$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bf76eee1-81c6-4018-9264-f7eddc9e8c2f.roa File: bf76eee1-81c6-4018-9264-f7eddc9e8c2f.roa (raw, json) Hash identifier: M15ovgsHErQMAZ/gQH98OXRNvDKSVsuPIuMSyx2PxQw= Subject key identifier: D8:47:8E:8C:E3:38:C4:07:F8:02:A3:79:B4:F8:02:56:72:A2:F0:C0 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 468596BC48CA950E44E0CB887B76D734DBBCDDCB Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bf76eee1-81c6-4018-9264-f7eddc9e8c2f.roa Signing time: Tue 15 Jul 2025 00:10:21 +0000 ROA not before: Tue 15 Jul 2025 00:10:21 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:3b3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 25 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:85:96:bc:48:ca:95:0e:44:e0:cb:88:7b:76:d7:34:db:bc:dd:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 15 00:10:21 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=ceeb8d3baea088b1941af3bbf4ca9a2e9d6a8e72f788dc7f7a881d4e52b778a0, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c1:ae:67:e8:58:c2:83:a6:7b:13:d5:4a:21: b7:34:f2:c2:cb:dd:e4:cd:e1:ce:34:53:1d:2a:b8: dd:c6:ec:97:2f:df:5f:82:6c:44:1a:cd:8a:17:48: a0:81:48:f2:1d:22:d2:44:b7:2f:07:df:df:01:29: d6:9e:fa:f7:31:41:af:ad:f1:df:f4:16:3e:f5:a6: ce:73:de:b5:25:20:4d:5b:4b:d6:58:4d:1c:1c:20: d8:9e:2e:94:26:0b:a2:3b:51:2f:97:a1:46:0b:e7: d1:d8:75:86:94:a1:f2:65:46:46:8a:77:c7:a4:c9: e8:ab:13:5f:88:82:5a:47:fb:11:d7:b9:fe:f2:46: 8f:7f:2e:eb:ac:ac:b5:f7:04:a1:c4:86:bf:4f:27: 74:34:a0:72:bb:6f:df:11:5c:84:2c:c4:1e:ea:7e: 55:49:b1:12:30:a0:4a:64:fb:d7:5b:fc:ce:93:a7: 9b:21:6f:4b:82:03:b4:8d:61:76:aa:7d:31:6e:54: 74:b0:21:aa:92:8a:31:1b:ea:6b:87:ff:22:75:ae: 3e:37:a2:7c:e5:b0:7b:24:72:b4:7e:29:46:bf:e6: ca:5f:c1:e3:ed:d2:0e:c1:8b:be:45:ea:a6:39:fb: eb:8f:7a:28:94:a2:b9:2b:80:08:d1:84:a8:fe:f0: 24:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:47:8E:8C:E3:38:C4:07:F8:02:A3:79:B4:F8:02:56:72:A2:F0:C0 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bf76eee1-81c6-4018-9264-f7eddc9e8c2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b3::/48 Signature Algorithm: sha256WithRSAEncryption 2f:01:61:3c:f9:cf:3b:17:e7:ae:b2:39:3a:bf:dc:08:af:db: fc:9c:4b:bb:1b:b7:36:26:74:1a:70:7d:1b:b9:bc:67:bb:ce: 7e:13:c0:69:58:ce:5e:fe:09:28:7b:4c:ca:ff:e3:ac:dc:e5: 78:ab:fc:05:8e:53:15:3d:15:3b:c6:0a:9a:9f:2b:e8:38:74: a9:63:60:6f:3c:33:8a:dd:92:ef:13:47:09:22:bc:76:cd:41: 1b:73:4f:d3:5c:03:36:77:08:bc:29:79:2d:90:bc:52:7f:f0: 02:e3:a4:90:19:3d:7f:7a:5d:01:53:cb:58:cb:cf:93:a7:d5: ad:af:57:49:77:b1:41:02:3b:93:8a:6c:55:63:1d:79:f3:86: 94:02:9e:39:7a:ee:58:ef:24:eb:de:34:a1:6a:be:b7:ce:5e: 1c:1f:c4:34:e4:b2:de:f9:ad:2d:de:63:bd:fd:a2:a0:09:99: ff:c7:92:8f:8d:3f:e2:88:ca:ca:fb:70:6e:8c:f8:1a:26:ce: d4:82:cb:7f:8d:8a:9e:08:0c:34:92:82:d0:54:73:d2:ea:e9: 3d:70:23:8d:50:8c:25:0d:14:06:71:b0:4b:e7:c2:14:cc:2a: 82:93:fa:1a:80:b2:cd:bc:cb:62:41:af:f2:75:61:88:0c:08: ba:4f:b1:89 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURoWWvEjKlQ5E4MuIe3bXNNu83cswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzE1MDAxMDIxWhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWViOGQzYmFlYTA4OGIxOTQxYWYzYmJmNGNhOWEyZTlk NmE4ZTcyZjc4OGRjN2Y3YTg4MWQ0ZTUyYjc3OGEwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtwa5n6FjCg6Z7E9VKIbc08sLL3eTN4c40Ux0quN3G7Jcv 31+CbEQazYoXSKCBSPIdItJEty8H398BKdae+vcxQa+t8d/0Fj71ps5z3rUlIE1b S9ZYTRwcINieLpQmC6I7US+XoUYL59HYdYaUofJlRkaKd8ekyeirE1+IglpH+xHX uf7yRo9/LuusrLX3BKHEhr9PJ3Q0oHK7b98RXIQsxB7qflVJsRIwoEpk+9db/M6T p5shb0uCA7SNYXaqfTFuVHSwIaqSijEb6muH/yJ1rj43onzlsHskcrR+KUa/5spf wePt0g7Bi75F6qY5++uPeiiUorkrgAjRhKj+8CRPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2EeOjOM4xAf4AqN5tPgCVnKi8MAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JmNzZlZWUxLTgxYzYtNDAxOC05MjY0LWY3ZWRkYzllOGMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA7MwDQYJKoZIhvcNAQELBQADggEBAC8BYTz5zzsX566yOTq/3Aiv 2/ycS7sbtzYmdBpwfRu5vGe7zn4TwGlYzl7+CSh7TMr/46zc5Xir/AWOUxU9FTvG CpqfK+g4dKljYG88M4rdku8TRwkivHbNQRtzT9NcAzZ3CLwpeS2QvFJ/8ALjpJAZ PX96XQFTy1jLz5On1a2vV0l3sUECO5OKbFVjHXnzhpQCnjl67ljvJOveNKFqvrfO XhwfxDTkst75rS3eY739oqAJmf/Hko+NP+KIysr7cG6M+BomztSCy3+Nip4IDDSS gtBUc9Lq6T1wI41QjCUNFAZxsEvnwhTMKoKT+hqAss28y2JBr/J1YYgMCLpPsYk= -----END CERTIFICATE-----Generated at Thu Jul 24 04:52:02 2025 by rpki-client