$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa File: 3500b8ef-7be2-4b73-a003-e1ded8f81352.roa (raw, json) Hash identifier: CI2c0C9EOSZYS8lB0IOZok/6x7hrqijyr88oZ3jeZwQ= Subject key identifier: 5E:3D:33:34:F5:E6:43:3A:0B:6C:E7:CA:92:E7:C0:25:38:4E:D5:F6 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7D2C52DC76EB9A23E27694611DCB8E5EA4A498E6 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa Signing time: Tue 20 May 2025 17:50:34 +0000 ROA not before: Tue 20 May 2025 17:50:34 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:2110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:2c:52:dc:76:eb:9a:23:e2:76:94:61:1d:cb:8e:5e:a4:a4:98:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:50:34 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=1dfa990d782cb53c194761d6585c77a1d96420a552d8a6f777265c12404d1d6f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ed:e1:d3:05:79:d2:8c:98:85:67:ef:3b:55: 3f:21:a5:11:75:8a:34:88:08:15:d6:21:90:41:2f: 1c:4f:5c:b1:50:42:67:e9:db:92:96:88:d9:81:50: 1c:5b:b3:76:2a:18:c7:1a:be:2f:7d:31:9f:bc:cd: a7:80:e3:40:28:87:66:76:e7:69:26:b5:94:da:81: 5f:e6:a8:e1:48:d4:e2:40:e1:ef:e6:e1:31:33:99: 49:0e:fb:9e:c8:b2:4f:54:32:46:81:87:18:e8:00: f5:d5:92:a7:09:f1:a2:40:ca:cb:97:ee:1c:be:68: e4:ad:b6:8b:7a:f8:d7:28:57:63:fc:7b:23:e7:2d: 32:f0:c1:5b:04:3d:cb:be:4a:87:ce:54:33:5b:89: 88:92:0a:3a:81:d9:e3:cf:db:52:4e:6a:5c:b8:7b: ad:17:36:48:fb:58:6b:7a:b1:e2:38:a2:18:64:84: 26:79:de:3f:97:d4:3b:60:dd:43:ce:32:72:51:e6: 53:b1:58:55:0b:80:63:c0:b8:09:25:11:1b:6a:cf: af:30:45:5c:42:56:f0:81:57:e4:17:84:4e:7a:b0: 6f:31:ae:6a:22:31:4a:bf:9b:56:0f:17:32:4d:8a: 23:62:cd:b4:d8:18:ef:5d:c0:d9:9e:e5:5b:f5:30: f3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3D:33:34:F5:E6:43:3A:0B:6C:E7:CA:92:E7:C0:25:38:4E:D5:F6 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:2110::/44 Signature Algorithm: sha256WithRSAEncryption 4d:e4:16:b0:26:bb:9f:90:10:57:23:2d:a4:92:95:24:22:43: fa:1c:64:c8:bc:3e:1b:43:ff:e3:77:93:db:7a:d4:65:8d:49: 2f:75:a8:0e:ab:69:d3:41:11:e5:f4:9b:ff:46:f3:e9:71:d8: 3d:8c:2d:bc:15:06:b1:d1:6b:c9:9b:69:28:80:2e:9a:d2:e5: bc:09:97:fa:e3:81:19:b9:42:6f:fe:f1:b2:d1:59:cf:cb:f1: 0d:73:fa:95:96:47:bd:30:90:e1:6f:18:cb:82:4a:ff:0e:42: 6a:67:4d:3a:fd:5f:5a:ad:9d:8e:56:2a:09:fd:ae:f3:28:74: e2:b9:95:6f:99:5f:9f:34:d1:16:b7:7f:18:a7:24:12:07:bd: 45:d8:af:d8:43:09:dd:f1:4f:ec:af:62:bd:82:b0:5d:c6:f4: 97:06:9e:d7:ed:c4:fe:aa:41:b4:4e:53:27:9f:fb:ff:e7:4a: d8:6d:06:a3:6c:6f:18:a5:51:66:b4:b2:8a:32:88:80:25:fe: 42:48:f2:00:a8:8f:2b:26:16:47:05:88:4d:84:51:96:e6:fb: 9e:4e:03:e2:7b:5f:22:d8:5a:04:fd:87:cf:18:35:90:3f:4a: da:16:38:c4:1e:9b:1b:39:43:81:d1:a9:4a:ab:44:fe:36:47: e7:a9:66:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfSxS3HbrmiPidpRhHcuOXqSkmOYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MDM0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGZhOTkwZDc4MmNiNTNjMTk0NzYxZDY1ODVjNzdhMWQ5 NjQyMGE1NTJkOGE2Zjc3NzI2NWMxMjQwNGQxZDZmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC17eHTBXnSjJiFZ+87VT8hpRF1ijSICBXWIZBBLxxPXLFQ Qmfp25KWiNmBUBxbs3YqGMcavi99MZ+8zaeA40Aoh2Z252kmtZTagV/mqOFI1OJA 4e/m4TEzmUkO+57Isk9UMkaBhxjoAPXVkqcJ8aJAysuX7hy+aOSttot6+NcoV2P8 eyPnLTLwwVsEPcu+SofOVDNbiYiSCjqB2ePP21JOaly4e60XNkj7WGt6seI4ohhk hCZ53j+X1Dtg3UPOMnJR5lOxWFULgGPAuAklERtqz68wRVxCVvCBV+QXhE56sG8x rmoiMUq/m1YPFzJNiiNizbTYGO9dwNme5Vv1MPNLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXj0zNPXmQzoLbOfKkufAJThO1fYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1MDBiOGVmLTdiZTItNGI3My1hMDAzLWUxZGVkOGY4MTM1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmBZzAIRAwDQYJKoZIhvcNAQELBQADggEBAE3kFrAmu5+QEFcjLaSSlSQi Q/ocZMi8PhtD/+N3k9t61GWNSS91qA6radNBEeX0m/9G8+lx2D2MLbwVBrHRa8mb aSiALprS5bwJl/rjgRm5Qm/+8bLRWc/L8Q1z+pWWR70wkOFvGMuCSv8OQmpnTTr9 X1qtnY5WKgn9rvModOK5lW+ZX5800Ra3fxinJBIHvUXYr9hDCd3xT+yvYr2CsF3G 9JcGntftxP6qQbROUyef+//nSthtBqNsbxilUWa0sooyiIAl/kJI8gCojysmFkcF iE2EUZbm+55OA+J7XyLYWgT9h88YNZA/StoWOMQemxs5Q4HRqUqrRP42R+epZtE= -----END CERTIFICATE-----Generated at Wed Jun 4 10:30:21 2025 by rpki-client