$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/04a1d081-ae93-459e-88cf-fe92a8d30013.roa File: 04a1d081-ae93-459e-88cf-fe92a8d30013.roa (raw, json) Hash identifier: 0YWo69xwYF7M+fZNB2H6U9j8l4vJxlWpExdLJy7cNRs= Subject key identifier: 85:79:40:ED:F8:0E:62:6D:B1:C7:D1:B1:19:D6:6D:94:E5:11:91:68 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 641E56D4B101D18345B89FBB2DDAC441EA52AD94 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/04a1d081-ae93-459e-88cf-fe92a8d30013.roa Signing time: Mon 16 Jun 2025 19:01:30 +0000 ROA not before: Mon 16 Jun 2025 19:01:30 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:546::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:1e:56:d4:b1:01:d1:83:45:b8:9f:bb:2d:da:c4:41:ea:52:ad:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 16 19:01:30 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=6000fe87e7b4ae36686f400e65c661b05bf87de0ac75efb3a0d0824f6fd94702, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:25:90:9d:54:17:53:9c:b7:81:51:08:25:dd: b5:de:8d:f1:2c:53:cc:e1:19:51:9d:11:03:59:de: db:27:9e:a0:38:e2:85:00:7f:c5:73:92:4b:18:63: 54:21:8b:82:10:4c:5c:8b:14:5a:b6:22:77:3c:b0: 9e:50:af:a7:dc:9d:b4:ff:83:9d:5b:20:54:2a:ef: b2:28:1a:90:4d:85:28:8a:7f:57:4c:e7:b0:1a:3c: 74:f0:e7:41:50:98:19:0c:11:4b:7b:fc:3b:11:26: 36:55:b4:10:12:44:96:18:09:a8:ca:87:4f:51:6a: ad:a3:df:ee:d1:ef:d6:06:5a:7b:6c:fc:cd:21:fd: 10:08:5b:a1:46:f6:9a:6c:ca:d2:61:cb:d1:bf:e1: 20:f4:d7:46:29:44:47:fc:b8:41:39:f9:4c:32:bc: e2:fe:17:b1:cc:03:8e:d8:b6:72:d2:6f:19:12:34: d4:a3:dd:8e:54:3a:25:d5:cd:e1:87:a8:f1:da:be: 76:4f:13:74:b4:c1:a1:0e:a9:65:33:7f:ac:be:85: 78:15:8b:91:27:ef:b6:8e:22:b5:7f:15:9b:db:bf: 8a:5d:ad:53:82:88:18:92:f3:d5:9a:c3:b4:f2:35: 67:49:8f:c3:15:7f:51:e5:0d:d9:90:33:76:1b:6a: 7d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:79:40:ED:F8:0E:62:6D:B1:C7:D1:B1:19:D6:6D:94:E5:11:91:68 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/04a1d081-ae93-459e-88cf-fe92a8d30013.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:546::/48 Signature Algorithm: sha256WithRSAEncryption ae:4f:47:de:75:91:c0:71:04:7c:92:a6:c7:ee:4f:46:70:e9: b9:be:00:08:f8:c6:0c:51:5a:51:de:02:f0:40:f7:dd:a1:d0: 4f:8c:48:85:95:9a:f4:4c:ad:af:a0:39:87:23:14:73:6f:3a: 85:d2:fe:94:12:28:ea:15:81:f0:ef:3e:f6:fd:ce:6c:ae:13: 23:6c:04:fa:33:72:99:8a:01:be:74:aa:16:d9:b4:0f:29:28: 06:52:d3:cc:20:a5:64:1f:42:09:98:6f:23:b0:a4:85:98:cf: da:51:fa:4f:02:8e:9c:b4:d0:b2:78:79:c7:65:9a:e6:44:41: 40:5f:b9:9e:b8:50:2f:d1:4f:16:4e:62:fa:c4:52:66:13:9b: 51:be:97:58:4c:e6:98:49:31:0d:7b:41:55:bd:bb:14:be:c3: 06:85:99:b7:2c:88:6b:43:55:fb:9d:0a:f8:e6:86:f1:d1:a0: b9:0b:6b:e0:af:14:16:e6:e4:e0:f9:62:be:72:aa:f8:98:a4: c2:8e:07:f1:14:e6:9d:02:15:b2:f1:d9:c6:52:bb:b1:c6:74: fa:a1:6b:e0:df:42:85:38:92:21:30:ff:70:3b:cb:ea:1d:1d: 0f:68:95:fd:dd:78:35:5d:de:aa:59:16:3d:3b:47:70:80:dc: 63:a4:91:ff -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZB5W1LEB0YNFuJ+7LdrEQepSrZQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE2MTkwMTMwWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDAwZmU4N2U3YjRhZTM2Njg2ZjQwMGU2NWM2NjFiMDVi Zjg3ZGUwYWM3NWVmYjNhMGQwODI0ZjZmZDk0NzAyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSJZCdVBdTnLeBUQgl3bXejfEsU8zhGVGdEQNZ3tsnnqA4 4oUAf8VzkksYY1Qhi4IQTFyLFFq2Inc8sJ5Qr6fcnbT/g51bIFQq77IoGpBNhSiK f1dM57AaPHTw50FQmBkMEUt7/DsRJjZVtBASRJYYCajKh09Raq2j3+7R79YGWnts /M0h/RAIW6FG9ppsytJhy9G/4SD010YpREf8uEE5+UwyvOL+F7HMA47YtnLSbxkS NNSj3Y5UOiXVzeGHqPHavnZPE3S0waEOqWUzf6y+hXgVi5En77aOIrV/FZvbv4pd rVOCiBiS89Waw7TyNWdJj8MVf1HlDdmQM3Yban27AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhXlA7fgOYm2xx9GxGdZtlOURkWgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzA0YTFkMDgxLWFlOTMtNDU5ZS04OGNmLWZlOTJhOGQzMDAxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUYwDQYJKoZIhvcNAQELBQADggEBAK5PR951kcBxBHySpsfuT0Zw 6bm+AAj4xgxRWlHeAvBA992h0E+MSIWVmvRMra+gOYcjFHNvOoXS/pQSKOoVgfDv Pvb9zmyuEyNsBPozcpmKAb50qhbZtA8pKAZS08wgpWQfQgmYbyOwpIWYz9pR+k8C jpy00LJ4ecdlmuZEQUBfuZ64UC/RTxZOYvrEUmYTm1G+l1hM5phJMQ17QVW9uxS+ wwaFmbcsiGtDVfudCvjmhvHRoLkLa+CvFBbm5OD5Yr5yqviYpMKOB/EU5p0CFbLx 2cZSu7HGdPqha+DfQoU4kiEw/3A7y+odHQ9olf3deDVd3qpZFj07R3CA3GOkkf8= -----END CERTIFICATE-----Generated at Mon Jun 30 19:47:14 2025 by rpki-client