$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa File: 3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa (raw, json) Hash identifier: SCe6Hwg9kK/viQPXU0lBfZ6vUiAK9QB0Hq+GngF7FAU= Subject key identifier: 21:AA:C7:D3:C9:EA:D9:8E:D9:01:29:83:8E:A7:47:7F:11:18:75:72 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2BD38CD643CC8B3A909E7B00809696EE59756FB2 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa Signing time: Mon 17 Mar 2025 15:20:32 +0000 ROA not before: Mon 17 Mar 2025 15:20:32 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:64d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:d3:8c:d6:43:cc:8b:3a:90:9e:7b:00:80:96:96:ee:59:75:6f:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 17 15:20:32 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ea:cc:75:42:c2:87:64:a4:da:27:1f:0b:eb: 69:da:0f:f3:90:09:d6:28:88:9d:41:44:ce:ab:9e: 5a:4e:dc:96:0e:7b:80:8a:04:d1:5c:72:c9:c5:2c: 51:ba:d6:bd:72:8f:f2:19:05:5a:17:50:e9:2a:98: d2:b7:35:91:5b:71:51:57:68:73:5c:61:1f:b9:56: 37:ca:1a:41:74:34:0c:8f:2a:18:f4:a1:ba:9e:90: 88:61:b7:0a:40:31:59:cc:42:4a:c7:2f:a1:06:1b: 77:a4:d1:5f:47:51:82:4d:2c:51:e1:11:b8:41:99: dc:9c:44:3e:00:dc:f9:45:1c:a0:26:62:3e:b6:52: 58:76:9e:e0:18:95:c9:a1:71:d9:6c:59:21:c2:a4: 58:a1:54:cf:c9:de:09:a6:ea:6e:33:7e:a5:97:b7: ae:ad:04:9c:6d:4e:68:5d:9c:86:2f:1d:41:dc:a7: 88:66:d0:52:8a:55:c5:12:39:e2:91:df:d1:d4:02: 3d:05:d1:7a:f9:60:95:b8:9d:c4:29:64:ee:74:9e: cd:74:17:65:7a:d4:b6:02:16:c1:fc:3b:42:f1:fa: 6b:11:9d:b3:30:7b:d9:ae:cf:47:a2:20:a9:28:c5: ee:64:40:ef:1a:fe:f4:52:5b:23:75:32:cd:d4:b7: c4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:AA:C7:D3:C9:EA:D9:8E:D9:01:29:83:8E:A7:47:7F:11:18:75:72 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64d::/48 Signature Algorithm: sha256WithRSAEncryption 95:be:b5:58:4b:4b:0b:19:5b:1e:74:2f:64:2b:87:81:70:41: b4:84:f8:4c:43:c9:85:99:e3:c6:0d:c2:f8:1d:97:c9:18:85: 67:3c:d4:b1:6f:e2:28:a1:90:02:08:0e:30:e8:fb:6f:93:82: e3:de:04:04:fc:8a:cc:97:1c:bc:3f:39:72:6f:bf:90:86:3f: b2:69:2f:a8:e8:24:13:69:d9:24:24:f1:fa:08:95:4f:f3:e4: 2c:8d:f5:32:24:6b:e0:1f:e8:55:48:d7:87:2a:23:fd:2a:f4: 1f:52:be:c5:17:74:b7:6b:5c:55:54:24:f8:8b:c1:6e:c2:0e: e3:d6:87:e9:eb:02:71:35:fb:ef:5d:00:fd:1f:23:00:98:2a: c7:7e:c2:30:96:0a:87:08:c3:fe:26:ca:a9:a9:5b:56:b0:a3: 28:c9:8d:30:38:75:2f:d7:8c:ab:8d:e8:3e:1a:d3:ec:0c:8a: 0e:91:7e:cc:c8:9a:85:df:15:20:87:22:e8:f8:ae:48:5e:df: 1f:7d:57:56:43:1c:76:a5:8b:d2:1d:73:ed:26:38:d2:26:88: df:eb:a2:67:5a:01:ea:d0:47:07:e4:54:61:d4:20:26:56:d4: f9:90:67:eb:3b:7e:f7:61:2f:6e:da:94:b9:57:3b:d2:57:a7: b7:84:01:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK9OM1kPMizqQnnsAgJaW7ll1b7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzE3MTUyMDMyWhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNThlOWNlZmMzZWM4NmI5ZmMyMDhlNTBkZmNkYjdjZjMy MTlhMjhjZTI1NzE3MjcxOWMxNWMxZGFmYjMyYWMwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+6sx1QsKHZKTaJx8L62naD/OQCdYoiJ1BRM6rnlpO3JYO e4CKBNFccsnFLFG61r1yj/IZBVoXUOkqmNK3NZFbcVFXaHNcYR+5VjfKGkF0NAyP Khj0obqekIhhtwpAMVnMQkrHL6EGG3ek0V9HUYJNLFHhEbhBmdycRD4A3PlFHKAm Yj62Ulh2nuAYlcmhcdlsWSHCpFihVM/J3gmm6m4zfqWXt66tBJxtTmhdnIYvHUHc p4hm0FKKVcUSOeKR39HUAj0F0Xr5YJW4ncQpZO50ns10F2V61LYCFsH8O0Lx+msR nbMwe9muz0eiIKkoxe5kQO8a/vRSWyN1Ms3Ut8SDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIarH08nq2Y7ZASmDjqdHfxEYdXIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZjRjN2IyLWE2YTMtNDJmYi05ZjgwLWI3ZjVmZmM2NjM5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABk0wDQYJKoZIhvcNAQELBQADggEBAJW+tVhLSwsZWx50L2Qrh4Fw QbSE+ExDyYWZ48YNwvgdl8kYhWc81LFv4iihkAIIDjDo+2+TguPeBAT8isyXHLw/ OXJvv5CGP7JpL6joJBNp2SQk8foIlU/z5CyN9TIka+Af6FVI14cqI/0q9B9SvsUX dLdrXFVUJPiLwW7CDuPWh+nrAnE1++9dAP0fIwCYKsd+wjCWCocIw/4myqmpW1aw oyjJjTA4dS/XjKuN6D4a0+wMig6RfszImoXfFSCHIuj4rkhe3x99V1ZDHHali9Id c+0mONImiN/romdaAerQRwfkVGHUICZW1PmQZ+s7fvdhL27alLlXO9JXp7eEAdY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:49:56 2025 by rpki-client