$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/89848d84-ccf0-40c8-b12a-ac4d8910d997.roa File: 89848d84-ccf0-40c8-b12a-ac4d8910d997.roa (raw, json) Hash identifier: ejvZPqk4qSkyP92keY5bc1pStufcJiYOYv8/aYquEuU= Subject key identifier: E6:BC:72:F7:0F:B0:6B:56:2E:EC:87:BA:39:C1:52:36:F9:F7:81:6E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4570FB58BEFF7A0FC473500D34E4ABD8DB412CE9 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/89848d84-ccf0-40c8-b12a-ac4d8910d997.roa Signing time: Tue 20 May 2025 17:51:03 +0000 ROA not before: Tue 20 May 2025 17:51:03 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:3a7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:70:fb:58:be:ff:7a:0f:c4:73:50:0d:34:e4:ab:d8:db:41:2c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:51:03 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=980ecba005ca810f76605645bea6dbc31ae43223d31f01bee9dc183b1e722fea, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:68:98:db:64:7f:82:6e:fc:5b:98:06:39:2a: c0:8b:09:7c:72:80:9c:a3:05:e5:28:14:08:90:9c: 17:4c:a6:d1:61:61:47:bd:ba:73:1a:d8:e9:6f:2c: 91:28:ba:7d:da:63:ed:15:d9:fa:1d:79:4f:50:0e: 19:ef:8d:e9:3e:4d:a7:3f:de:43:9d:80:28:2d:4d: 49:b5:a0:2c:24:0a:67:98:c4:9c:ba:bd:f3:bf:ca: 7e:a2:96:16:b2:7d:41:e4:d0:36:23:1c:06:a8:c9: cc:85:03:4c:05:e9:48:d6:d3:ae:8a:4d:87:92:20: cf:5e:11:79:37:64:50:29:2a:d0:35:9d:dd:08:e2: 3f:c8:4c:f7:13:01:b3:b2:78:e2:aa:08:f0:42:67: 29:4a:53:87:88:98:79:4b:b9:b1:be:c3:ed:f3:03: 22:d3:0b:f9:b9:d1:36:28:b8:b4:50:40:67:d9:08: 9c:ae:d8:9a:16:35:e6:35:6d:11:5b:74:f1:38:40: b0:55:22:3b:c7:02:54:0e:be:3f:86:a0:93:07:52: 5a:89:67:39:f1:7e:74:17:fc:5e:94:73:4c:43:10: ea:fd:17:b1:92:bf:cf:1a:fd:71:7e:2b:88:22:85: 5a:ad:07:a7:b9:7e:d5:5d:dc:02:95:fc:14:fd:b7: d9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BC:72:F7:0F:B0:6B:56:2E:EC:87:BA:39:C1:52:36:F9:F7:81:6E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/89848d84-ccf0-40c8-b12a-ac4d8910d997.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3a7::/48 Signature Algorithm: sha256WithRSAEncryption 5f:75:bc:0d:09:70:5f:34:fe:f5:2f:f3:82:95:80:f8:87:a7: a1:8a:6b:8e:6a:e7:ee:58:35:7e:32:d0:e5:a4:89:f5:38:96: b7:d9:19:cd:e4:52:a0:b5:dc:f6:41:30:da:b1:37:dd:12:91: ec:fd:2a:0e:26:b1:71:2c:74:54:05:b1:c8:5f:58:44:83:d0: 86:60:4a:8e:d4:f9:64:05:ca:d4:d3:22:4f:b9:39:99:7e:d2: 1f:91:84:dd:38:56:b8:77:f2:b0:7e:33:1b:85:e8:e9:b8:f1: ef:fe:d8:8e:e6:14:aa:34:4f:9b:31:6d:e4:83:44:59:a1:dc: ee:67:a0:1c:9e:75:4f:8d:2f:e5:6f:15:67:2c:7a:3d:dd:69: fe:a0:35:22:f5:e1:56:cc:37:1f:2e:e4:e8:db:a7:38:bb:7d: 17:6e:4d:93:79:25:f7:9a:13:02:4e:d0:e3:5f:33:d2:74:f5: 4c:76:0e:a8:b3:ca:a5:91:99:6c:cb:24:eb:f8:d3:16:db:b8: 94:a8:77:35:3c:25:11:26:e9:7a:b4:7f:b2:c3:31:17:47:83: 9e:4a:b4:f7:ef:ce:16:11:e2:93:65:aa:b1:64:58:fa:8a:c4: 59:8d:c7:cc:90:97:de:ab:37:17:f3:24:dd:70:3f:4e:1e:b9: dd:72:0c:1b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURXD7WL7/eg/Ec1ANNOSr2NtBLOkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MTAzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODBlY2JhMDA1Y2E4MTBmNzY2MDU2NDViZWE2ZGJjMzFh ZTQzMjIzZDMxZjAxYmVlOWRjMTgzYjFlNzIyZmVhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCraJjbZH+CbvxbmAY5KsCLCXxygJyjBeUoFAiQnBdMptFh YUe9unMa2OlvLJEoun3aY+0V2fodeU9QDhnvjek+Tac/3kOdgCgtTUm1oCwkCmeY xJy6vfO/yn6ilhayfUHk0DYjHAaoycyFA0wF6UjW066KTYeSIM9eEXk3ZFApKtA1 nd0I4j/ITPcTAbOyeOKqCPBCZylKU4eImHlLubG+w+3zAyLTC/m50TYouLRQQGfZ CJyu2JoWNeY1bRFbdPE4QLBVIjvHAlQOvj+GoJMHUlqJZznxfnQX/F6Uc0xDEOr9 F7GSv88a/XF+K4gihVqtB6e5ftVd3AKV/BT9t9kHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5rxy9w+wa1Yu7Ie6OcFSNvn3gW4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg5ODQ4ZDg0LWNjZjAtNDBjOC1iMTJhLWFjNGQ4OTEwZDk5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA6cwDQYJKoZIhvcNAQELBQADggEBAF91vA0JcF80/vUv84KVgPiH p6GKa45q5+5YNX4y0OWkifU4lrfZGc3kUqC13PZBMNqxN90Skez9Kg4msXEsdFQF schfWESD0IZgSo7U+WQFytTTIk+5OZl+0h+RhN04Vrh38rB+MxuF6Om48e/+2I7m FKo0T5sxbeSDRFmh3O5noByedU+NL+VvFWcsej3daf6gNSL14VbMNx8u5Ojbpzi7 fRduTZN5JfeaEwJO0ONfM9J09Ux2DqizyqWRmWzLJOv40xbbuJSodzU8JREm6Xq0 f7LDMRdHg55KtPfvzhYR4pNlqrFkWPqKxFmNx8yQl96rNxfzJN1wP04eud1yDBs= -----END CERTIFICATE-----Generated at Sun Jun 8 00:34:34 2025 by rpki-client