$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86af0cc4-d9cd-4257-a45a-89c1f975bf72.roa File: 86af0cc4-d9cd-4257-a45a-89c1f975bf72.roa (raw, json) Hash identifier: QxXYSN1H1v9y1lapgCnVMjK9UgFx6T1UXstrdo9CjJU= Subject key identifier: B4:0F:61:89:5A:B3:8A:A4:48:43:DC:28:7D:67:32:6F:D8:0D:3C:19 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3C24D80C95CA413102C6C9A44A3A5DE6E426067E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86af0cc4-d9cd-4257-a45a-89c1f975bf72.roa Signing time: Mon 17 Mar 2025 15:31:04 +0000 ROA not before: Mon 17 Mar 2025 15:31:04 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c0c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:24:d8:0c:95:ca:41:31:02:c6:c9:a4:4a:3a:5d:e6:e4:26:06:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 17 15:31:04 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:46:67:5f:ae:53:7c:0e:54:1a:ee:80:f0:d3: 1b:91:d0:ca:c7:e2:08:99:00:61:4b:ca:6d:a5:00: d1:59:a7:5c:09:ce:33:5f:41:89:3d:f5:71:2d:4d: 92:e6:b1:5a:da:3e:33:11:26:06:3b:9b:65:6a:49: 4f:d5:96:7b:71:6f:36:f2:64:bb:a8:d8:24:a9:1d: 4e:a6:3b:5e:25:0b:83:aa:a3:c9:4d:ae:7e:ad:8e: dd:62:8c:8e:c4:19:3a:04:e5:5f:c7:14:3f:1b:f2: 3e:98:94:d3:bb:69:d9:4a:4a:8f:b1:ec:7f:66:c8: 2f:31:f2:60:20:f8:25:d2:f3:63:69:3e:89:22:c9: 54:b7:ae:00:00:1d:3a:a9:54:5d:de:7b:01:84:42: 1e:c0:43:d6:4a:78:8e:13:f2:15:4a:ed:99:9d:0f: fc:51:2a:aa:e0:6a:01:82:4a:b4:15:07:46:ff:da: 30:0f:1c:9a:a9:42:6b:79:74:15:32:52:5f:35:dd: d4:66:85:7b:ec:08:38:bc:d8:70:9f:48:ec:ac:09: 7a:9e:c5:ed:62:6a:44:74:83:65:cd:e1:16:7b:2c: 43:8a:d6:20:86:47:93:df:d3:32:d3:55:f1:64:bf: 31:4e:a0:c3:cc:c2:09:db:e4:ef:5f:f5:dd:70:3c: 9c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:0F:61:89:5A:B3:8A:A4:48:43:DC:28:7D:67:32:6F:D8:0D:3C:19 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86af0cc4-d9cd-4257-a45a-89c1f975bf72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0c::/48 Signature Algorithm: sha256WithRSAEncryption 28:44:35:a9:f8:18:1e:54:61:7b:1b:af:48:4d:71:8c:9d:78: 18:4c:35:5d:dc:c1:22:d1:26:9f:0d:8e:68:f3:e5:c2:d5:c0: d5:b8:90:c6:42:fd:9f:e0:9a:d6:6d:e0:a2:01:26:f0:7a:49: d4:72:52:32:30:b1:60:6e:44:7f:81:ce:09:e9:22:f0:ab:88: 7c:18:61:00:84:b3:1a:3a:d6:31:e6:d4:26:f1:e2:ab:5f:17: e3:7f:60:6b:b5:b2:e4:70:19:5e:98:af:1a:d0:3d:f4:03:de: 19:0d:e6:4e:5a:cc:5e:57:3c:2e:19:ad:91:43:14:57:3f:f3: 6f:3b:2e:5b:29:02:3c:30:9e:25:21:31:15:b0:61:a4:a0:00: d6:2b:65:09:9c:68:2c:08:c6:3e:d1:99:4c:57:8d:f9:e7:29: 35:4f:16:6a:a9:9b:14:ac:67:28:06:e8:49:1d:b0:47:34:ba: 64:83:0b:87:ec:00:61:0a:81:35:dd:4b:07:d2:ff:f7:4e:eb: 9b:af:a9:67:ab:02:d5:0e:d5:bd:a8:76:55:1e:60:e8:89:b0: ed:8e:e3:a8:d1:44:e8:f9:d2:89:57:57:0c:3c:3a:3c:78:f0: 81:61:d4:cb:55:e4:62:86:02:3b:1b:3c:97:2e:b5:f0:72:c4: 7e:8a:b6:12 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPCTYDJXKQTECxsmkSjpd5uQmBn4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzE3MTUzMTA0WhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDM3NmRhYzY2MTkwNDc1ZTRjY2RkMjI3MjM3NjQ3YjMy MTgyNDBmNDRkNTlhZmVmN2Q5YzQzYjI0NDdmZjQ5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqRmdfrlN8DlQa7oDw0xuR0MrH4giZAGFLym2lANFZp1wJ zjNfQYk99XEtTZLmsVraPjMRJgY7m2VqSU/VlntxbzbyZLuo2CSpHU6mO14lC4Oq o8lNrn6tjt1ijI7EGToE5V/HFD8b8j6YlNO7adlKSo+x7H9myC8x8mAg+CXS82Np PokiyVS3rgAAHTqpVF3eewGEQh7AQ9ZKeI4T8hVK7ZmdD/xRKqrgagGCSrQVB0b/ 2jAPHJqpQmt5dBUyUl813dRmhXvsCDi82HCfSOysCXqexe1iakR0g2XN4RZ7LEOK 1iCGR5Pf0zLTVfFkvzFOoMPMwgnb5O9f9d1wPJxFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtA9hiVqziqRIQ9wofWcyb9gNPBkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg2YWYwY2M0LWQ5Y2QtNDI1Ny1hNDVhLTg5YzFmOTc1YmY3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAwwDQYJKoZIhvcNAQELBQADggEBAChENan4GB5UYXsbr0hNcYyd eBhMNV3cwSLRJp8Njmjz5cLVwNW4kMZC/Z/gmtZt4KIBJvB6SdRyUjIwsWBuRH+B zgnpIvCriHwYYQCEsxo61jHm1Cbx4qtfF+N/YGu1suRwGV6YrxrQPfQD3hkN5k5a zF5XPC4ZrZFDFFc/8287LlspAjwwniUhMRWwYaSgANYrZQmcaCwIxj7RmUxXjfnn KTVPFmqpmxSsZygG6EkdsEc0umSDC4fsAGEKgTXdSwfS//dO65uvqWerAtUO1b2o dlUeYOiJsO2O46jRROj50olXVww8Ojx48IFh1MtV5GKGAjsbPJcutfByxH6KthI= -----END CERTIFICATE-----Generated at Sat Apr 5 12:21:18 2025 by rpki-client