$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa File: 8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa (raw, json) Hash identifier: q/97anbVfSKsp1UcTC3MYjY//j0uMtY/d1e1Y1aaeuE= Subject key identifier: BC:ED:50:8F:50:8C:53:54:E8:7F:71:8E:5A:AC:3C:6F:05:94:2F:B9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0986357E9D54B1397F79B8C85E6A2ABCBEB52DCB Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa Signing time: Tue 01 Apr 2025 00:50:56 +0000 ROA not before: Tue 01 Apr 2025 00:50:56 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:396::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:86:35:7e:9d:54:b1:39:7f:79:b8:c8:5e:6a:2a:bc:be:b5:2d:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 00:50:56 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:10:d7:0b:11:16:28:4e:37:4b:10:c0:13:34: 6c:a6:50:86:cd:9d:8f:47:bc:2b:ac:72:d8:18:a0: 41:6a:cd:47:86:47:db:b1:b2:78:93:1f:24:99:57: ae:f3:b0:0e:3d:01:98:bb:a3:5d:0d:ae:6d:9b:66: 85:6a:3c:54:ca:ff:f8:06:a0:93:85:cb:56:47:70: c1:5f:84:38:7e:bb:ec:7b:03:3d:36:de:73:2c:09: ee:73:94:96:ee:96:25:c3:8b:73:91:e4:69:23:94: 28:f1:f8:b5:f9:a9:19:c8:9b:6d:68:5f:08:20:cb: cd:6b:07:01:34:6f:5e:ba:20:d5:77:9c:f4:80:70: 78:97:f9:e4:91:43:3d:78:ef:1d:33:cc:1c:e0:0d: d2:67:c5:7a:b4:ef:03:14:98:4a:6e:1d:31:f4:68: 24:3a:24:2b:af:47:4b:d0:7f:35:46:0f:b1:9c:11: d9:34:24:1b:dd:64:93:2a:df:da:91:53:d0:60:4b: af:45:8f:e2:44:8f:fa:52:27:0c:63:7f:cc:bd:8f: f6:ab:7c:ea:66:e6:62:44:1a:6b:e8:d0:18:cc:f9: d4:49:d9:79:60:cb:c0:a0:2e:3e:ae:75:29:26:83: fa:2c:8e:cc:90:bd:fc:96:90:c4:f3:f0:a5:95:11: 2a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:ED:50:8F:50:8C:53:54:E8:7F:71:8E:5A:AC:3C:6F:05:94:2F:B9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:396::/48 Signature Algorithm: sha256WithRSAEncryption 5d:94:08:73:7e:cc:34:bc:50:20:1b:7a:31:0a:fd:64:06:8c: 10:79:ab:02:c3:90:e7:b8:3d:a9:41:c0:83:e7:c0:c7:4b:55: e5:37:fd:7a:a2:bd:cf:fa:08:18:e3:e0:21:bc:5f:e5:dd:ff: a6:3a:ff:7c:61:7b:7a:c0:99:2f:8d:6a:80:4c:94:9e:df:d7: 66:c6:d5:0e:ad:95:f0:89:63:aa:a7:d3:cd:a6:3c:a9:57:78: b6:72:6d:bf:cb:af:52:94:a2:5b:ef:dc:05:6e:17:fc:7c:08: b2:f6:ac:a7:18:44:34:36:aa:c6:fd:1d:a0:57:28:d0:7e:91: 38:6d:f8:27:83:d2:2a:8d:f6:f2:53:22:b3:93:3c:cf:8c:24: 47:66:b7:6c:31:ea:78:da:5e:43:70:64:95:85:93:22:97:8b: 74:b9:aa:b3:ef:16:19:90:9b:aa:98:bd:31:f0:1b:16:79:55: 52:e6:38:8b:96:1d:ed:55:5e:1f:7f:e2:b2:a9:d4:b2:7e:3f: 59:1c:e2:26:a0:f9:32:d9:c4:92:ac:77:81:70:aa:a4:d5:d7: b0:8b:4c:7b:78:65:66:8b:32:af:56:0b:de:52:26:e7:8c:5c: e7:03:34:83:f8:e8:d2:12:ac:e2:e3:9d:7d:28:b7:de:e4:fc: 99:11:5b:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCYY1fp1UsTl/ebjIXmoqvL61LcswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMDA1MDU2WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTA0MGJjYWRkODA4Njg5YWYxZjdmZjY1NDYxOGZjZWY2 MDEzOWU5ZTAzYTZmOGU3ZjU3OTVkOTg3NTY2YzhmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpENcLERYoTjdLEMATNGymUIbNnY9HvCusctgYoEFqzUeG R9uxsniTHySZV67zsA49AZi7o10Nrm2bZoVqPFTK//gGoJOFy1ZHcMFfhDh+u+x7 Az023nMsCe5zlJbuliXDi3OR5GkjlCjx+LX5qRnIm21oXwggy81rBwE0b166INV3 nPSAcHiX+eSRQz147x0zzBzgDdJnxXq07wMUmEpuHTH0aCQ6JCuvR0vQfzVGD7Gc Edk0JBvdZJMq39qRU9BgS69Fj+JEj/pSJwxjf8y9j/arfOpm5mJEGmvo0BjM+dRJ 2Xlgy8CgLj6udSkmg/osjsyQvfyWkMTz8KWVESoNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvO1Qj1CMU1Tof3GOWqw8bwWUL7kwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzhlNWNhYzMxLTMzZDItNDU0ZC1hMmI3LTZlZjg1YThkNDk0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5YwDQYJKoZIhvcNAQELBQADggEBAF2UCHN+zDS8UCAbejEK/WQG jBB5qwLDkOe4PalBwIPnwMdLVeU3/Xqivc/6CBjj4CG8X+Xd/6Y6/3xhe3rAmS+N aoBMlJ7f12bG1Q6tlfCJY6qn082mPKlXeLZybb/Lr1KUolvv3AVuF/x8CLL2rKcY RDQ2qsb9HaBXKNB+kTht+CeD0iqN9vJTIrOTPM+MJEdmt2wx6njaXkNwZJWFkyKX i3S5qrPvFhmQm6qYvTHwGxZ5VVLmOIuWHe1VXh9/4rKp1LJ+P1kc4iag+TLZxJKs d4FwqqTV17CLTHt4ZWaLMq9WC95SJueMXOcDNIP46NISrOLjnX0ot97k/JkRWy4= -----END CERTIFICATE-----Generated at Sat Apr 5 12:18:48 2025 by rpki-client