$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa File: 8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa (raw, json) Hash identifier: /L5h72HzJCTIpjy9nBAEUKd3mmIbiIWde0xBQpqI9+I= Subject key identifier: D5:53:D1:1C:29:B2:5F:D8:94:A4:F5:75:EA:99:09:DB:56:D1:14:F9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4E1B76896498C0A4744BEB62FD09E04BCB4319DF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa Signing time: Sat 26 Apr 2025 00:51:08 +0000 ROA not before: Sat 26 Apr 2025 00:51:08 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:396::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:1b:76:89:64:98:c0:a4:74:4b:eb:62:fd:09:e0:4b:cb:43:19:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 26 00:51:08 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=2cc1ff075e71239780b832a6c7df745082f4b1d55e45a269f57dfb5297a58a80, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:d2:29:c9:10:33:64:b1:39:17:75:15:7c:e4: ee:3c:85:37:bd:37:4d:f4:d9:e0:7e:e6:a6:91:5f: 1c:54:c2:78:e7:c3:a2:14:a9:76:c7:b3:e2:d0:ba: 7f:cf:14:36:a7:43:1e:bc:91:bb:44:cc:40:07:5c: 2f:53:54:30:18:50:4a:c4:36:18:a5:02:f3:03:e2: e1:fd:94:16:80:0c:80:3f:25:ba:86:a5:a3:c6:93: 09:ed:f8:ed:48:5b:6d:6a:73:cb:f1:ec:4a:ba:8d: 8f:b0:07:60:de:c3:4d:59:90:5d:bd:02:6b:7a:94: c8:02:21:95:89:ff:3d:fd:31:de:3d:32:14:7c:b4: 46:ff:b9:66:76:41:d3:f9:d6:c5:59:8b:24:84:a4: dd:96:2d:56:e5:0e:20:a6:44:88:16:33:cf:ae:f4: e2:5a:6c:71:52:47:8f:06:1e:26:83:b4:cc:33:f6: 7d:17:38:11:b6:08:92:bd:a2:2d:41:17:b3:9f:b4: 4f:d3:85:dd:5e:da:42:ac:a0:1e:8e:c6:28:cc:75: d3:7f:12:e6:60:16:bc:9b:0f:6d:7c:25:da:03:20: 73:83:ca:11:b1:0f:41:1f:fb:d3:51:99:8e:d1:17: ae:84:e8:a3:bd:cb:b0:0a:d3:c4:ca:b7:4c:21:0f: e2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:53:D1:1C:29:B2:5F:D8:94:A4:F5:75:EA:99:09:DB:56:D1:14:F9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:396::/48 Signature Algorithm: sha256WithRSAEncryption 28:85:b9:c1:db:4d:b9:ff:64:76:b5:c8:28:a0:b6:7d:be:89: f0:54:fd:be:cc:d8:29:ab:ef:7c:33:82:54:12:8c:23:c2:dc: 32:a5:9d:f5:61:4a:65:64:3a:de:9c:27:3d:9d:81:c6:28:37: 05:64:26:69:c6:ac:d8:85:67:7a:42:4b:df:ec:6e:ee:33:a7: fd:ad:5b:a5:b5:e9:6e:79:d3:b2:ca:a6:bd:08:0c:a9:7a:a3: d5:28:75:f2:33:6e:94:2a:b9:3a:a6:60:1f:c7:1c:ac:51:9b: 92:b9:2d:2e:21:f9:3f:2e:3b:a3:a7:45:06:a4:53:cb:20:7d: d3:2e:54:47:81:a6:f4:dd:3b:f3:03:7b:07:c4:91:db:6f:00: 70:50:87:fe:fb:68:3a:e5:cf:60:53:d3:b6:92:a8:88:75:81: d5:44:da:1c:cb:c9:09:2a:2c:34:99:f9:d3:91:eb:98:22:60: 49:34:da:12:ae:02:7e:a7:63:44:d7:02:97:7a:39:4d:0d:9f: f3:96:28:e5:ad:6b:a3:f4:6a:a0:c4:d8:aa:83:cf:35:45:ae: eb:ad:40:6f:62:65:bd:e2:2e:4c:0f:76:e3:c1:ba:df:58:a3: 0b:88:6a:b9:ba:2a:3c:5c:c5:12:be:19:a1:50:29:78:4a:7c: ce:3d:1e:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTht2iWSYwKR0S+ti/QngS8tDGd8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI2MDA1MTA4WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2MxZmYwNzVlNzEyMzk3ODBiODMyYTZjN2RmNzQ1MDgy ZjRiMWQ1NWU0NWEyNjlmNTdkZmI1Mjk3YTU4YTgwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCC0inJEDNksTkXdRV85O48hTe9N0302eB+5qaRXxxUwnjn w6IUqXbHs+LQun/PFDanQx68kbtEzEAHXC9TVDAYUErENhilAvMD4uH9lBaADIA/ JbqGpaPGkwnt+O1IW21qc8vx7Eq6jY+wB2Dew01ZkF29Amt6lMgCIZWJ/z39Md49 MhR8tEb/uWZ2QdP51sVZiySEpN2WLVblDiCmRIgWM8+u9OJabHFSR48GHiaDtMwz 9n0XOBG2CJK9oi1BF7OftE/Thd1e2kKsoB6OxijMddN/EuZgFrybD218JdoDIHOD yhGxD0Ef+9NRmY7RF66E6KO9y7AK08TKt0whD+JNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1VPRHCmyX9iUpPV16pkJ21bRFPkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzhlNWNhYzMxLTMzZDItNDU0ZC1hMmI3LTZlZjg1YThkNDk0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5YwDQYJKoZIhvcNAQELBQADggEBACiFucHbTbn/ZHa1yCigtn2+ ifBU/b7M2Cmr73wzglQSjCPC3DKlnfVhSmVkOt6cJz2dgcYoNwVkJmnGrNiFZ3pC S9/sbu4zp/2tW6W16W5507LKpr0IDKl6o9UodfIzbpQquTqmYB/HHKxRm5K5LS4h +T8uO6OnRQakU8sgfdMuVEeBpvTdO/MDewfEkdtvAHBQh/77aDrlz2BT07aSqIh1 gdVE2hzLyQkqLDSZ+dOR65giYEk02hKuAn6nY0TXApd6OU0Nn/OWKOWta6P0aqDE 2KqDzzVFruutQG9iZb3iLkwPduPBut9YowuIarm6KjxcxRK+GaFQKXhKfM49Hj8= -----END CERTIFICATE-----Generated at Sat Apr 26 17:40:39 2025 by rpki-client