$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/15c69da0-d471-4f52-b26d-a3639b01e410.roa File: 15c69da0-d471-4f52-b26d-a3639b01e410.roa (raw, json) Hash identifier: TWwa+ccGxUlhEtT39iNJ/O9kzZnASGEG7YOcR/+UfC0= Subject key identifier: 0D:5C:AD:74:CB:E3:4D:EF:01:D5:78:64:E0:DF:75:12:32:D2:E5:E4 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5210AC39A8AC268E040A514D972A0AD70B3B776E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/15c69da0-d471-4f52-b26d-a3639b01e410.roa Signing time: Sat 31 May 2025 00:30:07 +0000 ROA not before: Sat 31 May 2025 00:30:07 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c0e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:10:ac:39:a8:ac:26:8e:04:0a:51:4d:97:2a:0a:d7:0b:3b:77:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 31 00:30:07 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=ad71f324b841ad04402dbcc01721a330f476a126ba8a52a8740cd920f6b1bff4, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:62:96:2c:7e:60:75:c9:ab:fd:22:e0:5b:f3: f8:47:78:42:71:04:32:b9:5a:ba:ef:1b:67:77:f2: 24:bd:9c:39:29:0c:ad:df:59:af:63:37:3b:e2:04: a7:b8:be:1b:89:d5:63:77:46:56:07:aa:c8:44:16: 2a:5a:2b:e1:79:6e:d4:cc:16:d8:e3:5d:51:46:07: 43:51:66:d2:46:05:3d:fc:bd:ee:d5:57:3c:00:54: 88:e9:10:d2:9f:24:e5:e9:3e:ed:e4:1f:c4:7c:e1: 76:0a:e1:df:0c:52:9b:ec:64:5e:cd:36:e0:44:9c: 1f:2d:e5:e7:76:7d:3f:dd:9a:17:09:d4:84:71:ea: fb:36:f9:57:f3:3a:cf:b8:32:69:8b:88:42:01:2a: a0:e7:54:d3:8b:06:40:2a:0d:cc:ed:9c:6b:a9:41: 8d:59:71:0a:96:76:b5:2d:d9:13:cd:e4:9d:ab:00: dc:4b:02:15:fd:3b:d5:c1:3c:05:8b:4c:d7:e4:53: 72:ce:ad:a7:8d:14:cf:6f:88:dc:73:72:53:ea:9a: 8d:0f:5f:58:f1:58:3a:57:0c:ce:6b:67:99:cb:99: c0:a1:29:2b:fa:16:d9:e0:c9:22:9b:73:00:67:50: f5:ab:a7:44:a9:1a:fb:37:47:7f:03:86:ea:06:d2: 1f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5C:AD:74:CB:E3:4D:EF:01:D5:78:64:E0:DF:75:12:32:D2:E5:E4 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/15c69da0-d471-4f52-b26d-a3639b01e410.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0e::/48 Signature Algorithm: sha256WithRSAEncryption 85:1c:3b:cb:da:b6:22:8d:58:f4:b0:28:a8:60:bd:19:60:29: 90:4e:5b:c2:d4:0b:b8:fc:d6:6c:b5:0f:12:de:db:43:3b:7f: 66:0d:3e:6f:3b:70:db:19:d2:1a:57:0a:3f:cc:73:d7:af:16: c5:a9:1f:de:6c:d4:32:4e:8c:a0:e3:8f:d8:08:37:c3:46:eb: bd:22:f7:bf:12:23:f2:f3:0c:3b:82:5b:f2:07:14:c2:f1:58: 75:11:7c:2c:a5:6f:21:a7:5a:40:7e:64:04:76:6c:54:da:ab: 15:ee:dc:4a:cf:3f:b6:50:b5:2a:5b:f1:f1:de:c0:51:92:7e: 3e:f2:dd:d7:02:ca:91:3d:41:97:51:99:34:75:20:28:31:79: 10:67:ed:67:04:34:83:81:22:55:41:f9:a4:d8:51:9c:59:24: a2:e0:08:4b:3c:a6:d8:71:27:3f:8f:7c:65:85:ce:8b:69:aa: 06:8c:18:0a:07:d3:50:6e:7d:11:0b:ab:ef:e1:a0:cd:94:14: 45:a1:44:dc:76:a8:f0:c6:c4:0d:e4:9a:54:19:e5:ea:4b:d3: e9:52:cb:b5:9d:25:10:4d:97:3e:5f:e4:79:33:14:5f:ee:52: da:e4:16:e5:ac:cc:d3:f2:d3:f8:a6:bb:f7:7f:cb:1b:b8:ce: 9a:02:6d:a2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUhCsOaisJo4EClFNlyoK1ws7d24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTMxMDAzMDA3WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDcxZjMyNGI4NDFhZDA0NDAyZGJjYzAxNzIxYTMzMGY0 NzZhMTI2YmE4YTUyYTg3NDBjZDkyMGY2YjFiZmY0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsYpYsfmB1yav9IuBb8/hHeEJxBDK5WrrvG2d38iS9nDkp DK3fWa9jNzviBKe4vhuJ1WN3RlYHqshEFipaK+F5btTMFtjjXVFGB0NRZtJGBT38 ve7VVzwAVIjpENKfJOXpPu3kH8R84XYK4d8MUpvsZF7NNuBEnB8t5ed2fT/dmhcJ 1IRx6vs2+VfzOs+4MmmLiEIBKqDnVNOLBkAqDcztnGupQY1ZcQqWdrUt2RPN5J2r ANxLAhX9O9XBPAWLTNfkU3LOraeNFM9viNxzclPqmo0PX1jxWDpXDM5rZ5nLmcCh KSv6FtngySKbcwBnUPWrp0SpGvs3R38DhuoG0h+NAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDVytdMvjTe8B1Xhk4N91EjLS5eQwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzE1YzY5ZGEwLWQ0NzEtNGY1Mi1iMjZkLWEzNjM5YjAxZTQxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA4wDQYJKoZIhvcNAQELBQADggEBAIUcO8vatiKNWPSwKKhgvRlg KZBOW8LUC7j81my1DxLe20M7f2YNPm87cNsZ0hpXCj/Mc9evFsWpH95s1DJOjKDj j9gIN8NG670i978SI/LzDDuCW/IHFMLxWHURfCylbyGnWkB+ZAR2bFTaqxXu3ErP P7ZQtSpb8fHewFGSfj7y3dcCypE9QZdRmTR1ICgxeRBn7WcENIOBIlVB+aTYUZxZ JKLgCEs8pthxJz+PfGWFzotpqgaMGAoH01BufRELq+/hoM2UFEWhRNx2qPDGxA3k mlQZ5epL0+lSy7WdJRBNlz5f5HkzFF/uUtrkFuWszNPy0/imu/d/yxu4zpoCbaI= -----END CERTIFICATE-----Generated at Wed Jun 4 10:37:21 2025 by rpki-client