$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/64a9d9af-9f9b-49e3-96c3-45cfc5722c23.roa File: 64a9d9af-9f9b-49e3-96c3-45cfc5722c23.roa (raw, json) Hash identifier: TZ3vd+oHOxHMh4VUu6402loXM4WRyJFfNvLGGky0o6o= Subject key identifier: 02:46:7C:0F:12:98:35:C3:5C:41:F4:08:D3:1F:A1:73:71:25:0C:B9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1EFDD696598F9D58963DC4D83D2CC34ABAF07AF5 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/64a9d9af-9f9b-49e3-96c3-45cfc5722c23.roa Signing time: Tue 22 Apr 2025 16:52:16 +0000 ROA not before: Tue 22 Apr 2025 16:52:16 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:f03f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:fd:d6:96:59:8f:9d:58:96:3d:c4:d8:3d:2c:c3:4a:ba:f0:7a:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 22 16:52:16 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=3e24049c38642a2195ae26faf314cd287482b7407cc14588e6c7ebf182b45477, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:97:55:08:93:ad:cc:f0:b3:77:35:8f:4c:3d: 4f:83:91:79:99:3e:a8:a8:97:2c:5d:a4:c3:6f:5b: c8:5d:fb:9c:ea:ba:c2:54:6b:ba:17:34:9d:36:b3: 39:6a:d5:77:96:23:09:c9:ee:a8:9f:ed:3a:2f:45: 15:27:0c:52:e9:b0:48:fd:60:a7:31:cd:2a:d0:b6: 39:24:fa:9a:39:02:a5:48:ff:e1:d6:b2:7c:f7:4a: fd:d0:de:fd:97:ef:cb:fb:7a:7b:e8:de:52:6d:69: f7:a0:c1:10:79:c3:14:1b:09:fa:9a:2b:ae:e4:5c: c1:24:dc:51:ff:ff:5b:8b:ae:50:6d:f8:4b:cc:f4: 0f:28:3b:8f:06:18:14:62:bf:87:df:28:7b:fe:dc: 59:69:f0:22:28:58:ca:8c:69:11:94:2d:60:76:3e: 36:0a:77:6e:39:e5:d6:1c:8e:5d:97:7b:ae:3d:a9: 35:36:ea:3b:64:df:6a:d9:0b:7c:1c:62:3c:5d:9e: 7d:09:f1:07:6a:99:56:cd:24:1f:76:d2:79:f3:d6: 5a:d5:f2:ba:4f:c8:9a:a3:02:9c:ea:f0:b0:2c:6a: 80:4c:f9:c0:47:8b:d2:6f:8a:8c:76:75:2c:74:78: 7c:73:ad:c3:cd:c5:e8:c7:a6:8f:33:da:3b:a9:4f: 73:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:46:7C:0F:12:98:35:C3:5C:41:F4:08:D3:1F:A1:73:71:25:0C:B9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/64a9d9af-9f9b-49e3-96c3-45cfc5722c23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03f::/48 Signature Algorithm: sha256WithRSAEncryption 37:b9:c7:40:29:f8:8f:d2:80:24:2a:fd:77:7a:e6:89:b0:0d: 43:bf:20:04:9c:c7:8b:19:e7:d6:f2:86:55:5b:16:36:20:00: dc:36:27:01:8e:c3:8c:02:47:e7:10:83:8f:e0:e2:70:2d:19: c8:6b:7e:81:20:c7:29:50:71:87:55:e6:2f:9c:ae:4f:ce:69: 8a:96:92:d7:16:c9:b8:79:d7:94:29:11:fc:1c:71:8c:2a:1b: 04:df:65:8c:ea:ff:39:b7:1d:5f:a6:db:ab:86:5d:c7:71:0d: 49:03:e2:19:e3:7f:13:b9:23:cb:4f:8f:6c:17:0c:c3:75:5d: b0:81:76:af:18:94:6d:0b:a8:e8:c8:5a:90:f0:d1:1f:83:82: 26:be:cd:07:e7:3f:51:3d:e6:69:ca:ac:ff:aa:1f:53:6d:75: 38:e9:b4:29:41:44:35:6a:b9:59:ec:c5:c2:e4:85:61:9a:3b: 11:ca:b6:fd:ad:a3:43:88:7f:d3:b0:25:a8:06:db:68:ed:f7: db:60:0a:76:6f:85:78:d6:1c:6f:a2:6a:4c:04:34:77:9d:f2: c7:dc:32:52:95:14:44:b0:3a:92:46:e7:1e:e9:25:3d:66:ec: 0f:96:c1:09:2d:2a:84:68:f5:44:24:bd:3a:2b:88:9d:b3:16: 68:2a:05:06 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHv3WllmPnViWPcTYPSzDSrrwevUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDIyMTY1MjE2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTI0MDQ5YzM4NjQyYTIxOTVhZTI2ZmFmMzE0Y2QyODc0 ODJiNzQwN2NjMTQ1ODhlNmM3ZWJmMTgyYjQ1NDc3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnl1UIk63M8LN3NY9MPU+DkXmZPqiolyxdpMNvW8hd+5zq usJUa7oXNJ02szlq1XeWIwnJ7qif7TovRRUnDFLpsEj9YKcxzSrQtjkk+po5AqVI /+HWsnz3Sv3Q3v2X78v7envo3lJtafegwRB5wxQbCfqaK67kXMEk3FH//1uLrlBt +EvM9A8oO48GGBRiv4ffKHv+3Flp8CIoWMqMaRGULWB2PjYKd2455dYcjl2Xe649 qTU26jtk32rZC3wcYjxdnn0J8QdqmVbNJB920nnz1lrV8rpPyJqjApzq8LAsaoBM +cBHi9Jviox2dSx0eHxzrcPNxejHpo8z2jupT3NnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAkZ8DxKYNcNcQfQI0x+hc3ElDLkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzY0YTlkOWFmLTlmOWItNDllMy05NmMzLTQ1Y2ZjNTcyMmMyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D8wDQYJKoZIhvcNAQELBQADggEBADe5x0Ap+I/SgCQq/Xd65omw DUO/IAScx4sZ59byhlVbFjYgANw2JwGOw4wCR+cQg4/g4nAtGchrfoEgxylQcYdV 5i+crk/OaYqWktcWybh515QpEfwccYwqGwTfZYzq/zm3HV+m26uGXcdxDUkD4hnj fxO5I8tPj2wXDMN1XbCBdq8YlG0LqOjIWpDw0R+Dgia+zQfnP1E95mnKrP+qH1Nt dTjptClBRDVquVnsxcLkhWGaOxHKtv2to0OIf9OwJagG22jt99tgCnZvhXjWHG+i akwENHed8sfcMlKVFESwOpJG5x7pJT1m7A+WwQktKoRo9UQkvToriJ2zFmgqBQY= -----END CERTIFICATE-----Generated at Sat Apr 26 18:34:35 2025 by rpki-client