$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c989c04a-7b52-4ce5-a0dc-f32498c5affd.roa File: c989c04a-7b52-4ce5-a0dc-f32498c5affd.roa (raw, json) Hash identifier: QDohcr6au34HM7Eeilu4Q6qgjeDtTUUA6TfD3TG8wfI= Subject key identifier: 83:63:8A:34:D0:D3:E3:76:15:C1:5A:03:B7:01:0A:67:70:CF:A7:DD Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 466A142AC7DF1A81B3B1CB3674D591A2989622ED Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c989c04a-7b52-4ce5-a0dc-f32498c5affd.roa Signing time: Tue 01 Apr 2025 15:00:18 +0000 ROA not before: Tue 01 Apr 2025 15:00:18 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:62b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:6a:14:2a:c7:df:1a:81:b3:b1:cb:36:74:d5:91:a2:98:96:22:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 15:00:18 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=a39458a7f90f1b56298460aa1548385835b2d29b2530fd930cff7a86662b8234, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:30:e5:1d:21:80:de:26:18:23:0d:19:1b:69: 3a:d2:a0:f4:3e:41:6d:58:9d:d3:11:26:f7:2e:02: 84:4f:4f:c2:75:d8:e7:9a:c6:b4:8c:08:9a:e9:cf: c1:1c:12:95:18:d7:ba:a5:a4:03:2e:62:14:90:8e: aa:e6:e2:94:09:92:5c:a0:3f:52:f2:a7:cf:be:49: 17:9f:9b:38:46:8e:73:9b:a1:d4:72:46:68:fa:12: 15:66:71:39:89:33:c9:12:3b:f2:44:d5:4f:92:ed: 7f:13:b5:b8:97:47:01:bc:49:c2:83:05:21:19:f7: 23:65:9c:32:ac:1a:2c:ac:3e:72:f6:b8:37:d4:e7: 88:e6:0b:da:77:7e:0c:8b:3c:1f:59:db:f9:71:20: 63:9c:6f:13:31:5d:ca:ac:c7:84:99:a5:72:44:b7: e3:a6:cd:2a:15:f6:b3:73:74:e2:d9:8c:d3:ce:13: 23:0a:a7:63:96:ae:51:e3:50:52:93:d1:59:50:a3: 24:e2:bc:05:5f:89:4b:fd:a2:8e:d8:74:f6:b8:e5: b0:84:80:75:0b:87:2e:68:38:6c:f4:b2:e1:24:31: 5a:28:02:82:41:b3:24:42:65:3d:0d:09:9d:b0:e2: aa:0f:32:97:86:ad:5c:e7:b7:82:93:c7:33:61:cd: 52:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:63:8A:34:D0:D3:E3:76:15:C1:5A:03:B7:01:0A:67:70:CF:A7:DD X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c989c04a-7b52-4ce5-a0dc-f32498c5affd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:62b::/48 Signature Algorithm: sha256WithRSAEncryption 29:93:f9:13:5b:2d:80:ab:34:18:53:9e:ef:e6:2e:17:6a:bc: b5:1c:a6:fc:66:b7:81:69:67:dd:ea:60:d4:2c:69:f5:e7:f6: 2b:8b:0e:e2:46:82:df:a3:d3:8d:f2:9a:9d:55:c2:39:61:1f: 69:85:b5:fe:de:f4:c8:67:fe:3b:8a:37:94:bf:92:3b:2f:24: c6:f5:a4:d9:75:39:0f:18:ae:f5:a4:fb:71:6d:c3:6d:50:c3: b5:f0:2a:1f:bd:32:40:1b:7d:34:1d:d7:31:0f:9e:df:52:17: e2:ce:dd:e0:a0:9c:b2:84:12:02:f2:de:0f:5d:b0:b6:45:e1: 3e:5b:c4:73:65:4f:ab:f1:06:b3:f3:55:f8:7c:dd:1a:9a:34: 9f:f5:53:fa:79:43:56:45:a1:a1:23:24:60:67:d9:aa:89:e0: 09:23:ab:5f:79:28:a5:52:a2:e7:74:37:5e:2b:56:a1:c3:dd: cf:f6:cb:b3:26:f5:6d:27:1a:37:0d:b2:e3:6c:0f:70:2e:68: 42:b4:85:1f:c3:86:30:ac:b2:c1:cc:d8:ee:c9:7c:55:ab:5a: 88:cc:26:7c:0f:02:fd:22:63:92:6f:61:68:1c:7d:f4:e2:5f: 5b:ec:13:1e:ff:86:cc:66:ad:21:02:d5:e6:58:02:23:e2:7b: 1d:dd:13:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURmoUKsffGoGzscs2dNWRopiWIu0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMTUwMDE4WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzk0NThhN2Y5MGYxYjU2Mjk4NDYwYWExNTQ4Mzg1ODM1 YjJkMjliMjUzMGZkOTMwY2ZmN2E4NjY2MmI4MjM0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClMOUdIYDeJhgjDRkbaTrSoPQ+QW1YndMRJvcuAoRPT8J1 2OeaxrSMCJrpz8EcEpUY17qlpAMuYhSQjqrm4pQJklygP1Lyp8++SRefmzhGjnOb odRyRmj6EhVmcTmJM8kSO/JE1U+S7X8TtbiXRwG8ScKDBSEZ9yNlnDKsGiysPnL2 uDfU54jmC9p3fgyLPB9Z2/lxIGOcbxMxXcqsx4SZpXJEt+OmzSoV9rNzdOLZjNPO EyMKp2OWrlHjUFKT0VlQoyTivAVfiUv9oo7YdPa45bCEgHULhy5oOGz0suEkMVoo AoJBsyRCZT0NCZ2w4qoPMpeGrVznt4KTxzNhzVINAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUg2OKNNDT43YVwVoDtwEKZ3DPp90wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M5ODljMDRhLTdiNTItNGNlNS1hMGRjLWYzMjQ5OGM1YWZmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABiswDQYJKoZIhvcNAQELBQADggEBACmT+RNbLYCrNBhTnu/mLhdq vLUcpvxmt4FpZ93qYNQsafXn9iuLDuJGgt+j043ymp1VwjlhH2mFtf7e9Mhn/juK N5S/kjsvJMb1pNl1OQ8YrvWk+3Ftw21Qw7XwKh+9MkAbfTQd1zEPnt9SF+LO3eCg nLKEEgLy3g9dsLZF4T5bxHNlT6vxBrPzVfh83RqaNJ/1U/p5Q1ZFoaEjJGBn2aqJ 4Akjq195KKVSoud0N14rVqHD3c/2y7Mm9W0nGjcNsuNsD3AuaEK0hR/DhjCsssHM 2O7JfFWrWojMJnwPAv0iY5JvYWgcffTiX1vsEx7/hsxmrSEC1eZYAiPiex3dE2Y= -----END CERTIFICATE-----Generated at Sat Apr 26 14:46:14 2025 by rpki-client