$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f73b34f7-01b4-474f-a473-362785b20779.roa File: f73b34f7-01b4-474f-a473-362785b20779.roa (raw, json) Hash identifier: l2qv9D/CC4yKxeOJFPwckwLVlptUoWhCcVeR1WSEzzM= Subject key identifier: 90:BC:72:65:CC:97:A7:06:FF:1D:E2:47:7D:4A:5D:58:FD:23:A3:83 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 225853EC24D3365DD8041C8D0E4879DD2B0A14AC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f73b34f7-01b4-474f-a473-362785b20779.roa Signing time: Fri 11 Apr 2025 00:40:20 +0000 ROA not before: Fri 11 Apr 2025 00:40:20 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c1a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:58:53:ec:24:d3:36:5d:d8:04:1c:8d:0e:48:79:dd:2b:0a:14:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:40:20 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=4245163ae7a5bf88132b78eec76479b26becb1f26cfb808e823d9a46acd13654, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5c:2f:65:ea:20:55:3e:48:5d:ef:64:7c:51: 73:be:ba:1f:7f:99:1c:a9:3b:6b:35:8d:3b:ca:09: c3:71:37:3c:a0:c9:2e:4a:ab:29:80:90:ba:0f:81: 48:ce:14:02:23:4f:d3:cf:4d:10:30:f6:e1:e2:d7: e3:b5:0e:2a:dd:4d:20:e0:9a:3f:e9:73:c3:7c:53: 02:45:f5:c1:12:8e:b1:b1:37:3f:bc:0d:65:63:07: 9e:e6:b4:95:01:62:bb:5f:f9:c3:9b:ab:c7:84:95: d5:4e:b1:87:60:74:3a:74:ac:9d:8f:8c:fe:77:3a: 8a:c8:00:94:93:fe:92:67:22:08:99:f9:4c:5b:96: e0:94:2c:86:a3:ba:00:e0:5a:b3:0e:a1:62:59:f9: d4:a0:75:6f:3d:cd:d1:c9:95:8b:49:12:51:d1:0d: 9b:16:7d:f1:e4:6a:34:4e:fe:eb:26:4b:6d:97:70: 41:c9:20:b6:40:63:21:f2:11:ae:8b:ce:2b:fb:84: 9d:9c:7b:66:21:0d:ca:45:84:d1:e4:ea:ac:46:01: c7:46:92:72:12:ed:1e:e8:ca:c2:9b:45:67:fa:cf: f8:0f:39:7f:75:ad:c4:d8:ae:65:13:c0:0d:93:41: d3:a2:be:d1:f1:88:4c:b9:d7:1e:a7:01:9f:3a:d2: af:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:BC:72:65:CC:97:A7:06:FF:1D:E2:47:7D:4A:5D:58:FD:23:A3:83 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f73b34f7-01b4-474f-a473-362785b20779.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1a::/48 Signature Algorithm: sha256WithRSAEncryption 5b:5d:be:a7:a0:d7:6a:6f:09:10:60:c9:df:4f:6a:c5:ea:86: 4c:c4:cc:09:39:7f:88:9a:04:fa:cc:d2:7e:84:78:d6:e6:86: b0:7d:fc:f4:4a:89:7d:29:34:dd:ea:11:7a:97:5f:45:0b:14: ac:59:f1:ed:93:f4:87:87:28:b9:27:63:d6:bf:f8:15:9c:73: 99:e1:79:74:24:83:08:a5:d7:c7:ee:16:06:58:31:28:10:a2: 36:63:84:5c:2f:0c:7b:d5:1d:b5:a8:b4:e3:96:ac:e1:ee:3f: 92:cf:ba:82:79:f7:98:9a:aa:1e:3f:9b:dd:e2:53:69:fd:61: 24:9d:c4:f7:bd:3c:00:5b:b5:b0:36:29:f4:a6:48:30:ef:34: 06:ed:5b:27:37:01:87:b2:1b:47:41:65:b0:8f:cd:24:57:85: 2b:4f:04:8f:65:32:ed:c1:1d:d8:dd:f7:03:37:62:d2:90:31: 64:f6:e1:47:36:6d:ad:05:a8:cc:3a:99:3e:f7:64:23:8f:43: b6:c6:6a:cb:bb:7b:f7:7c:19:03:ab:12:80:fd:2d:fb:be:d1: 25:67:7c:a7:0e:e5:12:e2:3c:b0:3e:1c:ec:5e:db:8c:33:2e: 24:68:64:00:f8:1d:d5:5a:21:cb:05:79:23:5c:ca:de:3b:64: d4:0e:e3:36 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIlhT7CTTNl3YBByNDkh53SsKFKwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDA0MDIwWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjQ1MTYzYWU3YTViZjg4MTMyYjc4ZWVjNzY0NzliMjZi ZWNiMWYyNmNmYjgwOGU4MjNkOWE0NmFjZDEzNjU0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNXC9l6iBVPkhd72R8UXO+uh9/mRypO2s1jTvKCcNxNzyg yS5KqymAkLoPgUjOFAIjT9PPTRAw9uHi1+O1DirdTSDgmj/pc8N8UwJF9cESjrGx Nz+8DWVjB57mtJUBYrtf+cObq8eEldVOsYdgdDp0rJ2PjP53OorIAJST/pJnIgiZ +UxbluCULIajugDgWrMOoWJZ+dSgdW89zdHJlYtJElHRDZsWffHkajRO/usmS22X cEHJILZAYyHyEa6Lziv7hJ2ce2YhDcpFhNHk6qxGAcdGknIS7R7oysKbRWf6z/gP OX91rcTYrmUTwA2TQdOivtHxiEy51x6nAZ860q/fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkLxyZcyXpwb/HeJHfUpdWP0jo4MwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Y3M2IzNGY3LTAxYjQtNDc0Zi1hNDczLTM2Mjc4NWIyMDc3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBowDQYJKoZIhvcNAQELBQADggEBAFtdvqeg12pvCRBgyd9PasXq hkzEzAk5f4iaBPrM0n6EeNbmhrB9/PRKiX0pNN3qEXqXX0ULFKxZ8e2T9IeHKLkn Y9a/+BWcc5nheXQkgwil18fuFgZYMSgQojZjhFwvDHvVHbWotOOWrOHuP5LPuoJ5 95iaqh4/m93iU2n9YSSdxPe9PABbtbA2KfSmSDDvNAbtWyc3AYeyG0dBZbCPzSRX hStPBI9lMu3BHdjd9wM3YtKQMWT24Uc2ba0FqMw6mT73ZCOPQ7bGasu7e/d8GQOr EoD9Lfu+0SVnfKcO5RLiPLA+HOxe24wzLiRoZAD4HdVaIcsFeSNcyt47ZNQO4zY= -----END CERTIFICATE-----Generated at Sun Apr 27 12:09:16 2025 by rpki-client