$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa File: 2b35ab1a-8001-404a-9285-196aa943aa95.roa (raw, json) Hash identifier: A8Irvap/1sWaOUMMlqiPxbQTGoEVdp2wSi2LyV4vZ/E= Subject key identifier: 9B:37:2D:4E:CE:43:9E:FB:22:73:60:45:95:80:2F:E5:19:E6:7E:22 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5FFBAF521660502BD99521F090EF35DFE3D76215 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa Signing time: Fri 07 Mar 2025 00:51:03 +0000 ROA not before: Fri 07 Mar 2025 00:51:03 +0000 ROA not after: Fri 11 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:387::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:fb:af:52:16:60:50:2b:d9:95:21:f0:90:ef:35:df:e3:d7:62:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 7 00:51:03 2025 GMT Not After : Apr 11 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:dc:26:d1:59:31:1a:11:7f:90:30:98:98:76: 11:02:a9:02:2a:54:9f:19:ca:27:a0:43:35:f3:9b: ad:ca:9f:a6:32:05:b6:64:f8:b2:ea:dc:c7:0e:12: d8:1c:85:dd:62:80:1a:f4:bf:46:2c:b2:97:4e:fa: aa:21:56:d7:e5:09:79:69:b4:72:c5:ec:2f:f5:ca: 2a:34:2e:46:e7:dc:b4:a1:ff:49:11:59:f2:76:af: 7b:2c:5f:c0:95:68:d9:47:19:7c:5b:93:87:bb:9c: ec:62:c0:f2:a6:35:87:57:c0:05:aa:5b:64:80:b9: 67:e2:59:b7:5c:33:7a:74:a4:a9:18:f4:5a:3b:b3: 6d:e7:52:d2:6d:0f:0d:c1:66:cf:30:83:bb:a0:0c: 93:45:d6:0b:f2:60:90:f3:61:68:a1:64:5d:62:7e: 96:7c:85:85:3e:cc:5d:13:14:0a:4a:63:84:8b:f2: a6:94:77:6c:02:cb:6f:7d:6b:f9:26:61:58:af:dd: 53:38:cc:15:53:17:88:1a:26:c6:a4:70:c4:58:81: 95:40:a8:f6:ab:e4:4c:71:15:d4:fd:b9:6a:8c:f5: bb:7d:53:3e:d3:98:83:30:12:27:63:ce:48:eb:16: 57:80:af:19:5c:70:1c:d3:57:ae:11:db:97:24:27: f9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:37:2D:4E:CE:43:9E:FB:22:73:60:45:95:80:2F:E5:19:E6:7E:22 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:387::/48 Signature Algorithm: sha256WithRSAEncryption 91:7c:02:83:a9:2a:35:a9:54:de:ba:3e:84:59:26:2f:0f:69: 67:a4:d4:e3:e3:39:8f:17:8d:e4:06:fd:48:6d:a0:9b:e3:19: 21:ce:25:1f:51:5d:05:54:2c:80:ce:52:32:1e:42:b2:da:dc: e3:fe:db:50:bc:98:fe:8c:60:c2:53:c2:d9:25:c2:6c:19:af: e0:ef:3b:83:a7:a3:f0:e9:e7:34:07:c8:29:e9:4c:0b:f9:43: 9e:e2:f1:66:b6:3c:c0:c1:8b:3e:a5:eb:9c:d9:9e:1a:89:46: 96:a1:78:6a:2e:71:72:e6:25:01:9a:f9:03:30:de:a6:8b:df: 8d:84:a7:2e:6f:3c:25:b8:7a:a6:53:a0:eb:ef:71:2c:eb:88: 86:e0:02:a0:3f:cc:43:33:89:6d:75:82:62:e5:e5:0c:de:d5: b6:ff:ec:cd:7b:88:2b:91:1c:57:69:bd:a1:fe:64:b8:e9:7c: e7:8f:ee:1a:1d:7e:9f:b3:7e:5e:cb:a3:59:99:4c:32:49:00: 01:29:b0:a1:93:b9:14:be:b8:97:56:03:0f:9a:40:65:2e:74: 55:4b:51:dd:54:71:12:3a:a2:5a:29:ae:d3:7d:b1:a0:7a:20: a8:52:43:27:39:f6:b6:8f:db:24:7f:08:7b:8f:48:0e:24:42: be:f6:19:91 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUX/uvUhZgUCvZlSHwkO813+PXYhUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzA3MDA1MTAzWhcNMjUwNDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTIzOWNlMTMxYWRlMjA5MDE4NWFjYzAyMmFjNTllZWZh YWY3YTBjZWFiOWEyMWU1OWJjMjg3YjQyZTBjYmFmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz3CbRWTEaEX+QMJiYdhECqQIqVJ8ZyiegQzXzm63Kn6Yy BbZk+LLq3McOEtgchd1igBr0v0YsspdO+qohVtflCXlptHLF7C/1yio0Lkbn3LSh /0kRWfJ2r3ssX8CVaNlHGXxbk4e7nOxiwPKmNYdXwAWqW2SAuWfiWbdcM3p0pKkY 9Fo7s23nUtJtDw3BZs8wg7ugDJNF1gvyYJDzYWihZF1ifpZ8hYU+zF0TFApKY4SL 8qaUd2wCy299a/kmYViv3VM4zBVTF4gaJsakcMRYgZVAqPar5ExxFdT9uWqM9bt9 Uz7TmIMwEidjzkjrFleArxlccBzTV64R25ckJ/klAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmzctTs5Dnvsic2BFlYAv5RnmfiIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJiMzVhYjFhLTgwMDEtNDA0YS05Mjg1LTE5NmFhOTQzYWE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA4cwDQYJKoZIhvcNAQELBQADggEBAJF8AoOpKjWpVN66PoRZJi8P aWek1OPjOY8XjeQG/UhtoJvjGSHOJR9RXQVULIDOUjIeQrLa3OP+21C8mP6MYMJT wtklwmwZr+DvO4Ono/Dp5zQHyCnpTAv5Q57i8Wa2PMDBiz6l65zZnhqJRpaheGou cXLmJQGa+QMw3qaL342Epy5vPCW4eqZToOvvcSzriIbgAqA/zEMziW11gmLl5Qze 1bb/7M17iCuRHFdpvaH+ZLjpfOeP7hodfp+zfl7Lo1mZTDJJAAEpsKGTuRS+uJdW Aw+aQGUudFVLUd1UcRI6oloprtN9saB6IKhSQyc59raP2yR/CHuPSA4kQr72GZE= -----END CERTIFICATE-----Generated at Thu Mar 13 23:48:49 2025 by rpki-client