$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/834cec14-31c8-42fb-ab06-5c07ee79d6d1.roa File: 834cec14-31c8-42fb-ab06-5c07ee79d6d1.roa (raw, json) Hash identifier: BXMt6npjJipMudjqc6dOUnzJdfUzf83kh2j9wpGD+Bg= Subject key identifier: A5:A0:20:F6:07:7F:C4:CE:FA:3D:3A:A4:F4:A3:17:B8:AE:C2:22:49 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2777178231CAA9933AF8E66A19AF7ED6BD8C32BC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/834cec14-31c8-42fb-ab06-5c07ee79d6d1.roa Signing time: Mon 17 Mar 2025 15:20:22 +0000 ROA not before: Mon 17 Mar 2025 15:20:22 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:647::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:77:17:82:31:ca:a9:93:3a:f8:e6:6a:19:af:7e:d6:bd:8c:32:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 17 15:20:22 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9c:99:e6:dd:23:ca:6b:e0:68:2b:4a:af:bc: 2b:02:fb:4c:66:54:a2:b4:77:b9:7c:19:09:53:6c: 41:68:7d:99:bf:e4:92:e9:1e:4b:83:ed:3e:dd:9c: 51:69:c8:4c:53:c6:19:2e:85:60:0b:12:66:c8:be: 35:a0:65:a0:2b:b9:f8:f7:6a:44:12:66:7f:ef:3c: 26:e1:2a:67:2c:9c:34:ba:ee:ea:2e:ab:b0:15:c0: 3a:95:e2:1a:52:97:f6:07:68:06:ba:42:eb:be:7a: 2a:b1:41:c1:4e:c8:aa:70:e9:73:41:5b:47:48:31: 7a:6a:ff:5f:4d:df:8a:ac:ae:9b:50:55:f1:a9:c2: 86:c0:c2:cd:69:7b:4a:05:88:e8:a5:26:cf:9c:c6: 03:f1:51:32:32:ea:29:a3:0c:1e:43:05:63:55:67: f1:8b:cb:b4:5a:bc:a2:7d:cc:ea:b0:b0:4e:be:02: ef:46:01:e1:56:c2:d1:1d:06:35:35:88:99:86:a3: e2:95:0c:6b:67:ff:9e:a2:bb:7f:f6:56:6d:5f:c4: d6:fb:94:25:eb:a8:ff:9a:35:01:5f:b0:4f:ff:a8: 66:e4:13:d0:22:07:81:90:e8:6c:5e:3a:69:dc:91: 2d:ff:52:60:8e:68:d5:4d:7c:4e:21:3d:63:4c:62: 15:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A0:20:F6:07:7F:C4:CE:FA:3D:3A:A4:F4:A3:17:B8:AE:C2:22:49 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/834cec14-31c8-42fb-ab06-5c07ee79d6d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:647::/48 Signature Algorithm: sha256WithRSAEncryption 3d:92:6f:ea:89:57:00:4e:00:ae:aa:3b:7c:21:de:0b:7e:c8: a2:2f:65:3b:9e:56:6c:17:63:ce:c9:a0:1f:d9:a9:7c:30:1b: e6:02:8a:55:50:35:31:97:39:74:d3:69:a3:92:96:2b:96:37: 99:91:6b:e7:b0:82:fc:06:79:31:df:de:98:80:e6:8a:34:a3: 38:53:68:b5:77:76:81:a6:3c:03:0c:09:b0:2b:c2:2f:e7:0b: d6:ce:96:2e:34:02:46:5b:19:07:77:cd:30:5b:0d:44:2a:25: aa:58:61:f0:b8:c3:d2:9a:2c:52:d8:b2:a8:ff:63:c9:c4:6a: 8c:c5:13:c2:c3:45:e9:3c:6c:ad:21:89:17:12:18:de:f1:79: 4c:1c:f3:9f:a2:7a:4a:89:98:01:05:c4:40:10:27:5e:3b:1a: 81:c9:c1:2f:02:eb:ae:5c:00:b6:81:1c:c7:d6:af:ae:a0:fb: d1:7f:5d:8a:b8:13:8d:7f:fd:c9:75:fd:96:ee:f4:a9:fb:5a: 24:0a:fa:0f:84:81:2a:6c:53:15:59:d2:9a:d0:f5:ac:35:37: 6b:9f:a6:ce:ce:a5:a3:d0:8f:6e:e2:64:2a:17:1b:8f:56:6f: 5a:36:a1:37:a8:10:ac:45:66:ce:9e:3f:89:cc:9b:49:fb:8d: da:a2:43:1c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ3cXgjHKqZM6+OZqGa9+1r2MMrwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzE3MTUyMDIyWhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODI3NjcxZGU5MWM5NzAwZmE5YmNiNDVmMDA4ZTEzYWM2 NDliNWRkZTVjMzFhNjgzNGY2NTg0YzNiN2Q3MGQyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMnJnm3SPKa+BoK0qvvCsC+0xmVKK0d7l8GQlTbEFofZm/ 5JLpHkuD7T7dnFFpyExTxhkuhWALEmbIvjWgZaArufj3akQSZn/vPCbhKmcsnDS6 7uouq7AVwDqV4hpSl/YHaAa6Quu+eiqxQcFOyKpw6XNBW0dIMXpq/19N34qsrptQ VfGpwobAws1pe0oFiOilJs+cxgPxUTIy6imjDB5DBWNVZ/GLy7RavKJ9zOqwsE6+ Au9GAeFWwtEdBjU1iJmGo+KVDGtn/56iu3/2Vm1fxNb7lCXrqP+aNQFfsE//qGbk E9AiB4GQ6GxeOmnckS3/UmCOaNVNfE4hPWNMYhUzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpaAg9gd/xM76PTqk9KMXuK7CIkkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzgzNGNlYzE0LTMxYzgtNDJmYi1hYjA2LTVjMDdlZTc5ZDZkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkcwDQYJKoZIhvcNAQELBQADggEBAD2Sb+qJVwBOAK6qO3wh3gt+ yKIvZTueVmwXY87JoB/ZqXwwG+YCilVQNTGXOXTTaaOSliuWN5mRa+ewgvwGeTHf 3piA5oo0ozhTaLV3doGmPAMMCbArwi/nC9bOli40AkZbGQd3zTBbDUQqJapYYfC4 w9KaLFLYsqj/Y8nEaozFE8LDRek8bK0hiRcSGN7xeUwc85+iekqJmAEFxEAQJ147 GoHJwS8C665cALaBHMfWr66g+9F/XYq4E41//cl1/Zbu9Kn7WiQK+g+EgSpsUxVZ 0prQ9aw1N2ufps7OpaPQj27iZCoXG49Wb1o2oTeoEKxFZs6eP4nMm0n7jdqiQxw= -----END CERTIFICATE-----Generated at Sun Apr 6 00:02:11 2025 by rpki-client