$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa File: 277fb1fb-3655-4c68-80f2-1f4160a003be.roa (raw, json) Hash identifier: taJ2y/xCV6spOzJbxv9up7DErg2G/ji87KWiiTNoYmw= Subject key identifier: CF:82:80:5C:0A:22:55:4E:98:32:3D:E6:A4:DC:EF:D6:D6:38:3F:45 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1857E283FCBE30DD37DB969E202542B333C8B0A2 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa Signing time: Wed 21 May 2025 00:50:47 +0000 ROA not before: Wed 21 May 2025 00:50:47 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:398::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:57:e2:83:fc:be:30:dd:37:db:96:9e:20:25:42:b3:33:c8:b0:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 21 00:50:47 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=0da8b9f4b3461899f830730666626c375530491aa40b17cec1c1091f08741839, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:11:d1:f0:54:57:17:79:f3:22:35:a1:34:62: 98:be:95:aa:6b:e0:fb:db:86:c7:36:40:40:2d:b6: 13:4f:ba:59:da:82:29:99:79:3a:3c:b8:7a:a1:03: 94:5b:ac:7f:ad:c5:7d:e9:47:cb:3a:c0:88:c9:34: 04:83:09:e7:c0:a1:27:db:24:5d:bb:4d:1e:35:4f: 7c:29:b9:ea:77:a9:42:39:d5:d2:e1:2b:5c:47:5c: 40:7b:c7:e0:76:8e:96:03:82:9f:8d:b4:fd:40:cc: de:b5:6f:da:ac:f3:38:5f:87:99:df:4e:04:6f:30: 45:18:92:47:ce:16:de:61:19:19:4d:7a:2d:ec:c1: c6:d2:35:2f:56:5d:63:41:4a:10:44:a6:3f:36:7a: a2:68:65:80:52:7d:b2:ab:5d:76:9d:48:58:61:32: b2:b3:05:15:62:8c:b6:71:13:f5:2a:4e:84:06:8e: 38:8f:d5:09:31:67:31:36:0e:a6:69:8e:2f:08:40: c8:81:b3:8f:13:80:90:75:7a:69:6c:ae:e6:1d:bb: ad:1d:9a:bd:94:76:44:57:7e:f8:22:55:17:99:88: d0:e7:d2:48:65:26:b9:0b:47:36:7f:ec:73:0f:f7: 5a:e5:dc:23:70:75:72:32:ab:f2:91:70:e5:19:23: f6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:82:80:5C:0A:22:55:4E:98:32:3D:E6:A4:DC:EF:D6:D6:38:3F:45 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:398::/48 Signature Algorithm: sha256WithRSAEncryption a1:fe:ef:c5:34:65:9a:96:68:b6:2e:cf:9d:1a:ec:3c:57:5b: 43:5f:b7:0b:a8:82:85:e4:da:6d:2c:54:2c:1d:44:e0:57:76: a0:5a:f1:7b:df:01:90:de:56:86:6f:87:9d:cd:b0:7a:97:f5: 22:97:72:a7:f0:b4:5c:a0:ab:b6:89:de:47:f4:20:e4:f4:26: 64:23:e0:46:95:5b:98:c2:61:68:9b:6b:f0:08:d4:5e:70:9b: de:73:c3:6d:76:7c:11:a5:43:f6:06:75:d0:4d:95:65:8e:e9: a8:ec:2c:62:0b:b9:9a:eb:52:5c:e5:4d:bf:cd:20:53:a8:d0: 60:19:c2:27:e4:47:fa:51:16:a6:76:62:7b:93:28:6f:a2:0c: e8:53:35:30:e7:72:a8:3c:48:89:36:2c:e8:cb:67:14:ba:18: 1e:31:7f:ab:b4:2e:95:3a:9a:4a:3b:b7:fa:e1:69:4a:e0:b0: 80:1e:c4:31:69:31:03:82:60:81:48:62:08:06:f2:cc:3d:6a: ac:54:5d:88:54:92:3b:23:f1:b5:c5:7b:e9:4f:16:af:5f:6f: 1f:6d:db:ae:bd:f6:4e:20:f6:01:66:7f:8e:90:7a:11:9e:f5: c6:2a:ec:ed:a5:3c:13:b3:e1:5f:e6:9e:97:ff:84:8a:fc:87: c4:b9:25:e9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGFfig/y+MN0325aeICVCszPIsKIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIxMDA1MDQ3WhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZGE4YjlmNGIzNDYxODk5ZjgzMDczMDY2NjYyNmMzNzU1 MzA0OTFhYTQwYjE3Y2VjMWMxMDkxZjA4NzQxODM5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPEdHwVFcXefMiNaE0Ypi+lapr4Pvbhsc2QEAtthNPulna gimZeTo8uHqhA5RbrH+txX3pR8s6wIjJNASDCefAoSfbJF27TR41T3wpuep3qUI5 1dLhK1xHXEB7x+B2jpYDgp+NtP1AzN61b9qs8zhfh5nfTgRvMEUYkkfOFt5hGRlN ei3swcbSNS9WXWNBShBEpj82eqJoZYBSfbKrXXadSFhhMrKzBRVijLZxE/UqToQG jjiP1QkxZzE2DqZpji8IQMiBs48TgJB1emlsruYdu60dmr2UdkRXfvgiVReZiNDn 0khlJrkLRzZ/7HMP91rl3CNwdXIyq/KRcOUZI/aHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUz4KAXAoiVU6YMj3mpNzv1tY4P0UwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzI3N2ZiMWZiLTM2NTUtNGM2OC04MGYyLTFmNDE2MGEwMDNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5gwDQYJKoZIhvcNAQELBQADggEBAKH+78U0ZZqWaLYuz50a7DxX W0NftwuogoXk2m0sVCwdROBXdqBa8XvfAZDeVoZvh53NsHqX9SKXcqfwtFygq7aJ 3kf0IOT0JmQj4EaVW5jCYWiba/AI1F5wm95zw212fBGlQ/YGddBNlWWO6ajsLGIL uZrrUlzlTb/NIFOo0GAZwifkR/pRFqZ2YnuTKG+iDOhTNTDncqg8SIk2LOjLZxS6 GB4xf6u0LpU6mko7t/rhaUrgsIAexDFpMQOCYIFIYggG8sw9aqxUXYhUkjsj8bXF e+lPFq9fbx9t26699k4g9gFmf46QehGe9cYq7O2lPBOz4V/mnpf/hIr8h8S5Jek= -----END CERTIFICATE-----Generated at Fri Jun 6 04:27:39 2025 by rpki-client