$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0baebc69-c10a-4df5-b60a-747fa56ff200.roa File: 0baebc69-c10a-4df5-b60a-747fa56ff200.roa (raw, json) Hash identifier: CMVi5sMqL9a7wgjukhjpU6RDtp7nHmdx38K3xpWkFys= Subject key identifier: 02:0B:EF:11:6F:16:23:B7:3A:17:5C:E9:1C:E2:00:3B:D8:C4:D3:51 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 68BD27B0A0DADB8EC6AEC318927051F40B2AC094 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0baebc69-c10a-4df5-b60a-747fa56ff200.roa Signing time: Sat 26 Apr 2025 00:51:36 +0000 ROA not before: Sat 26 Apr 2025 00:51:36 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:309::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:bd:27:b0:a0:da:db:8e:c6:ae:c3:18:92:70:51:f4:0b:2a:c0:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 26 00:51:36 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=dea130ac36f2c14c96e51a2839ea68f5f265e39b34605f443486478a69054d05, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:92:7b:67:c6:e9:59:d9:41:44:0e:0d:6b:8b: 83:60:59:b0:f1:f1:d3:1c:e0:5e:80:13:22:5b:94: 26:1b:67:75:3f:d8:c8:2f:bd:2c:d0:b3:26:c8:ed: 48:b9:2f:a3:51:ee:c1:5f:22:be:d6:e2:0b:dc:23: 8c:14:3f:96:65:7f:96:75:ed:50:9d:d1:f7:ee:f2: 49:c3:81:87:a4:89:b1:cd:94:79:ce:5a:e0:03:a7: fb:18:af:29:96:df:c5:01:4d:6c:8b:07:aa:24:07: b7:6b:e1:55:71:52:01:5d:46:8c:79:40:11:51:2a: c7:e7:7a:71:fe:33:a5:a0:01:7b:58:98:74:a5:ed: f5:62:af:a1:03:22:df:af:99:3a:73:d4:90:ac:8e: 95:bf:2f:d2:47:d5:e7:68:9b:0f:c7:0b:b8:14:3d: ae:de:3e:c7:3f:83:61:41:d7:52:a6:ef:48:49:83: 62:b6:0c:24:a1:78:c2:44:44:59:2a:16:81:d8:df: 8c:39:5a:52:e6:dc:83:d5:9f:25:f7:7a:02:1a:e9: 88:55:5a:87:73:75:3e:f6:2b:a8:48:ce:00:69:1f: 19:12:5a:ee:f5:c3:9a:45:49:e7:11:4f:c1:74:ff: 34:56:b3:e3:d3:b4:c2:82:76:e1:fa:27:a4:c2:01: 79:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0B:EF:11:6F:16:23:B7:3A:17:5C:E9:1C:E2:00:3B:D8:C4:D3:51 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0baebc69-c10a-4df5-b60a-747fa56ff200.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:309::/48 Signature Algorithm: sha256WithRSAEncryption 73:bb:90:f4:9d:60:51:70:ca:47:6e:56:5a:5a:b6:95:36:90: 76:a1:9b:ab:1e:02:e0:83:6a:a7:d5:77:e3:f1:14:ea:8d:dd: dd:bf:57:c5:0a:41:52:53:23:df:a0:d3:ee:c3:f0:9f:e8:b4: 80:55:e1:c8:ce:49:c5:95:1f:89:94:86:d3:22:10:21:0e:f1: 21:5a:8b:f2:5c:5a:bf:d5:7f:2d:aa:c2:f9:1d:e3:dd:28:79: fb:99:3d:fb:dd:f7:f5:73:df:fb:f0:22:ee:3a:7d:d0:4e:e8: f2:60:1a:db:9b:ba:3b:76:61:49:77:59:ef:eb:35:93:64:66: 17:8c:59:39:8b:b9:b7:05:39:dc:b7:52:01:b0:7f:ee:14:b8: 22:d3:23:15:bf:b4:df:16:b9:fa:a9:7f:e3:72:5c:21:54:10: 8f:e9:33:80:02:2c:07:d2:16:20:cd:23:a5:bc:65:31:3b:90: f2:e7:ec:37:22:3f:65:a0:66:52:09:3d:88:0b:88:6d:1a:e8: 88:95:b9:a6:a2:ce:89:c9:0c:db:d4:b5:0a:07:95:a7:24:d9: cb:7b:7b:8e:5d:71:24:b0:57:47:fc:a3:24:f4:c1:98:2e:1b: 64:4a:c8:39:c0:f0:cf:c3:27:cd:3e:cb:68:19:50:48:37:a6: 77:6c:aa:a5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaL0nsKDa247GrsMYknBR9AsqwJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI2MDA1MTM2WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWExMzBhYzM2ZjJjMTRjOTZlNTFhMjgzOWVhNjhmNWYy NjVlMzliMzQ2MDVmNDQzNDg2NDc4YTY5MDU0ZDA1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChkntnxulZ2UFEDg1ri4NgWbDx8dMc4F6AEyJblCYbZ3U/ 2MgvvSzQsybI7Ui5L6NR7sFfIr7W4gvcI4wUP5Zlf5Z17VCd0ffu8knDgYekibHN lHnOWuADp/sYrymW38UBTWyLB6okB7dr4VVxUgFdRox5QBFRKsfnenH+M6WgAXtY mHSl7fVir6EDIt+vmTpz1JCsjpW/L9JH1edomw/HC7gUPa7ePsc/g2FB11Km70hJ g2K2DCSheMJERFkqFoHY34w5WlLm3IPVnyX3egIa6YhVWodzdT72K6hIzgBpHxkS Wu71w5pFSecRT8F0/zRWs+PTtMKCduH6J6TCAXmpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAgvvEW8WI7c6F1zpHOIAO9jE01EwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBiYWViYzY5LWMxMGEtNGRmNS1iNjBhLTc0N2ZhNTZmZjIwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAwkwDQYJKoZIhvcNAQELBQADggEBAHO7kPSdYFFwykduVlpatpU2 kHahm6seAuCDaqfVd+PxFOqN3d2/V8UKQVJTI9+g0+7D8J/otIBV4cjOScWVH4mU htMiECEO8SFai/JcWr/Vfy2qwvkd490oefuZPfvd9/Vz3/vwIu46fdBO6PJgGtub ujt2YUl3We/rNZNkZheMWTmLubcFOdy3UgGwf+4UuCLTIxW/tN8Wufqpf+NyXCFU EI/pM4ACLAfSFiDNI6W8ZTE7kPLn7DciP2WgZlIJPYgLiG0a6IiVuaaizonJDNvU tQoHlack2ct7e45dcSSwV0f8oyT0wZguG2RKyDnA8M/DJ80+y2gZUEg3pndsqqU= -----END CERTIFICATE-----Generated at Sat Apr 26 17:37:47 2025 by rpki-client