$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: 7xcSIvJmELwNjApk6+xd8nGmN1Gv5NbHFeQ9rqyeR/c= Subject key identifier: 95:2A:69:DA:09:FF:E2:AD:9C:8E:77:28:DA:29:7A:E7:98:23:7B:E1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 72990B80B3962A63FC5B6BAF9F6334BB553EE41A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Tue 01 Apr 2025 15:00:24 +0000 ROA not before: Tue 01 Apr 2025 15:00:24 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:99:0b:80:b3:96:2a:63:fc:5b:6b:af:9f:63:34:bb:55:3e:e4:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 15:00:24 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=99609053845424914381d816b01c6d1a43d69540213352f9a03839b3d5ed88ff, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1d:f4:4e:c5:8f:4e:e8:d3:c6:c7:3d:94:0b: e3:31:86:07:d7:bf:fa:a4:e6:c4:88:17:fd:f7:7a: a8:31:ad:c1:97:9a:bc:de:e9:89:68:b7:9f:6a:61: e6:68:41:9f:5c:1b:fd:a7:e6:06:0c:00:7f:92:8e: b8:e6:50:e3:4f:43:a6:58:77:66:0f:aa:df:4b:fc: 9d:00:1e:35:28:54:1d:aa:17:7a:c7:d1:2f:5c:de: ea:ef:1e:46:91:12:44:c1:b5:dd:aa:ba:0f:f1:08: da:49:69:c3:8e:9c:6c:3b:6d:cd:8e:1c:2b:3e:9c: 1e:67:05:94:ff:c1:72:be:5e:f0:8c:64:4d:0a:f6: 44:ff:75:82:e6:71:b6:11:a6:5d:b0:4d:14:62:74: ff:d0:4c:ce:08:2f:b8:a5:1f:06:d0:d5:4b:a3:e4: b8:bf:d9:22:30:d1:ea:72:a3:4b:db:50:e3:dc:8c: 0e:1b:d3:0d:df:8e:38:e0:25:1f:d2:60:79:91:e7: ec:08:44:ec:9d:dc:8c:32:05:6c:3f:23:c1:91:d8: 63:00:54:b0:a4:51:ba:4c:e5:12:12:01:ff:ce:88: b7:b6:5c:44:67:29:fa:c5:3f:16:60:89:83:74:30: 14:48:8e:01:73:19:9e:62:4f:bf:9c:da:4f:80:44: 44:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:2A:69:DA:09:FF:E2:AD:9C:8E:77:28:DA:29:7A:E7:98:23:7B:E1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 47:b6:a4:77:31:3c:36:15:13:e6:f3:7b:a3:ab:53:f4:e8:b8: 8d:8a:40:b7:79:76:41:ec:b4:f6:7e:9d:b9:7d:1d:9c:0b:be: 54:c5:30:52:d9:13:43:f2:8b:57:4f:4a:2e:12:8b:f2:d8:89: 43:af:15:81:3c:b8:40:dc:9b:cf:3f:5b:52:58:0e:6d:30:9b: ee:5b:57:60:0f:58:00:37:e2:a8:b0:59:7c:91:45:f8:9b:c5: e2:77:80:e3:44:ea:e4:2d:d9:39:f6:54:ad:be:98:b7:1f:25: 36:bf:65:9d:89:61:71:41:56:f3:72:a4:9e:1e:c4:2f:47:d1: 8f:15:e4:b6:6f:2e:1a:3b:a5:83:55:33:6c:6f:3e:65:96:8d: 34:57:01:43:7f:db:21:3e:f9:08:03:46:64:f2:b0:07:b6:35: fc:cb:bd:2d:c8:3a:06:17:f3:63:7b:e7:42:9f:28:b3:87:5e: 26:da:6b:1f:83:fd:7f:90:4e:7c:9c:58:2d:e8:a3:68:82:57: 48:14:43:bc:16:fa:a2:56:a5:e2:14:34:45:74:82:50:11:72: ca:e4:39:f1:89:9f:4e:51:8d:75:77:b1:83:f8:5a:7c:97:fc: 5a:be:8e:61:02:90:53:6d:af:e2:31:f0:ee:3e:eb:e0:ce:04: 46:ac:1a:11 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcpkLgLOWKmP8W2uvn2M0u1U+5BowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMTUwMDI0WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTYwOTA1Mzg0NTQyNDkxNDM4MWQ4MTZiMDFjNmQxYTQz ZDY5NTQwMjEzMzUyZjlhMDM4MzliM2Q1ZWQ4OGZmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkHfROxY9O6NPGxz2UC+MxhgfXv/qk5sSIF/33eqgxrcGX mrze6Ylot59qYeZoQZ9cG/2n5gYMAH+SjrjmUONPQ6ZYd2YPqt9L/J0AHjUoVB2q F3rH0S9c3urvHkaREkTBtd2qug/xCNpJacOOnGw7bc2OHCs+nB5nBZT/wXK+XvCM ZE0K9kT/dYLmcbYRpl2wTRRidP/QTM4IL7ilHwbQ1Uuj5Li/2SIw0epyo0vbUOPc jA4b0w3fjjjgJR/SYHmR5+wIROyd3IwyBWw/I8GR2GMAVLCkUbpM5RISAf/OiLe2 XERnKfrFPxZgiYN0MBRIjgFzGZ5iT7+c2k+ARESjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlSpp2gn/4q2cjnco2il655gje+EwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAEe2pHcxPDYVE+bze6OrU/To uI2KQLd5dkHstPZ+nbl9HZwLvlTFMFLZE0Pyi1dPSi4Si/LYiUOvFYE8uEDcm88/ W1JYDm0wm+5bV2APWAA34qiwWXyRRfibxeJ3gONE6uQt2Tn2VK2+mLcfJTa/ZZ2J YXFBVvNypJ4exC9H0Y8V5LZvLho7pYNVM2xvPmWWjTRXAUN/2yE++QgDRmTysAe2 NfzLvS3IOgYX82N750KfKLOHXibaax+D/X+QTnycWC3oo2iCV0gUQ7wW+qJWpeIU NEV0glARcsrkOfGJn05RjXV3sYP4WnyX/Fq+jmECkFNtr+Ix8O4+6+DOBEasGhE= -----END CERTIFICATE-----Generated at Sat Apr 26 18:31:18 2025 by rpki-client