$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/74590d04-dff8-4a80-88df-373091c3adef.roa File: 74590d04-dff8-4a80-88df-373091c3adef.roa (raw, json) Hash identifier: FL1qcJu/Pa+ELimAoNV1i97Td4s+RT5x5lDoxxqLsM8= Subject key identifier: 4C:8B:97:73:1E:9D:BB:85:42:72:5C:7F:CA:7C:59:89:24:C0:6F:C4 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7B3C388E0BCE9B55F9071ADC7D8FB0050F00288E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/74590d04-dff8-4a80-88df-373091c3adef.roa Signing time: Mon 21 Jul 2025 16:31:04 +0000 ROA not before: Mon 21 Jul 2025 16:31:04 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c19::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 25 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3c:38:8e:0b:ce:9b:55:f9:07:1a:dc:7d:8f:b0:05:0f:00:28:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 21 16:31:04 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=1fb2c79d217001f7827a1e80afdf1c5667f31c393092e464d6fe2374f98347ed, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0c:fc:a9:d9:e1:c9:14:6c:94:bc:f6:12:89: 7a:05:98:45:1d:0a:47:c6:e9:98:d1:c6:44:f7:0c: 24:f0:9e:78:b5:b6:f6:a1:97:6e:26:50:a2:6e:2e: ab:fd:09:38:1e:71:0b:6e:49:ed:b8:13:67:64:b3: 97:f5:ff:fc:7c:d7:06:3e:e8:a3:ca:de:78:a1:c0: 9b:63:86:9b:a6:52:65:45:aa:96:e8:3b:79:3d:ed: f8:05:97:d6:90:aa:b6:10:d8:40:d6:04:52:8f:71: ee:cd:67:7e:f6:24:50:1a:5f:dd:69:52:7b:7c:97: 1a:64:6c:54:d7:c7:1e:e5:e8:c3:ff:10:e8:ed:8d: fe:bf:c2:a2:26:5a:80:4e:35:f2:f2:f7:d0:43:cd: 04:fd:c4:18:a0:10:32:41:f0:1a:78:ec:0a:ea:26: 3e:a6:bc:d0:e1:89:f0:64:d8:94:67:86:35:1b:e3: cc:9a:5f:30:04:29:e5:ed:cd:ae:3f:71:8f:5a:02: 4c:1d:36:0b:89:b7:b5:9e:a5:98:20:db:e3:36:b7: a8:2a:22:63:fb:51:98:42:e0:18:f9:44:56:0f:5f: c2:c3:f3:57:d2:96:3b:4d:dc:65:20:57:cb:07:d6: b3:55:ce:7a:15:5f:8d:9d:24:f1:c2:2a:26:26:09: f9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:8B:97:73:1E:9D:BB:85:42:72:5C:7F:CA:7C:59:89:24:C0:6F:C4 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/74590d04-dff8-4a80-88df-373091c3adef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c19::/48 Signature Algorithm: sha256WithRSAEncryption 8f:d9:1c:bd:cb:97:9f:b9:1f:fd:e6:62:36:cd:eb:e6:dd:3a: e1:32:de:4b:4c:ba:de:a4:21:eb:10:a3:76:42:0d:05:a6:d3: 0d:f1:21:83:01:0a:e3:de:4f:56:fc:5a:52:fa:12:fc:34:78: dc:d6:1d:cc:7c:f2:49:2a:cd:0d:66:63:0d:bc:12:aa:81:11: b4:57:26:c1:73:a5:4d:6a:39:e7:a4:5e:72:34:85:40:2c:b3: c3:31:a4:62:3f:69:8b:74:81:13:60:45:79:01:4b:a6:a4:cf: 72:10:7d:80:7f:8a:ec:b5:1f:77:6f:cd:e6:00:45:7d:73:eb: 41:eb:d2:2d:a6:3f:0e:f4:58:0a:b8:d3:50:bc:37:f0:ea:ad: 70:2a:fd:3f:d0:45:08:ad:70:2d:f4:14:cb:81:ff:8e:45:8f: 6f:95:02:a1:c1:1b:ac:85:1a:34:62:46:38:b3:79:14:c6:16: 41:64:59:25:67:20:d5:47:6c:6a:73:d2:f9:ee:20:f8:ec:f9: 47:dc:44:c8:e2:d5:db:ad:a7:39:91:cf:90:5d:db:41:6d:d1: 24:6a:9a:23:3c:46:ba:8a:5b:07:24:4b:31:ba:1b:ae:25:30: f9:94:23:a2:3d:04:93:c9:45:cb:03:1b:43:f9:59:54:6c:72: eb:ae:d1:87 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUezw4jgvOm1X5BxrcfY+wBQ8AKI4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzIxMTYzMTA0WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZmIyYzc5ZDIxNzAwMWY3ODI3YTFlODBhZmRmMWM1NjY3 ZjMxYzM5MzA5MmU0NjRkNmZlMjM3NGY5ODM0N2VkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoDPyp2eHJFGyUvPYSiXoFmEUdCkfG6ZjRxkT3DCTwnni1 tvahl24mUKJuLqv9CTgecQtuSe24E2dks5f1//x81wY+6KPK3nihwJtjhpumUmVF qpboO3k97fgFl9aQqrYQ2EDWBFKPce7NZ372JFAaX91pUnt8lxpkbFTXxx7l6MP/ EOjtjf6/wqImWoBONfLy99BDzQT9xBigEDJB8Bp47ArqJj6mvNDhifBk2JRnhjUb 48yaXzAEKeXtza4/cY9aAkwdNguJt7WepZgg2+M2t6gqImP7UZhC4Bj5RFYPX8LD 81fSljtN3GUgV8sH1rNVznoVX42dJPHCKiYmCflvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTIuXcx6du4VCclx/ynxZiSTAb8QwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzc0NTkwZDA0LWRmZjgtNGE4MC04OGRmLTM3MzA5MWMzYWRlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBkwDQYJKoZIhvcNAQELBQADggEBAI/ZHL3Ll5+5H/3mYjbN6+bd OuEy3ktMut6kIesQo3ZCDQWm0w3xIYMBCuPeT1b8WlL6Evw0eNzWHcx88kkqzQ1m Yw28EqqBEbRXJsFzpU1qOeekXnI0hUAss8MxpGI/aYt0gRNgRXkBS6akz3IQfYB/ iuy1H3dvzeYARX1z60Hr0i2mPw70WAq401C8N/DqrXAq/T/QRQitcC30FMuB/45F j2+VAqHBG6yFGjRiRjizeRTGFkFkWSVnINVHbGpz0vnuIPjs+UfcRMji1dutpzmR z5Bd20Ft0SRqmiM8RrqKWwckSzG6G64lMPmUI6I9BJPJRcsDG0P5WVRscuuu0Yc= -----END CERTIFICATE-----Generated at Thu Jul 24 04:52:10 2025 by rpki-client