$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ff229562-e0c9-44bf-a77e-2ec96437b59b.roa File: ff229562-e0c9-44bf-a77e-2ec96437b59b.roa (raw, json) Hash identifier: Shcpjv0+KuemVVxfMmISzo+LlZkKpNoteaj55D4qLto= Subject key identifier: 06:44:99:B3:DF:DC:6E:58:A4:6A:AF:5E:CE:E9:7F:24:2C:EA:A1:D6 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4784C576842DCA32FDC13D3FF1E2AC3C0C83350B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ff229562-e0c9-44bf-a77e-2ec96437b59b.roa Signing time: Fri 11 Apr 2025 00:30:14 +0000 ROA not before: Fri 11 Apr 2025 00:30:14 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:84:c5:76:84:2d:ca:32:fd:c1:3d:3f:f1:e2:ac:3c:0c:83:35:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:30:14 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=95d04ff1f9eed02ae438997dadd518a4830c450f5abf4491bce44e34323328b7, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8b:63:01:ba:f0:86:5d:3f:2b:5f:a4:64:a1: c4:d8:64:63:1f:15:3f:5d:4c:71:bc:e6:2e:af:5e: 10:2e:1c:94:4e:c5:39:0f:1d:7b:5b:76:73:8d:d6: bf:23:ae:aa:62:f0:19:85:e9:45:61:3e:8d:94:e0: a7:54:97:3c:31:7f:35:92:74:5b:81:33:55:80:1a: a4:c1:a2:90:25:5c:9e:4c:e2:fe:11:ba:d5:05:8f: 22:d5:e9:cb:94:a9:9e:ba:c5:68:85:f3:84:67:b3: 7d:d1:13:a7:83:e5:2c:9a:af:ce:2d:1f:6a:85:b2: c7:85:c9:18:46:d3:ea:b4:b8:a0:8e:be:89:1b:0f: bd:c7:48:f4:db:8b:2e:4f:66:bb:21:cb:55:eb:70: 54:5a:bf:18:10:82:f7:52:f0:d1:b1:ac:08:94:2b: 1b:33:3d:03:dd:ff:74:2a:25:54:70:eb:dc:30:00: 01:d2:1e:2b:84:3c:69:5c:1b:28:dc:c6:e7:31:e8: e2:e9:8f:95:3d:ac:4a:44:9b:f1:9e:94:a0:6d:55: 32:9f:0c:ba:5f:9a:f2:86:67:5d:1a:83:26:c5:e7: a7:1a:55:db:ef:ea:23:1a:30:dc:3c:15:a8:7f:54: a4:ac:24:c8:a0:98:75:5d:63:75:6d:b3:4b:60:10: f5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:44:99:B3:DF:DC:6E:58:A4:6A:AF:5E:CE:E9:7F:24:2C:EA:A1:D6 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ff229562-e0c9-44bf-a77e-2ec96437b59b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c01::/48 Signature Algorithm: sha256WithRSAEncryption 11:61:7c:9b:33:be:9e:c3:b0:84:df:e3:4a:aa:fd:b8:08:70: 35:22:f2:87:e2:86:97:f8:85:dc:dd:41:64:42:70:fb:15:32: 36:6c:de:15:0b:0f:35:9d:96:36:be:b3:9a:d4:d5:a3:41:89: ea:10:62:16:c8:ce:34:e8:ca:43:5c:6c:36:a0:7c:01:b4:10: 23:a1:b6:83:ba:c8:41:b1:b1:96:e0:3d:69:9c:85:6b:99:3c: 50:50:bf:aa:44:3c:d3:8a:44:89:ee:03:df:a2:db:6d:05:e3: 3a:0c:c5:f8:86:54:14:d9:c1:b0:04:91:b7:b8:ea:f1:62:82: 67:48:59:35:c4:fe:74:08:c3:54:df:41:d0:02:00:92:a0:c8: d0:42:d6:36:88:cd:f4:5f:7b:69:c2:da:77:29:b8:f3:d7:37: c9:07:a6:f7:79:73:f3:dc:e1:b5:6f:76:05:7a:2d:b9:a8:0c: 2c:84:22:a4:91:f9:93:d8:9f:d9:b0:fa:ea:f1:70:ad:47:c3: a9:43:35:31:93:4f:8e:f1:d2:f8:2a:7f:c0:57:69:62:62:ac: 11:63:6a:14:a7:c1:58:2c:9f:3d:4e:ed:da:95:5f:1b:48:c4: 06:58:55:80:87:c2:cf:44:44:6b:30:77:f0:84:54:8c:28:75: 97:99:4e:df -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR4TFdoQtyjL9wT0/8eKsPAyDNQswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAzMDE0WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWQwNGZmMWY5ZWVkMDJhZTQzODk5N2RhZGQ1MThhNDgz MGM0NTBmNWFiZjQ0OTFiY2U0NGUzNDMyMzMyOGI3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGi2MBuvCGXT8rX6RkocTYZGMfFT9dTHG85i6vXhAuHJRO xTkPHXtbdnON1r8jrqpi8BmF6UVhPo2U4KdUlzwxfzWSdFuBM1WAGqTBopAlXJ5M 4v4RutUFjyLV6cuUqZ66xWiF84Rns33RE6eD5Syar84tH2qFsseFyRhG0+q0uKCO vokbD73HSPTbiy5PZrshy1XrcFRavxgQgvdS8NGxrAiUKxszPQPd/3QqJVRw69ww AAHSHiuEPGlcGyjcxucx6OLpj5U9rEpEm/GelKBtVTKfDLpfmvKGZ10agybF56ca Vdvv6iMaMNw8Fah/VKSsJMigmHVdY3Vts0tgEPVrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBkSZs9/cblikaq9ezul/JCzqodYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2ZmMjI5NTYyLWUwYzktNDRiZi1hNzdlLTJlYzk2NDM3YjU5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAEwDQYJKoZIhvcNAQELBQADggEBABFhfJszvp7DsITf40qq/bgI cDUi8ofihpf4hdzdQWRCcPsVMjZs3hULDzWdlja+s5rU1aNBieoQYhbIzjToykNc bDagfAG0ECOhtoO6yEGxsZbgPWmchWuZPFBQv6pEPNOKRInuA9+i220F4zoMxfiG VBTZwbAEkbe46vFigmdIWTXE/nQIw1TfQdACAJKgyNBC1jaIzfRfe2nC2ncpuPPX N8kHpvd5c/Pc4bVvdgV6LbmoDCyEIqSR+ZPYn9mw+urxcK1Hw6lDNTGTT47x0vgq f8BXaWJirBFjahSnwVgsnz1O7dqVXxtIxAZYVYCHws9ERGswd/CEVIwodZeZTt8= -----END CERTIFICATE-----Generated at Sun Apr 27 03:36:55 2025 by rpki-client