$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa File: 35efcf72-708d-4456-b1d1-8419a2636e00.roa (raw, json) Hash identifier: r3a+9Ns2bYFFlVGwDWf0tZMX/T6Q6tOdMpqOicXs188= Subject key identifier: 5B:51:05:04:DD:2A:89:48:DB:BB:D6:48:2D:9D:AC:F8:15:32:BB:40 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7D689AA52E2DD4FF0A2FB0E9767CF0AE12D5A9D3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa Signing time: Tue 20 May 2025 17:50:10 +0000 ROA not before: Tue 20 May 2025 17:50:10 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:f03d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:68:9a:a5:2e:2d:d4:ff:0a:2f:b0:e9:76:7c:f0:ae:12:d5:a9:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:50:10 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=697b22daf46afe718e21f72198eaccef59d9657b7e2357773311c7a17c27117d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d7:90:7a:56:a0:40:82:53:3e:6c:87:09:7c: 3b:93:01:83:5e:2e:d8:7a:fc:48:81:cc:ea:93:e2: 45:de:51:fa:72:20:e5:91:8b:21:e3:84:18:92:91: 24:4a:62:ef:e8:83:af:3d:ba:db:9e:31:d5:3d:22: c2:90:6c:16:ab:da:f2:d8:45:1d:7f:92:b1:4d:19: 80:0d:aa:24:69:2c:6c:2a:87:68:2a:78:6b:9b:91: d4:39:2c:75:f4:c9:bd:fa:34:d5:30:7b:e3:4b:14: 2f:31:9a:3a:c2:fa:15:da:70:ab:21:fa:8a:62:63: 22:0c:1c:06:3d:45:20:0f:25:a3:a7:39:1d:b5:f3: 55:fe:2f:bc:a0:d4:1a:aa:7a:f1:54:91:4a:9a:53: 8d:b0:39:a0:24:42:df:54:48:b8:de:44:f4:cf:47: 42:58:c4:7f:83:53:5b:82:6a:ad:a5:e5:5d:d6:53: a2:43:25:bf:21:c5:bd:7d:74:f7:26:bb:e2:c6:ff: 0a:23:f4:25:78:b9:90:cf:fb:de:41:6e:3c:56:ff: 3b:41:d3:f2:cf:cd:c1:aa:91:5e:20:c4:cc:21:ae: 6d:ca:78:85:a7:53:86:e7:63:da:ec:40:ce:85:3b: 68:45:8b:8f:e8:f9:4a:d7:54:53:35:c4:7c:cb:59: 3f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:51:05:04:DD:2A:89:48:DB:BB:D6:48:2D:9D:AC:F8:15:32:BB:40 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03d::/48 Signature Algorithm: sha256WithRSAEncryption 3d:2f:07:75:93:54:6b:cf:65:f8:6d:af:08:43:ff:44:cf:1b: 8b:13:73:ae:d5:9e:04:11:d3:ba:23:db:0c:13:91:b0:ee:4f: 10:84:43:10:35:63:cd:63:b4:d6:84:75:44:86:80:96:da:8e: ac:95:7f:ec:45:57:b7:d8:cf:87:f5:ed:c9:cd:5a:7d:8b:d0: 20:2e:36:46:36:97:38:04:af:40:90:ed:87:18:e2:c6:1d:30: 41:02:0d:f2:27:b0:1b:df:bc:7b:d4:68:4c:81:dd:03:5d:4e: 77:9a:c6:6d:dc:c7:0d:7e:c5:c2:d4:10:7e:9d:bd:c4:a4:4e: b6:91:88:b5:db:64:12:a3:d8:9b:c8:d4:09:ec:ee:0c:bd:9c: b9:43:f0:3a:b7:54:d2:f6:4d:5a:08:fe:2b:cc:33:8e:70:23: 18:c3:24:e6:e6:9c:39:84:55:62:d0:99:85:f7:aa:81:6a:bf: 1b:5a:71:11:6a:19:0f:c2:55:e8:a1:7f:ec:a2:04:f2:15:32: e2:9f:48:70:27:e8:41:15:a2:7d:83:e1:4d:63:f3:74:0c:ae: 3f:81:e1:b8:99:ae:5b:22:23:0c:a9:84:70:70:82:9b:95:f0: 93:3f:ad:51:80:dd:89:4b:6a:27:16:63:af:ed:63:92:c6:ef: 59:06:35:c1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfWiapS4t1P8KL7DpdnzwrhLVqdMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MDEwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTdiMjJkYWY0NmFmZTcxOGUyMWY3MjE5OGVhY2NlZjU5 ZDk2NTdiN2UyMzU3NzczMzExYzdhMTdjMjcxMTdkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDn15B6VqBAglM+bIcJfDuTAYNeLth6/EiBzOqT4kXeUfpy IOWRiyHjhBiSkSRKYu/og689utueMdU9IsKQbBar2vLYRR1/krFNGYANqiRpLGwq h2gqeGubkdQ5LHX0yb36NNUwe+NLFC8xmjrC+hXacKsh+opiYyIMHAY9RSAPJaOn OR2181X+L7yg1BqqevFUkUqaU42wOaAkQt9USLjeRPTPR0JYxH+DU1uCaq2l5V3W U6JDJb8hxb19dPcmu+LG/woj9CV4uZDP+95BbjxW/ztB0/LPzcGqkV4gxMwhrm3K eIWnU4bnY9rsQM6FO2hFi4/o+UrXVFM1xHzLWT+ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW1EFBN0qiUjbu9ZILZ2s+BUyu0AwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1ZWZjZjcyLTcwOGQtNDQ1Ni1iMWQxLTg0MTlhMjYzNmUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D0wDQYJKoZIhvcNAQELBQADggEBAD0vB3WTVGvPZfhtrwhD/0TP G4sTc67VngQR07oj2wwTkbDuTxCEQxA1Y81jtNaEdUSGgJbajqyVf+xFV7fYz4f1 7cnNWn2L0CAuNkY2lzgEr0CQ7YcY4sYdMEECDfInsBvfvHvUaEyB3QNdTneaxm3c xw1+xcLUEH6dvcSkTraRiLXbZBKj2JvI1Ans7gy9nLlD8Dq3VNL2TVoI/ivMM45w IxjDJObmnDmEVWLQmYX3qoFqvxtacRFqGQ/CVeihf+yiBPIVMuKfSHAn6EEVon2D 4U1j83QMrj+B4biZrlsiIwyphHBwgpuV8JM/rVGA3YlLaicWY6/tY5LG71kGNcE= -----END CERTIFICATE-----Generated at Sun Jun 8 00:43:09 2025 by rpki-client