$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa File: 403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa (raw, json) Hash identifier: 8yBmCivmNVITZ1wDW53OirxCBRoo7c7AGLiGnT0RfNU= Subject key identifier: B2:45:DF:E5:0D:CA:43:03:03:DC:37:4A:97:3F:26:EE:44:0B:91:6C Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 11125A81A85D05D79CD6BA560C2BAAB335924C1D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa Signing time: Fri 11 Apr 2025 00:31:31 +0000 ROA not before: Fri 11 Apr 2025 00:31:31 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:12:5a:81:a8:5d:05:d7:9c:d6:ba:56:0c:2b:aa:b3:35:92:4c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:31:31 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=b76c390a97f66fa81c6258bcd3169e26f11a771a60f7d21215e489fdad6a4639, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d9:0b:e4:16:f0:2e:5f:ab:7e:ae:1c:2b:b4: 73:b2:a1:00:d9:1f:f8:06:56:a0:80:78:43:db:54: b9:68:f6:42:15:83:8a:2b:b9:67:5f:54:1d:d3:4b: b3:62:5a:e4:bc:8d:5f:e7:c5:33:70:cb:d1:bb:f2: 31:fe:bb:06:70:31:74:b9:51:55:a0:2d:be:b8:5b: 93:d2:47:a6:1b:ba:6a:ff:07:7e:8a:fc:8f:c4:a8: d8:48:b0:df:56:8f:0f:56:16:63:84:32:3e:e5:d5: 5c:96:58:ce:7f:8c:5a:e5:e9:73:5f:08:ca:7a:04: c3:bd:09:cc:bb:bf:33:9c:bb:1f:9d:be:d9:58:13: f0:ce:58:e6:fd:2f:d1:a0:18:7e:3e:9b:f5:c7:ba: 06:df:f1:73:ab:1a:2a:fc:f2:10:17:f8:0b:e7:7e: fe:95:17:3a:39:7c:78:c1:7e:25:36:29:0f:16:3b: 34:b3:5f:8a:a4:60:2b:0d:9a:fa:8f:68:84:08:82: 2d:24:7a:be:a0:ca:b7:64:6b:35:25:d4:d7:1d:82: 67:65:c4:3a:c3:91:64:1f:dc:b0:3a:c7:d6:21:eb: c9:9a:1c:d4:48:85:c8:e8:46:c8:b7:e6:69:19:50: e8:93:b1:bc:76:c2:28:29:ee:30:3c:26:c2:01:1a: a6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:45:DF:E5:0D:CA:43:03:03:DC:37:4A:97:3F:26:EE:44:0B:91:6C X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/403622d9-a664-4a85-8a9f-5e0ce4cd4726.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0b::/48 Signature Algorithm: sha256WithRSAEncryption 62:0a:fd:d6:53:09:c3:01:d7:98:8e:95:7c:d3:71:0a:16:a0: 0c:69:f7:f4:84:9c:7b:98:f7:20:31:ab:67:94:2b:dd:a7:f5: d6:fb:1c:bd:fc:5e:3a:7b:7e:49:0f:9d:09:d1:5f:3a:d2:c3: ab:35:12:f5:f4:aa:75:f7:27:b7:5d:05:25:ce:14:6f:38:8c: 39:ce:ed:39:13:be:f0:8e:57:6f:a9:32:a2:76:01:80:08:fc: 6c:22:d9:25:a0:c5:de:47:69:9e:36:d1:4d:8a:a2:97:54:1f: bc:a9:fa:10:61:6f:5d:b4:60:a0:63:0f:35:41:d2:c9:ef:02: 45:e3:26:fd:95:0f:e5:a5:cc:98:f9:7a:ef:97:b8:51:a5:c2: a0:f0:4e:82:54:02:1f:41:ea:c4:2f:e8:c4:56:16:db:d0:cd: 4b:f3:29:bd:40:f4:e9:7e:68:90:d1:32:4b:e8:55:f1:59:40: ad:f1:37:9d:0f:20:82:89:77:1c:24:52:30:37:f0:46:83:72: 65:f7:85:82:aa:a4:15:bd:35:a8:01:21:e6:f9:f0:12:d1:de: 23:59:2d:3e:01:3e:c2:9a:f6:68:a9:99:bf:1b:08:6e:68:d2: aa:d3:76:8a:20:e1:3f:fa:a5:59:c8:76:d4:b4:9b:bd:ea:5b: 35:4e:d3:e2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUERJagahdBdec1rpWDCuqszWSTB0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAzMTMxWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzZjMzkwYTk3ZjY2ZmE4MWM2MjU4YmNkMzE2OWUyNmYx MWE3NzFhNjBmN2QyMTIxNWU0ODlmZGFkNmE0NjM5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe2QvkFvAuX6t+rhwrtHOyoQDZH/gGVqCAeEPbVLlo9kIV g4oruWdfVB3TS7NiWuS8jV/nxTNwy9G78jH+uwZwMXS5UVWgLb64W5PSR6Ybumr/ B36K/I/EqNhIsN9Wjw9WFmOEMj7l1VyWWM5/jFrl6XNfCMp6BMO9Ccy7vzOcux+d vtlYE/DOWOb9L9GgGH4+m/XHugbf8XOrGir88hAX+Avnfv6VFzo5fHjBfiU2KQ8W OzSzX4qkYCsNmvqPaIQIgi0ker6gyrdkazUl1NcdgmdlxDrDkWQf3LA6x9Yh68ma HNRIhcjoRsi35mkZUOiTsbx2wigp7jA8JsIBGqbfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUskXf5Q3KQwMD3DdKlz8m7kQLkWwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQwMzYyMmQ5LWE2NjQtNGE4NS04YTlmLTVlMGNlNGNkNDcyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAswDQYJKoZIhvcNAQELBQADggEBAGIK/dZTCcMB15iOlXzTcQoW oAxp9/SEnHuY9yAxq2eUK92n9db7HL38Xjp7fkkPnQnRXzrSw6s1EvX0qnX3J7dd BSXOFG84jDnO7TkTvvCOV2+pMqJ2AYAI/Gwi2SWgxd5HaZ420U2KopdUH7yp+hBh b120YKBjDzVB0snvAkXjJv2VD+WlzJj5eu+XuFGlwqDwToJUAh9B6sQv6MRWFtvQ zUvzKb1A9Ol+aJDRMkvoVfFZQK3xN50PIIKJdxwkUjA38EaDcmX3hYKqpBW9NagB Ieb58BLR3iNZLT4BPsKa9mipmb8bCG5o0qrTdoog4T/6pVnIdtS0m73qWzVO0+I= -----END CERTIFICATE-----Generated at Sat Apr 26 20:49:37 2025 by rpki-client