$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/79232961-c24e-4e24-a09f-bc78fb7c0bcc.roa File: 79232961-c24e-4e24-a09f-bc78fb7c0bcc.roa (raw, json) Hash identifier: qNx5b7yUV3JHAcCriRNfcw4H2nbGFSezs26HvQBQExM= Subject key identifier: FD:34:35:FA:E6:D6:E0:C8:9F:32:5A:B6:ED:F2:F4:3F:18:A0:ED:FE Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 236F529157D6F632F79F64961E37534744BBD3CC Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/79232961-c24e-4e24-a09f-bc78fb7c0bcc.roa Signing time: Mon 17 Mar 2025 15:10:10 +0000 ROA not before: Mon 17 Mar 2025 15:10:10 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:6f:52:91:57:d6:f6:32:f7:9f:64:96:1e:37:53:47:44:bb:d3:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Mar 17 15:10:10 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e0:ce:a7:6d:d6:83:45:59:ea:b9:f4:79:b9: f7:02:a5:2f:ad:c7:43:00:07:cc:f6:f6:d7:33:35: 73:c3:88:3d:9c:70:fc:52:b5:68:18:7d:3a:47:01: 2c:e9:43:1e:40:34:93:bc:ff:b8:af:2b:b3:5c:69: d2:cb:ab:df:28:86:ee:75:6e:22:dc:31:ce:a6:a2: ac:f9:67:e1:8a:8a:02:c1:8b:eb:b2:98:81:bb:2f: a0:4e:12:18:0a:67:ce:16:1f:25:23:1f:6e:89:6f: 59:78:16:76:67:f0:7f:59:b6:f4:d6:37:b5:87:2a: a9:99:53:91:b2:e0:8e:f6:1b:9c:db:63:c8:70:1a: 41:66:5a:30:cc:91:ec:df:d0:5f:47:dd:52:f0:84: 65:6d:14:89:54:ec:74:6f:62:f9:3d:fb:cf:10:2c: 42:4c:e5:45:07:c6:35:6c:4d:9a:64:cc:08:1b:d0: 7b:7e:3e:d0:81:3b:59:84:40:e6:d7:31:58:d6:21: a8:39:2d:6c:cd:a5:79:23:20:33:45:56:b4:37:12: eb:96:19:51:8d:67:9e:30:f8:eb:43:75:e1:aa:00: a6:f0:cf:20:9f:1e:ab:97:50:e5:15:3f:cf:50:7c: 58:0b:65:38:71:ce:ca:08:de:0f:af:a2:55:51:b7: f0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:34:35:FA:E6:D6:E0:C8:9F:32:5A:B6:ED:F2:F4:3F:18:A0:ED:FE X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/79232961-c24e-4e24-a09f-bc78fb7c0bcc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3001::/48 Signature Algorithm: sha256WithRSAEncryption 3f:bb:80:8d:a6:8d:cf:a7:f3:0f:71:8f:34:dc:ec:fc:f3:11: 7c:87:4c:b2:da:5e:7b:d3:65:05:f1:2d:b5:72:af:94:e7:af: 0f:81:4f:fa:22:35:42:49:1e:0b:f4:25:10:fe:11:cf:d5:7f: 09:86:7f:f5:6b:9b:81:a7:f8:8d:63:f9:08:37:c4:e7:7b:eb: 71:32:dc:06:c4:b1:c5:13:46:2a:cc:fe:02:f9:57:4c:ab:2c: 99:de:7d:12:59:9d:ac:56:69:19:6a:39:52:a7:b2:5a:1c:f7: ff:bc:41:78:08:dc:5b:6d:57:3d:cc:b9:7f:b6:6c:0c:bc:d6: 6a:d2:84:60:71:97:7e:de:95:a1:1b:1b:2f:70:04:3b:c4:80: 4a:8f:be:20:e5:1b:bf:55:05:e6:61:e0:42:54:f1:3c:4e:d3: 43:e6:ba:03:77:4b:90:5e:2f:7f:26:f9:30:10:2a:d5:a9:74: 78:82:27:8c:b8:b8:50:1a:7d:6f:15:09:08:f8:cf:85:9b:e5: 25:d5:05:20:7e:a9:08:86:df:96:28:6e:14:d4:c6:0e:73:89: ad:bb:9d:80:bc:b4:d5:6b:31:57:d5:e8:df:ae:75:82:a4:9a: cf:c4:0f:b1:ff:95:3a:ba:55:ed:cf:d8:96:35:fb:cb:f7:76: fb:cf:65:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI29SkVfW9jL3n2SWHjdTR0S708wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwMzE3MTUxMDEwWhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDdmZDc2YTE2MGJkYTU3OTBlZjhjOTc5YmU1NmRlODFi YzUyOTc2NjBkYzRmM2EzNDNlMjZlZWFhNjA1NGM5MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa4M6nbdaDRVnqufR5ufcCpS+tx0MAB8z29tczNXPDiD2c cPxStWgYfTpHASzpQx5ANJO8/7ivK7NcadLLq98ohu51biLcMc6moqz5Z+GKigLB i+uymIG7L6BOEhgKZ84WHyUjH26Jb1l4FnZn8H9ZtvTWN7WHKqmZU5Gy4I72G5zb Y8hwGkFmWjDMkezf0F9H3VLwhGVtFIlU7HRvYvk9+88QLEJM5UUHxjVsTZpkzAgb 0Ht+PtCBO1mEQObXMVjWIag5LWzNpXkjIDNFVrQ3EuuWGVGNZ54w+OtDdeGqAKbw zyCfHquXUOUVP89QfFgLZThxzsoI3g+volVRt/DhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/TQ1+ubW4MifMlq27fL0Pxig7f4wHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzc5MjMyOTYxLWMyNGUtNGUyNC1hMDlmLWJjNzhmYjdjMGJjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAEwDQYJKoZIhvcNAQELBQADggEBAD+7gI2mjc+n8w9xjzTc7Pzz EXyHTLLaXnvTZQXxLbVyr5Tnrw+BT/oiNUJJHgv0JRD+Ec/VfwmGf/Vrm4Gn+I1j +Qg3xOd763Ey3AbEscUTRirM/gL5V0yrLJnefRJZnaxWaRlqOVKnsloc9/+8QXgI 3FttVz3MuX+2bAy81mrShGBxl37elaEbGy9wBDvEgEqPviDlG79VBeZh4EJU8TxO 00PmugN3S5BeL38m+TAQKtWpdHiCJ4y4uFAafW8VCQj4z4Wb5SXVBSB+qQiG35Yo bhTUxg5zia27nYC8tNVrMVfV6N+udYKkms/ED7H/lTq6Ve3P2JY1+8v3dvvPZVo= -----END CERTIFICATE-----Generated at Sat Apr 5 12:07:39 2025 by rpki-client