$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ce035316-a06e-4b49-a04d-0f1a5ca31246.roa File: ce035316-a06e-4b49-a04d-0f1a5ca31246.roa (raw, json) Hash identifier: yLrqVJxnSf/yzNJjPV8kTyyzn/K2+VEwOVqdWmDH1AE= Subject key identifier: 5F:F0:41:5C:74:4E:DE:6D:09:0B:B0:66:9C:EC:6D:15:60:93:49:5B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 30FDBC233A03A853AA84074D35334AAB1B49E932 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ce035316-a06e-4b49-a04d-0f1a5ca31246.roa Signing time: Fri 11 Apr 2025 00:40:14 +0000 ROA not before: Fri 11 Apr 2025 00:40:14 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:fd:bc:23:3a:03:a8:53:aa:84:07:4d:35:33:4a:ab:1b:49:e9:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:40:14 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=2cb0f07935386b157eda4c4cf0600a90072d911249c98697f45b2131affbbd73, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e1:0b:ab:df:1f:25:a9:35:51:06:d3:88:91: b2:a9:be:bb:6a:a5:d2:6c:b7:84:d5:53:76:ae:00: 89:5a:ae:ff:49:9d:3c:8a:42:bc:76:3f:7d:59:3f: 75:24:75:83:84:e6:4b:00:c2:0e:6f:c1:04:00:8e: 30:76:37:61:bc:38:22:b2:79:26:bc:cb:94:59:a0: 83:ce:82:91:d9:0b:db:7e:71:c2:58:4f:85:9d:9a: fc:9e:0f:cf:00:f0:17:13:2f:b9:e9:4d:48:bc:0b: 28:9b:2b:34:ab:33:f0:24:30:a2:44:5d:3c:63:8d: 71:6b:fb:38:e0:81:d2:49:f4:50:51:ef:8c:88:e1: 1f:bf:14:99:5e:0a:3e:aa:15:32:3a:15:62:9a:fe: 91:79:07:c0:c4:a9:fc:c3:b8:5e:71:d2:41:39:ea: cc:77:02:d1:35:c8:37:82:38:db:99:46:5c:a5:93: 01:99:ce:e6:68:3e:2d:41:cf:9d:03:bc:57:52:ce: b3:cb:de:82:4a:2f:34:02:91:7f:ef:92:02:1b:b5: a0:58:67:2e:90:9e:a7:14:4e:57:56:0f:df:44:a9: 9b:c4:5e:f4:3e:c6:53:85:4c:2a:4d:39:f0:60:0d: 62:19:7e:67:da:af:e1:90:6a:11:e8:b5:ac:98:0a: f4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F0:41:5C:74:4E:DE:6D:09:0B:B0:66:9C:EC:6D:15:60:93:49:5B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ce035316-a06e-4b49-a04d-0f1a5ca31246.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c18::/48 Signature Algorithm: sha256WithRSAEncryption 7b:98:b3:4e:be:0f:5b:5a:33:65:a6:a4:f0:58:15:0a:82:0b: 9d:e4:63:3d:a3:92:5b:6e:e0:de:cd:6e:2a:a2:1f:a2:1c:77: b6:5c:40:a1:a6:b3:66:5d:7c:e3:bd:61:e0:af:ee:6f:35:a8: f7:a0:ea:d7:fd:76:22:7e:30:35:e2:65:e0:4f:4c:42:50:f3: fa:c1:29:72:dd:8c:3a:55:d9:45:2f:95:1f:fd:f2:ec:48:ac: f1:8b:c4:f1:79:f5:ad:81:36:a2:32:85:d2:de:b8:e1:d4:b8: 72:2a:17:bf:4e:35:e7:f7:f9:d2:2f:28:fb:5d:cf:e4:28:0f: d6:0b:65:b5:93:38:55:b1:b3:be:3c:fb:d7:9c:97:0d:52:06: 94:4f:a4:b4:89:ca:5a:e4:0e:c4:2c:8e:34:75:ae:3c:a1:6b: d2:5d:0c:d3:47:7d:e6:16:83:89:8b:57:8c:2f:2a:24:e9:b3: f7:4a:75:6a:cc:ab:5a:a2:dd:87:c3:fc:5b:05:6a:0f:b8:ec: 89:20:ae:10:53:f6:cb:c8:a6:6d:53:91:59:93:03:a9:a9:50: 17:69:96:db:fc:e6:9d:24:33:5e:c7:c7:b0:fb:84:88:68:42: 50:88:99:e9:7c:1d:e8:a1:16:6f:ba:96:af:bc:a6:34:49:d6: fc:59:14:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMP28IzoDqFOqhAdNNTNKqxtJ6TIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDA0MDE0WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2IwZjA3OTM1Mzg2YjE1N2VkYTRjNGNmMDYwMGE5MDA3 MmQ5MTEyNDljOTg2OTdmNDViMjEzMWFmZmJiZDczMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ4Qur3x8lqTVRBtOIkbKpvrtqpdJst4TVU3auAIlarv9J nTyKQrx2P31ZP3UkdYOE5ksAwg5vwQQAjjB2N2G8OCKyeSa8y5RZoIPOgpHZC9t+ ccJYT4WdmvyeD88A8BcTL7npTUi8CyibKzSrM/AkMKJEXTxjjXFr+zjggdJJ9FBR 74yI4R+/FJleCj6qFTI6FWKa/pF5B8DEqfzDuF5x0kE56sx3AtE1yDeCONuZRlyl kwGZzuZoPi1Bz50DvFdSzrPL3oJKLzQCkX/vkgIbtaBYZy6QnqcUTldWD99EqZvE XvQ+xlOFTCpNOfBgDWIZfmfar+GQahHotayYCvSJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUX/BBXHRO3m0JC7BmnOxtFWCTSVswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2NlMDM1MzE2LWEwNmUtNGI0OS1hMDRkLTBmMWE1Y2EzMTI0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBgwDQYJKoZIhvcNAQELBQADggEBAHuYs06+D1taM2WmpPBYFQqC C53kYz2jkltu4N7NbiqiH6Icd7ZcQKGms2ZdfOO9YeCv7m81qPeg6tf9diJ+MDXi ZeBPTEJQ8/rBKXLdjDpV2UUvlR/98uxIrPGLxPF59a2BNqIyhdLeuOHUuHIqF79O Nef3+dIvKPtdz+QoD9YLZbWTOFWxs748+9eclw1SBpRPpLSJylrkDsQsjjR1rjyh a9JdDNNHfeYWg4mLV4wvKiTps/dKdWrMq1qi3YfD/FsFag+47IkgrhBT9svIpm1T kVmTA6mpUBdpltv85p0kM17Hx7D7hIhoQlCImel8HeihFm+6lq+8pjRJ1vxZFKs= -----END CERTIFICATE-----Generated at Sat Apr 26 18:28:58 2025 by rpki-client