$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e7607360-6fe5-44db-bbe5-edd1b127da54.roa File: e7607360-6fe5-44db-bbe5-edd1b127da54.roa (raw, json) Hash identifier: geKw2R6DoGywM3bzgBHb6ldhCJMi4/9TeABwaSy98Ik= Subject key identifier: 5B:12:50:08:FA:B7:D0:48:75:E8:05:EF:EE:3C:CB:C1:A8:AF:66:A9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 45F7F6369521812934C5B0EF203E1F0F5AC9387F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e7607360-6fe5-44db-bbe5-edd1b127da54.roa Signing time: Fri 25 Apr 2025 17:40:06 +0000 ROA not before: Fri 25 Apr 2025 17:40:06 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:f03d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:f7:f6:36:95:21:81:29:34:c5:b0:ef:20:3e:1f:0f:5a:c9:38:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:40:06 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=06dd36c3d0770629872e8e116d55da052946509b6510cc742b9d7fce1fcadc99, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6d:04:83:f3:56:6c:0a:33:6a:df:f9:e8:4c: ba:a5:3e:22:af:4f:8f:cb:f2:0f:69:a5:db:c2:49: ed:27:03:09:27:4a:2c:6d:f0:fe:7c:f9:c5:3f:b5: fa:de:a5:75:d2:be:81:df:54:b3:b3:e6:02:e7:18: f1:41:a9:b5:3c:e9:7a:6a:f6:87:8d:e6:04:5c:1c: 2f:56:73:31:bf:18:6b:78:a1:de:80:ef:b3:63:5c: 01:0f:55:e6:ab:f3:97:46:11:e8:13:b9:1d:31:7f: 50:1d:61:93:4d:cd:21:c0:72:40:cb:4d:50:f0:a6: 11:6a:ff:db:3d:52:15:53:ef:be:79:de:5b:1e:e1: 3b:e9:b5:f1:c3:0f:00:a2:2f:93:3f:f2:96:84:eb: 3e:13:f9:1a:9a:a4:49:df:e2:fd:76:c2:de:ef:4d: 74:9f:19:bc:cf:90:5d:97:9d:96:65:41:42:3d:3f: c5:0c:76:8e:dc:f6:ee:e1:5f:95:54:53:53:2f:89: 76:90:d6:5e:8b:de:55:b0:d0:14:1e:4a:74:7b:0c: a5:d3:bd:a5:eb:fc:c2:2b:6a:a3:ab:c4:e6:f7:4a: f2:aa:0c:8f:39:c3:11:7f:50:e8:07:a7:68:c3:94: a4:6c:cb:d4:6f:91:91:93:59:8c:ce:2c:08:c7:37: 1f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:12:50:08:FA:B7:D0:48:75:E8:05:EF:EE:3C:CB:C1:A8:AF:66:A9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e7607360-6fe5-44db-bbe5-edd1b127da54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03d::/48 Signature Algorithm: sha256WithRSAEncryption a3:ea:a6:80:a7:99:2d:e2:01:62:44:b6:08:73:6b:fb:e8:48: e2:2c:4c:a5:f5:69:2b:96:ff:c8:76:3e:a8:7c:51:7d:c7:e0: 69:02:1d:e3:c1:97:cd:97:5d:31:55:43:7a:1a:d1:5c:eb:75: 8e:c2:31:3d:5f:78:9e:e2:c5:04:3f:bf:1e:59:32:78:3f:bb: 04:f3:c9:0b:d8:aa:ca:70:28:76:f3:22:9a:9d:ea:79:90:c2: 76:f9:5d:43:56:d8:a7:e7:d9:18:97:d4:b8:18:63:35:94:43: 0c:21:9b:11:3f:07:3e:b3:8a:e9:43:d2:99:16:de:1d:48:a2: 4d:34:75:1f:69:d9:3b:4c:09:ce:22:29:7a:5a:22:d2:ea:52: 88:f8:25:2e:64:51:44:47:1e:2d:27:64:b2:1b:7a:5f:0f:17: 9d:69:ef:73:d3:13:4d:90:96:1d:c2:76:87:6a:fe:5c:f7:40: f4:23:8a:f2:89:06:16:96:83:7b:d2:5b:f6:37:b6:c9:9c:7b: c3:79:b9:2c:c6:45:b3:51:ab:ce:c6:e0:16:ca:5a:1e:dc:b2: 33:aa:2c:c8:05:d3:1f:07:d5:00:e6:8f:99:91:06:14:05:49: 2d:ac:ee:ce:4d:6e:39:49:dc:94:e2:a4:2e:b0:aa:44:91:47: 9d:55:ed:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURff2NpUhgSk0xbDvID4fD1rJOH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTc0MDA2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmRkMzZjM2QwNzcwNjI5ODcyZThlMTE2ZDU1ZGEwNTI5 NDY1MDliNjUxMGNjNzQyYjlkN2ZjZTFmY2FkYzk5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDubQSD81ZsCjNq3/noTLqlPiKvT4/L8g9ppdvCSe0nAwkn Sixt8P58+cU/tfrepXXSvoHfVLOz5gLnGPFBqbU86Xpq9oeN5gRcHC9WczG/GGt4 od6A77NjXAEPVear85dGEegTuR0xf1AdYZNNzSHAckDLTVDwphFq/9s9UhVT7755 3lse4TvptfHDDwCiL5M/8paE6z4T+RqapEnf4v12wt7vTXSfGbzPkF2XnZZlQUI9 P8UMdo7c9u7hX5VUU1MviXaQ1l6L3lWw0BQeSnR7DKXTvaXr/MIraqOrxOb3SvKq DI85wxF/UOgHp2jDlKRsy9RvkZGTWYzOLAjHNx8pAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWxJQCPq30Eh16AXv7jzLwaivZqkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U3NjA3MzYwLTZmZTUtNDRkYi1iYmU1LWVkZDFiMTI3ZGE1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D0wDQYJKoZIhvcNAQELBQADggEBAKPqpoCnmS3iAWJEtghza/vo SOIsTKX1aSuW/8h2Pqh8UX3H4GkCHePBl82XXTFVQ3oa0VzrdY7CMT1feJ7ixQQ/ vx5ZMng/uwTzyQvYqspwKHbzIpqd6nmQwnb5XUNW2Kfn2RiX1LgYYzWUQwwhmxE/ Bz6ziulD0pkW3h1Iok00dR9p2TtMCc4iKXpaItLqUoj4JS5kUURHHi0nZLIbel8P F51p73PTE02Qlh3Cdodq/lz3QPQjivKJBhaWg3vSW/Y3tsmce8N5uSzGRbNRq87G 4BbKWh7csjOqLMgF0x8H1QDmj5mRBhQFSS2s7s5NbjlJ3JTipC6wqkSRR51V7WY= -----END CERTIFICATE-----Generated at Sat Apr 26 18:29:50 2025 by rpki-client