$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa File: bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa (raw, json) Hash identifier: 6I0aIJutSfm/1W4PNq8/juQuLU25WwjXCas9YoaN9sA= Subject key identifier: EA:C9:BA:13:3F:CA:06:57:F5:54:8D:6A:FA:81:B7:AB:B8:42:0D:AB Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 23DCB8BFAF70C4351996D162401D6FA24D96595A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa Signing time: Tue 01 Apr 2025 00:51:17 +0000 ROA not before: Tue 01 Apr 2025 00:51:17 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:dc:b8:bf:af:70:c4:35:19:96:d1:62:40:1d:6f:a2:4d:96:59:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 00:51:17 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=606f5eb1bfa65b409439a1820b5014886c8ce3ce607228eccd078bc3401529af, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:29:b9:77:29:74:37:51:6d:30:e7:7c:54:aa: 1f:30:c1:0f:27:87:d2:48:27:fe:df:2f:45:31:b0: a8:40:10:20:be:fa:08:f3:ff:3d:77:50:31:76:16: 58:ce:97:c8:2d:20:5c:fa:f9:17:bd:3f:40:72:f8: 39:2b:1e:b8:6b:95:96:2d:89:60:ab:49:87:9d:0d: ca:d2:eb:0f:4a:a6:45:ba:ec:2c:ee:c3:06:3f:20: 24:99:5c:74:fb:cb:f3:38:ef:ec:12:aa:9d:c5:33: b0:c5:31:0a:34:5f:9b:bd:39:99:36:33:61:5e:cc: c5:26:56:4b:f8:e3:39:f5:21:a5:65:73:b9:70:02: 10:86:83:d5:42:8f:8c:db:9c:ac:cd:73:be:38:4c: 60:2b:a4:4a:ae:e8:1e:fd:d4:7f:31:1c:a4:09:e9: f1:07:e6:69:f7:8f:54:c8:ba:5d:a6:0c:f7:9d:b6: 7c:7f:57:d0:37:54:2d:ba:f8:c6:dc:cb:09:c9:b6: 4a:c6:a2:ae:bc:81:10:fe:5c:1b:b5:bf:3d:1e:ae: 27:18:1b:e5:65:b5:90:f6:7d:b3:e0:7d:58:ff:39: 94:b9:a6:7f:86:a7:97:31:d3:45:49:c7:af:09:cc: 51:8c:1e:f4:08:6d:b0:15:66:93:4a:a3:86:5c:44: be:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C9:BA:13:3F:CA:06:57:F5:54:8D:6A:FA:81:B7:AB:B8:42:0D:AB X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 01:53:8a:b3:50:41:01:c7:57:2c:2e:5b:3e:0c:04:7f:63:33: 1a:c7:19:c5:b1:20:dd:7a:5d:8f:d8:b4:48:7e:e1:d7:b4:58: 18:49:72:81:ac:52:c1:3c:48:c4:38:d6:c8:7b:f1:4e:c6:d9: 96:a0:af:df:5f:8d:cf:f8:86:38:ac:7d:5c:80:9c:1c:f3:72: 14:62:8c:f1:9b:b7:e3:c7:d0:31:56:5f:e1:b6:b6:27:a5:57: 26:69:87:c6:3d:ab:f0:7c:58:5e:d0:ff:7e:0c:68:ca:dd:82: 18:0e:e3:aa:45:3b:af:c0:47:4b:55:4c:68:e4:6d:25:82:17: df:7e:95:aa:36:a5:a5:15:4c:b3:8a:d8:c1:20:d7:9c:dc:db: 68:89:45:2d:44:50:d8:16:ba:3d:ee:d7:77:45:5c:63:eb:5d: 71:fc:98:38:1d:95:2c:55:4a:14:92:70:f3:00:f2:76:e4:e5: 51:5d:22:b2:2a:98:7e:69:c9:50:f0:8e:23:89:bd:9f:11:ec: 6e:f7:c9:a6:be:47:f6:1f:78:6a:5d:e7:e9:b7:5c:63:ce:a8: 7f:94:8a:26:c4:53:36:a6:73:cc:7d:b2:b5:03:1a:34:38:14: 6f:dd:63:ef:84:91:7b:6c:c3:c1:41:31:39:07:79:a1:24:d3: a5:34:70:46 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI9y4v69wxDUZltFiQB1vok2WWVowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMDA1MTE3WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDZmNWViMWJmYTY1YjQwOTQzOWExODIwYjUwMTQ4ODZj OGNlM2NlNjA3MjI4ZWNjZDA3OGJjMzQwMTUyOWFmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVKbl3KXQ3UW0w53xUqh8wwQ8nh9JIJ/7fL0UxsKhAECC+ +gjz/z13UDF2FljOl8gtIFz6+Re9P0By+DkrHrhrlZYtiWCrSYedDcrS6w9KpkW6 7CzuwwY/ICSZXHT7y/M47+wSqp3FM7DFMQo0X5u9OZk2M2FezMUmVkv44zn1IaVl c7lwAhCGg9VCj4zbnKzNc744TGArpEqu6B791H8xHKQJ6fEH5mn3j1TIul2mDPed tnx/V9A3VC26+MbcywnJtkrGoq68gRD+XBu1vz0ericYG+VltZD2fbPgfVj/OZS5 pn+Gp5cx00VJx68JzFGMHvQIbbAVZpNKo4ZcRL73AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6sm6Ez/KBlf1VI1q+oG3q7hCDaswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JiNWFmNzU3LTFiZGMtNDhmOS1iYzIwLWM3NGZkNDkwOTZhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAAFTirNQQQHHVywuWz4MBH9j MxrHGcWxIN16XY/YtEh+4de0WBhJcoGsUsE8SMQ41sh78U7G2Zagr99fjc/4hjis fVyAnBzzchRijPGbt+PH0DFWX+G2tielVyZph8Y9q/B8WF7Q/34MaMrdghgO46pF O6/AR0tVTGjkbSWCF99+lao2paUVTLOK2MEg15zc22iJRS1EUNgWuj3u13dFXGPr XXH8mDgdlSxVShSScPMA8nbk5VFdIrIqmH5pyVDwjiOJvZ8R7G73yaa+R/YfeGpd 5+m3XGPOqH+UiibEUzamc8x9srUDGjQ4FG/dY++EkXtsw8FBMTkHeaEk06U0cEY= -----END CERTIFICATE-----Generated at Sat Apr 26 18:29:33 2025 by rpki-client