$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f5f45ee0-86c2-4d70-a0dc-72e1f5e4ed74.roa File: f5f45ee0-86c2-4d70-a0dc-72e1f5e4ed74.roa (raw, json) Hash identifier: x1ENkNPXouBo+BqGKksITjQKMosPZPzf2uwfB/b5q2g= Subject key identifier: 72:B9:F4:39:03:C6:25:2D:7B:9E:A5:C4:54:6E:BF:1A:0D:F3:BB:62 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 30D1855186357257DD52ACF361FE8338C5D5616B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f5f45ee0-86c2-4d70-a0dc-72e1f5e4ed74.roa Signing time: Sat 31 May 2025 00:31:14 +0000 ROA not before: Sat 31 May 2025 00:31:14 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c08::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:d1:85:51:86:35:72:57:dd:52:ac:f3:61:fe:83:38:c5:d5:61:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 31 00:31:14 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=5e7bc17aff877906229ae1797172751778ff740da04200b5dc8044b6cb747c98, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:cd:bd:3b:83:dc:41:67:7e:9f:5a:96:c0: 36:58:60:dc:a9:ca:c8:aa:ec:bf:0b:2c:57:70:a9: 28:31:80:d8:cd:22:65:50:57:d5:ee:d1:12:66:df: b8:1d:9b:b2:57:87:1d:55:0d:b2:82:ac:21:c8:1a: 3f:6b:84:e1:3f:e6:b4:06:18:fb:2e:1b:0b:d7:ec: 4b:d2:4c:25:45:8a:d8:f6:1d:1b:d8:b0:f3:a8:03: 19:36:95:f8:f8:23:59:e2:66:c9:6a:99:2f:68:3a: 95:3d:04:93:87:42:8a:fa:bb:67:15:6a:8f:2b:36: 36:97:97:73:4f:aa:6a:fd:c4:ee:5b:6b:03:7f:4a: 97:03:0d:b4:25:f4:2f:b4:3f:4f:01:58:fe:1e:e9: 57:36:bc:1a:28:a5:2d:c2:d7:2d:5b:8b:25:16:f0: b3:d3:d9:42:af:96:2f:18:db:c6:f9:e8:d0:b2:1a: 3f:69:8b:c7:e3:57:0a:d0:26:d5:a7:68:35:3b:ad: 00:ee:65:93:d8:14:69:6c:9e:ce:67:e4:a8:64:8c: 42:37:8a:a5:e7:1e:a1:04:e3:7a:60:48:88:65:e9: bd:41:20:c3:86:1d:d3:1e:47:b1:00:11:b9:95:f3: 00:5d:8a:bf:2b:6a:63:87:fd:c1:4d:35:02:2e:fa: 15:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:B9:F4:39:03:C6:25:2D:7B:9E:A5:C4:54:6E:BF:1A:0D:F3:BB:62 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f5f45ee0-86c2-4d70-a0dc-72e1f5e4ed74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c08::/48 Signature Algorithm: sha256WithRSAEncryption 8d:af:3b:02:60:b5:e3:df:a3:c4:af:0e:7e:ca:43:b3:0e:98: 1f:ac:de:cc:2c:a3:63:d5:48:06:75:08:32:78:41:f5:c4:06: 2c:f1:0e:9d:02:75:58:3f:d4:31:aa:52:ae:97:ac:e6:1b:39: 3f:2b:57:a5:4b:df:78:8b:93:87:c1:c7:fd:94:62:7f:6e:c3: e2:31:70:30:7c:a5:a8:11:d7:ac:ad:6a:c9:44:cb:70:9a:7e: 96:2f:65:72:bd:96:9e:d7:78:9b:a6:cd:e8:c8:e6:71:50:b4: 1c:8f:6c:5b:4d:46:87:88:ee:e2:b6:d8:e9:80:32:d2:26:ab: 03:fd:13:a4:02:2c:68:7f:65:4c:f8:5e:58:7f:95:b8:46:41: cc:9c:50:89:ec:e2:e2:0d:60:4f:45:25:40:1d:85:be:57:2a: 5c:a5:1b:cb:02:d9:18:77:98:6f:b4:98:87:a6:de:15:f5:d3: 9e:ae:7e:60:cf:67:ce:0b:9b:02:ab:b5:50:2c:cf:ef:0d:4e: f0:4a:68:c1:25:17:0a:6f:94:ef:9e:79:02:dd:05:83:c6:cb: 09:42:be:4e:4b:1b:7f:3e:9c:9e:a5:de:b0:2a:e9:ac:4d:53: 7e:ec:e7:53:bd:d3:86:c4:eb:fb:17:84:33:b8:7c:32:b0:46: 13:a2:05:41 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMNGFUYY1clfdUqzzYf6DOMXVYWswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTMxMDAzMTE0WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTdiYzE3YWZmODc3OTA2MjI5YWUxNzk3MTcyNzUxNzc4 ZmY3NDBkYTA0MjAwYjVkYzgwNDRiNmNiNzQ3Yzk4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC39c29O4PcQWd+n1qWwDZYYNypysiq7L8LLFdwqSgxgNjN ImVQV9Xu0RJm37gdm7JXhx1VDbKCrCHIGj9rhOE/5rQGGPsuGwvX7EvSTCVFitj2 HRvYsPOoAxk2lfj4I1niZslqmS9oOpU9BJOHQor6u2cVao8rNjaXl3NPqmr9xO5b awN/SpcDDbQl9C+0P08BWP4e6Vc2vBoopS3C1y1biyUW8LPT2UKvli8Y28b56NCy Gj9pi8fjVwrQJtWnaDU7rQDuZZPYFGlsns5n5KhkjEI3iqXnHqEE43pgSIhl6b1B IMOGHdMeR7EAEbmV8wBdir8ramOH/cFNNQIu+hUpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcrn0OQPGJS17nqXEVG6/Gg3zu2IwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Y1ZjQ1ZWUwLTg2YzItNGQ3MC1hMGRjLTcyZTFmNWU0ZWQ3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAgwDQYJKoZIhvcNAQELBQADggEBAI2vOwJgtePfo8SvDn7KQ7MO mB+s3swso2PVSAZ1CDJ4QfXEBizxDp0CdVg/1DGqUq6XrOYbOT8rV6VL33iLk4fB x/2UYn9uw+IxcDB8pagR16ytaslEy3CafpYvZXK9lp7XeJumzejI5nFQtByPbFtN RoeI7uK22OmAMtImqwP9E6QCLGh/ZUz4Xlh/lbhGQcycUIns4uINYE9FJUAdhb5X KlylG8sC2Rh3mG+0mIem3hX1056ufmDPZ84LmwKrtVAsz+8NTvBKaMElFwpvlO+e eQLdBYPGywlCvk5LG38+nJ6l3rAq6axNU37s51O904bE6/sXhDO4fDKwRhOiBUE= -----END CERTIFICATE-----Generated at Sat Jun 14 05:51:44 2025 by rpki-client