$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa File: ea014712-964e-4c9e-bacc-2630e4e451b2.roa (raw, json) Hash identifier: 7U1e5KO6UQYjYKJ2g4eUgUjlnd2/Ww1DYW5FW41EyGw= Subject key identifier: BF:A2:07:20:84:3E:6F:C0:3A:72:ED:B9:45:D8:E5:4D:69:7C:2F:15 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2878523AAD69B9074F3F920677AE979980405F68 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa Signing time: Mon 31 Mar 2025 18:31:13 +0000 ROA not before: Mon 31 Mar 2025 18:31:13 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:78:52:3a:ad:69:b9:07:4f:3f:92:06:77:ae:97:99:80:40:5f:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 31 18:31:13 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4b:2c:fd:0b:86:15:a0:ab:9b:be:02:f0:4a: ea:27:5a:c6:ea:05:28:12:1e:a4:06:ef:a9:90:37: e0:35:b5:9c:96:20:88:ae:9d:a1:65:7f:3b:f1:38: 62:fe:99:45:bc:82:f2:a1:0a:8e:0b:65:03:8a:e3: 81:df:1c:c1:c3:44:33:3e:c2:4b:72:30:14:2c:51: d1:c6:9a:91:10:ad:61:1c:e0:8f:73:aa:e6:8d:4b: ac:f1:89:c6:6a:ba:7b:27:f2:36:ca:6a:4b:db:26: ab:18:d4:44:02:85:1c:e0:e9:88:29:50:3f:e9:4f: 9c:c5:62:5f:c7:85:39:9e:2c:e9:9d:d7:2c:30:7c: 28:c7:19:4b:6c:89:42:6e:3e:70:93:ad:40:49:4e: 69:af:c1:56:fe:43:21:c4:e6:09:9e:2f:13:cc:42: 35:e9:54:03:ab:46:61:64:85:8b:4a:f0:c9:ff:8d: 71:dd:ea:7d:41:7e:5f:45:a7:fb:09:98:38:2a:c0: 7a:c2:cc:27:42:10:1c:9e:22:9d:24:db:ac:75:65: 1a:aa:d5:ed:ef:8d:10:73:4a:52:64:e1:3f:2c:ef: b8:df:d7:ad:ae:d0:ca:06:cc:8a:f8:c3:29:33:4a: b8:b1:d2:21:e3:c5:d0:ae:57:2c:18:61:9b:d0:69: 5b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A2:07:20:84:3E:6F:C0:3A:72:ED:B9:45:D8:E5:4D:69:7C:2F:15 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:d00::/40 Signature Algorithm: sha256WithRSAEncryption 60:67:85:88:87:e2:8d:3e:a8:2f:08:f6:37:bb:40:65:30:da: b3:d8:21:3f:30:1d:42:06:d9:85:6f:fd:19:74:cb:3b:b8:6b: 71:66:bb:88:2b:0e:8e:e4:8c:67:74:16:21:c5:b5:c0:f2:98: f1:2b:99:ca:f8:a3:3a:ca:f4:c8:c3:d9:b1:c3:16:1d:35:34: b0:2e:52:d6:21:02:a9:fe:a2:d3:f4:f5:7d:11:a7:d1:f5:68: cf:3c:82:ea:a2:82:96:f3:c9:c3:8e:ca:8a:92:f4:a0:7f:bd: 92:5b:00:d2:69:e4:bf:b7:00:4b:cf:34:0e:e3:19:00:38:5e: 30:28:6f:02:b3:95:eb:f7:f9:3a:b1:41:58:fe:28:24:b5:cb: 25:f1:db:6e:fc:b3:46:83:09:0d:d3:3e:5f:72:77:ca:66:cc: 2a:88:1c:c6:7e:34:3f:5e:b6:13:fa:17:c1:cd:06:ec:18:3d: 2d:69:67:eb:40:75:e5:90:72:74:11:54:ec:ec:95:6c:05:80: ca:bb:42:11:ff:e1:13:ed:e1:82:fb:a6:9d:f7:fa:4a:99:12: 47:0f:cd:67:7d:db:f4:d9:a3:c6:87:18:66:e6:19:f1:f7:ae: 5d:37:ad:c1:63:9e:6f:2b:10:8d:db:d3:52:e4:d1:12:4c:4a: 01:81:3e:48 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKHhSOq1puQdPP5IGd66XmYBAX2gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzMxMTgzMTEzWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTVkNjUxZDRjZWEzOWY5NzhhOGUwMDM4NTYwMzg0M2U2 ZGEwMmE3ZmQ1OWJlMzFjOWViNWE5ZGZhNGE1MTkyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxSyz9C4YVoKubvgLwSuonWsbqBSgSHqQG76mQN+A1tZyW IIiunaFlfzvxOGL+mUW8gvKhCo4LZQOK44HfHMHDRDM+wktyMBQsUdHGmpEQrWEc 4I9zquaNS6zxicZqunsn8jbKakvbJqsY1EQChRzg6YgpUD/pT5zFYl/HhTmeLOmd 1ywwfCjHGUtsiUJuPnCTrUBJTmmvwVb+QyHE5gmeLxPMQjXpVAOrRmFkhYtK8Mn/ jXHd6n1Bfl9Fp/sJmDgqwHrCzCdCEByeIp0k26x1ZRqq1e3vjRBzSlJk4T8s77jf 162u0MoGzIr4wykzSrix0iHjxdCuVywYYZvQaVtnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUv6IHIIQ+b8A6cu25RdjlTWl8LxUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2VhMDE0NzEyLTk2NGUtNGM5ZS1iYWNjLTI2MzBlNGU0NTFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBZzADTANBgkqhkiG9w0BAQsFAAOCAQEAYGeFiIfijT6oLwj2N7tAZTDa s9ghPzAdQgbZhW/9GXTLO7hrcWa7iCsOjuSMZ3QWIcW1wPKY8SuZyvijOsr0yMPZ scMWHTU0sC5S1iECqf6i0/T1fRGn0fVozzyC6qKClvPJw47KipL0oH+9klsA0mnk v7cAS880DuMZADheMChvArOV6/f5OrFBWP4oJLXLJfHbbvyzRoMJDdM+X3J3ymbM Kogcxn40P162E/oXwc0G7Bg9LWln60B15ZBydBFU7OyVbAWAyrtCEf/hE+3hgvum nff6SpkSRw/NZ33b9NmjxocYZuYZ8feuXTetwWOebysQjdvTUuTREkxKAYE+SA== -----END CERTIFICATE-----Generated at Sat Apr 5 07:26:11 2025 by rpki-client