$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/0c492edd-c347-4b97-a816-01566f9d097b.roa File: 0c492edd-c347-4b97-a816-01566f9d097b.roa (raw, json) Hash identifier: HbMpEHKT1d+4YRvQvxp5GvQ7IbjOqHTzbYzzTh0bqKM= Subject key identifier: 8D:0D:1F:15:32:3D:5D:D9:51:02:60:2E:81:16:61:83:BD:91:DE:6C Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 723A2D1EC8D75FAA90199BAE5D4F1AB6A266CA1B Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/0c492edd-c347-4b97-a816-01566f9d097b.roa Signing time: Sat 22 Mar 2025 00:10:14 +0000 ROA not before: Sat 22 Mar 2025 00:10:14 +0000 ROA not after: Sat 26 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:3a:2d:1e:c8:d7:5f:aa:90:19:9b:ae:5d:4f:1a:b6:a2:66:ca:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Mar 22 00:10:14 2025 GMT Not After : Apr 26 23:59:59 2025 GMT Subject: CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:7b:4e:08:ed:1f:24:8e:a8:f5:20:4b:6c:0d: c6:94:97:14:77:58:7d:b7:5f:b8:9c:b7:02:5b:11: 5e:40:a5:9d:af:76:71:50:a4:27:7c:90:e1:19:61: bd:cb:2d:b6:21:d6:bb:1e:36:de:41:e6:7d:ff:04: ad:fa:39:dd:f6:8f:c0:20:fa:f2:ec:e1:7a:ef:62: aa:c8:4f:ae:1a:fe:3b:2a:dd:90:a6:f0:e2:c1:35: df:40:1c:ff:19:b8:06:19:3c:01:4f:22:7c:7b:cd: 53:e5:f2:5d:e6:47:b8:4f:b1:01:47:1a:92:ca:0b: 4b:9b:b9:f5:2f:ab:61:d3:4e:57:cc:78:f9:bb:ae: 82:35:87:97:c0:69:7f:af:ec:6e:e1:d7:19:d2:65: 94:eb:91:83:bf:37:83:84:e9:b0:a0:e8:55:0f:b2: 72:5e:f9:5d:be:37:dc:5f:bc:33:03:d0:df:b4:a6: 52:ad:df:f9:11:e0:cd:95:53:2e:db:76:06:e8:ea: f0:bb:80:e9:1d:ae:44:2a:e1:fa:ac:d3:bb:dc:eb: f7:1f:8d:d3:14:5d:ee:ab:f9:50:e0:93:53:ac:84: 90:8e:2e:4a:22:af:c5:9d:6a:5e:0f:50:8f:86:be: 44:8e:1c:69:5e:2f:17:cd:4b:08:47:09:92:59:83: cf:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0D:1F:15:32:3D:5D:D9:51:02:60:2E:81:16:61:83:BD:91:DE:6C X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/0c492edd-c347-4b97-a816-01566f9d097b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:8000::/39 Signature Algorithm: sha256WithRSAEncryption 32:a3:5c:46:22:cc:d7:89:aa:c7:73:8b:1a:d7:40:75:b4:2c: a6:2a:2a:1d:6b:02:2c:20:ef:2c:00:c4:24:85:cd:ef:cd:2d: b7:d0:3b:95:fa:66:1f:fc:59:85:9f:25:40:0c:89:45:d8:47: 84:ff:6d:fe:9c:df:18:83:1a:07:ef:77:66:92:83:3a:5d:7e: fd:0a:28:e8:89:f3:52:b4:72:d2:81:89:50:c1:6a:f5:d4:8e: 86:16:b5:d2:a7:ae:69:98:42:55:c7:5a:07:d2:aa:e0:82:af: 89:f1:28:58:7e:ed:20:7f:e4:ab:93:64:b5:06:bf:15:d0:9e: 97:80:09:5a:b3:a3:72:26:50:58:26:01:88:5a:b3:55:1b:4d: 2d:7f:43:e1:b0:3a:d0:df:c7:2a:42:dd:e3:44:24:71:a4:36: fc:d7:bc:e6:81:96:14:77:a5:91:3d:b7:dc:ee:ca:5c:a2:35: 04:27:78:0f:ad:b6:32:13:c8:98:a6:2d:5b:e0:82:02:d5:16: 94:3d:a9:60:4e:50:8c:3f:0f:03:f1:7c:c2:78:0b:41:69:ce: 71:da:b1:8b:19:92:e8:61:97:76:00:4e:0e:44:4c:08:8b:21: 7d:37:dc:c5:b3:2a:77:f7:b8:aa:19:c8:6b:b7:70:1f:0e:54: c6:4d:70:cf -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcjotHsjXX6qQGZuuXU8atqJmyhswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwMzIyMDAxMDE0WhcNMjUwNDI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjY3NGQzYWJjNTUyOTU4YzE0ZGVmNzcwY2QyZGZlMDFj ODIwODMyM2E2NjQ2ZDBlZGQwZTZhYTg4NzI1YzFhMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRe04I7R8kjqj1IEtsDcaUlxR3WH23X7ictwJbEV5ApZ2v dnFQpCd8kOEZYb3LLbYh1rseNt5B5n3/BK36Od32j8Ag+vLs4XrvYqrIT64a/jsq 3ZCm8OLBNd9AHP8ZuAYZPAFPInx7zVPl8l3mR7hPsQFHGpLKC0ubufUvq2HTTlfM ePm7roI1h5fAaX+v7G7h1xnSZZTrkYO/N4OE6bCg6FUPsnJe+V2+N9xfvDMD0N+0 plKt3/kR4M2VUy7bdgbo6vC7gOkdrkQq4fqs07vc6/cfjdMUXe6r+VDgk1OshJCO Lkoir8Wdal4PUI+GvkSOHGleLxfNSwhHCZJZg88xAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUjQ0fFTI9XdlRAmAugRZhg72R3mwwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzBjNDkyZWRkLWMzNDctNGI5Ny1hODE2LTAxNTY2ZjlkMDk3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AgDANBgkqhkiG9w0BAQsFAAOCAQEAMqNcRiLM14mqx3OLGtdAdbQs pioqHWsCLCDvLADEJIXN780tt9A7lfpmH/xZhZ8lQAyJRdhHhP9t/pzfGIMaB+93 ZpKDOl1+/Qoo6InzUrRy0oGJUMFq9dSOhha10qeuaZhCVcdaB9Kq4IKvifEoWH7t IH/kq5NktQa/FdCel4AJWrOjciZQWCYBiFqzVRtNLX9D4bA60N/HKkLd40QkcaQ2 /Ne85oGWFHelkT233O7KXKI1BCd4D622MhPImKYtW+CCAtUWlD2pYE5QjD8PA/F8 wngLQWnOcdqxixmS6GGXdgBODkRMCIshfTfcxbMqd/e4qhnIa7dwHw5Uxk1wzw== -----END CERTIFICATE-----Generated at Sat Apr 5 11:05:37 2025 by rpki-client