$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa File: c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa (raw, json) Hash identifier: OLNMMaB64UGvhDYb7NcQjQRMN7FAKJvGe04Vx77EMGA= Subject key identifier: D0:25:66:77:10:55:C1:74:3A:B6:7F:93:C6:73:66:97:54:80:20:19 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 10AE8E726EB24357C87433602E7DAE83A9AEE270 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa Signing time: Fri 25 Apr 2025 17:30:24 +0000 ROA not before: Fri 25 Apr 2025 17:30:24 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:399::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ae:8e:72:6e:b2:43:57:c8:74:33:60:2e:7d:ae:83:a9:ae:e2:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:30:24 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=51951cefb359e375cc4a4dd71908ec478eaefefef65b77d2520103e4279836f4, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a1:4d:64:51:f2:a7:a7:67:db:fd:36:80:6f: 9c:21:49:74:85:59:6f:33:4e:18:26:30:cc:f2:cd: 8d:09:0b:2c:7c:43:44:66:31:b5:8c:eb:45:eb:fe: e4:b8:33:2d:6b:09:9c:c1:2b:40:f7:e6:3f:88:bf: be:84:ea:f8:02:f9:23:9f:3a:16:82:24:ee:38:9b: 0e:c1:0c:f8:f5:6a:2d:31:ea:0f:7f:84:17:f4:cd: c6:0f:33:39:79:4f:ed:fd:52:a0:20:8b:18:60:2e: 80:ae:6b:f1:e6:4d:a2:cb:3a:9c:ae:98:07:ab:94: 21:51:ff:e2:f4:dc:28:52:4d:64:e8:a5:43:be:7c: 6e:ff:a5:e5:bd:f8:c5:4a:17:2f:d3:4a:9a:b5:52: 71:c0:49:a6:f3:4e:db:02:b0:26:84:98:8a:6f:63: 8b:f9:83:37:0c:f6:16:53:b2:2e:36:7d:df:83:6e: 40:b5:9a:c3:2f:fc:17:b8:80:5d:40:57:64:d5:27: 76:d7:9c:3c:b1:bf:75:80:5b:d2:eb:c1:2b:cc:47: d4:e1:9c:1f:71:c9:ae:ea:42:bc:f5:52:a8:25:5c: ba:d1:fe:2c:e1:9b:ab:62:61:6b:0c:c5:d9:a4:fc: 1d:e2:7e:8f:82:54:9b:f9:3f:35:6b:32:52:29:ff: a1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:25:66:77:10:55:C1:74:3A:B6:7F:93:C6:73:66:97:54:80:20:19 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3cfc811-2379-40d0-911d-bea0ba2b9c30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:399::/48 Signature Algorithm: sha256WithRSAEncryption 12:42:7b:ee:d7:e8:f8:5a:6c:6a:fb:12:ba:e2:f7:f0:7d:c7: 19:6d:fd:14:32:44:d3:b2:77:84:a2:81:cb:c1:bc:9d:97:3c: 27:b7:56:95:98:19:80:7c:f9:fd:a1:9d:bc:31:fa:40:98:5e: b5:31:57:03:23:59:68:42:67:af:77:4b:ef:71:55:cd:8a:97: 95:fa:9d:91:12:5c:ea:a8:f9:45:df:da:36:08:e9:41:08:5e: 4e:e7:c3:80:dc:c4:65:be:3a:d9:1c:b3:fd:30:34:99:64:13: b8:91:d6:65:1e:22:92:f7:38:53:55:9e:75:19:23:61:dd:ab: 8a:b7:44:c4:ea:e0:92:ee:21:69:18:52:88:85:08:30:b8:e7: 1a:d9:fe:36:99:b0:fd:93:d1:2b:3d:14:e0:8e:d8:de:4e:45: a7:0c:07:f1:d9:68:db:8b:74:a2:b7:09:94:4a:18:91:c1:87: 9c:69:45:3b:b0:22:9b:9a:80:8e:ed:a7:e9:cd:d3:98:9d:1e: 63:61:37:3f:b2:32:1e:81:ba:61:65:f2:30:10:1d:b2:87:53: 74:34:4b:b5:1b:9e:53:7b:b6:ab:06:f1:40:51:50:d2:6b:15: 49:81:8a:db:f7:eb:6e:c7:2d:82:ee:da:8f:e7:9e:e5:05:76: 0c:81:c5:12 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEK6Ocm6yQ1fIdDNgLn2ug6mu4nAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTczMDI0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTk1MWNlZmIzNTllMzc1Y2M0YTRkZDcxOTA4ZWM0Nzhl YWVmZWZlZjY1Yjc3ZDI1MjAxMDNlNDI3OTgzNmY0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4oU1kUfKnp2fb/TaAb5whSXSFWW8zThgmMMzyzY0JCyx8 Q0RmMbWM60Xr/uS4My1rCZzBK0D35j+Iv76E6vgC+SOfOhaCJO44mw7BDPj1ai0x 6g9/hBf0zcYPMzl5T+39UqAgixhgLoCua/HmTaLLOpyumAerlCFR/+L03ChSTWTo pUO+fG7/peW9+MVKFy/TSpq1UnHASabzTtsCsCaEmIpvY4v5gzcM9hZTsi42fd+D bkC1msMv/Be4gF1AV2TVJ3bXnDyxv3WAW9LrwSvMR9ThnB9xya7qQrz1UqglXLrR /izhm6tiYWsMxdmk/B3ifo+CVJv5PzVrMlIp/6GpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0CVmdxBVwXQ6tn+TxnNml1SAIBkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2MzY2ZjODExLTIzNzktNDBkMC05MTFkLWJlYTBiYTJiOWMzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5kwDQYJKoZIhvcNAQELBQADggEBABJCe+7X6PhabGr7Erri9/B9 xxlt/RQyRNOyd4SigcvBvJ2XPCe3VpWYGYB8+f2hnbwx+kCYXrUxVwMjWWhCZ693 S+9xVc2Kl5X6nZESXOqo+UXf2jYI6UEIXk7nw4DcxGW+Otkcs/0wNJlkE7iR1mUe IpL3OFNVnnUZI2Hdq4q3RMTq4JLuIWkYUoiFCDC45xrZ/jaZsP2T0Ss9FOCO2N5O RacMB/HZaNuLdKK3CZRKGJHBh5xpRTuwIpuagI7tp+nN05idHmNhNz+yMh6BumFl 8jAQHbKHU3Q0S7UbnlN7tqsG8UBRUNJrFUmBitv3627HLYLu2o/nnuUFdgyBxRI= -----END CERTIFICATE-----Generated at Sat Apr 26 18:35:35 2025 by rpki-client