$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/31d03eb7-31b2-4971-9bea-307c9639659f.roa File: 31d03eb7-31b2-4971-9bea-307c9639659f.roa (raw, json) Hash identifier: 62f3vEtVquLXEGFXB876wpQS4ZZx9PT6t/VkXNGQ1sQ= Subject key identifier: 44:BC:09:8C:08:89:98:D2:66:62:47:9F:7A:D1:7A:09:1C:87:B3:DB Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 226D88A1BFFCC89C544E9D8E188D633A7F417924 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/31d03eb7-31b2-4971-9bea-307c9639659f.roa Signing time: Tue 01 Apr 2025 15:00:17 +0000 ROA not before: Tue 01 Apr 2025 15:00:17 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:62b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:6d:88:a1:bf:fc:c8:9c:54:4e:9d:8e:18:8d:63:3a:7f:41:79:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 15:00:17 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=80f97e8c2c72a421b9144f486c09e12f37fd1d8a83ab6f27cc2c27e0eb07e000, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2a:0b:2f:58:f7:3b:74:c1:f4:b8:b9:c0:9e: 56:ae:a5:3a:e3:ee:3b:b2:c2:df:f9:12:05:59:59: fa:92:0d:b0:44:47:1f:a0:7e:12:09:e9:6a:05:b6: e4:80:a1:53:c6:89:e4:e7:13:d5:2c:10:0d:89:de: 9d:59:66:e8:41:9f:51:ee:7b:50:5a:38:38:64:1c: 01:ac:94:b0:3e:14:69:18:50:56:ce:d8:84:1c:90: 24:d5:e7:d2:ed:57:11:ad:90:05:2a:7b:3e:2a:65: 91:2c:36:31:16:40:9f:65:d2:a2:d8:e4:2b:d4:99: f7:df:22:0a:a8:93:a6:16:4e:98:89:f4:b5:36:9e: 72:a3:7a:3a:03:e2:34:d6:51:29:95:6c:76:d5:f1: a3:8d:e5:76:5e:30:3c:0f:04:d7:1f:62:a1:ee:72: 46:9d:2d:f3:e9:12:51:d2:13:2d:cf:b5:ca:54:29: 5d:45:5c:5c:ee:af:26:47:2d:d5:51:c5:65:0e:77: f1:db:1d:f1:e5:02:a0:2a:f7:5a:4e:7f:8d:e6:6c: 97:37:46:e6:70:20:55:bb:c9:87:8b:7b:03:48:26: 0f:8f:bb:42:bc:ae:78:8c:38:e1:c9:b5:09:b2:e1: d7:73:69:5d:aa:73:a4:0a:c2:8d:1f:0f:85:fc:ff: 6c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BC:09:8C:08:89:98:D2:66:62:47:9F:7A:D1:7A:09:1C:87:B3:DB X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/31d03eb7-31b2-4971-9bea-307c9639659f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:62b::/48 Signature Algorithm: sha256WithRSAEncryption 4c:97:e8:bc:20:18:61:20:34:05:ec:08:74:8b:ab:ab:89:e1: 5e:01:36:25:84:1f:8d:b9:33:60:e0:8e:6e:63:fe:c9:6d:7b: 3f:69:97:aa:7b:d1:ce:01:6d:81:91:fa:fd:61:e5:60:5c:5e: 7e:db:97:34:c9:41:0e:3d:b7:d2:1f:e8:ba:fe:ac:a6:1c:f8: a7:f6:87:6c:b2:03:c5:86:58:07:a1:e5:31:35:95:d7:8d:2f: 95:5d:6b:f6:af:4c:c6:cf:97:44:53:1f:2d:28:ce:cb:44:58: ca:31:ab:3a:9f:69:73:50:ff:04:f0:b2:94:df:96:94:54:af: 72:2f:72:90:3c:23:1c:4b:ec:79:6d:e7:00:69:20:0b:bf:ad: df:7e:4b:8b:a8:f3:b8:ba:19:df:a8:d5:d4:af:21:25:d7:34: 88:08:ef:95:54:c4:51:60:a6:7a:07:72:7f:b3:a5:08:0b:18: c0:64:ed:f3:fa:f0:43:a3:e8:7d:4c:fe:22:35:3a:ed:fb:49: 40:40:39:22:ae:29:62:86:92:2d:b3:4d:1e:41:a4:f1:44:c6: 01:39:b5:af:f9:d1:bf:27:15:44:56:f5:da:f3:5a:be:c0:c2: 7d:06:24:16:d9:a7:39:ac:ac:b1:9f:d6:49:94:25:77:af:13: f7:4c:6a:3b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIm2Iob/8yJxUTp2OGI1jOn9BeSQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMTUwMDE3WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MGY5N2U4YzJjNzJhNDIxYjkxNDRmNDg2YzA5ZTEyZjM3 ZmQxZDhhODNhYjZmMjdjYzJjMjdlMGViMDdlMDAwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjKgsvWPc7dMH0uLnAnlaupTrj7juywt/5EgVZWfqSDbBE Rx+gfhIJ6WoFtuSAoVPGieTnE9UsEA2J3p1ZZuhBn1Hue1BaODhkHAGslLA+FGkY UFbO2IQckCTV59LtVxGtkAUqez4qZZEsNjEWQJ9l0qLY5CvUmfffIgqok6YWTpiJ 9LU2nnKjejoD4jTWUSmVbHbV8aON5XZeMDwPBNcfYqHuckadLfPpElHSEy3PtcpU KV1FXFzuryZHLdVRxWUOd/HbHfHlAqAq91pOf43mbJc3RuZwIFW7yYeLewNIJg+P u0K8rniMOOHJtQmy4ddzaV2qc6QKwo0fD4X8/2wzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURLwJjAiJmNJmYkefetF6CRyHs9swHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzMxZDAzZWI3LTMxYjItNDk3MS05YmVhLTMwN2M5NjM5NjU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABiswDQYJKoZIhvcNAQELBQADggEBAEyX6LwgGGEgNAXsCHSLq6uJ 4V4BNiWEH425M2Dgjm5j/sltez9pl6p70c4BbYGR+v1h5WBcXn7blzTJQQ49t9If 6Lr+rKYc+Kf2h2yyA8WGWAeh5TE1ldeNL5Vda/avTMbPl0RTHy0ozstEWMoxqzqf aXNQ/wTwspTflpRUr3IvcpA8IxxL7Hlt5wBpIAu/rd9+S4uo87i6Gd+o1dSvISXX NIgI75VUxFFgpnoHcn+zpQgLGMBk7fP68EOj6H1M/iI1Ou37SUBAOSKuKWKGki2z TR5BpPFExgE5ta/50b8nFURW9drzWr7Awn0GJBbZpzmsrLGf1kmUJXevE/dMajs= -----END CERTIFICATE-----Generated at Sat Apr 26 13:20:44 2025 by rpki-client