$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ee19f4b-6941-451a-a36b-eca835bb4851.roa File: 3ee19f4b-6941-451a-a36b-eca835bb4851.roa (raw, json) Hash identifier: yVVFruberd6V/+D52vAJ7+x9jCWdMDbI7+WNJoeX12o= Subject key identifier: 51:B5:4D:C3:C2:5A:EB:47:4A:B3:52:DA:36:5E:B4:7A:92:92:50:43 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 27C47438C695B7022841FF829EE432F4E063C281 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ee19f4b-6941-451a-a36b-eca835bb4851.roa Signing time: Mon 21 Jul 2025 16:20:10 +0000 ROA not before: Mon 21 Jul 2025 16:20:10 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 25 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c4:74:38:c6:95:b7:02:28:41:ff:82:9e:e4:32:f4:e0:63:c2:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 21 16:20:10 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=2f873eb3e4f239d06702d78ab86bdfeb91c2974a8545e57cad9347485ae1a720, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:59:51:1f:94:71:36:87:b0:1d:67:73:d1:26: be:0d:f1:f5:99:22:d0:d4:b5:41:2b:52:fa:6a:d0: 42:17:e1:82:ba:ad:6f:a6:23:23:cf:5b:fa:76:d2: 37:5b:e0:72:23:9b:7f:b1:99:7e:ed:48:04:7d:99: 8e:eb:55:f8:bd:a0:5d:47:3f:f4:52:09:bf:1e:15: 79:4a:04:29:24:6e:11:5a:fa:70:4e:6b:68:0c:ba: a0:6b:17:fc:a8:13:ab:f2:35:31:ab:63:56:19:6f: e6:01:65:31:c1:2d:e0:94:45:ad:51:15:77:a7:42: 22:e4:45:a1:54:90:e9:84:99:29:58:f0:51:ab:9b: fd:9a:5f:46:7c:c6:69:66:c4:0f:8f:9e:6d:ce:fb: 9b:6e:73:bc:cb:ca:fd:e4:8b:7d:ff:0f:b5:41:12: 92:cb:f1:c3:0e:c8:4a:04:6f:7d:ec:13:35:64:bd: c1:65:b4:cc:66:5f:08:c1:d2:92:54:57:d0:6c:7d: 31:0b:e8:7b:8f:ae:03:c6:af:92:88:60:60:74:8f: a6:5e:eb:cd:5d:69:79:70:38:2b:95:cb:3b:51:61: b8:a5:11:21:be:00:a9:97:6b:db:5c:24:a9:d1:85: 80:c8:ec:1e:19:9d:10:d1:c2:0f:2f:f9:43:a9:f2: f0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B5:4D:C3:C2:5A:EB:47:4A:B3:52:DA:36:5E:B4:7A:92:92:50:43 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ee19f4b-6941-451a-a36b-eca835bb4851.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0b::/48 Signature Algorithm: sha256WithRSAEncryption 93:a4:0f:86:ea:3e:ee:7f:a2:59:f3:bb:c2:18:ef:eb:b8:99: ba:1b:dc:00:f4:0e:fa:dd:b6:01:f8:49:ed:be:36:f7:30:ac: be:50:86:80:1a:ae:d0:c4:36:d4:d0:f1:5c:51:91:a3:ec:ad: 83:f3:97:95:be:99:8c:00:97:6e:9f:b9:f0:8b:14:7c:1a:bc: 09:35:f6:57:79:81:89:86:b0:3c:a9:bb:30:8a:22:25:d1:05: 9d:d3:c0:c7:0f:c8:1a:70:b4:8a:e8:c9:f6:c5:4b:01:25:72: 26:20:5a:1c:ad:3e:69:59:9b:cc:62:ed:70:e6:23:10:c6:6a: 34:b3:60:7c:a3:3b:fc:98:b9:29:37:fe:52:ff:7d:1d:5d:b9: eb:24:a0:04:e4:1d:e5:f5:0a:89:2a:0e:44:3c:43:04:07:b8: 26:9b:86:3d:2a:b0:ef:1e:4a:1f:20:18:af:b8:a8:da:75:a8: 6c:58:1f:bd:bc:72:a7:f2:30:d7:6f:0a:71:c6:da:4a:a8:19: 3c:51:5c:1a:84:7f:78:25:e1:03:2e:ae:ce:d2:95:01:f7:9c: e5:e6:85:5e:e8:32:8a:6f:6f:a7:0d:67:87:97:18:31:cd:15: 87:6a:4b:ec:11:b3:fc:22:a9:1b:5b:91:99:85:03:52:1e:45: 6d:3b:37:27 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ8R0OMaVtwIoQf+CnuQy9OBjwoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzIxMTYyMDEwWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjg3M2ViM2U0ZjIzOWQwNjcwMmQ3OGFiODZiZGZlYjkx YzI5NzRhODU0NWU1N2NhZDkzNDc0ODVhZTFhNzIwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyWVEflHE2h7AdZ3PRJr4N8fWZItDUtUErUvpq0EIX4YK6 rW+mIyPPW/p20jdb4HIjm3+xmX7tSAR9mY7rVfi9oF1HP/RSCb8eFXlKBCkkbhFa +nBOa2gMuqBrF/yoE6vyNTGrY1YZb+YBZTHBLeCURa1RFXenQiLkRaFUkOmEmSlY 8FGrm/2aX0Z8xmlmxA+Pnm3O+5tuc7zLyv3ki33/D7VBEpLL8cMOyEoEb33sEzVk vcFltMxmXwjB0pJUV9BsfTEL6HuPrgPGr5KIYGB0j6Ze681daXlwOCuVyztRYbil ESG+AKmXa9tcJKnRhYDI7B4ZnRDRwg8v+UOp8vCLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUbVNw8Ja60dKs1LaNl60epKSUEMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNlZTE5ZjRiLTY5NDEtNDUxYS1hMzZiLWVjYTgzNWJiNDg1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAswDQYJKoZIhvcNAQELBQADggEBAJOkD4bqPu5/olnzu8IY7+u4 mbob3AD0DvrdtgH4Se2+NvcwrL5QhoAartDENtTQ8VxRkaPsrYPzl5W+mYwAl26f ufCLFHwavAk19ld5gYmGsDypuzCKIiXRBZ3TwMcPyBpwtIroyfbFSwElciYgWhyt PmlZm8xi7XDmIxDGajSzYHyjO/yYuSk3/lL/fR1dueskoATkHeX1CokqDkQ8QwQH uCabhj0qsO8eSh8gGK+4qNp1qGxYH728cqfyMNdvCnHG2kqoGTxRXBqEf3gl4QMu rs7SlQH3nOXmhV7oMopvb6cNZ4eXGDHNFYdqS+wRs/wiqRtbkZmFA1IeRW07Nyc= -----END CERTIFICATE-----Generated at Thu Jul 24 04:52:51 2025 by rpki-client