$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/84ac7714-eba5-4f7d-a5ee-79b6eed77b7e.roa File: 84ac7714-eba5-4f7d-a5ee-79b6eed77b7e.roa (raw, json) Hash identifier: YWboYAZ844b6Cftt7fvC3jqHdYejxGp1EnWmu3l+CUA= Subject key identifier: 66:0D:F3:A8:10:29:6E:9A:C8:66:F0:07:34:AB:97:05:23:44:59:AD Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 500BA87F9CF38554A87ECC7F60686779F3F2F97F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/84ac7714-eba5-4f7d-a5ee-79b6eed77b7e.roa Signing time: Tue 20 May 2025 17:51:17 +0000 ROA not before: Tue 20 May 2025 17:51:17 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c40::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:0b:a8:7f:9c:f3:85:54:a8:7e:cc:7f:60:68:67:79:f3:f2:f9:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:51:17 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=e18b645c18b8b6add41a11b0e247ea2a184e894bbed4f184d13ef15113cfb0f8, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:6c:38:01:a3:45:af:56:b9:cc:ab:82:c1:ea: 85:6a:78:ee:b3:c9:99:00:e4:3d:31:21:b5:7b:d3: a9:46:92:cd:d7:0a:ff:35:ff:60:c6:b3:4c:46:f0: cf:ed:d9:1b:c4:44:6a:6d:dc:dd:ee:3a:7b:7e:19: 11:5e:81:54:8d:6a:d8:1e:f6:78:e6:07:c0:c8:08: 90:ed:6e:30:0e:fb:35:0b:1f:ba:70:99:6b:86:a7: 8c:50:f0:63:ba:18:92:68:e6:a7:9d:74:96:36:b4: 30:78:88:5d:8d:da:29:0a:6d:6f:53:d5:9b:32:a9: 92:34:17:25:65:c4:13:98:b3:33:26:0d:cd:bf:21: a9:8f:1f:35:8d:64:1a:36:03:b2:7a:04:96:86:59: 85:0d:34:66:cf:5c:03:65:27:c7:56:29:d1:65:f1: 6d:ef:c4:01:31:57:59:24:cb:ec:1f:c6:6f:3f:81: bd:36:5a:35:77:03:04:eb:36:c3:3d:79:a5:d0:24: 10:8e:40:64:bc:6e:69:ab:37:62:9b:f9:94:8c:d2: 75:01:2b:fb:dc:f9:43:68:56:75:e9:c4:58:cc:25: 30:17:b4:ae:f2:ff:3b:92:24:c9:ff:02:d8:28:3b: fc:38:6a:b5:11:92:e0:59:5e:9b:4c:7a:42:c2:b5: e9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:0D:F3:A8:10:29:6E:9A:C8:66:F0:07:34:AB:97:05:23:44:59:AD X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/84ac7714-eba5-4f7d-a5ee-79b6eed77b7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c40::/45 Signature Algorithm: sha256WithRSAEncryption 9f:ce:52:68:bd:ff:c9:29:7e:8f:50:56:77:0b:0d:44:a9:d2: 3c:7c:d9:5a:3b:82:c9:17:31:18:50:00:d4:9e:b1:62:d8:e8: d0:b6:cb:78:62:6e:98:71:21:4a:11:3e:da:2b:5e:ca:17:09: c4:d4:d7:8e:60:9c:48:1e:94:7f:2a:a0:07:d1:68:85:6e:54: a1:21:ff:87:fa:e7:c1:60:22:7d:89:03:97:73:72:f1:c8:de: 14:29:cc:f9:17:ce:b6:ee:84:7b:0a:f6:8e:34:b7:da:37:07: 2c:a3:12:5d:df:45:df:b4:e1:35:a4:86:be:5b:8c:52:ed:3f: 1f:96:d8:f4:b9:79:2b:08:b4:06:09:df:cd:f8:6c:6d:24:89: 8f:86:3c:cc:8a:cd:4d:07:aa:f0:55:85:3c:10:22:da:76:a1: 84:24:20:59:58:df:52:64:30:ad:ac:28:5f:e0:2b:90:65:df: 29:45:42:26:dd:9f:51:8f:a9:7b:c0:56:fe:9c:2a:83:75:13: b5:97:ee:d5:5e:16:8f:fd:b1:fd:73:da:6d:7d:1a:55:eb:35: 87:f4:63:79:6e:44:bd:7e:90:5e:cf:bf:e8:51:92:f3:b1:dd: c4:0a:07:93:30:bd:14:23:46:26:b9:ce:57:21:7a:86:0c:8c: 46:0a:75:f5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUAuof5zzhVSofsx/YGhnefPy+X8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MTE3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMThiNjQ1YzE4YjhiNmFkZDQxYTExYjBlMjQ3ZWEyYTE4 NGU4OTRiYmVkNGYxODRkMTNlZjE1MTEzY2ZiMGY4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxbDgBo0WvVrnMq4LB6oVqeO6zyZkA5D0xIbV706lGks3X Cv81/2DGs0xG8M/t2RvERGpt3N3uOnt+GRFegVSNatge9njmB8DICJDtbjAO+zUL H7pwmWuGp4xQ8GO6GJJo5qeddJY2tDB4iF2N2ikKbW9T1ZsyqZI0FyVlxBOYszMm Dc2/IamPHzWNZBo2A7J6BJaGWYUNNGbPXANlJ8dWKdFl8W3vxAExV1kky+wfxm8/ gb02WjV3AwTrNsM9eaXQJBCOQGS8bmmrN2Kb+ZSM0nUBK/vc+UNoVnXpxFjMJTAX tK7y/zuSJMn/AtgoO/w4arURkuBZXptMekLCtelvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZg3zqBApbprIZvAHNKuXBSNEWa0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg0YWM3NzE0LWViYTUtNGY3ZC1hNWVlLTc5YjZlZWQ3N2I3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmBZzADEAwDQYJKoZIhvcNAQELBQADggEBAJ/OUmi9/8kpfo9QVncLDUSp 0jx82Vo7gskXMRhQANSesWLY6NC2y3hibphxIUoRPtorXsoXCcTU145gnEgelH8q oAfRaIVuVKEh/4f658FgIn2JA5dzcvHI3hQpzPkXzrbuhHsK9o40t9o3ByyjEl3f Rd+04TWkhr5bjFLtPx+W2PS5eSsItAYJ3834bG0kiY+GPMyKzU0HqvBVhTwQItp2 oYQkIFlY31JkMK2sKF/gK5Bl3ylFQibdn1GPqXvAVv6cKoN1E7WX7tVeFo/9sf1z 2m19GlXrNYf0Y3luRL1+kF7Pv+hRkvOx3cQKB5MwvRQjRia5zlcheoYMjEYKdfU= -----END CERTIFICATE-----Generated at Sat Jun 7 04:11:55 2025 by rpki-client