$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa File: fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa (raw, json) Hash identifier: 3JXMvlx3bHlwcGhpKZ8m+P0woSCa3mjE59BVYmf5VLU= Subject key identifier: 04:8A:6E:7C:D5:F1:70:96:2A:D9:51:63:D9:91:E1:7E:9C:AD:81:7B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1AD5BF1F312BC5C0818B1BC5B1C5859BFAE405B1 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa Signing time: Sat 31 May 2025 00:30:56 +0000 ROA not before: Sat 31 May 2025 00:30:56 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c04::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d5:bf:1f:31:2b:c5:c0:81:8b:1b:c5:b1:c5:85:9b:fa:e4:05:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 31 00:30:56 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=e9edde289f994dfb857b62cc7d2487d5ba36882c1cfcc6229c706ee2db43048a, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f4:2d:94:e0:ba:91:cd:57:29:ce:c8:85:08: b7:39:df:43:e7:b5:41:95:c7:a7:e1:87:b2:2c:e4: 2b:84:c1:00:79:c3:65:e4:7d:e4:b1:82:08:85:24: e0:eb:68:05:71:9f:d5:61:a9:a2:92:a7:3d:6e:2b: 99:e7:f7:29:5f:b6:e8:7d:9b:5a:34:e8:b3:81:15: ed:8f:81:49:76:0f:36:33:53:07:21:cc:b7:c6:a3: 86:9c:f6:f6:c3:e4:4f:4e:7b:3c:7a:07:9b:4a:4b: f4:0e:eb:0d:95:d0:d4:95:25:93:ad:9c:93:1c:1f: 35:53:f3:dc:33:4d:e9:12:5b:0a:d7:69:30:a3:86: 7e:1c:f6:05:30:ea:e2:1f:17:cb:c8:6a:e0:b8:17: c7:dc:fc:b3:d5:c2:92:12:0e:d6:c9:ce:7f:46:4f: e1:a1:ac:c8:56:24:13:50:e8:28:7a:8b:79:b3:d5: 07:fe:f9:33:c7:35:42:9b:f8:86:cd:04:e1:9b:fe: 04:e4:28:ae:6c:2f:45:0a:11:d1:ab:fe:51:6d:b8: 67:8c:6d:75:bd:7e:54:5e:12:24:78:5b:76:b7:f6: e8:40:fa:e3:6f:91:d6:53:0e:ca:70:52:f4:e1:dc: 26:e0:da:aa:4e:33:20:42:3f:38:9a:aa:93:7e:4f: 44:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8A:6E:7C:D5:F1:70:96:2A:D9:51:63:D9:91:E1:7E:9C:AD:81:7B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c04::/48 Signature Algorithm: sha256WithRSAEncryption a0:ef:51:6e:fe:ad:80:cb:46:db:56:89:d5:ee:92:2c:82:12: e7:fb:51:43:7a:54:4e:ce:49:06:8a:d2:21:2c:c3:c9:73:72: c1:99:8d:a1:61:f0:ac:50:84:04:22:db:0e:ad:00:f3:5e:f0: 41:02:51:13:8c:c2:10:59:14:25:a5:97:e5:fa:22:b0:e0:e2: e5:97:e4:60:20:e8:82:d1:b2:76:d6:85:9a:f4:9e:66:ec:d7: 30:b4:5f:b3:0b:fe:a7:17:f9:d4:ee:94:9c:a6:03:c9:98:be: 3d:f0:48:9e:97:09:c2:a6:03:31:3f:97:db:4e:2c:d4:de:64: 8d:50:99:93:23:55:34:e6:89:43:bf:61:1a:3a:1f:53:e7:aa: de:e5:d6:f6:67:3d:af:a5:4a:11:1c:bb:83:e3:85:76:26:51: c1:8e:39:9e:d2:8e:ed:3f:f9:55:a4:28:ff:0c:b3:35:3b:09: 10:bd:aa:8e:39:c2:79:55:38:a8:42:78:e0:e6:4b:41:51:bd: 1b:94:fa:58:d0:5b:d1:df:59:2a:18:d2:27:6d:dd:51:a2:db: ac:83:a5:f0:17:3a:da:a1:f1:41:e9:c7:ed:ae:0f:14:f1:f7: 99:81:b7:a3:64:3a:80:2e:15:88:e9:fa:ed:7f:dd:03:1f:77: 2c:f8:65:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGtW/HzErxcCBixvFscWFm/rkBbEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTMxMDAzMDU2WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWVkZGUyODlmOTk0ZGZiODU3YjYyY2M3ZDI0ODdkNWJh MzY4ODJjMWNmY2M2MjI5YzcwNmVlMmRiNDMwNDhhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC39C2U4LqRzVcpzsiFCLc530PntUGVx6fhh7Is5CuEwQB5 w2XkfeSxggiFJODraAVxn9VhqaKSpz1uK5nn9ylftuh9m1o06LOBFe2PgUl2DzYz UwchzLfGo4ac9vbD5E9Oezx6B5tKS/QO6w2V0NSVJZOtnJMcHzVT89wzTekSWwrX aTCjhn4c9gUw6uIfF8vIauC4F8fc/LPVwpISDtbJzn9GT+GhrMhWJBNQ6Ch6i3mz 1Qf++TPHNUKb+IbNBOGb/gTkKK5sL0UKEdGr/lFtuGeMbXW9flReEiR4W3a39uhA +uNvkdZTDspwUvTh3Cbg2qpOMyBCPziaqpN+T0QbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBIpufNXxcJYq2VFj2ZHhfpytgXswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2ZkZmNlNTA1LWQyMmEtNDBiOS1hMjUzLTdiNzdiMGY5ZjFjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAQwDQYJKoZIhvcNAQELBQADggEBAKDvUW7+rYDLRttWidXukiyC Euf7UUN6VE7OSQaK0iEsw8lzcsGZjaFh8KxQhAQi2w6tAPNe8EECUROMwhBZFCWl l+X6IrDg4uWX5GAg6ILRsnbWhZr0nmbs1zC0X7ML/qcX+dTulJymA8mYvj3wSJ6X CcKmAzE/l9tOLNTeZI1QmZMjVTTmiUO/YRo6H1Pnqt7l1vZnPa+lShEcu4PjhXYm UcGOOZ7Sju0/+VWkKP8MszU7CRC9qo45wnlVOKhCeODmS0FRvRuU+ljQW9HfWSoY 0idt3VGi26yDpfAXOtqh8UHpx+2uDxTx95mBt6NkOoAuFYjp+u1/3QMfdyz4ZXI= -----END CERTIFICATE-----Generated at Sat Jun 14 06:02:12 2025 by rpki-client