$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1471cd7d-f4dc-4f9e-9097-188dfdebcc7e.roa File: 1471cd7d-f4dc-4f9e-9097-188dfdebcc7e.roa (raw, json) Hash identifier: 79gbXN+XuoNtPlp/s2N3aoP9hCbQU8oOl4T6De8y/i0= Subject key identifier: 86:44:A7:C3:C1:A7:4B:50:BF:45:8A:7D:5E:85:CD:CA:ED:82:A4:31 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 24CF17988E9369E2756FB8CC82E8321673A48D63 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1471cd7d-f4dc-4f9e-9097-188dfdebcc7e.roa Signing time: Tue 06 May 2025 00:20:12 +0000 ROA not before: Tue 06 May 2025 00:20:12 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:402::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:cf:17:98:8e:93:69:e2:75:6f:b8:cc:82:e8:32:16:73:a4:8d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 6 00:20:12 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=cb378268524266e28269ea9cd6281e382566e7cdd8785c95583ae63b32f3779d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ce:72:13:6d:8d:35:ce:17:6b:3c:46:71:39: 26:76:2f:e1:f2:9a:89:4b:3e:57:46:d9:46:26:de: 5d:36:91:8b:93:45:0b:af:3c:74:34:ff:9f:8d:3a: 8c:a0:17:bf:da:7e:82:e4:c2:11:a8:0e:b1:27:24: 78:e1:6e:82:ba:d0:78:63:d8:44:60:57:a5:ce:0f: 29:2e:ba:43:17:3a:80:54:10:d2:3a:25:8e:c9:17: de:ca:01:0d:9b:e8:9c:29:75:7a:86:92:06:9a:78: 24:13:af:1c:25:b9:06:99:a8:74:f4:b6:1d:cb:7f: 2a:c6:f5:1f:82:cc:72:cf:aa:bc:e9:8a:1c:bf:8b: 3e:22:9b:12:5e:a1:dd:c2:22:51:7a:35:5d:a0:1a: dc:4c:0b:bf:34:46:8a:fc:dc:3e:e0:b8:22:4c:7c: 38:81:00:3d:60:50:ff:32:de:73:74:ac:f4:d8:10: 52:78:b2:28:79:be:ea:0e:c1:02:1f:e1:a9:39:5e: 53:e7:a9:2b:4e:9a:73:77:67:32:d5:fb:a8:31:57: d2:40:38:0a:a4:c0:1d:25:5e:bf:7f:04:85:6e:44: ca:a2:de:ae:c9:ab:2e:0e:69:81:c8:6b:48:1a:0c: 4c:67:85:8c:ce:9a:10:67:f8:63:41:7b:77:cd:4a: c1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:44:A7:C3:C1:A7:4B:50:BF:45:8A:7D:5E:85:CD:CA:ED:82:A4:31 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1471cd7d-f4dc-4f9e-9097-188dfdebcc7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:402::/47 Signature Algorithm: sha256WithRSAEncryption 61:d4:45:aa:12:5c:d9:30:37:78:aa:ce:61:2a:6a:68:fe:3f: 0e:1e:40:d9:4b:86:89:d8:69:d9:44:0b:55:18:a4:67:2d:b7: 1d:2c:a2:2c:e9:cf:d4:39:89:a9:bb:d2:ec:17:7b:74:2b:61: 36:4f:af:19:8a:dd:55:6e:19:e9:3b:8c:62:73:61:93:63:e4: 31:d1:af:0e:b1:1d:36:cf:31:c4:9a:5a:b5:ac:f2:4a:57:64: 3a:28:bc:e0:a1:a0:9d:14:ba:47:1e:b0:39:c3:67:86:8d:56: a5:02:b4:cc:8e:6b:96:05:4f:19:59:94:e9:41:09:79:92:1d: bb:25:dd:3c:a5:d9:1e:e2:d7:6a:80:c0:4f:f3:e0:03:69:1c: e8:b7:1f:34:5e:4f:e7:11:a9:1d:de:73:40:c8:ed:17:b6:7d: aa:a2:66:c9:d9:c3:a6:5c:03:98:12:b4:74:17:a9:55:7a:49: de:0e:7a:93:8f:00:22:a4:bf:c0:0a:8b:33:08:13:59:7d:4a: 4a:eb:cb:1b:a3:9a:02:f4:33:e5:97:6b:cd:dd:36:7d:cf:e5: 52:f0:9d:66:2f:ae:b6:61:f0:66:4a:b6:8d:9f:c9:df:16:f1: eb:53:fb:4c:55:7b:ab:46:73:21:fe:54:6b:2c:62:98:1b:76: 68:94:5c:fe -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJM8XmI6TaeJ1b7jMgugyFnOkjWMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTA2MDAyMDEyWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjM3ODI2ODUyNDI2NmUyODI2OWVhOWNkNjI4MWUzODI1 NjZlN2NkZDg3ODVjOTU1ODNhZTYzYjMyZjM3NzlkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/znITbY01zhdrPEZxOSZ2L+HymolLPldG2UYm3l02kYuT RQuvPHQ0/5+NOoygF7/afoLkwhGoDrEnJHjhboK60Hhj2ERgV6XODykuukMXOoBU ENI6JY7JF97KAQ2b6JwpdXqGkgaaeCQTrxwluQaZqHT0th3LfyrG9R+CzHLPqrzp ihy/iz4imxJeod3CIlF6NV2gGtxMC780Ror83D7guCJMfDiBAD1gUP8y3nN0rPTY EFJ4sih5vuoOwQIf4ak5XlPnqStOmnN3ZzLV+6gxV9JAOAqkwB0lXr9/BIVuRMqi 3q7Jqy4OaYHIa0gaDExnhYzOmhBn+GNBe3fNSsE5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhkSnw8GnS1C/RYp9XoXNyu2CpDEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzE0NzFjZDdkLWY0ZGMtNGY5ZS05MDk3LTE4OGRmZGViY2M3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmBZzABAIwDQYJKoZIhvcNAQELBQADggEBAGHURaoSXNkwN3iqzmEqamj+ Pw4eQNlLhonYadlEC1UYpGcttx0soizpz9Q5iam70uwXe3QrYTZPrxmK3VVuGek7 jGJzYZNj5DHRrw6xHTbPMcSaWrWs8kpXZDoovOChoJ0UukcesDnDZ4aNVqUCtMyO a5YFTxlZlOlBCXmSHbsl3Tyl2R7i12qAwE/z4ANpHOi3HzReT+cRqR3ec0DI7Re2 faqiZsnZw6ZcA5gStHQXqVV6Sd4OepOPACKkv8AKizMIE1l9SkrryxujmgL0M+WX a83dNn3P5VLwnWYvrrZh8GZKto2fyd8W8etT+0xVe6tGcyH+VGssYpgbdmiUXP4= -----END CERTIFICATE-----Generated at Fri May 9 07:44:59 2025 by rpki-client