$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa File: a3dc9780-ee42-4415-930a-4d78bbb4e531.roa (raw, json) Hash identifier: 0yrTsKw4YUhi8MGNzuC2+RbA740KagRaXUtQryI6K04= Subject key identifier: 52:B7:21:88:A9:52:53:1D:AA:1A:B0:BC:B4:86:35:A9:95:6B:89:6E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 281ED18346D2EFC93C6FAA05C85A140A1495D344 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa Signing time: Tue 18 Feb 2025 16:11:08 +0000 ROA not before: Tue 18 Feb 2025 16:11:08 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:1e:d1:83:46:d2:ef:c9:3c:6f:aa:05:c8:5a:14:0a:14:95:d3:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 18 16:11:08 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0d:1c:9e:14:d0:3d:fa:91:47:ab:c5:be:83: 51:28:1a:a4:27:d7:82:cf:85:25:8a:35:bf:ab:62: ad:b1:e1:89:01:52:21:f4:7d:f2:14:18:10:c5:3c: 95:86:77:70:7b:11:74:2b:bb:61:b7:f4:ba:82:15: 53:02:27:1d:c5:73:a8:93:9f:4a:d7:ba:d5:d5:2d: 86:dc:15:a1:af:8a:70:92:a7:7b:96:1f:c6:bd:1d: 27:69:d5:d8:d6:1e:c5:ca:83:c5:1c:db:82:ef:65: a0:af:2b:7d:6e:f1:37:3f:44:12:7e:82:86:67:2d: de:a3:20:67:00:9e:50:e4:43:ce:06:7e:7c:d9:d6: 56:cd:77:2a:24:af:2e:7a:60:ca:a5:87:c4:4c:8c: f2:2e:a9:ef:d1:16:30:8d:0d:ab:b9:64:ec:e5:66: 2e:dc:62:34:a6:e0:ee:17:ea:99:9b:8c:60:6e:a7: b3:8d:16:15:5b:23:aa:61:08:31:14:e9:27:7c:d7: e5:24:f6:2f:65:41:a2:8b:cb:86:27:de:16:0e:94: 76:91:87:e0:ff:7b:86:06:3c:a8:f1:3e:f1:01:19: 56:56:f4:21:19:87:35:70:e4:c7:20:6a:fd:97:d2: a6:a0:66:af:b6:4f:47:14:4a:b3:b0:b5:6a:12:85: bd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B7:21:88:A9:52:53:1D:AA:1A:B0:BC:B4:86:35:A9:95:6B:89:6E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a3dc9780-ee42-4415-930a-4d78bbb4e531.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c02::/48 Signature Algorithm: sha256WithRSAEncryption 3e:e3:8a:e7:2f:8f:69:0a:02:8c:e1:9e:02:85:40:fa:fa:71: 03:c9:85:37:08:bd:93:68:03:4a:15:16:1e:b2:68:6e:53:44: 31:84:16:53:06:02:00:dd:d4:0c:58:d9:14:1c:f6:a3:9a:5e: 74:0b:96:21:30:35:ac:f4:d7:f5:e9:ad:4e:b8:c7:1e:70:d3: c0:45:a1:19:b3:02:ab:43:90:ab:3f:f5:22:09:47:49:be:45: d7:07:0a:25:b5:ef:eb:a1:7b:18:73:52:f9:f0:6f:4f:3c:7c: 82:8f:bb:05:57:18:68:29:47:5a:b2:4a:39:93:6e:93:7e:fc: dd:af:2d:35:cb:a9:23:aa:27:a9:9f:ca:7b:4b:11:15:8a:40: 04:a4:35:a8:87:75:ce:64:7c:2c:49:f8:13:0a:26:e6:0b:82: 02:76:c9:02:73:ea:36:90:88:60:d6:6c:d4:84:03:3f:7e:d5: 6e:83:92:3a:36:c3:32:be:fe:61:11:f0:89:14:b3:98:c4:2d: 86:6a:24:55:e5:55:c1:2a:2d:1c:fb:1a:d5:ba:36:14:a6:00: 1d:d0:5e:cb:6f:13:d8:02:c8:77:6c:34:f8:f4:b0:09:ab:98: 40:27:7b:fd:80:fc:9b:54:ff:47:15:c6:5f:50:26:a7:f0:ef: 48:0d:38:53 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKB7Rg0bS78k8b6oFyFoUChSV00QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjE4MTYxMTA4WhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTZkY2FkOThjMjY4ZjUyMzkzNGVjOGQ2OGY1MmUyOTI0 NjBmYmRkOGI3ZDYxYzkwMWIzOWY4ZWM2ZmQxMzRkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCDRyeFNA9+pFHq8W+g1EoGqQn14LPhSWKNb+rYq2x4YkB UiH0ffIUGBDFPJWGd3B7EXQru2G39LqCFVMCJx3Fc6iTn0rXutXVLYbcFaGvinCS p3uWH8a9HSdp1djWHsXKg8Uc24LvZaCvK31u8Tc/RBJ+goZnLd6jIGcAnlDkQ84G fnzZ1lbNdyokry56YMqlh8RMjPIuqe/RFjCNDau5ZOzlZi7cYjSm4O4X6pmbjGBu p7ONFhVbI6phCDEU6Sd81+Uk9i9lQaKLy4Yn3hYOlHaRh+D/e4YGPKjxPvEBGVZW 9CEZhzVw5Mcgav2X0qagZq+2T0cUSrOwtWoShb1ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUrchiKlSUx2qGrC8tIY1qZVriW4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2EzZGM5NzgwLWVlNDItNDQxNS05MzBhLTRkNzhiYmI0ZTUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAIwDQYJKoZIhvcNAQELBQADggEBAD7jiucvj2kKAozhngKFQPr6 cQPJhTcIvZNoA0oVFh6yaG5TRDGEFlMGAgDd1AxY2RQc9qOaXnQLliEwNaz01/Xp rU64xx5w08BFoRmzAqtDkKs/9SIJR0m+RdcHCiW17+uhexhzUvnwb088fIKPuwVX GGgpR1qySjmTbpN+/N2vLTXLqSOqJ6mfyntLERWKQASkNaiHdc5kfCxJ+BMKJuYL ggJ2yQJz6jaQiGDWbNSEAz9+1W6Dkjo2wzK+/mER8IkUs5jELYZqJFXlVcEqLRz7 GtW6NhSmAB3QXstvE9gCyHdsNPj0sAmrmEAne/2A/JtU/0cVxl9QJqfw70gNOFM= -----END CERTIFICATE-----Generated at Thu Mar 13 23:31:50 2025 by rpki-client