$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e2efdf3b-dc09-4793-a9e7-fac601e5bcc6.roa File: e2efdf3b-dc09-4793-a9e7-fac601e5bcc6.roa (raw, json) Hash identifier: 1ILRTuIBwd0Ouu/Fi+6U3S6Br3vlZ+gBLfXAPTcaVZY= Subject key identifier: 5C:33:F9:92:04:17:5B:15:58:4B:05:03:20:97:B5:4E:3B:4D:2B:F8 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 29D5E853A5882CEDC8AD9453B672574789B6FBD0 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e2efdf3b-dc09-4793-a9e7-fac601e5bcc6.roa Signing time: Fri 11 Apr 2025 00:40:46 +0000 ROA not before: Fri 11 Apr 2025 00:40:46 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c1d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d5:e8:53:a5:88:2c:ed:c8:ad:94:53:b6:72:57:47:89:b6:fb:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:40:46 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=a2c61f53f98606dd085a8cb81e4c14f18a0219a48206b056e3a424fd98b4aebc, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:21:0d:29:17:f2:a5:08:b4:1e:f3:7d:7f: ac:73:38:ea:29:65:c9:5b:c3:ae:f8:a4:48:93:dc: 2b:db:00:ce:f7:0d:71:a5:17:51:0f:0d:dd:43:59: 57:6c:d5:5c:ea:f9:d6:b7:b4:69:60:17:ef:3b:0b: 30:c7:0a:40:75:43:b0:8d:b9:2c:0b:6e:58:f4:76: ee:ef:8c:7f:ef:b3:38:28:fb:de:f0:5a:a8:f2:9c: 85:c4:03:24:3c:59:54:b8:92:91:50:3f:c0:43:6b: fd:f9:d5:6e:09:e7:71:f9:4a:1a:72:2d:b8:c7:81: 44:7f:ac:4c:f3:47:b0:00:51:67:be:42:ed:71:5c: dd:87:e9:bb:e2:fe:00:90:59:ab:cc:06:92:3e:6e: f8:74:b3:61:7d:a5:1a:b1:0e:43:92:30:b6:4c:ec: 27:a8:df:be:1e:49:39:a2:18:11:21:17:8d:5a:4c: 3b:2d:6e:aa:e3:c8:7f:7c:20:32:7f:b7:76:d1:f9: fc:80:bb:e5:f8:94:a1:a4:c3:51:85:3e:de:84:e1: 77:67:ca:4e:2a:e5:42:f6:3d:0b:4d:46:fc:22:35: c1:f2:80:15:2f:61:bb:5f:29:ee:96:59:37:69:43: 06:f1:e4:79:b5:54:f0:05:28:e1:40:7f:99:0f:4e: 11:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:33:F9:92:04:17:5B:15:58:4B:05:03:20:97:B5:4E:3B:4D:2B:F8 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e2efdf3b-dc09-4793-a9e7-fac601e5bcc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1d::/48 Signature Algorithm: sha256WithRSAEncryption 94:2a:e2:e6:88:9d:f7:d7:f1:64:1f:2f:77:b9:6b:4f:b2:cd: 49:e5:8a:2a:2a:f9:05:ee:10:61:51:37:ed:41:d8:b6:3d:e2: 6c:52:f1:44:65:e0:24:82:60:07:b9:e5:eb:bc:03:8a:11:37: b3:9b:d3:4a:41:5c:c0:83:5c:78:9f:44:17:2f:77:85:16:02: b2:02:70:9c:0d:72:2a:bf:72:09:e6:b6:ef:85:50:f0:0c:e8: 32:7a:c0:ea:05:d1:d0:37:7f:a1:fe:1a:32:14:fa:d5:df:73: 13:be:35:5b:8b:1c:7d:cc:59:d0:21:00:67:53:80:c4:f6:aa: d6:8d:91:9b:4a:6e:e3:9c:24:94:06:80:aa:24:d6:14:d3:aa: 37:9f:d5:38:05:a0:c0:29:5a:e9:c1:07:d7:70:da:39:b3:e5: 34:67:f1:26:73:48:f8:fe:ef:25:d1:57:0c:f2:fd:39:20:9f: fd:a4:a4:18:dc:12:a2:54:5c:6a:9e:5f:3b:8f:f3:37:55:1d: 63:48:49:cb:28:2d:bf:7c:2f:e8:f9:09:0c:c3:5d:65:eb:60: da:f5:f4:d7:56:8e:fe:58:68:71:10:8a:75:b8:71:be:6f:b2: 1d:42:79:e6:48:b2:b1:65:b2:29:e6:12:3e:67:fc:9c:8a:9d: 71:90:c6:aa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKdXoU6WILO3IrZRTtnJXR4m2+9AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDA0MDQ2WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmM2MWY1M2Y5ODYwNmRkMDg1YThjYjgxZTRjMTRmMThh MDIxOWE0ODIwNmIwNTZlM2E0MjRmZDk4YjRhZWJjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpSiENKRfypQi0HvN9f6xzOOopZclbw674pEiT3CvbAM73 DXGlF1EPDd1DWVds1Vzq+da3tGlgF+87CzDHCkB1Q7CNuSwLblj0du7vjH/vszgo +97wWqjynIXEAyQ8WVS4kpFQP8BDa/351W4J53H5ShpyLbjHgUR/rEzzR7AAUWe+ Qu1xXN2H6bvi/gCQWavMBpI+bvh0s2F9pRqxDkOSMLZM7Ceo374eSTmiGBEhF41a TDstbqrjyH98IDJ/t3bR+fyAu+X4lKGkw1GFPt6E4Xdnyk4q5UL2PQtNRvwiNcHy gBUvYbtfKe6WWTdpQwbx5Hm1VPAFKOFAf5kPThFlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXDP5kgQXWxVYSwUDIJe1TjtNK/gwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2UyZWZkZjNiLWRjMDktNDc5My1hOWU3LWZhYzYwMWU1YmNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADB0wDQYJKoZIhvcNAQELBQADggEBAJQq4uaInffX8WQfL3e5a0+y zUnliioq+QXuEGFRN+1B2LY94mxS8URl4CSCYAe55eu8A4oRN7Ob00pBXMCDXHif RBcvd4UWArICcJwNciq/cgnmtu+FUPAM6DJ6wOoF0dA3f6H+GjIU+tXfcxO+NVuL HH3MWdAhAGdTgMT2qtaNkZtKbuOcJJQGgKok1hTTqjef1TgFoMApWunBB9dw2jmz 5TRn8SZzSPj+7yXRVwzy/Tkgn/2kpBjcEqJUXGqeXzuP8zdVHWNIScsoLb98L+j5 CQzDXWXrYNr19NdWjv5YaHEQinW4cb5vsh1CeeZIsrFlsinmEj5n/JyKnXGQxqo= -----END CERTIFICATE-----Generated at Sat Apr 26 15:54:29 2025 by rpki-client