$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa File: 2b35ab1a-8001-404a-9285-196aa943aa95.roa (raw, json) Hash identifier: wF+ac3sWygSWGxe7PyyFj8N+y7X9E80x8WVnBr0QTb0= Subject key identifier: 51:B9:F7:86:29:80:4A:CA:23:FE:DD:BE:8B:97:C2:2E:08:58:82:31 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1AF368B73F2CF110FB0D443C8CB8EA66D355255E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa Signing time: Sat 26 Apr 2025 00:51:07 +0000 ROA not before: Sat 26 Apr 2025 00:51:07 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:387::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:f3:68:b7:3f:2c:f1:10:fb:0d:44:3c:8c:b8:ea:66:d3:55:25:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 26 00:51:07 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=0cc1cc91d69c09126f922452be959da98c47a5662e6b26029202dfaeedce4936, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:66:bd:b1:20:84:f3:68:9e:07:f0:d7:25:65: 23:7e:c0:71:b3:d7:d9:e7:5a:1b:2c:e2:a7:06:77: fc:78:bf:a2:e4:42:2a:63:e6:ef:69:97:88:a1:3e: c5:9b:80:2f:ee:ec:4e:a6:bf:86:9d:b3:d5:05:7c: 06:60:49:24:d5:7d:4d:c5:8b:3d:6d:60:11:e6:f9: bc:97:20:3b:47:9a:b6:fc:be:4f:22:90:71:6f:a1: aa:c5:df:fa:75:eb:a9:eb:5e:ce:be:16:3f:6d:e4: 70:c9:43:68:88:98:5c:43:55:9c:7b:86:7f:be:6a: 24:f0:b5:5b:f3:94:15:0e:18:25:3f:7c:70:67:83: 46:90:31:73:60:21:fc:33:06:df:73:3a:d1:8c:a2: 02:2d:94:2d:2a:35:ce:4d:de:ae:45:b5:20:48:8f: 8d:35:b7:17:3f:ed:94:c5:f4:e3:b8:c3:64:66:68: 6d:85:ca:ac:b4:e4:b9:f3:0c:95:43:31:39:93:54: 4c:f0:e0:9a:1f:f6:27:13:44:b3:2f:03:a2:a2:08: 6d:f9:9a:eb:8a:f6:31:df:ff:b9:d1:99:71:05:65: 18:d6:32:7c:b2:64:ef:63:7f:0d:3e:8c:3d:e4:ef: fa:d4:8e:01:03:a2:44:a6:a5:f5:84:f5:ed:6b:5d: b5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B9:F7:86:29:80:4A:CA:23:FE:DD:BE:8B:97:C2:2E:08:58:82:31 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:387::/48 Signature Algorithm: sha256WithRSAEncryption 3e:42:01:85:41:52:11:c7:8e:a6:59:6a:8a:fa:f6:c2:23:5c: af:67:61:d0:d1:19:67:75:6b:73:3e:01:6d:5f:9e:3c:49:26: 38:34:b1:2e:8e:3a:46:73:18:63:03:be:ff:2f:13:ec:77:38: f7:b2:d2:2f:87:1f:35:c9:f2:29:0c:e0:f7:90:41:6c:d4:be: e8:cd:b1:d3:47:a3:8e:57:ca:a7:65:90:3f:14:5b:3f:ee:0c: 48:09:17:f3:fb:70:cc:0b:07:b6:77:a2:e1:6e:bc:cf:39:4a: 85:d3:ec:30:67:0f:2f:a2:43:81:0f:b3:8f:53:7d:e1:0f:71: e5:cd:70:bd:a0:c5:86:05:22:52:99:3a:c0:f1:7b:7d:70:4f: 5b:2d:ad:a0:68:d3:24:6a:e1:0c:7c:2c:3a:ea:74:2d:8c:c3: e8:39:b9:47:f4:01:c9:82:4d:98:76:a3:da:8d:61:b4:f9:35: 42:ad:a6:23:e6:b2:0e:09:44:76:ba:0a:76:25:be:1b:c9:46: 87:01:c7:ad:2c:45:84:6d:bf:21:84:09:94:9d:35:0c:a1:85: 42:f2:0c:84:fa:14:0a:b4:c9:92:4a:7a:45:af:27:50:3b:63: 91:51:e3:d5:ec:9e:e1:08:07:96:2a:82:a0:24:a0:1a:a4:0e: da:4e:87:7b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGvNotz8s8RD7DUQ8jLjqZtNVJV4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI2MDA1MTA3WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2MxY2M5MWQ2OWMwOTEyNmY5MjI0NTJiZTk1OWRhOThj NDdhNTY2MmU2YjI2MDI5MjAyZGZhZWVkY2U0OTM2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9Zr2xIITzaJ4H8NclZSN+wHGz19nnWhss4qcGd/x4v6Lk Qipj5u9pl4ihPsWbgC/u7E6mv4ads9UFfAZgSSTVfU3Fiz1tYBHm+byXIDtHmrb8 vk8ikHFvoarF3/p166nrXs6+Fj9t5HDJQ2iImFxDVZx7hn++aiTwtVvzlBUOGCU/ fHBng0aQMXNgIfwzBt9zOtGMogItlC0qNc5N3q5FtSBIj401txc/7ZTF9OO4w2Rm aG2Fyqy05LnzDJVDMTmTVEzw4Jof9icTRLMvA6KiCG35muuK9jHf/7nRmXEFZRjW MnyyZO9jfw0+jD3k7/rUjgEDokSmpfWE9e1rXbX1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUbn3himASsoj/t2+i5fCLghYgjEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJiMzVhYjFhLTgwMDEtNDA0YS05Mjg1LTE5NmFhOTQzYWE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA4cwDQYJKoZIhvcNAQELBQADggEBAD5CAYVBUhHHjqZZaor69sIj XK9nYdDRGWd1a3M+AW1fnjxJJjg0sS6OOkZzGGMDvv8vE+x3OPey0i+HHzXJ8ikM 4PeQQWzUvujNsdNHo45XyqdlkD8UWz/uDEgJF/P7cMwLB7Z3ouFuvM85SoXT7DBn Dy+iQ4EPs49TfeEPceXNcL2gxYYFIlKZOsDxe31wT1straBo0yRq4Qx8LDrqdC2M w+g5uUf0AcmCTZh2o9qNYbT5NUKtpiPmsg4JRHa6CnYlvhvJRocBx60sRYRtvyGE CZSdNQyhhULyDIT6FAq0yZJKekWvJ1A7Y5FR49XsnuEIB5YqgqAkoBqkDtpOh3s= -----END CERTIFICATE-----Generated at Fri May 9 05:15:29 2025 by rpki-client