$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa File: 3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa (raw, json) Hash identifier: YriwAvgcDJwzKk/HeYNkJeKZK+Li1XHEuOyUZhliHSI= Subject key identifier: FE:83:80:A4:DD:50:6D:F1:82:6D:6F:2E:4D:93:AB:D9:0C:08:59:C1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 097B87CFF4180BB518FC22C95EA9FD18496024E2 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa Signing time: Tue 01 Apr 2025 00:51:16 +0000 ROA not before: Tue 01 Apr 2025 00:51:16 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7b:87:cf:f4:18:0b:b5:18:fc:22:c9:5e:a9:fd:18:49:60:24:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 00:51:16 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=d331a20accd54b714291a2ad4cd9524267b9a94a081849fa6d102396c90ad4a5, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:17:51:b2:21:cb:1b:7d:55:f0:b5:03:41:f1: 8e:3c:00:2c:31:32:e6:99:80:2b:58:ce:da:2d:8b: 83:ef:d0:83:7f:2e:b7:ea:3c:78:21:3f:da:f9:19: fa:d7:38:7b:aa:c6:77:43:5e:f6:d6:26:eb:b8:a4: c6:5b:ac:89:49:ba:5b:00:94:47:12:ac:a5:f1:04: 0c:21:67:48:89:d6:d0:8d:4c:a2:ff:9a:e6:ff:a3: 2d:46:eb:92:98:a2:eb:9f:6d:bd:e9:3b:f2:0a:24: 9a:46:94:3a:e7:81:3d:aa:3c:45:64:d1:9d:94:98: 4d:79:34:14:ed:e7:e9:38:c3:3d:61:65:84:be:0b: 79:a1:03:19:90:ac:69:d3:53:f0:ec:1d:bc:c6:d5: 2c:29:e3:45:4a:99:d6:f7:33:db:7f:09:9a:ea:d0: 8f:74:f4:47:52:6d:e7:38:48:bb:31:52:c0:08:25: cd:04:fb:9a:68:51:08:6f:ad:8c:58:27:1b:3d:fc: 49:51:d4:7a:75:97:ae:50:a2:bb:94:3e:69:fa:67: f1:e4:41:dc:fe:0d:b3:1f:b4:e6:4d:87:ea:a7:17: 89:f9:c0:d7:a8:2b:fb:84:cd:e7:2c:fe:3e:b2:93: e2:f4:26:5f:42:b1:c2:b7:f9:df:28:48:08:59:43: c4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:83:80:A4:DD:50:6D:F1:82:6D:6F:2E:4D:93:AB:D9:0C:08:59:C1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 9f:eb:c0:0f:72:98:13:95:3d:fe:e6:8d:10:c5:12:a7:d2:a3: fa:74:ce:7c:f9:2e:96:3c:b8:5f:f3:53:d3:8e:f6:9e:2c:e3: 00:fa:8e:6a:b2:50:20:4a:9d:e6:96:ca:b9:d2:16:bc:9d:3c: a5:dd:4a:58:25:6d:65:0a:9b:c0:94:bc:fd:fb:3a:96:af:bf: 69:a0:d2:47:f8:ef:a9:46:ed:55:83:1b:02:b0:7f:9a:ee:29: 03:67:0b:9c:54:e7:8f:12:99:d7:bb:32:54:06:5c:fd:22:d6: 6e:b9:aa:06:92:b3:be:d9:1a:eb:08:69:1e:10:b0:60:52:4e: 53:1a:bd:69:fa:49:91:02:64:5e:78:da:2a:27:d1:ee:05:62: 3c:a8:42:d3:f2:fe:57:62:f6:56:ba:23:c9:99:d4:c7:6a:00: 29:4c:04:f3:da:f6:75:5c:dc:35:ec:16:df:43:6f:60:1c:4a: d5:56:5a:0f:e5:0b:67:46:bf:b6:58:1f:a1:f7:7c:29:aa:ba: 54:38:66:72:70:03:6d:77:5e:ca:80:6c:18:85:ec:39:02:ef: 77:dc:3d:2b:6e:b3:ad:e3:59:f1:23:9a:5c:8a:d4:12:52:13: bb:12:af:e7:4b:2f:57:f1:14:ab:a4:32:9d:f8:58:80:14:06: 52:9f:98:f3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCXuHz/QYC7UY/CLJXqn9GElgJOIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMDA1MTE2WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzMxYTIwYWNjZDU0YjcxNDI5MWEyYWQ0Y2Q5NTI0MjY3 YjlhOTRhMDgxODQ5ZmE2ZDEwMjM5NmM5MGFkNGE1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUF1GyIcsbfVXwtQNB8Y48ACwxMuaZgCtYztoti4Pv0IN/ LrfqPHghP9r5GfrXOHuqxndDXvbWJuu4pMZbrIlJulsAlEcSrKXxBAwhZ0iJ1tCN TKL/mub/oy1G65KYouufbb3pO/IKJJpGlDrngT2qPEVk0Z2UmE15NBTt5+k4wz1h ZYS+C3mhAxmQrGnTU/DsHbzG1Swp40VKmdb3M9t/CZrq0I909EdSbec4SLsxUsAI Jc0E+5poUQhvrYxYJxs9/ElR1Hp1l65QoruUPmn6Z/HkQdz+DbMftOZNh+qnF4n5 wNeoK/uEzecs/j6yk+L0Jl9CscK3+d8oSAhZQ8RjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/oOApN1QbfGCbW8uTZOr2QwIWcEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZWY5ZDNlLTJhZDItNGUzOC05MmZjLTVlYWI3NmE1Mzk1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAJ/rwA9ymBOVPf7mjRDFEqfS o/p0znz5LpY8uF/zU9OO9p4s4wD6jmqyUCBKneaWyrnSFrydPKXdSlglbWUKm8CU vP37Opavv2mg0kf476lG7VWDGwKwf5ruKQNnC5xU548Smde7MlQGXP0i1m65qgaS s77ZGusIaR4QsGBSTlMavWn6SZECZF542ion0e4FYjyoQtPy/ldi9la6I8mZ1Mdq AClMBPPa9nVc3DXsFt9Db2AcStVWWg/lC2dGv7ZYH6H3fCmqulQ4ZnJwA213XsqA bBiF7DkC73fcPStus63jWfEjmlyK1BJSE7sSr+dLL1fxFKukMp34WIAUBlKfmPM= -----END CERTIFICATE-----Generated at Sat Apr 26 13:15:49 2025 by rpki-client