomd+52STH74ZoKNprfF52d4mo8o= Subject key identifier: 86:31:0A:16:5E:75:21:9A:14:01:1A:7B:A3:15:E4:FA:87:EA:00:07 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 560116FFECFF122EDAEA5198244DDE0D2C58D52E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e7607360-6fe5-44db-bbe5-edd1b127da54.roa Signing time: Tue 20 May 2025 17:50:09 +0000 ROA not before: Tue 20 May 2025 17:50:09 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:f03d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:01:16:ff:ec:ff:12:2e:da:ea:51:98:24:4d:de:0d:2c:58:d5:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:50:09 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=ca505a1d63a7f98d21faf1a7881b7cf6e9784feb662466d1bdf092451c85bf90, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:4c:b0:b9:1f:bc:69:71:95:ab:bb:38:91:00: 21:1a:d9:da:7c:ca:52:86:9d:45:38:8d:01:cf:17: 41:ca:8e:9a:de:54:7b:e7:e2:3d:f7:2f:02:0d:dd: 6a:f7:d8:11:c7:dd:ac:30:14:fd:93:04:78:78:7d: 77:03:87:2d:8e:7e:af:06:1b:6c:e3:c7:bb:14:bb: 4f:fc:f1:22:fd:37:a9:a4:ab:e0:49:67:34:c5:75: ee:23:a7:7b:a6:70:13:59:c3:12:d2:0d:61:cc:d3: 43:e3:30:fc:05:88:1d:ce:62:04:8e:5d:91:3a:fe: a1:89:18:dd:fe:29:d5:1f:bd:0f:2e:8b:e4:82:40: e2:01:2a:31:e9:30:75:62:ce:3c:be:93:cb:31:1a: 4e:0d:79:9c:dd:31:7b:a4:a8:d8:a6:b8:98:35:e0: d0:60:c2:9f:38:26:5c:9d:18:10:1b:92:0d:07:1d: fd:d2:5f:a9:e3:cd:f6:77:d6:05:47:2a:3f:3f:7e: 2a:3a:66:d7:95:40:c3:8c:38:72:81:17:fe:d9:c3: 14:4d:f8:f2:d9:4b:a1:e9:95:98:7e:3e:8f:ff:56: 6d:a6:d8:df:9a:a5:52:93:f8:3f:04:f9:34:68:d1: ed:22:e4:37:51:ab:a8:25:a8:c7:04:a7:8c:55:81: fe:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:31:0A:16:5E:75:21:9A:14:01:1A:7B:A3:15:E4:FA:87:EA:00:07 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e7607360-6fe5-44db-bbe5-edd1b127da54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03d::/48 Signature Algorithm: sha256WithRSAEncryption 8e:dd:27:69:6a:54:64:5f:33:2f:87:35:3b:ca:24:fd:aa:84: 53:c8:21:65:c7:f2:25:ea:bb:ab:1c:ba:23:08:54:d1:61:51: 04:a1:9e:d7:17:1f:61:bd:2b:93:20:be:b5:c2:28:f7:5b:4d: d9:4d:71:9b:b7:f0:94:d5:e4:4f:f7:67:59:83:07:2b:41:2d: 57:4a:2c:91:38:ef:92:28:9e:70:d5:0d:ad:c7:47:19:be:ac: 56:7e:4f:c8:45:df:d8:4e:04:90:7e:e4:99:01:7d:c0:2c:b5: 8b:e6:bd:24:dd:24:da:c2:81:8c:8c:78:4a:9c:45:c7:0a:6d: 41:1e:f5:ed:b3:bf:1a:ee:04:62:8e:1a:46:ec:6c:b0:f6:2f: cd:19:fe:c7:35:8e:f1:8b:64:eb:66:66:f8:25:ea:43:da:f3: 40:df:90:46:75:27:65:b5:2b:bb:31:2c:d8:73:3f:8c:9b:4a: 0e:97:64:c6:40:37:65:14:a1:eb:e5:f2:05:6c:33:c7:c4:53: 5d:6c:15:3a:eb:d1:97:9f:33:3a:2c:dd:e6:da:ea:12:15:81: 8a:00:cc:48:45:89:6f:12:d1:fa:d3:65:29:4e:a8:10:f2:12: c1:90:95:93:e3:49:eb:28:e1:42:61:3a:b2:09:6c:ef:29:ad: af:31:7e:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVgEW/+z/Ei7a6lGYJE3eDSxY1S4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MDA5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTUwNWExZDYzYTdmOThkMjFmYWYxYTc4ODFiN2NmNmU5 Nzg0ZmViNjYyNDY2ZDFiZGYwOTI0NTFjODViZjkwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmTLC5H7xpcZWruziRACEa2dp8ylKGnUU4jQHPF0HKjpre VHvn4j33LwIN3Wr32BHH3awwFP2TBHh4fXcDhy2Ofq8GG2zjx7sUu0/88SL9N6mk q+BJZzTFde4jp3umcBNZwxLSDWHM00PjMPwFiB3OYgSOXZE6/qGJGN3+KdUfvQ8u i+SCQOIBKjHpMHVizjy+k8sxGk4NeZzdMXukqNimuJg14NBgwp84JlydGBAbkg0H Hf3SX6njzfZ31gVHKj8/fio6ZteVQMOMOHKBF/7ZwxRN+PLZS6HplZh+Po//Vm2m 2N+apVKT+D8E+TRo0e0i5DdRq6glqMcEp4xVgf5RAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhjEKFl51IZoUARp7oxXk+ofqAAcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U3NjA3MzYwLTZmZTUtNDRkYi1iYmU1LWVkZDFiMTI3ZGE1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D0wDQYJKoZIhvcNAQELBQADggEBAI7dJ2lqVGRfMy+HNTvKJP2q hFPIIWXH8iXqu6scuiMIVNFhUQShntcXH2G9K5MgvrXCKPdbTdlNcZu38JTV5E/3 Z1mDBytBLVdKLJE475IonnDVDa3HRxm+rFZ+T8hF39hOBJB+5JkBfcAstYvmvSTd JNrCgYyMeEqcRccKbUEe9e2zvxruBGKOGkbsbLD2L80Z/sc1jvGLZOtmZvgl6kPa 80DfkEZ1J2W1K7sxLNhzP4ybSg6XZMZAN2UUoevl8gVsM8fEU11sFTrr0ZefMzos 3eba6hIVgYoAzEhFiW8S0frTZSlOqBDyEsGQlZPjSeso4UJhOrIJbO8pra8xfi4= -----END CERTIFICATE-----Generated at Sat Jun 14 05:58:03 2025 by rpki-client