$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/51f79cae-8ad8-425a-a127-e9484c75b161.roa File: 51f79cae-8ad8-425a-a127-e9484c75b161.roa (raw, json) Hash identifier: Sxw7inZuK+ntjHSk7fzdiwcf7KpBvw/pBamj7jQxTms= Subject key identifier: 07:7E:E1:38:4D:B2:02:4C:E1:38:1E:AD:66:F9:3F:7E:3C:C8:CF:54 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2069BB3BD9EF8A203DC7160746A1B44FF321D867 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/51f79cae-8ad8-425a-a127-e9484c75b161.roa Signing time: Fri 11 Apr 2025 00:31:28 +0000 ROA not before: Fri 11 Apr 2025 00:31:28 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c0a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:69:bb:3b:d9:ef:8a:20:3d:c7:16:07:46:a1:b4:4f:f3:21:d8:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:31:28 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=0a9c7f1173b5640736b7135294f5266e436b2b6fa468b9debb1481f25fc42417, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d2:31:08:98:1c:50:28:f4:ea:95:3c:ee:ff: 29:78:b2:4d:9a:b2:b6:4b:bd:d4:1c:97:f0:d4:43: 99:b4:cc:cd:4b:63:79:5d:25:ef:05:7a:d4:64:0f: 10:25:da:59:77:9a:6a:a0:00:13:48:d8:4a:2f:83: ac:b3:18:1b:f4:2e:48:5e:bf:ee:82:fc:02:a7:c7: ba:b7:53:96:73:b6:d8:03:e0:b6:f0:32:e4:40:7a: 1e:cd:a1:b9:a2:41:d6:6f:8c:98:7b:b4:98:91:80: 33:85:09:ec:a2:8e:7f:be:28:f1:fd:8e:6b:9a:6d: cc:06:3d:bf:01:ab:4a:cb:b0:cf:bd:89:14:a6:e4: 8c:4a:ae:dc:9a:85:0d:13:f8:92:6e:81:39:81:15: 34:7d:ff:4f:4c:68:24:2d:de:2b:00:9b:ee:93:9e: 94:0f:00:bb:25:b8:3b:76:ba:c3:5e:14:8a:48:40: 50:f3:d4:33:60:fa:b8:93:53:b3:2b:38:f9:8c:30: 4c:20:ef:c3:4b:ab:96:33:61:76:18:9b:cf:6a:f4: 3a:a1:34:27:2f:8e:07:d3:2e:61:28:ab:06:43:fa: 1b:6e:e9:1c:af:92:3a:a3:76:e5:65:66:e6:26:76: fa:3c:06:7e:df:09:70:bd:2c:0b:b5:8d:2f:d6:83: de:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7E:E1:38:4D:B2:02:4C:E1:38:1E:AD:66:F9:3F:7E:3C:C8:CF:54 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/51f79cae-8ad8-425a-a127-e9484c75b161.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0a::/48 Signature Algorithm: sha256WithRSAEncryption 07:b9:7b:24:2d:30:d6:43:3c:f9:9f:53:05:fe:38:0a:6a:4c: d8:56:11:51:e0:f2:18:ab:44:58:74:40:a0:3f:a7:a4:dc:1c: a9:3b:b4:b9:c8:2b:72:b4:6a:d1:dc:f0:5a:6d:ac:80:aa:e4: 53:f3:02:54:c2:37:80:6f:0b:6e:63:ff:8f:17:01:0c:d7:ed: ae:fb:f0:8d:95:7f:20:df:e9:cd:04:f0:43:07:04:ed:82:fa: 60:d2:a0:78:03:f5:b8:d9:73:c1:7f:46:76:e8:21:52:3f:d9: 43:f0:76:77:3e:55:eb:dd:30:ca:fb:6e:41:b5:9b:17:3c:f5: 8a:b1:72:9a:77:8b:63:09:9e:60:da:3f:a7:04:bf:8a:dc:eb: 15:6c:1d:f2:2d:e4:4b:e8:ee:6a:c7:8b:25:73:b0:0b:d2:8e: 46:b0:91:c2:25:e8:dc:11:3c:fc:91:19:15:f6:a3:21:92:54: ef:b5:c6:fe:da:6e:ab:3a:3b:4d:6c:53:0f:d2:0a:95:e3:06: b8:72:6d:c0:b3:4c:98:76:c5:5a:57:3b:4f:95:fe:91:42:ca: 4d:9f:fd:b3:f7:d7:69:86:bf:1e:5d:66:f4:44:33:95:4a:24: b7:28:9c:de:9f:95:d5:cb:dc:e2:06:c6:14:7e:a6:11:f1:f5: 0d:70:47:a3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIGm7O9nviiA9xxYHRqG0T/Mh2GcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAzMTI4WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTljN2YxMTczYjU2NDA3MzZiNzEzNTI5NGY1MjY2ZTQz NmIyYjZmYTQ2OGI5ZGViYjE0ODFmMjVmYzQyNDE3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCU0jEImBxQKPTqlTzu/yl4sk2asrZLvdQcl/DUQ5m0zM1L Y3ldJe8FetRkDxAl2ll3mmqgABNI2Eovg6yzGBv0Lkhev+6C/AKnx7q3U5ZzttgD 4LbwMuRAeh7NobmiQdZvjJh7tJiRgDOFCeyijn++KPH9jmuabcwGPb8Bq0rLsM+9 iRSm5IxKrtyahQ0T+JJugTmBFTR9/09MaCQt3isAm+6TnpQPALsluDt2usNeFIpI QFDz1DNg+riTU7MrOPmMMEwg78NLq5YzYXYYm89q9DqhNCcvjgfTLmEoqwZD+htu 6RyvkjqjduVlZuYmdvo8Bn7fCXC9LAu1jS/Wg95VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUB37hOE2yAkzhOB6tZvk/fjzIz1QwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzUxZjc5Y2FlLThhZDgtNDI1YS1hMTI3LWU5NDg0Yzc1YjE2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAowDQYJKoZIhvcNAQELBQADggEBAAe5eyQtMNZDPPmfUwX+OApq TNhWEVHg8hirRFh0QKA/p6TcHKk7tLnIK3K0atHc8FptrICq5FPzAlTCN4BvC25j /48XAQzX7a778I2VfyDf6c0E8EMHBO2C+mDSoHgD9bjZc8F/RnboIVI/2UPwdnc+ VevdMMr7bkG1mxc89Yqxcpp3i2MJnmDaP6cEv4rc6xVsHfIt5Evo7mrHiyVzsAvS jkawkcIl6NwRPPyRGRX2oyGSVO+1xv7abqs6O01sUw/SCpXjBrhybcCzTJh2xVpX O0+V/pFCyk2f/bP312mGvx5dZvREM5VKJLconN6fldXL3OIGxhR+phHx9Q1wR6M= -----END CERTIFICATE-----Generated at Sun Apr 27 08:17:27 2025 by rpki-client