$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa File: ea014712-964e-4c9e-bacc-2630e4e451b2.roa (raw, json) Hash identifier: jAVxJa4gAoDQRLmeXQe1hP0rAaG6ue2cusaQ1mwBvrU= Subject key identifier: 44:B4:B0:6A:23:E2:AF:9C:E7:42:79:85:98:30:ED:8A:68:F8:EB:C7 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6A432A06CE3B742073CEA7FE5E2DFBF4E56D9417 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa Signing time: Tue 20 May 2025 17:50:06 +0000 ROA not before: Tue 20 May 2025 17:50:06 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:43:2a:06:ce:3b:74:20:73:ce:a7:fe:5e:2d:fb:f4:e5:6d:94:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:50:06 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=d0a21ec076c136aa159f79894434d4aeed81fe0d4eefa74653351c90eb3bbbc2, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ea:30:9a:d7:b4:b7:8e:ca:cb:ea:7c:21:f0: c4:75:47:f7:f7:eb:6b:ec:12:fa:6a:a1:5d:8e:48: 5e:90:7b:0d:f8:36:39:c6:bc:6f:e1:ab:b1:b9:61: 43:1d:0e:3b:b9:81:1a:c2:c4:be:3b:76:d6:eb:be: 9d:3e:6a:99:5c:89:06:00:76:b2:56:2e:c9:2b:2f: d8:6e:24:93:ad:23:8e:f1:b3:e7:49:18:db:4b:6e: 00:37:98:29:02:50:00:1a:a1:77:45:61:56:ff:2f: 64:b1:cc:4a:be:63:db:07:24:f0:50:ff:65:bf:5c: 22:c5:7a:63:0a:3d:e2:25:d1:ea:d2:94:68:96:fa: 25:36:fd:cd:69:d1:b8:92:e1:20:7e:c4:96:11:0a: bb:4e:60:33:48:91:74:ae:e9:ba:28:b2:22:b4:8b: 94:48:16:1d:e0:22:7b:98:2f:dd:5c:bd:ce:0e:04: fe:d1:b9:94:7e:8b:44:d4:13:10:c4:3e:66:c5:4e: b8:f4:70:86:ad:3c:bd:72:5b:3a:78:fc:47:95:6a: 5d:24:59:d0:4d:83:da:99:eb:76:04:5a:ff:ec:32: 5f:aa:3e:44:60:23:fd:62:b3:b5:8c:bf:9c:83:b9: ce:71:89:b4:f1:a5:08:21:89:02:a1:a8:be:d2:3e: b4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B4:B0:6A:23:E2:AF:9C:E7:42:79:85:98:30:ED:8A:68:F8:EB:C7 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:d00::/40 Signature Algorithm: sha256WithRSAEncryption 8a:66:8b:5b:05:7d:87:51:7e:9e:b9:d6:77:96:db:e5:8a:80: bc:dc:d9:9f:94:97:9e:59:3f:5c:fd:6a:e5:bc:22:b3:27:1f: d1:52:f1:82:f2:d4:e4:89:26:85:17:03:cf:cd:55:25:7d:67: 48:72:75:ca:7b:eb:5b:eb:d5:c8:61:17:71:28:50:66:c6:64: d6:1b:88:5e:c4:7f:6a:db:31:d1:43:4b:c0:d6:39:8a:0a:88: f0:3b:ad:53:e3:74:b9:12:85:52:cc:dc:b1:4e:cd:1a:9b:5d: 2f:57:8f:d5:b6:eb:d4:f3:49:28:b7:d3:ff:39:48:93:5d:eb: 20:a4:19:46:cf:7f:94:34:f0:ed:65:87:25:de:f7:ba:11:32: 01:c2:31:bf:c0:ec:b8:ee:52:9f:fe:16:0f:28:b4:42:87:ae: a3:bf:1f:ac:14:b6:ae:b9:36:3e:76:8c:4b:cc:d2:18:aa:d3: 4c:77:86:94:bd:71:42:b1:45:d5:1d:c9:36:f7:94:80:a5:f6: af:bb:0c:48:a3:ee:c9:06:3c:9a:06:df:28:27:02:34:18:04: b1:23:74:d3:5a:07:79:d8:f1:c6:fb:f0:90:da:06:1e:4f:d5: 1d:26:18:bc:84:10:65:fd:81:72:57:7f:41:0f:9b:7b:c9:a0: 75:ec:19:01 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUakMqBs47dCBzzqf+Xi379OVtlBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MDA2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMGEyMWVjMDc2YzEzNmFhMTU5Zjc5ODk0NDM0ZDRhZWVk ODFmZTBkNGVlZmE3NDY1MzM1MWM5MGViM2JiYmMyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb6jCa17S3jsrL6nwh8MR1R/f362vsEvpqoV2OSF6Qew34 NjnGvG/hq7G5YUMdDju5gRrCxL47dtbrvp0+aplciQYAdrJWLskrL9huJJOtI47x s+dJGNtLbgA3mCkCUAAaoXdFYVb/L2SxzEq+Y9sHJPBQ/2W/XCLFemMKPeIl0erS lGiW+iU2/c1p0biS4SB+xJYRCrtOYDNIkXSu6boosiK0i5RIFh3gInuYL91cvc4O BP7RuZR+i0TUExDEPmbFTrj0cIatPL1yWzp4/EeVal0kWdBNg9qZ63YEWv/sMl+q PkRgI/1is7WMv5yDuc5xibTxpQghiQKhqL7SPrR/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURLSwaiPir5znQnmFmDDtimj468cwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2VhMDE0NzEyLTk2NGUtNGM5ZS1iYWNjLTI2MzBlNGU0NTFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBZzADTANBgkqhkiG9w0BAQsFAAOCAQEAimaLWwV9h1F+nrnWd5bb5YqA vNzZn5SXnlk/XP1q5bwisycf0VLxgvLU5IkmhRcDz81VJX1nSHJ1ynvrW+vVyGEX cShQZsZk1huIXsR/atsx0UNLwNY5igqI8DutU+N0uRKFUszcsU7NGptdL1eP1bbr 1PNJKLfT/zlIk13rIKQZRs9/lDTw7WWHJd73uhEyAcIxv8DsuO5Sn/4WDyi0Qoeu o78frBS2rrk2PnaMS8zSGKrTTHeGlL1xQrFF1R3JNveUgKX2r7sMSKPuyQY8mgbf KCcCNBgEsSN001oHedjxxvvwkNoGHk/VHSYYvIQQZf2Bcld/QQ+be8mgdewZAQ== -----END CERTIFICATE-----Generated at Wed Jun 4 10:26:15 2025 by rpki-client