$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3191e88d-746d-41d2-84db-9fc65334e5a8.roa File: 3191e88d-746d-41d2-84db-9fc65334e5a8.roa (raw, json) Hash identifier: w7CVfkp+1zgiPXTU5bLJBzgYr1yX4waaJBn3fG8dg1k= Subject key identifier: 67:5C:A9:2B:30:F1:11:A7:62:23:04:26:7D:FF:37:70:D0:56:62:5F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 212FCD15B559853DD5114DBBA2086486AA4CC4AB Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3191e88d-746d-41d2-84db-9fc65334e5a8.roa Signing time: Tue 01 Apr 2025 00:40:13 +0000 ROA not before: Tue 01 Apr 2025 00:40:13 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:100::/42 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2f:cd:15:b5:59:85:3d:d5:11:4d:bb:a2:08:64:86:aa:4c:c4:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 00:40:13 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ab:86:73:df:1e:ae:ce:96:ca:e4:09:53:99: 5b:69:92:14:ea:2e:e6:e8:67:6d:ea:ef:89:b0:01: 12:d5:da:d3:bf:dd:bf:f2:ec:98:a7:c0:c4:9d:d0: 39:8c:f9:48:fa:db:14:48:13:32:5a:97:3c:7e:cc: 8e:7c:84:54:41:6f:48:7c:04:15:00:60:ef:eb:29: d3:80:0a:6f:5d:be:93:42:d9:d5:96:49:f5:d0:a5: 3a:16:af:c4:7f:7f:da:b6:8c:b1:c3:aa:4a:4b:78: 8f:b1:47:67:81:55:a5:d9:ee:32:c2:39:fe:e6:d9: 4e:25:03:5a:76:e0:dd:e6:45:89:a1:6a:66:08:05: 96:3a:aa:1c:ff:57:43:5f:26:5c:63:a3:b6:5b:78: c5:52:a4:da:1f:3a:47:55:73:cc:2c:75:d1:29:8d: eb:b2:1b:b7:12:4c:30:59:0a:56:fa:78:19:8e:6b: b1:fa:e3:04:0d:c0:99:88:ec:85:3d:18:ad:8c:bc: ac:af:af:40:6b:90:f3:5c:c2:43:e3:4a:d9:36:15: 96:de:dc:b1:91:f1:20:83:1c:02:fc:ac:e5:81:59: 57:0a:f6:1e:c5:bb:5f:8b:34:d1:42:6c:7a:e1:8b: 9c:80:be:29:6f:5b:92:5d:58:9d:d7:bb:94:9e:12: fc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:5C:A9:2B:30:F1:11:A7:62:23:04:26:7D:FF:37:70:D0:56:62:5F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3191e88d-746d-41d2-84db-9fc65334e5a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:100::/42 Signature Algorithm: sha256WithRSAEncryption 92:7f:27:bc:36:50:fc:99:1f:a0:bd:1f:ac:52:1d:c3:fa:cc: 1c:62:8a:34:68:a4:93:11:89:82:24:e5:48:27:c7:d9:9e:cf: 99:f5:c4:bd:f3:1c:dc:5f:08:08:3b:6f:97:ef:0c:8a:c7:a6: 3c:df:7e:5d:fd:98:bc:f0:b0:15:b4:11:61:d9:7b:97:5e:22: 47:84:43:20:0d:e5:3b:b1:af:6f:79:cf:77:36:bd:b2:2c:ec: bc:5d:98:5a:2d:1a:a5:9d:b8:19:bd:43:9a:c9:d8:f4:b5:a0: d1:1c:45:87:48:10:1a:f3:81:4f:9c:7f:30:1f:e7:76:c7:12: 72:9f:c8:b5:f5:70:bc:a1:d4:9a:18:0a:ea:77:b8:b1:1e:d7: 05:5a:e7:ec:7b:16:2f:4b:76:12:4f:9c:cd:f5:10:d2:08:ca: 97:3e:2f:a7:1f:d0:24:c2:49:e1:d2:c6:6e:38:df:b7:4d:c0: b6:9c:23:35:e7:99:f1:fe:5a:7d:a5:78:c6:43:6f:81:5a:42: 2d:4d:c9:8e:e7:2c:05:f2:09:a6:69:4c:29:9f:f1:36:16:43: 32:08:eb:43:ac:5e:f1:db:fe:85:8d:bc:a9:4d:0f:af:36:eb: 42:d8:92:3e:7e:dc:cb:53:9a:c9:ac:fa:eb:dc:be:b8:d7:22: 7d:08:ee:60 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIS/NFbVZhT3VEU27oghkhqpMxKswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMDA0MDEzWhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDA2OGIzYmYzMWUzZjQ3YTJjNzJhYWMyNmMyODU0Y2I3 NjZiMjFlZjIyMjIxMzQ1Mjc5MjliNjljODZhNzlmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD7q4Zz3x6uzpbK5AlTmVtpkhTqLuboZ23q74mwARLV2tO/ 3b/y7JinwMSd0DmM+Uj62xRIEzJalzx+zI58hFRBb0h8BBUAYO/rKdOACm9dvpNC 2dWWSfXQpToWr8R/f9q2jLHDqkpLeI+xR2eBVaXZ7jLCOf7m2U4lA1p24N3mRYmh amYIBZY6qhz/V0NfJlxjo7ZbeMVSpNofOkdVc8wsddEpjeuyG7cSTDBZClb6eBmO a7H64wQNwJmI7IU9GK2MvKyvr0BrkPNcwkPjStk2FZbe3LGR8SCDHAL8rOWBWVcK 9h7Fu1+LNNFCbHrhi5yAvilvW5JdWJ3Xu5SeEvwzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ1ypKzDxEadiIwQmff83cNBWYl8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzMxOTFlODhkLTc0NmQtNDFkMi04NGRiLTlmYzY1MzM0ZTVhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmBZzAAQAwDQYJKoZIhvcNAQELBQADggEBAJJ/J7w2UPyZH6C9H6xSHcP6 zBxiijRopJMRiYIk5Ugnx9mez5n1xL3zHNxfCAg7b5fvDIrHpjzffl39mLzwsBW0 EWHZe5deIkeEQyAN5Tuxr295z3c2vbIs7LxdmFotGqWduBm9Q5rJ2PS1oNEcRYdI EBrzgU+cfzAf53bHEnKfyLX1cLyh1JoYCup3uLEe1wVa5+x7Fi9LdhJPnM31ENII ypc+L6cf0CTCSeHSxm4437dNwLacIzXnmfH+Wn2leMZDb4FaQi1NyY7nLAXyCaZp TCmf8TYWQzII60OsXvHb/oWNvKlND68260LYkj5+3MtTmsms+uvcvrjXIn0I7mA= -----END CERTIFICATE-----Generated at Sat Apr 5 07:26:13 2025 by rpki-client