$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa File: 35efcf72-708d-4456-b1d1-8419a2636e00.roa (raw, json) Hash identifier: wvARw1vL4JWwRsJgY6DGAtRW09HkreGAI9eItnPMLcQ= Subject key identifier: 99:E3:F5:0A:C3:4F:76:AF:F9:5B:F1:30:47:7D:A1:86:C8:02:95:31 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 35EBA3FB5D2F08808395F51241B07C73B01D086B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa Signing time: Fri 25 Apr 2025 17:40:07 +0000 ROA not before: Fri 25 Apr 2025 17:40:07 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:f03d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:eb:a3:fb:5d:2f:08:80:83:95:f5:12:41:b0:7c:73:b0:1d:08:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:40:07 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=a1760acba3792a86f96bfba5f8c8a1025e3f8e5cd0bacd7fe6f9a7fa8500917c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:62:ad:9b:94:a4:42:40:25:80:4e:17:25:8e: fe:68:f3:1f:8e:fe:29:51:a4:ce:35:2c:cf:bf:0f: fb:1a:f8:a5:f7:cd:2f:c2:47:f2:52:f0:4e:dc:b2: 34:4d:45:08:e3:5f:78:6f:97:7e:00:c1:f7:fb:bd: 99:dc:dc:db:82:8c:cc:4f:87:e6:ef:69:7a:fe:8d: c2:79:b0:7a:93:4b:a7:66:83:e4:95:15:90:cb:34: a2:da:c0:67:8e:ad:85:1d:d3:ca:37:d5:3a:39:9e: f3:ee:e1:cd:e4:1b:e4:cc:14:05:e0:f8:78:44:65: 3f:2b:1b:c6:a9:84:1d:25:0a:04:10:b3:cc:bc:07: 73:a4:4c:5b:a5:e8:44:dc:2b:3d:04:42:86:7a:33: d8:e1:fd:19:e9:4b:65:07:76:a4:14:fa:3c:e1:03: 93:23:28:96:92:8c:66:b6:24:89:ee:37:d1:36:f0: 05:cd:5c:84:f9:f3:4a:28:fb:d2:d9:79:b1:58:d0: 69:07:ac:21:27:a1:67:a5:da:da:2b:2d:16:90:d7: 0d:a3:4b:14:95:7b:3e:51:50:62:a7:6e:61:32:61: d7:f2:cd:26:e6:7c:86:c8:e6:4c:a9:8f:9d:0a:84: e7:13:9a:bb:51:62:c3:44:47:48:d4:07:64:a6:dc: a3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:E3:F5:0A:C3:4F:76:AF:F9:5B:F1:30:47:7D:A1:86:C8:02:95:31 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03d::/48 Signature Algorithm: sha256WithRSAEncryption 82:ed:67:90:34:29:6b:5a:e3:c2:48:cf:52:f2:81:2b:a7:70: 2a:57:ce:73:b4:76:74:b2:52:f6:c5:c5:e7:d6:8f:1b:5d:06: 53:85:42:85:5b:ae:af:42:68:7a:f9:45:99:08:7b:d9:f9:20: ad:fa:93:28:41:21:0f:a3:9c:76:78:19:b1:80:92:97:e0:08: 6a:0d:b4:4e:79:45:ac:4f:c9:0a:f0:17:df:3f:30:00:28:75: e8:c8:1b:c0:c3:8a:4c:0f:b7:fd:7a:af:7b:b3:cf:5e:d7:ec: e7:f4:0d:d3:b8:59:a0:85:14:ed:e4:2f:ab:ff:84:cb:ed:4f: 82:5a:bb:05:ff:33:47:2c:32:14:f7:3a:32:72:93:45:4b:21: 6c:da:65:ef:98:68:20:cc:74:7c:48:bb:bf:e9:5a:89:2c:2b: 20:ae:5e:3e:d7:10:7c:9f:b0:5f:4d:6c:fd:1e:80:81:e6:c9: 8f:f0:0f:87:b9:97:ee:5d:1e:e7:a2:c9:44:19:8b:91:9f:0b: ab:ee:5b:37:e9:4f:01:32:f8:34:06:c2:ab:77:23:ec:e5:e4: fc:73:56:af:47:00:79:97:d2:aa:1e:88:f9:2b:b3:aa:64:8f: 00:4a:16:d9:eb:3a:90:e3:c8:a3:89:4d:8e:b5:6b:5a:2f:95: 8d:99:1e:58 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNeuj+10vCICDlfUSQbB8c7AdCGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTc0MDA3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTc2MGFjYmEzNzkyYTg2Zjk2YmZiYTVmOGM4YTEwMjVl M2Y4ZTVjZDBiYWNkN2ZlNmY5YTdmYTg1MDA5MTdjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdYq2blKRCQCWAThcljv5o8x+O/ilRpM41LM+/D/sa+KX3 zS/CR/JS8E7csjRNRQjjX3hvl34Awff7vZnc3NuCjMxPh+bvaXr+jcJ5sHqTS6dm g+SVFZDLNKLawGeOrYUd08o31To5nvPu4c3kG+TMFAXg+HhEZT8rG8aphB0lCgQQ s8y8B3OkTFul6ETcKz0EQoZ6M9jh/RnpS2UHdqQU+jzhA5MjKJaSjGa2JInuN9E2 8AXNXIT580oo+9LZebFY0GkHrCEnoWel2torLRaQ1w2jSxSVez5RUGKnbmEyYdfy zSbmfIbI5kypj50KhOcTmrtRYsNER0jUB2Sm3KObAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmeP1CsNPdq/5W/EwR32hhsgClTEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1ZWZjZjcyLTcwOGQtNDQ1Ni1iMWQxLTg0MTlhMjYzNmUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D0wDQYJKoZIhvcNAQELBQADggEBAILtZ5A0KWta48JIz1LygSun cCpXznO0dnSyUvbFxefWjxtdBlOFQoVbrq9CaHr5RZkIe9n5IK36kyhBIQ+jnHZ4 GbGAkpfgCGoNtE55RaxPyQrwF98/MAAodejIG8DDikwPt/16r3uzz17X7Of0DdO4 WaCFFO3kL6v/hMvtT4JauwX/M0csMhT3OjJyk0VLIWzaZe+YaCDMdHxIu7/pWoks KyCuXj7XEHyfsF9NbP0egIHmyY/wD4e5l+5dHueiyUQZi5GfC6vuWzfpTwEy+DQG wqt3I+zl5PxzVq9HAHmX0qoeiPkrs6pkjwBKFtnrOpDjyKOJTY61a1ovlY2ZHlg= -----END CERTIFICATE-----Generated at Sat Apr 26 19:07:35 2025 by rpki-client