$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a046f509-2a7a-4f07-bb1f-b51c79bee36b.roa File: a046f509-2a7a-4f07-bb1f-b51c79bee36b.roa (raw, json) Hash identifier: RtfKwxysW9Yh9zD3061AZ5BVrzkKNZAv0CiukLtBJVA= Subject key identifier: 2D:C9:7E:FC:9D:3C:7F:42:01:F3:0A:9B:C9:24:AE:25:FA:71:99:7F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 210F672448B9541030C745A9322C788848AF0F98 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a046f509-2a7a-4f07-bb1f-b51c79bee36b.roa Signing time: Mon 17 Mar 2025 15:31:46 +0000 ROA not before: Mon 17 Mar 2025 15:31:46 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:0f:67:24:48:b9:54:10:30:c7:45:a9:32:2c:78:88:48:af:0f:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 17 15:31:46 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7a:c1:0b:40:b7:f4:f6:fa:e0:bd:40:94:57: bd:72:20:dd:db:a0:57:01:09:0a:9c:a4:df:01:9a: 16:45:64:ba:ff:96:5a:fd:93:59:bb:f6:50:46:4c: 8f:b2:6c:b0:ac:bf:ed:58:fe:d5:f7:24:d7:a8:2c: 8b:8f:33:64:13:90:00:af:62:3f:93:da:6f:b7:ec: d2:15:c2:45:75:ba:04:6e:7c:12:31:3b:cd:42:91: e4:f4:fe:52:94:ea:f9:ac:8f:6b:ac:13:43:d1:00: d7:93:18:6e:a6:7a:b6:25:e3:91:c7:2f:22:91:9f: 1e:a8:7f:de:a9:76:56:90:20:83:1e:17:cd:e7:b8: df:b3:e6:44:64:6a:da:88:d5:1f:8c:77:17:cd:6b: a6:6f:22:c3:1f:8e:5e:13:84:02:7f:6e:43:c6:3b: 24:1e:b3:82:2b:03:6c:9e:ba:b9:63:56:91:bc:d8: 1b:95:15:2c:f9:0a:b8:84:e6:69:37:b3:ad:f6:56: 5e:93:79:bf:a5:c2:f3:8d:9d:3a:1e:4c:78:80:f7: a0:1d:22:9e:39:9c:20:2f:c7:99:9c:2c:a4:18:4b: 3b:ab:05:ea:ed:a0:f0:f1:7d:f0:ea:ad:ed:8d:53: 2f:e3:8c:fc:c9:91:74:37:8a:39:2e:c9:47:58:ab: 37:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C9:7E:FC:9D:3C:7F:42:01:F3:0A:9B:C9:24:AE:25:FA:71:99:7F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a046f509-2a7a-4f07-bb1f-b51c79bee36b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c13::/48 Signature Algorithm: sha256WithRSAEncryption 27:b0:7c:50:85:cc:e5:9b:1e:27:40:23:ef:eb:a3:35:8d:e2: 03:65:96:2d:58:f1:b7:19:e8:46:c5:34:35:42:89:19:a1:dd: 20:36:52:35:51:93:05:5b:59:aa:27:ec:c5:fd:72:86:13:84: 25:46:8a:96:c9:1a:7a:34:7e:2d:67:c0:6c:07:d2:cc:97:be: 51:93:ac:ab:f5:4b:89:3c:e9:87:fa:b6:fa:e2:af:f6:61:7d: ac:96:00:92:c0:d4:17:2a:3b:3b:03:a6:7f:77:94:6c:ab:d5: 88:08:1d:f0:f5:e1:3e:c6:15:ec:18:eb:b9:83:96:fd:86:99: 6f:01:a4:1a:6a:03:e3:b2:73:69:78:53:f9:c0:03:c7:b9:dd: be:29:d7:84:f2:ed:7c:0f:56:92:ce:a5:dc:c5:6e:2c:3f:72: f2:dc:2f:2c:4a:7d:bf:59:48:4f:86:64:1d:c3:3d:2c:16:5a: 0c:c5:38:8f:38:a7:a9:09:bb:c5:c7:d2:57:2d:86:a8:4e:56: fd:33:60:92:b3:3e:0e:1b:70:9f:f7:9a:68:b7:72:a9:cc:d9: 4b:8a:e4:34:d6:4c:7f:b2:34:2f:33:a8:4a:dd:17:78:32:fa: b2:d4:28:d4:a0:de:80:35:59:92:ee:52:13:9b:c8:55:6d:68: 8f:48:66:c2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIQ9nJEi5VBAwx0WpMix4iEivD5gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzE3MTUzMTQ2WhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjE5NzY3MzQ1YTI5MTZkZWU5NjcwMzk2YWY2OWI2MWRm YjA1ODRiNGI3NWIxYjAwOTIzNzFhYzI2Y2I0YWE3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPesELQLf09vrgvUCUV71yIN3boFcBCQqcpN8BmhZFZLr/ llr9k1m79lBGTI+ybLCsv+1Y/tX3JNeoLIuPM2QTkACvYj+T2m+37NIVwkV1ugRu fBIxO81CkeT0/lKU6vmsj2usE0PRANeTGG6merYl45HHLyKRnx6of96pdlaQIIMe F83nuN+z5kRkatqI1R+MdxfNa6ZvIsMfjl4ThAJ/bkPGOyQes4IrA2yeurljVpG8 2BuVFSz5CriE5mk3s632Vl6Teb+lwvONnToeTHiA96AdIp45nCAvx5mcLKQYSzur BertoPDxffDqre2NUy/jjPzJkXQ3ijkuyUdYqzeLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULcl+/J08f0IB8wqbySSuJfpxmX8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2EwNDZmNTA5LTJhN2EtNGYwNy1iYjFmLWI1MWM3OWJlZTM2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBMwDQYJKoZIhvcNAQELBQADggEBACewfFCFzOWbHidAI+/rozWN 4gNlli1Y8bcZ6EbFNDVCiRmh3SA2UjVRkwVbWaon7MX9coYThCVGipbJGno0fi1n wGwH0syXvlGTrKv1S4k86Yf6tvrir/ZhfayWAJLA1BcqOzsDpn93lGyr1YgIHfD1 4T7GFewY67mDlv2GmW8BpBpqA+Oyc2l4U/nAA8e53b4p14Ty7XwPVpLOpdzFbiw/ cvLcLyxKfb9ZSE+GZB3DPSwWWgzFOI84p6kJu8XH0lcthqhOVv0zYJKzPg4bcJ/3 mmi3cqnM2UuK5DTWTH+yNC8zqErdF3gy+rLUKNSg3oA1WZLuUhObyFVtaI9IZsI= -----END CERTIFICATE-----Generated at Sat Apr 5 10:50:07 2025 by rpki-client