$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: CiRC9sG38j+zmemOWuvtJiNxaX3r4DKHpuMNkg5fhS0= Subject key identifier: 1F:1F:B2:3C:7D:6D:CF:54:E3:C2:18:AC:A0:6B:EC:70:D7:EE:67:70 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7B399E078381B04E00A4E71D111EE206D6693DE2 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Sat 12 Jul 2025 00:41:07 +0000 ROA not before: Sat 12 Jul 2025 00:41:07 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:39:9e:07:83:81:b0:4e:00:a4:e7:1d:11:1e:e2:06:d6:69:3d:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 12 00:41:07 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=fd4ee96ac407610e83d186752ba7752e05d5a68d7f2b268cf5449d19dafd3eaa, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b9:cd:d8:13:b5:76:6a:bd:cb:ec:38:b4:4e: bf:2c:2a:b6:ca:f1:f7:40:64:83:21:c5:5c:92:f6: 82:15:2b:83:a5:86:54:d2:39:0a:6c:5a:0c:34:b6: 63:5d:c4:e1:0f:f4:60:83:df:40:e1:91:59:85:d5: f6:7c:07:60:dc:2d:d8:c1:ad:27:35:9b:61:b9:b0: 26:de:68:e9:c9:9f:cf:e6:9f:de:1b:ef:3d:25:d2: 08:44:be:81:e4:c1:a5:22:53:65:7f:05:51:5f:d3: 24:39:d4:13:b1:36:b8:94:63:be:a4:9f:53:cf:fc: 61:e9:e3:ca:df:bd:71:99:68:4f:ea:85:65:d5:68: 39:b5:ba:e3:04:fe:0f:ee:69:a0:b5:20:53:d7:e8: 8f:2e:ba:1d:ac:ef:f6:b0:00:25:25:ad:b4:45:32: 83:7b:70:4a:2d:d7:2b:2b:57:28:f4:91:87:f6:b7: 98:bd:f6:fd:f6:04:62:7f:3f:0d:0e:29:1f:cd:5a: 00:76:4d:b6:a2:32:f7:77:23:c0:68:3f:8a:6e:73: e9:7a:8d:ac:84:cb:9d:52:62:2f:6e:9b:7b:40:11: 31:48:2e:a3:71:9d:60:6e:fc:f0:db:3c:24:26:3b: 2e:76:a8:1b:e1:f5:3b:bd:e2:f5:32:9b:0a:34:50: fe:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:1F:B2:3C:7D:6D:CF:54:E3:C2:18:AC:A0:6B:EC:70:D7:EE:67:70 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 8d:4b:4e:6e:47:c3:d0:23:04:01:56:ce:c1:55:e9:98:82:68: 15:b4:06:2c:64:18:56:05:91:53:05:2f:75:8b:58:4e:94:ac: 7f:6f:db:a7:77:8c:f4:2e:60:8b:e1:7a:c5:b7:0c:17:5e:e8: 2a:de:00:13:ce:b7:8b:94:10:63:f2:2f:25:7e:01:4d:e7:a2: 02:8b:d3:67:d9:44:56:3a:93:f3:c7:a7:65:3b:79:3d:c1:25: 11:fa:06:8f:0c:cb:7f:e6:33:87:0d:6d:4b:34:13:63:70:9d: 6c:ae:c2:b5:b3:c7:2f:a8:e4:97:35:56:90:2a:01:c0:f9:db: e2:a3:13:9e:83:6e:5e:cf:32:21:29:90:20:f6:08:ce:5e:41: d6:ea:57:14:76:6c:77:7c:7d:1e:b7:80:88:a8:24:c2:cb:98: 66:87:99:8a:29:ea:48:a9:88:a4:03:16:d0:48:c8:77:74:d0: 98:08:a4:dc:b1:62:de:da:9c:3f:1a:d3:04:31:49:c8:0b:fa: e6:7a:22:17:3f:45:46:ab:0a:b6:f2:32:90:92:9d:dd:10:50: 7d:4e:40:10:73:3e:66:70:12:78:28:0d:24:80:c0:06:b2:cf: ed:15:b2:ec:6c:2c:cb:af:f9:13:b8:c9:51:f6:20:e2:6e:40: be:0c:f6:f2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUezmeB4OBsE4ApOcdER7iBtZpPeIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzEyMDA0MTA3WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDRlZTk2YWM0MDc2MTBlODNkMTg2NzUyYmE3NzUyZTA1 ZDVhNjhkN2YyYjI2OGNmNTQ0OWQxOWRhZmQzZWFhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6uc3YE7V2ar3L7Di0Tr8sKrbK8fdAZIMhxVyS9oIVK4Ol hlTSOQpsWgw0tmNdxOEP9GCD30DhkVmF1fZ8B2DcLdjBrSc1m2G5sCbeaOnJn8/m n94b7z0l0ghEvoHkwaUiU2V/BVFf0yQ51BOxNriUY76kn1PP/GHp48rfvXGZaE/q hWXVaDm1uuME/g/uaaC1IFPX6I8uuh2s7/awACUlrbRFMoN7cEot1ysrVyj0kYf2 t5i99v32BGJ/Pw0OKR/NWgB2TbaiMvd3I8BoP4puc+l6jayEy51SYi9um3tAETFI LqNxnWBu/PDbPCQmOy52qBvh9Tu94vUymwo0UP6dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHx+yPH1tz1TjwhisoGvscNfuZ3AwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAI1LTm5Hw9AjBAFWzsFV6ZiC aBW0BixkGFYFkVMFL3WLWE6UrH9v26d3jPQuYIvhesW3DBde6CreABPOt4uUEGPy LyV+AU3nogKL02fZRFY6k/PHp2U7eT3BJRH6Bo8My3/mM4cNbUs0E2NwnWyuwrWz xy+o5Jc1VpAqAcD52+KjE56Dbl7PMiEpkCD2CM5eQdbqVxR2bHd8fR63gIioJMLL mGaHmYop6kipiKQDFtBIyHd00JgIpNyxYt7anD8a0wQxScgL+uZ6Ihc/RUarCrby MpCSnd0QUH1OQBBzPmZwEngoDSSAwAayz+0VsuxsLMuv+RO4yVH2IOJuQL4M9vI= -----END CERTIFICATE-----Generated at Mon Jul 21 23:18:43 2025 by rpki-client