$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/60f92b89-d001-48c5-9a79-ac7a1a17f5c8.roa File: 60f92b89-d001-48c5-9a79-ac7a1a17f5c8.roa (raw, json) Hash identifier: QYn6nG71kti2XaLV617fPRIQEuwZbSGAsaMF46pKreE= Subject key identifier: B3:FF:E9:C8:0A:F7:48:41:EF:C6:3D:7B:C4:9B:F5:AE:03:CC:34:3C Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 09ADB28D8FDF50BD3B8CDFEFEF9B2B650382B8FF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/60f92b89-d001-48c5-9a79-ac7a1a17f5c8.roa Signing time: Mon 17 Mar 2025 15:20:59 +0000 ROA not before: Mon 17 Mar 2025 15:20:59 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c04::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ad:b2:8d:8f:df:50:bd:3b:8c:df:ef:ef:9b:2b:65:03:82:b8:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 17 15:20:59 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ab:2c:9d:76:c9:66:8d:3d:4a:d2:61:ef:31: 21:15:c3:4e:d5:17:72:d5:2c:34:23:f5:93:be:15: 57:3d:dd:d7:6f:1e:a7:72:0c:d7:4b:2e:fe:d8:a4: 4b:8e:35:47:ab:fd:0e:1e:c2:2d:8c:a5:cb:09:f4: 69:1a:5e:ce:d9:68:68:94:76:78:be:f8:3c:f7:85: 8d:bb:64:8c:d5:04:9a:38:21:17:56:d5:d0:40:6a: 94:8f:8d:ab:d7:a9:2c:dc:a5:a1:a9:01:df:a4:8e: 1d:23:0d:05:73:6b:24:c3:d0:21:ec:dc:c8:82:d6: f4:57:29:21:69:aa:bd:f4:6b:3b:c8:43:12:8d:ac: be:34:97:09:75:b3:37:6d:3f:d1:f6:44:b0:33:d9: 12:c2:87:48:03:c3:97:61:95:a3:1a:3b:43:e8:67: 16:e5:82:21:2b:1e:11:2e:00:d0:a5:aa:7b:2c:58: ff:ab:39:97:61:87:37:ff:d6:b2:e1:17:af:4d:39: f6:fa:42:1f:79:64:c7:20:3f:41:73:c1:f6:86:40: 72:5b:cb:3a:5d:d6:f8:3c:29:8a:fe:48:65:2a:7c: 15:7e:da:63:62:94:cb:14:9f:f5:94:39:69:32:91: 90:af:ef:e0:a2:ab:31:08:8b:b6:f3:f3:d4:7a:18: 8b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:FF:E9:C8:0A:F7:48:41:EF:C6:3D:7B:C4:9B:F5:AE:03:CC:34:3C X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/60f92b89-d001-48c5-9a79-ac7a1a17f5c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c04::/48 Signature Algorithm: sha256WithRSAEncryption 8e:0c:4e:ea:ac:cf:b9:b2:e1:bc:bb:90:c3:22:c3:0c:46:5c: 80:1a:02:38:80:64:d6:f5:2f:4c:2b:b4:9f:91:27:4f:dd:fc: 75:08:82:e2:3d:0a:e2:f7:92:3d:a1:74:32:c9:88:92:e8:70: 03:fc:e1:7d:47:6d:1e:ac:89:af:2f:25:3e:8c:dc:4b:db:80: 11:54:84:c1:aa:51:c1:88:be:f8:cc:48:ca:43:04:e8:c1:7e: 3a:f2:b0:f5:fc:81:6b:52:37:0f:31:61:28:e7:92:91:2d:b5: a8:bd:15:e0:b2:14:ae:fe:d5:ca:cb:a1:08:1b:a6:4c:5a:27: f6:9d:1e:27:51:c2:71:fc:94:65:af:65:1d:aa:4a:c3:f6:2f: 62:3e:b1:b8:ba:82:2b:1e:80:f9:30:0e:3c:57:bd:4c:0f:94: 91:08:4c:67:00:4b:08:07:7f:6c:5e:f6:dd:2e:5c:81:5b:f0: 44:e7:d7:81:2f:7d:4b:e7:d7:f3:b3:b1:8c:02:06:5f:01:91: dd:4b:d4:c5:ac:e4:9b:af:d8:88:75:4a:b5:84:ac:12:8f:97: 05:df:54:b9:fa:22:3c:02:95:78:b6:0f:ae:cd:fe:c0:57:90: f4:bf:6a:df:a5:4f:60:c4:6d:07:3f:95:94:1e:cd:36:e5:11: 33:34:28:31 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCa2yjY/fUL07jN/v75srZQOCuP8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzE3MTUyMDU5WhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmODBjODhkNzU4YzlkZWUzMDZhNDNiMDcxODE0NzI1YzQ0 NzgzZjIyNzMyMjI1OTc4NzE0MDhhNWZmYzA0ZTgzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoqyyddslmjT1K0mHvMSEVw07VF3LVLDQj9ZO+FVc93ddv HqdyDNdLLv7YpEuONUer/Q4ewi2MpcsJ9GkaXs7ZaGiUdni++Dz3hY27ZIzVBJo4 IRdW1dBAapSPjavXqSzcpaGpAd+kjh0jDQVzayTD0CHs3MiC1vRXKSFpqr30azvI QxKNrL40lwl1szdtP9H2RLAz2RLCh0gDw5dhlaMaO0PoZxblgiErHhEuANClqnss WP+rOZdhhzf/1rLhF69NOfb6Qh95ZMcgP0FzwfaGQHJbyzpd1vg8KYr+SGUqfBV+ 2mNilMsUn/WUOWkykZCv7+CiqzEIi7bz89R6GIvPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUs//pyAr3SEHvxj17xJv1rgPMNDwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzYwZjkyYjg5LWQwMDEtNDhjNS05YTc5LWFjN2ExYTE3ZjVjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAQwDQYJKoZIhvcNAQELBQADggEBAI4MTuqsz7my4by7kMMiwwxG XIAaAjiAZNb1L0wrtJ+RJ0/d/HUIguI9CuL3kj2hdDLJiJLocAP84X1HbR6sia8v JT6M3EvbgBFUhMGqUcGIvvjMSMpDBOjBfjrysPX8gWtSNw8xYSjnkpEttai9FeCy FK7+1crLoQgbpkxaJ/adHidRwnH8lGWvZR2qSsP2L2I+sbi6gisegPkwDjxXvUwP lJEITGcASwgHf2xe9t0uXIFb8ETn14EvfUvn1/OzsYwCBl8Bkd1L1MWs5Juv2Ih1 SrWErBKPlwXfVLn6IjwClXi2D67N/sBXkPS/at+lT2DEbQc/lZQezTblETM0KDE= -----END CERTIFICATE-----Generated at Sat Apr 5 20:16:30 2025 by rpki-client