$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c059320-6aba-4b07-80cf-75b922c5db5b.roa File: 0c059320-6aba-4b07-80cf-75b922c5db5b.roa (raw, json) Hash identifier: 04Au2osIj+xpe3qgVQY2Z1HVU+hRYc9nX2NfT0fOhkQ= Subject key identifier: 40:6A:54:7C:D0:BC:1C:E9:63:F7:E4:2A:7A:F8:36:20:8A:7C:3F:65 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 764AEECD941DD5F420DD089C2D0C317FA7ABD114 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c059320-6aba-4b07-80cf-75b922c5db5b.roa Signing time: Fri 25 Apr 2025 17:40:41 +0000 ROA not before: Fri 25 Apr 2025 17:40:41 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c48::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:4a:ee:cd:94:1d:d5:f4:20:dd:08:9c:2d:0c:31:7f:a7:ab:d1:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:40:41 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ba5ce358214872349eb260474fcdd6274850ef91c8731181260b952fc41702f7, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5e:74:3c:6e:ff:fa:f2:40:da:6a:9f:1e:e5: 75:bb:12:dc:33:87:a1:3b:bd:a3:44:cf:49:0d:5f: ea:53:f4:00:59:06:3b:37:a6:c1:2c:8e:04:1b:21: 0a:0a:4a:df:2f:63:49:da:3f:e0:81:d0:05:b9:77: 34:da:f1:14:60:bd:44:1e:bf:f9:85:07:f0:d2:1f: 2d:c7:4d:b2:db:91:6d:c1:2f:cb:c8:25:4a:b5:62: ec:bf:0b:08:26:b4:ff:d7:48:03:66:e9:8e:0a:54: 07:a4:16:f3:9d:c4:da:b5:49:44:bb:13:8c:8c:36: 9e:17:76:b5:84:17:46:d0:1c:be:a1:bc:15:03:da: 54:1a:d9:58:8b:7d:16:29:03:77:aa:e5:85:52:d0: af:b7:0c:be:00:7c:d0:28:6d:d5:1f:ed:1a:10:9b: 91:16:c9:c7:92:d3:8a:b8:d6:14:53:53:c4:fa:3e: 36:ee:96:46:d9:d5:c1:ca:c9:69:e6:dc:73:bd:ec: 8f:30:45:55:81:55:cd:48:4c:09:49:0f:c0:8a:e5: b8:c6:9a:32:27:2a:70:57:5f:33:c9:b4:44:fd:da: eb:c4:f0:96:e5:78:86:fc:d5:40:f5:ec:48:de:24: 1e:46:fc:59:8f:1e:5f:ae:a0:8b:18:c7:d5:1c:43: f9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:6A:54:7C:D0:BC:1C:E9:63:F7:E4:2A:7A:F8:36:20:8A:7C:3F:65 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c059320-6aba-4b07-80cf-75b922c5db5b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c48::/45 Signature Algorithm: sha256WithRSAEncryption 01:92:f1:45:46:ac:31:8c:77:1f:46:b9:b6:ca:33:25:e7:c3: 78:0e:7e:a8:1b:33:0f:4f:bb:a6:39:d5:65:60:9f:02:c7:5d: 28:0f:1c:56:bf:42:7d:0d:d4:f9:2e:28:82:98:7a:75:e6:af: 16:c5:7c:26:3e:34:88:4b:dc:42:62:24:cf:bf:95:d6:d1:d4: ed:38:75:88:c0:9d:34:4c:ec:e5:f8:78:cc:04:a2:07:4b:ad: 61:3e:5e:ce:c9:0a:e4:67:ef:06:de:2b:2d:46:ea:20:5c:35: b8:ba:db:ae:a6:5b:70:49:86:f6:2c:37:68:ac:3f:7d:48:5a: 45:47:b4:26:d5:72:b9:6d:c1:89:32:d0:ab:ae:42:b8:42:72: b9:13:58:94:ca:b3:77:f6:e6:d7:d6:79:a0:6b:26:81:6c:47: b0:fc:77:06:f0:f7:c6:c9:9d:76:b4:fc:80:1f:80:03:d7:bb: c2:df:c1:44:b5:6d:26:72:74:74:a0:1a:17:4c:1d:64:2c:7f: 38:23:ea:95:ff:a7:27:d5:eb:c8:56:4f:48:0c:45:d2:23:cc: 83:e6:f6:77:7c:d9:a8:17:87:30:9d:83:53:cf:eb:3b:6d:6b: cf:fb:69:a8:4c:2b:a4:fd:df:84:5c:f9:91:b9:ed:47:a7:2b: cd:6f:f7:ee -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdkruzZQd1fQg3QicLQwxf6er0RQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTc0MDQxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTVjZTM1ODIxNDg3MjM0OWViMjYwNDc0ZmNkZDYyNzQ4 NTBlZjkxYzg3MzExODEyNjBiOTUyZmM0MTcwMmY3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3XnQ8bv/68kDaap8e5XW7Etwzh6E7vaNEz0kNX+pT9ABZ Bjs3psEsjgQbIQoKSt8vY0naP+CB0AW5dzTa8RRgvUQev/mFB/DSHy3HTbLbkW3B L8vIJUq1Yuy/CwgmtP/XSANm6Y4KVAekFvOdxNq1SUS7E4yMNp4XdrWEF0bQHL6h vBUD2lQa2ViLfRYpA3eq5YVS0K+3DL4AfNAobdUf7RoQm5EWyceS04q41hRTU8T6 PjbulkbZ1cHKyWnm3HO97I8wRVWBVc1ITAlJD8CK5bjGmjInKnBXXzPJtET92uvE 8JbleIb81UD17EjeJB5G/FmPHl+uoIsYx9UcQ/kfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQGpUfNC8HOlj9+Qqevg2IIp8P2UwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBjMDU5MzIwLTZhYmEtNGIwNy04MGNmLTc1YjkyMmM1ZGI1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmBZzADEgwDQYJKoZIhvcNAQELBQADggEBAAGS8UVGrDGMdx9GubbKMyXn w3gOfqgbMw9Pu6Y51WVgnwLHXSgPHFa/Qn0N1PkuKIKYenXmrxbFfCY+NIhL3EJi JM+/ldbR1O04dYjAnTRM7OX4eMwEogdLrWE+Xs7JCuRn7wbeKy1G6iBcNbi6266m W3BJhvYsN2isP31IWkVHtCbVcrltwYky0KuuQrhCcrkTWJTKs3f25tfWeaBrJoFs R7D8dwbw98bJnXa0/IAfgAPXu8LfwUS1bSZydHSgGhdMHWQsfzgj6pX/pyfV68hW T0gMRdIjzIPm9nd82agXhzCdg1PP6ztta8/7aahMK6T934Rc+ZG57UenK81v9+4= -----END CERTIFICATE-----Generated at Sat Apr 26 13:15:47 2025 by rpki-client