$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0f6b659b-9df4-477a-a87b-b8bcd08d670e.roa File: 0f6b659b-9df4-477a-a87b-b8bcd08d670e.roa (raw, json) Hash identifier: /D6trxOJTK4eNcsom3LpbUERu8ZAVhoGY5DB2QZbbBA= Subject key identifier: 0D:9B:BA:F1:23:9E:7A:34:DE:62:F8:35:FC:3D:2C:2F:9D:D4:8A:17 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 25DF0E5E572D30436824AF0C6E4A911924488DD5 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0f6b659b-9df4-477a-a87b-b8bcd08d670e.roa Signing time: Fri 11 Apr 2025 00:20:14 +0000 ROA not before: Fri 11 Apr 2025 00:20:14 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:402::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:df:0e:5e:57:2d:30:43:68:24:af:0c:6e:4a:91:19:24:48:8d:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:20:14 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=64e283c02080232be0e476ed38d1e2b1d45ba91163d8609b66992b2a9fcce48d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3c:d1:b8:2d:2b:72:dd:09:2c:d2:64:dd:6e: a7:4d:73:b2:3b:d8:f7:3f:bc:0f:51:25:3b:94:63: a3:73:3e:18:c2:75:dc:50:34:b0:2a:4a:8e:63:64: 4a:e8:51:1d:8e:75:36:fb:65:89:df:2d:59:1f:b0: 00:97:d7:13:c5:05:d9:4f:e4:ae:a9:66:06:be:b5: 6d:d4:98:41:ec:95:92:5c:1a:49:4b:49:de:14:fd: df:33:8e:84:47:db:8f:0e:a8:ca:53:a9:39:39:6a: 50:0b:a3:7b:71:0b:3a:70:46:3f:34:0f:f1:e8:16: f6:a5:ef:98:54:63:f6:88:4a:2b:6d:e9:f9:a4:9c: 5d:70:ad:9d:7b:b8:d8:c4:e3:e9:d0:60:c9:04:78: bb:f2:25:c9:8c:45:f5:f3:25:79:65:ce:48:6e:75: 1d:61:49:92:3c:fc:bf:d9:46:72:60:41:9c:c4:cf: 02:cc:31:db:a7:b6:7d:b7:b6:82:a5:18:e0:9f:55: fb:cc:70:06:b0:f9:ba:7b:3c:1f:2c:3a:50:45:f8: c6:e9:a7:49:f9:b3:28:eb:57:d9:06:35:65:73:e8: b7:cf:74:c4:43:2e:3b:ab:f1:5b:08:21:5b:cb:ed: c3:27:06:23:8f:0b:6b:e0:b9:0d:e2:88:78:66:8f: f7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9B:BA:F1:23:9E:7A:34:DE:62:F8:35:FC:3D:2C:2F:9D:D4:8A:17 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0f6b659b-9df4-477a-a87b-b8bcd08d670e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:402::/47 Signature Algorithm: sha256WithRSAEncryption 0e:8d:ef:19:d0:cb:ee:ed:34:fd:93:67:dd:55:54:8f:3f:ec: e6:44:14:31:ae:a2:b6:7d:92:87:59:0e:80:a8:4b:20:7e:00: 3c:07:c0:90:f9:ee:f4:89:61:0f:04:bb:ea:e6:f6:6e:7b:30: 97:60:14:40:fa:0d:b3:b3:2f:8f:50:84:1e:47:d8:f0:b6:a4: de:34:54:a2:90:09:66:59:52:f0:0f:29:ba:b4:ed:a5:af:fa: f3:b5:f2:a0:64:f2:18:2c:31:94:42:77:bf:d8:82:8c:92:f1: e0:06:1f:ae:8a:24:c6:06:8e:63:0c:44:70:5c:d7:4e:45:d3: 9f:15:4c:4f:51:94:93:f4:40:37:7d:c6:86:64:02:37:f2:fa: 5d:0f:24:5d:d3:b5:a2:86:d9:45:94:22:2b:18:8e:46:8d:cb: c0:00:a4:8e:b1:4e:8d:a5:ca:b4:c6:1f:4a:dd:70:1a:41:ef: 39:03:30:45:b3:42:d6:4a:ca:48:b6:8e:96:a8:3f:af:3d:aa: f1:61:83:83:37:96:95:65:97:9c:cd:89:0c:be:58:b6:30:4f: 9a:56:13:68:bf:ec:49:23:a1:49:5a:b0:5f:4d:49:08:21:dd: 6e:14:f8:36:14:30:30:b1:be:d3:6f:2e:3b:0f:5a:d0:f3:8a: 27:f1:41:60 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJd8OXlctMENoJK8MbkqRGSRIjdUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAyMDE0WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGUyODNjMDIwODAyMzJiZTBlNDc2ZWQzOGQxZTJiMWQ0 NWJhOTExNjNkODYwOWI2Njk5MmIyYTlmY2NlNDhkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMPNG4LSty3Qks0mTdbqdNc7I72Pc/vA9RJTuUY6NzPhjC ddxQNLAqSo5jZEroUR2OdTb7ZYnfLVkfsACX1xPFBdlP5K6pZga+tW3UmEHslZJc GklLSd4U/d8zjoRH248OqMpTqTk5alALo3txCzpwRj80D/HoFval75hUY/aISitt 6fmknF1wrZ17uNjE4+nQYMkEeLvyJcmMRfXzJXllzkhudR1hSZI8/L/ZRnJgQZzE zwLMMduntn23toKlGOCfVfvMcAaw+bp7PB8sOlBF+Mbpp0n5syjrV9kGNWVz6LfP dMRDLjur8VsIIVvL7cMnBiOPC2vguQ3iiHhmj/clAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDZu68SOeejTeYvg1/D0sL53UihcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBmNmI2NTliLTlkZjQtNDc3YS1hODdiLWI4YmNkMDhkNjcwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmBZzABAIwDQYJKoZIhvcNAQELBQADggEBAA6N7xnQy+7tNP2TZ91VVI8/ 7OZEFDGuorZ9kodZDoCoSyB+ADwHwJD57vSJYQ8Eu+rm9m57MJdgFED6DbOzL49Q hB5H2PC2pN40VKKQCWZZUvAPKbq07aWv+vO18qBk8hgsMZRCd7/YgoyS8eAGH66K JMYGjmMMRHBc105F058VTE9RlJP0QDd9xoZkAjfy+l0PJF3TtaKG2UWUIisYjkaN y8AApI6xTo2lyrTGH0rdcBpB7zkDMEWzQtZKyki2jpaoP689qvFhg4M3lpVll5zN iQy+WLYwT5pWE2i/7EkjoUlasF9NSQgh3W4U+DYUMDCxvtNvLjsPWtDziifxQWA= -----END CERTIFICATE-----Generated at Sat Apr 26 14:46:02 2025 by rpki-client