$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/803ff471-2975-4fde-a4bd-31c53d5ce004.roa File: 803ff471-2975-4fde-a4bd-31c53d5ce004.roa (raw, json) Hash identifier: 3/cPoE77w1xf0P15dxtxw57pA5BqeF3hMKDEURKC+6A= Subject key identifier: 36:82:98:8E:C4:06:88:85:E6:AB:4F:7B:41:E6:9D:B7:43:F3:85:B5 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 59839D703465E1B93891A94A14FF4E01FC473813 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/803ff471-2975-4fde-a4bd-31c53d5ce004.roa Signing time: Fri 11 Apr 2025 00:20:32 +0000 ROA not before: Fri 11 Apr 2025 00:20:32 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:64d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:83:9d:70:34:65:e1:b9:38:91:a9:4a:14:ff:4e:01:fc:47:38:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:20:32 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=08120bd07d71e708cbd19ad8d9946f74d9b4fce836993e5e74ebc1ba16a2631d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b6:15:49:af:9a:95:ff:9b:61:be:58:de:9b: 7b:88:07:2c:e3:cc:6f:5f:63:1c:ee:60:03:7e:29: a4:1d:73:a7:69:50:a7:50:37:69:0c:e1:68:a6:63: 66:f3:fa:5b:a3:62:99:55:23:78:22:fd:d7:a3:e7: df:37:c0:1d:b2:eb:22:58:52:f4:f0:2d:1b:d6:d2: fe:40:ee:6c:06:a2:08:89:7f:1d:5e:8d:15:49:fa: a5:58:dd:dc:01:13:a2:d4:0f:c2:e1:43:67:1c:8e: eb:be:37:f5:30:d9:14:d2:7b:7c:88:47:29:ff:64: 26:7a:51:05:f9:69:6e:89:57:24:23:97:70:15:6e: 49:fc:7c:fd:17:ee:39:cf:f0:97:0d:e1:66:e7:9e: 6d:67:10:0e:1d:43:64:ea:fa:64:d0:b4:b8:43:1b: e1:ef:49:c1:08:e7:b5:af:8e:9e:63:63:2c:b8:6f: e2:70:ea:98:69:49:e8:3d:bc:b2:c2:81:80:0c:51: 11:45:d8:aa:1b:ac:e3:a2:17:d2:c6:4f:16:48:30: e4:e1:39:0a:dd:01:a2:16:42:8b:b0:03:05:27:42: 73:1d:42:9c:ea:79:28:8a:bc:b5:d2:e9:ee:57:84: 87:49:60:30:c6:61:ed:46:ba:9a:45:a5:e0:7a:7a: aa:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:82:98:8E:C4:06:88:85:E6:AB:4F:7B:41:E6:9D:B7:43:F3:85:B5 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/803ff471-2975-4fde-a4bd-31c53d5ce004.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64d::/48 Signature Algorithm: sha256WithRSAEncryption 79:44:17:7c:34:a0:e2:6b:1a:02:8d:fd:03:4c:07:01:c9:35: c7:91:04:72:cb:45:65:6c:0d:98:02:c3:08:95:25:43:0e:b4: 65:1b:4b:6b:68:3e:c1:1c:82:b3:e6:4c:40:13:40:57:cb:fd: f0:ad:9b:36:0f:61:f5:73:6e:f6:e1:2a:f1:4d:c0:56:52:5c: 01:d0:b8:97:46:ec:a4:e2:f8:ec:49:be:4e:76:8b:40:b7:13: 6c:00:45:ab:db:9c:3b:54:be:1e:21:49:55:00:84:d3:d6:b3: 9f:b7:e7:83:21:6b:8f:a2:3d:a6:39:f3:3b:06:1e:8b:fd:d3: 05:87:2f:bb:97:10:9b:9d:0b:90:8a:f1:0f:a5:c0:24:66:b5: 89:40:7e:ca:9a:d3:13:b8:c1:b2:0d:53:33:f2:2f:fd:a8:09: f7:0d:30:42:41:e6:0f:6d:85:32:32:2d:8e:d3:06:f8:48:bc: cc:3e:f2:30:f7:e5:88:51:9c:4f:c5:f7:fd:5e:85:4a:e8:9a: cc:2c:48:ee:b8:87:f9:3a:58:49:65:6b:21:75:1f:d1:b7:3f: ec:af:51:ff:3e:40:a2:52:eb:a2:f2:26:88:78:95:43:b7:19: 4f:5c:fc:4c:44:db:97:2d:1b:2c:00:23:af:9c:18:37:d5:8f: c8:c8:c7:8b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWYOdcDRl4bk4kalKFP9OAfxHOBMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAyMDMyWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwODEyMGJkMDdkNzFlNzA4Y2JkMTlhZDhkOTk0NmY3NGQ5 YjRmY2U4MzY5OTNlNWU3NGViYzFiYTE2YTI2MzFkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4thVJr5qV/5thvljem3uIByzjzG9fYxzuYAN+KaQdc6dp UKdQN2kM4WimY2bz+lujYplVI3gi/dej5983wB2y6yJYUvTwLRvW0v5A7mwGogiJ fx1ejRVJ+qVY3dwBE6LUD8LhQ2ccjuu+N/Uw2RTSe3yIRyn/ZCZ6UQX5aW6JVyQj l3AVbkn8fP0X7jnP8JcN4Wbnnm1nEA4dQ2Tq+mTQtLhDG+HvScEI57Wvjp5jYyy4 b+Jw6phpSeg9vLLCgYAMURFF2KobrOOiF9LGTxZIMOThOQrdAaIWQouwAwUnQnMd QpzqeSiKvLXS6e5XhIdJYDDGYe1GuppFpeB6eqp1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNoKYjsQGiIXmq097Qeadt0PzhbUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzgwM2ZmNDcxLTI5NzUtNGZkZS1hNGJkLTMxYzUzZDVjZTAwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABk0wDQYJKoZIhvcNAQELBQADggEBAHlEF3w0oOJrGgKN/QNMBwHJ NceRBHLLRWVsDZgCwwiVJUMOtGUbS2toPsEcgrPmTEATQFfL/fCtmzYPYfVzbvbh KvFNwFZSXAHQuJdG7KTi+OxJvk52i0C3E2wARavbnDtUvh4hSVUAhNPWs5+354Mh a4+iPaY58zsGHov90wWHL7uXEJudC5CK8Q+lwCRmtYlAfsqa0xO4wbINUzPyL/2o CfcNMEJB5g9thTIyLY7TBvhIvMw+8jD35YhRnE/F9/1ehUromswsSO64h/k6WEll ayF1H9G3P+yvUf8+QKJS66LyJoh4lUO3GU9c/ExE25ctGywAI6+cGDfVj8jIx4s= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:41 2025 by rpki-client