$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa File: 86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa (raw, json) Hash identifier: oRduCz1eMihBEu0f+c2zdIRvhyb/KSLXPSs9zPVrpwI= Subject key identifier: 4A:8E:60:98:B2:F7:57:08:93:35:22:BA:7A:03:31:10:4C:69:43:89 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 478B2A68F0537395BDA52D5409D51F7CF16B3C04 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa Signing time: Sat 31 May 2025 00:41:01 +0000 ROA not before: Sat 31 May 2025 00:41:01 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:8b:2a:68:f0:53:73:95:bd:a5:2d:54:09:d5:1f:7c:f1:6b:3c:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 31 00:41:01 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=1e83269eb98ae0539dfc850358caa4135e1b20d42da0031fe3b8ac182f74433b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0d:cb:f6:79:4c:19:da:d1:b8:30:a0:1c:15: c2:c3:e7:82:97:0f:78:8c:8e:a5:26:56:c5:a2:0b: f4:7d:e7:51:c1:5b:a9:05:a6:35:d6:25:80:85:da: 11:3f:4b:f6:5b:fd:64:86:db:33:9c:fd:ca:1b:a6: b2:a8:a7:9d:dc:a4:60:ac:75:d0:2a:02:fe:fc:5f: 66:36:0b:ef:c8:96:86:c4:da:95:40:4d:35:3a:20: 1c:c9:6d:b2:5e:ab:70:5e:4a:a7:d9:1c:58:a6:81: e9:b9:28:91:91:82:e8:c4:0f:e0:49:31:81:65:89: eb:c1:3b:0e:e9:05:00:3e:be:f2:11:d0:ea:b8:0d: bd:4d:91:76:58:12:22:c0:13:00:1d:2e:21:8f:5b: 26:0d:e3:ab:06:98:83:da:bc:9b:1d:0d:51:4d:8e: 67:91:83:40:b1:a2:b1:96:a4:07:0a:9c:af:85:41: a7:d5:6b:08:bd:b6:f9:04:8f:88:32:28:70:14:c4: 01:63:4e:b6:e2:62:33:66:73:e0:39:c5:6a:82:48: c6:d8:f6:82:86:19:5b:2f:20:c6:7b:0a:a0:a4:51: 85:9c:fb:10:95:28:06:9e:a6:86:29:2b:e6:8e:04: 34:f8:b6:5e:1b:bc:e7:5d:ad:d3:6b:93:d3:41:70: 13:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:8E:60:98:B2:F7:57:08:93:35:22:BA:7A:03:31:10:4C:69:43:89 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c20::/48 Signature Algorithm: sha256WithRSAEncryption a1:e6:f8:94:c5:14:da:0f:0d:bc:c5:79:c6:b0:54:55:ae:b1: 50:37:1e:bf:f5:71:42:e1:7a:8a:a9:01:bc:45:73:f0:9f:ba: be:81:34:78:6d:f7:61:a0:13:5c:13:81:49:24:3b:25:89:61: e1:dd:5e:55:c2:84:98:e7:8d:f2:de:7a:d9:53:28:77:13:38: 69:db:0c:82:cb:05:c4:a2:ea:db:f5:59:f1:15:43:71:67:6d: 34:c9:92:bf:fe:ae:0f:ed:af:4c:c4:53:b6:57:f6:dd:aa:c6: f9:f7:47:04:95:bf:96:2c:35:f5:fe:09:58:ec:d1:04:1c:9d: af:14:fe:80:38:d4:52:09:ad:f4:c3:73:ed:ab:32:f2:63:eb: ab:fc:1f:36:1d:04:b3:2a:49:8a:2b:27:5b:c5:5e:54:34:9d: 29:f3:8d:10:5e:00:3d:08:f9:77:18:35:47:c6:7e:f2:fd:1c: 64:61:b6:ea:de:d5:89:b0:5e:f1:c9:20:36:97:c0:ff:85:ed: de:23:c8:09:c5:7e:c6:5d:ff:8d:cd:78:e4:d5:0a:1a:c6:12: 94:f3:ed:ab:a1:04:e8:94:6f:7d:29:37:bd:52:17:f9:52:6b: 87:39:1c:35:b0:bb:58:59:2f:5b:71:24:3f:fe:f0:9b:e0:f0: 08:8f:4b:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR4sqaPBTc5W9pS1UCdUffPFrPAQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTMxMDA0MTAxWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTgzMjY5ZWI5OGFlMDUzOWRmYzg1MDM1OGNhYTQxMzVl MWIyMGQ0MmRhMDAzMWZlM2I4YWMxODJmNzQ0MzNiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtDcv2eUwZ2tG4MKAcFcLD54KXD3iMjqUmVsWiC/R951HB W6kFpjXWJYCF2hE/S/Zb/WSG2zOc/cobprKop53cpGCsddAqAv78X2Y2C+/IlobE 2pVATTU6IBzJbbJeq3BeSqfZHFimgem5KJGRgujED+BJMYFlievBOw7pBQA+vvIR 0Oq4Db1NkXZYEiLAEwAdLiGPWyYN46sGmIPavJsdDVFNjmeRg0CxorGWpAcKnK+F QafVawi9tvkEj4gyKHAUxAFjTrbiYjNmc+A5xWqCSMbY9oKGGVsvIMZ7CqCkUYWc +xCVKAaepoYpK+aOBDT4tl4bvOddrdNrk9NBcBM1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSo5gmLL3VwiTNSK6egMxEExpQ4kwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg2YjAzZmVlLTJhNmYtNGM0NC1iY2JkLTdlNTliY2NmMTU5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADCAwDQYJKoZIhvcNAQELBQADggEBAKHm+JTFFNoPDbzFecawVFWu sVA3Hr/1cULheoqpAbxFc/Cfur6BNHht92GgE1wTgUkkOyWJYeHdXlXChJjnjfLe etlTKHcTOGnbDILLBcSi6tv1WfEVQ3FnbTTJkr/+rg/tr0zEU7ZX9t2qxvn3RwSV v5YsNfX+CVjs0QQcna8U/oA41FIJrfTDc+2rMvJj66v8HzYdBLMqSYorJ1vFXlQ0 nSnzjRBeAD0I+XcYNUfGfvL9HGRhture1YmwXvHJIDaXwP+F7d4jyAnFfsZd/43N eOTVChrGEpTz7auhBOiUb30pN71SF/lSa4c5HDWwu1hZL1txJD/+8Jvg8AiPS7M= -----END CERTIFICATE-----Generated at Sat Jun 7 22:14:11 2025 by rpki-client