$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2c5b343e-eb35-4c66-8ea2-4b4a02882cd1.roa File: 2c5b343e-eb35-4c66-8ea2-4b4a02882cd1.roa (raw, json) Hash identifier: GXNbNzJZSU5afrni0n/Lrz0C3yQYmVUsfVIJZhZ3s+E= Subject key identifier: 32:92:96:70:0E:37:63:A4:C3:98:42:F9:FF:A4:93:93:4E:01:E3:8A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2A2C3E2E4E9A9E30A547727A3DE8C04A9152735D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2c5b343e-eb35-4c66-8ea2-4b4a02882cd1.roa Signing time: Sat 26 Apr 2025 00:50:10 +0000 ROA not before: Sat 26 Apr 2025 00:50:10 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:48f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:2c:3e:2e:4e:9a:9e:30:a5:47:72:7a:3d:e8:c0:4a:91:52:73:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 26 00:50:10 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=8f76740f5a9b98d91a0ddb1a80e4cf0b71b232fecd0a00cce07cce502276f438, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:81:aa:f8:1b:ef:d9:3e:a5:14:8a:d9:5a:7f: d9:ef:47:d9:00:0a:81:e2:25:f5:d6:9e:89:bf:5f: 69:f2:ef:24:92:70:98:0d:2f:0b:d3:f9:9b:70:8c: cf:c7:f4:96:5a:3c:47:6a:5d:d4:2a:67:5e:6f:20: 3c:4f:7b:40:eb:fb:cd:0c:28:3c:86:b0:25:95:29: ea:27:31:af:59:e2:10:9c:a7:1f:da:90:0e:2c:89: 11:10:2c:bf:30:a6:33:18:df:06:74:ef:45:dd:0f: f0:b4:52:3e:05:16:d1:43:0d:1f:ff:68:b9:54:0b: 23:93:67:d7:56:8f:86:8c:71:33:fd:6a:b0:a3:21: 59:25:3f:6e:a5:1b:34:8b:5c:12:8c:0f:5b:32:ad: 04:06:ae:67:d2:b4:4d:9c:5b:54:d3:e8:c8:9e:8c: f5:f9:d8:86:38:44:83:90:d0:1c:1f:c4:04:2b:5d: 98:35:17:2b:e2:ae:d2:f7:6f:5b:29:b0:67:0f:fb: 9e:ba:f1:b5:59:a7:b3:83:29:28:02:80:70:b8:2a: ba:04:42:b2:f8:1a:1e:82:59:f4:3f:f9:84:e9:9d: 44:f4:9e:19:90:e7:0a:0f:41:39:eb:04:6c:c5:d7: f1:db:bd:38:12:8c:f9:06:2e:2a:ed:ef:92:d1:1a: 5e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:92:96:70:0E:37:63:A4:C3:98:42:F9:FF:A4:93:93:4E:01:E3:8A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2c5b343e-eb35-4c66-8ea2-4b4a02882cd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:48f::/48 Signature Algorithm: sha256WithRSAEncryption 7c:54:cc:32:4b:db:a0:88:e4:6b:ef:4f:17:66:dc:17:d2:19: 13:8a:e9:29:e7:bc:b8:ae:cb:1a:2a:bf:40:00:be:d2:b2:2e: f4:a2:06:03:7d:b2:58:58:6d:e2:56:ba:9b:48:09:b5:2b:03: 38:c8:a5:87:21:8d:f8:78:3d:48:af:bb:ed:f3:3d:57:1e:81: cc:2f:01:90:ed:50:0a:cb:9e:b3:3a:6d:7e:29:33:1a:ed:3d: a3:99:c7:f4:c5:e4:98:10:a7:c1:8c:5f:e3:c3:50:db:72:e2: 05:ff:68:3b:ec:69:a5:50:20:af:17:78:8d:a4:27:02:af:b5: 95:da:ed:eb:5b:17:03:4d:89:fb:b7:52:22:e9:a0:13:44:d7: f0:37:94:18:82:22:42:a0:20:6d:bb:0d:b7:ac:70:6e:aa:42: 46:f9:65:76:82:6b:7e:10:c8:28:70:0d:e7:6d:b4:27:6f:e1: fe:98:88:75:9d:c3:b1:cc:93:fb:7f:37:0a:49:a0:9c:b0:cf: 31:df:69:08:9e:4d:15:11:78:66:db:49:eb:e2:bc:ff:44:d7: 08:b9:d7:9c:86:c9:49:fb:c8:db:02:89:88:6c:65:8b:87:df: ab:dc:36:4e:d8:49:41:8c:b0:96:be:f4:99:54:fc:15:5d:46: 03:63:9d:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKiw+Lk6anjClR3J6PejASpFSc10wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI2MDA1MDEwWhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Zjc2NzQwZjVhOWI5OGQ5MWEwZGRiMWE4MGU0Y2YwYjcx YjIzMmZlY2QwYTAwY2NlMDdjY2U1MDIyNzZmNDM4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1gar4G+/ZPqUUitlaf9nvR9kACoHiJfXWnom/X2ny7ySS cJgNLwvT+ZtwjM/H9JZaPEdqXdQqZ15vIDxPe0Dr+80MKDyGsCWVKeonMa9Z4hCc px/akA4siREQLL8wpjMY3wZ070XdD/C0Uj4FFtFDDR//aLlUCyOTZ9dWj4aMcTP9 arCjIVklP26lGzSLXBKMD1syrQQGrmfStE2cW1TT6MiejPX52IY4RIOQ0BwfxAQr XZg1FyvirtL3b1spsGcP+5668bVZp7ODKSgCgHC4KroEQrL4Gh6CWfQ/+YTpnUT0 nhmQ5woPQTnrBGzF1/HbvTgSjPkGLirt75LRGl5PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMpKWcA43Y6TDmEL5/6STk04B44owHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJjNWIzNDNlLWViMzUtNGM2Ni04ZWEyLTRiNGEwMjg4MmNkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABI8wDQYJKoZIhvcNAQELBQADggEBAHxUzDJL26CI5GvvTxdm3BfS GROK6SnnvLiuyxoqv0AAvtKyLvSiBgN9slhYbeJWuptICbUrAzjIpYchjfh4PUiv u+3zPVcegcwvAZDtUArLnrM6bX4pMxrtPaOZx/TF5JgQp8GMX+PDUNty4gX/aDvs aaVQIK8XeI2kJwKvtZXa7etbFwNNifu3UiLpoBNE1/A3lBiCIkKgIG27DbescG6q Qkb5ZXaCa34QyChwDedttCdv4f6YiHWdw7HMk/t/NwpJoJywzzHfaQieTRUReGbb SevivP9E1wi515yGyUn7yNsCiYhsZYuH36vcNk7YSUGMsJa+9JlU/BVdRgNjnYE= -----END CERTIFICATE-----Generated at Sat Apr 26 16:07:23 2025 by rpki-client