$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa File: bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa (raw, json) Hash identifier: Bg2M4ottGAhhyc/X4yRNIErjmCpAIdc/8KF38D57A+c= Subject key identifier: 3A:C1:62:08:D1:A3:DA:6A:65:FD:87:6C:B9:2F:E6:DE:46:73:01:ED Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 225B42250EE72A9EE8FEC5652816AF040E9E50E9 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa Signing time: Sat 12 Jul 2025 00:40:29 +0000 ROA not before: Sat 12 Jul 2025 00:40:29 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5b:42:25:0e:e7:2a:9e:e8:fe:c5:65:28:16:af:04:0e:9e:50:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 12 00:40:29 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=1aaf35c368afb508fbd9d1855999800992af17f41250d796fc1abf6fd7478121, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:21:d9:fc:06:ec:07:e2:95:28:03:7f:4a:55: aa:8d:e2:5e:2f:94:d0:de:91:ae:6b:12:4b:a3:46: 90:98:cf:89:db:ee:58:39:68:82:e2:97:9e:75:a0: b9:b1:31:04:c3:fa:93:73:0e:b9:eb:a0:30:b5:98: e0:94:4b:1e:1a:34:35:dd:12:37:46:83:22:29:e4: bb:c1:f5:70:6b:f7:2e:b8:ca:fc:a8:69:55:68:d3: 2b:31:c5:05:80:f8:9d:ba:b8:84:63:17:ca:65:0c: 5c:6f:5e:19:1e:a3:05:e3:04:02:ca:b5:e6:fb:d1: ca:17:c1:19:c9:0d:30:8b:b5:22:de:c1:3a:95:b6: 0c:0a:03:cf:e0:cb:58:13:b1:e3:4d:cf:64:f4:c8: b0:86:49:b2:3a:10:89:e3:35:50:72:df:35:25:d5: 99:bb:a3:1b:c9:16:29:b1:83:0a:89:41:d6:48:65: b7:46:a0:3b:9d:a0:73:c1:10:b9:b0:08:01:6b:da: fc:4a:7b:f4:0c:08:28:85:2d:82:11:4a:15:a7:ae: 37:e0:27:95:5b:a5:b1:9c:a1:c3:47:0c:cd:d8:16: 1e:a9:ac:d8:3e:55:0a:cd:e5:0e:23:19:2e:f6:be: c4:05:d1:73:f5:95:b3:aa:fa:15:89:fe:65:49:5d: b8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C1:62:08:D1:A3:DA:6A:65:FD:87:6C:B9:2F:E6:DE:46:73:01:ED X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 4d:81:1d:e9:7f:2a:c8:c9:cc:f6:ea:74:93:30:b4:13:bd:00: c5:24:b1:96:1e:30:51:a9:13:2d:01:68:86:a6:d5:51:9b:31: ba:23:96:f3:21:97:73:3b:4d:db:ec:d9:fc:11:f4:8b:62:4c: cb:dd:ab:36:df:7a:39:e3:e5:db:69:8a:c5:ab:fd:42:00:f0: 39:75:27:e2:32:84:fa:17:99:5f:fe:2e:88:eb:8f:ca:9c:8c: 05:34:b5:cc:7d:be:7f:8d:bd:02:e5:65:6e:06:1a:8f:da:ff: fe:70:60:6a:f8:b9:28:de:44:94:b4:ff:b8:cc:fc:3d:4c:3d: 8e:d0:c2:44:d3:68:a4:72:3c:32:94:1b:a6:eb:86:34:b5:d7: a0:bd:76:e8:cb:f6:53:5e:30:d3:2f:71:40:5e:34:0e:59:4a: 15:14:00:e4:78:20:d6:0a:48:bf:87:9b:66:0d:20:f0:5e:bd: 98:97:e5:c0:f4:42:8a:13:61:e9:6f:6a:c6:2c:de:22:a7:93: a6:97:36:8f:6d:a1:16:e8:a8:d5:55:55:20:1c:f9:af:88:5a: 36:c3:6f:c7:c2:5f:0d:71:a3:2a:df:c8:9f:83:37:6d:20:b2: b7:a9:ec:53:c7:f7:22:dd:8e:ee:3b:67:2d:bd:a0:bc:d4:4e: 1d:3c:9f:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIltCJQ7nKp7o/sVlKBavBA6eUOkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzEyMDA0MDI5WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWFmMzVjMzY4YWZiNTA4ZmJkOWQxODU1OTk5ODAwOTky YWYxN2Y0MTI1MGQ3OTZmYzFhYmY2ZmQ3NDc4MTIxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDIdn8BuwH4pUoA39KVaqN4l4vlNDeka5rEkujRpCYz4nb 7lg5aILil551oLmxMQTD+pNzDrnroDC1mOCUSx4aNDXdEjdGgyIp5LvB9XBr9y64 yvyoaVVo0ysxxQWA+J26uIRjF8plDFxvXhkeowXjBALKteb70coXwRnJDTCLtSLe wTqVtgwKA8/gy1gTseNNz2T0yLCGSbI6EInjNVBy3zUl1Zm7oxvJFimxgwqJQdZI ZbdGoDudoHPBELmwCAFr2vxKe/QMCCiFLYIRShWnrjfgJ5VbpbGcocNHDM3YFh6p rNg+VQrN5Q4jGS72vsQF0XP1lbOq+hWJ/mVJXbjVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOsFiCNGj2mpl/YdsuS/m3kZzAe0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JiNWFmNzU3LTFiZGMtNDhmOS1iYzIwLWM3NGZkNDkwOTZhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAE2BHel/KsjJzPbqdJMwtBO9 AMUksZYeMFGpEy0BaIam1VGbMbojlvMhl3M7Tdvs2fwR9ItiTMvdqzbfejnj5dtp isWr/UIA8Dl1J+IyhPoXmV/+Lojrj8qcjAU0tcx9vn+NvQLlZW4GGo/a//5wYGr4 uSjeRJS0/7jM/D1MPY7QwkTTaKRyPDKUG6brhjS116C9dujL9lNeMNMvcUBeNA5Z ShUUAOR4INYKSL+Hm2YNIPBevZiX5cD0QooTYelvasYs3iKnk6aXNo9toRboqNVV VSAc+a+IWjbDb8fCXw1xoyrfyJ+DN20gsrep7FPH9yLdju47Zy29oLzUTh08n2Y= -----END CERTIFICATE-----Generated at Mon Jul 21 23:18:28 2025 by rpki-client