$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa File: 6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa (raw, json) Hash identifier: tdHU7UVP0419eS6XC5clZdwPairSmVrQ52lRp3WWS0M= Subject key identifier: 02:3C:DF:04:61:1A:A0:92:74:5D:95:4C:06:02:D7:B8:F1:4C:34:90 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7CCE329481D63677CAF188889D93F96267E87361 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa Signing time: Wed 26 Mar 2025 20:07:18 +0000 ROA not before: Wed 26 Mar 2025 20:07:18 +0000 ROA not after: Wed 30 Apr 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c1f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ce:32:94:81:d6:36:77:ca:f1:88:88:9d:93:f9:62:67:e8:73:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 26 20:07:18 2025 GMT Not After : Apr 30 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:04:93:56:44:86:ac:50:58:0d:84:7d:e4:2d: 69:ee:a0:34:f5:c3:c1:e6:a0:09:d7:38:c5:7c:3e: 0c:71:1d:9b:21:07:38:a2:91:71:38:38:37:34:bb: 1d:e1:8e:f7:18:f6:b6:91:bb:9b:7d:64:0b:6a:b7: 1b:09:a3:d2:40:3b:37:12:e5:2c:15:73:ae:23:08: fe:2a:b7:44:4f:ea:ed:d4:42:cf:b4:4a:56:a2:58: 24:69:33:29:51:79:3a:c0:74:08:32:a3:7c:cb:b5: 99:f9:45:d6:7d:a0:d6:94:59:e6:44:ba:41:e2:90: b2:2a:2c:3a:44:f7:3f:07:e3:33:fe:b1:09:0b:82: 80:a6:12:80:9a:ef:36:30:47:9c:d0:1c:4f:39:25: a8:7b:c4:1c:cc:8b:4e:f9:94:2d:f6:e6:7a:6e:46: 54:a0:f1:1c:f0:81:cc:69:e8:b0:17:2e:e3:9d:55: af:2a:72:03:99:b8:fd:e3:71:5e:f2:0c:73:61:dc: 9f:2c:69:37:9d:8a:80:6a:5f:d2:f4:4d:e8:e0:79: 68:d6:bd:25:93:52:2c:b8:c3:44:d0:15:0c:f5:ba: df:8f:e3:91:88:48:d1:1b:3a:a1:70:b0:f8:2f:4d: 15:37:14:e1:15:41:4d:0b:81:b6:43:bd:5a:fb:8b: b6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:3C:DF:04:61:1A:A0:92:74:5D:95:4C:06:02:D7:B8:F1:4C:34:90 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1f::/48 Signature Algorithm: sha256WithRSAEncryption 47:8b:1a:c7:08:81:3b:3f:5d:70:34:44:6c:a3:4b:70:fa:7b: 5d:aa:9a:4c:d4:03:10:c7:8c:bf:47:f3:cb:99:f3:65:70:12: 98:71:fc:82:21:30:b8:30:5a:70:20:4f:29:66:ff:c9:4b:cc: b2:4f:80:a5:c5:bf:8e:51:06:ed:75:88:c2:71:09:9b:3b:f7: 08:61:15:b2:5f:bc:d0:bd:21:d4:97:9e:64:2b:74:3a:2b:9c: b7:e4:7e:7a:42:d5:c8:d3:21:e1:d1:4c:25:6a:aa:b9:33:c6: 75:65:20:8a:42:25:9f:53:3e:1f:bb:56:96:74:8a:2e:ba:a7: 36:06:9c:84:9c:ec:2b:f9:c7:4d:ac:a7:19:3f:b3:1f:0b:fd: d1:98:71:d4:83:99:37:b9:ad:4f:98:1b:8b:c3:f3:5f:e1:9b: 8d:6e:0d:e8:86:1a:f7:a1:01:3d:f7:f5:8c:ee:1d:d5:48:48: 36:70:cb:48:ee:23:ab:d2:94:77:ab:dd:31:ca:45:2e:64:bb: 1d:f9:4b:cf:4e:b3:c7:01:b0:d2:f3:bc:fc:09:6a:32:c4:c8: ca:c1:7b:ba:f3:89:fe:ab:06:57:db:8a:4d:f5:15:d8:fe:2a: 81:38:59:d7:4d:81:ac:9d:a0:c7:80:f0:b1:9f:2b:00:f1:4c: fc:53:00:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfM4ylIHWNnfK8YiInZP5Ymfoc2EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzI2MjAwNzE4WhcNMjUwNDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjMxYjRmM2JhNDJiOTNlNTUwNDc3YjRiZDBlNjA3ZTc0 ZDVjOWFmMDc2MWY2NzY1ZDhiYTBkMTQ2Yzg1ZTkxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZBJNWRIasUFgNhH3kLWnuoDT1w8HmoAnXOMV8PgxxHZsh BziikXE4ODc0ux3hjvcY9raRu5t9ZAtqtxsJo9JAOzcS5SwVc64jCP4qt0RP6u3U Qs+0SlaiWCRpMylReTrAdAgyo3zLtZn5RdZ9oNaUWeZEukHikLIqLDpE9z8H4zP+ sQkLgoCmEoCa7zYwR5zQHE85Jah7xBzMi075lC325npuRlSg8Rzwgcxp6LAXLuOd Va8qcgOZuP3jcV7yDHNh3J8saTedioBqX9L0TejgeWjWvSWTUiy4w0TQFQz1ut+P 45GISNEbOqFwsPgvTRU3FOEVQU0LgbZDvVr7i7YLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAjzfBGEaoJJ0XZVMBgLXuPFMNJAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzZmNGQ5YThlLWJlNGEtNDcxNy1iNDdjLTJlMTY5NTJmZDlhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADB8wDQYJKoZIhvcNAQELBQADggEBAEeLGscIgTs/XXA0RGyjS3D6 e12qmkzUAxDHjL9H88uZ82VwEphx/IIhMLgwWnAgTylm/8lLzLJPgKXFv45RBu11 iMJxCZs79whhFbJfvNC9IdSXnmQrdDornLfkfnpC1cjTIeHRTCVqqrkzxnVlIIpC JZ9TPh+7VpZ0ii66pzYGnISc7Cv5x02spxk/sx8L/dGYcdSDmTe5rU+YG4vD81/h m41uDeiGGvehAT339YzuHdVISDZwy0juI6vSlHer3THKRS5kux35S89Os8cBsNLz vPwJajLEyMrBe7rzif6rBlfbik31Fdj+KoE4WddNgaydoMeA8LGfKwDxTPxTAG4= -----END CERTIFICATE-----Generated at Fri Apr 4 23:26:56 2025 by rpki-client