$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa File: a3dc9780-ee42-4415-930a-4d78bbb4e531.roa (raw, json) Hash identifier: hHXh9k5ypZ/mqYFvp9TuNpSpObpNMEJvRu5qleTuCTI= Subject key identifier: 51:5B:68:57:D8:F0:F1:96:7D:01:69:33:70:F1:E7:63:A5:ED:6B:8E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0699A494059ACF516A3B3BEDF936C6B3EBE94CD1 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa Signing time: Fri 11 Apr 2025 00:30:17 +0000 ROA not before: Fri 11 Apr 2025 00:30:17 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:99:a4:94:05:9a:cf:51:6a:3b:3b:ed:f9:36:c6:b3:eb:e9:4c:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:30:17 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=5937e7b19d8866f3c32d0f250ea1bbbfa5bcadb9169c2c5da32883edaf76a9c9, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:a6:01:6c:63:ad:61:95:84:dd:af:32:6d:a4: c8:fb:74:95:9a:07:16:0a:35:a9:5d:f9:46:41:1a: 28:2e:b7:bc:0a:15:90:1e:77:7e:a7:fd:37:7a:73: 48:b8:95:20:0a:41:fc:1d:2e:ce:e4:9a:ea:92:36: 20:34:f3:c3:3f:cb:b4:38:95:9a:84:75:ec:74:ad: 1e:7c:f2:f8:e4:84:82:8d:53:85:23:8d:b6:b0:e2: 04:6e:e7:f2:52:00:6f:3e:b5:93:14:d0:4e:7e:b0: ab:44:3d:38:72:7f:58:9c:d8:39:ac:3f:76:62:6e: b2:a4:55:ad:33:44:1d:14:55:a7:b5:a4:d3:b9:1c: 1f:58:ce:58:a9:05:81:d6:5a:04:ec:b5:e5:c9:b2: 8a:e4:8d:4f:b9:6b:cc:68:80:7b:fc:f5:81:e1:de: 0a:25:00:09:4e:20:d2:a4:83:f9:5f:6c:50:7b:cb: 6d:e7:3d:b5:b7:a7:61:6f:b0:fe:02:c8:f7:1c:2e: 23:2b:39:e2:5d:7b:92:0e:5b:db:b1:06:29:cf:d9: cc:0b:0a:7a:3f:77:bc:f4:55:78:05:e3:6e:80:3c: 5c:53:32:b4:08:08:7e:d4:f6:2a:c8:99:58:de:9c: a5:4a:f5:20:43:3d:e4:3a:bc:5b:13:16:56:dd:1a: 02:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:5B:68:57:D8:F0:F1:96:7D:01:69:33:70:F1:E7:63:A5:ED:6B:8E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c02::/48 Signature Algorithm: sha256WithRSAEncryption a1:66:88:c5:68:0a:6a:ba:5e:e3:c2:ba:f0:b7:93:34:87:cf: 0c:e6:33:bf:b6:2f:b6:31:1d:78:2f:93:13:fd:e2:62:54:b4: e0:6f:58:e1:d8:29:5a:83:22:d6:05:6e:80:69:a7:02:fc:90: 67:4f:01:27:5c:eb:0e:38:7d:f2:ff:b2:2b:6f:74:8b:80:d3: 1a:81:9d:60:6c:0d:39:9d:28:b1:23:8a:f4:19:15:07:9d:ff: 93:b0:b1:00:80:b6:40:0a:aa:be:3b:c4:f0:17:12:60:c8:20: 3e:cd:29:5f:4e:bf:62:d8:e1:29:3c:5e:a1:a4:53:ff:13:83: 3d:91:4a:23:30:85:d1:a5:cf:a4:bc:93:57:32:b5:36:7e:54: 0c:31:b5:a9:01:85:d7:c1:38:77:46:41:38:ce:1c:6b:10:0f: b7:63:fb:9d:19:d9:fc:13:df:34:1a:c9:53:2e:68:bd:6b:29: e4:4e:28:01:2d:9d:d2:87:aa:89:89:14:46:17:2a:2d:55:a6: 72:74:d6:dc:52:b5:52:60:51:45:dd:87:25:d6:8f:5e:a4:30: 7e:14:8d:ee:3f:98:17:cc:57:28:7f:2d:a1:f3:00:75:e8:5b: fa:98:e9:d6:4c:e2:cb:a8:bd:28:1d:01:81:34:75:b7:b9:24: dd:80:d4:f2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBpmklAWaz1FqOzvt+TbGs+vpTNEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAzMDE3WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTM3ZTdiMTlkODg2NmYzYzMyZDBmMjUwZWExYmJiZmE1 YmNhZGI5MTY5YzJjNWRhMzI4ODNlZGFmNzZhOWM5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1pgFsY61hlYTdrzJtpMj7dJWaBxYKNald+UZBGigut7wK FZAed36n/Td6c0i4lSAKQfwdLs7kmuqSNiA088M/y7Q4lZqEdex0rR588vjkhIKN U4Ujjbaw4gRu5/JSAG8+tZMU0E5+sKtEPThyf1ic2DmsP3ZibrKkVa0zRB0UVae1 pNO5HB9YzlipBYHWWgTsteXJsorkjU+5a8xogHv89YHh3golAAlOINKkg/lfbFB7 y23nPbW3p2FvsP4CyPccLiMrOeJde5IOW9uxBinP2cwLCno/d7z0VXgF426APFxT MrQICH7U9irImVjenKVK9SBDPeQ6vFsTFlbdGgLlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUVtoV9jw8ZZ9AWkzcPHnY6Xta44wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2EzZGM5NzgwLWVlNDItNDQxNS05MzBhLTRkNzhiYmI0ZTUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAIwDQYJKoZIhvcNAQELBQADggEBAKFmiMVoCmq6XuPCuvC3kzSH zwzmM7+2L7YxHXgvkxP94mJUtOBvWOHYKVqDItYFboBppwL8kGdPASdc6w44ffL/ sitvdIuA0xqBnWBsDTmdKLEjivQZFQed/5OwsQCAtkAKqr47xPAXEmDIID7NKV9O v2LY4Sk8XqGkU/8Tgz2RSiMwhdGlz6S8k1cytTZ+VAwxtakBhdfBOHdGQTjOHGsQ D7dj+50Z2fwT3zQayVMuaL1rKeROKAEtndKHqomJFEYXKi1VpnJ01txStVJgUUXd hyXWj16kMH4Uje4/mBfMVyh/LaHzAHXoW/qY6dZM4suovSgdAYE0dbe5JN2A1PI= -----END CERTIFICATE-----Generated at Sat Apr 26 18:34:40 2025 by rpki-client