$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa File: b135e8de-4e6c-4d15-87c3-51709cb5a460.roa (raw, json) Hash identifier: codbTwyRG6FoXlI2LBEPfeXCAtZBwUZbgs5HFAHfTUM= Subject key identifier: C6:2B:F9:89:FA:B5:84:DE:6B:78:8C:D2:13:17:E6:20:44:C4:83:3D Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3D754252FEEF3C9674192C83CA6C4278BE41E484 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa Signing time: Tue 04 Mar 2025 22:40:39 +0000 ROA not before: Tue 04 Mar 2025 22:40:39 +0000 ROA not after: Tue 08 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:39c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:75:42:52:fe:ef:3c:96:74:19:2c:83:ca:6c:42:78:be:41:e4:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 4 22:40:39 2025 GMT Not After : Apr 8 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8e:32:f9:fa:30:fa:06:96:73:7f:c4:13:ce: f8:c3:57:c5:34:92:15:99:0b:a2:7b:ea:2e:f7:02: e9:2c:e8:c1:20:80:0f:71:71:c7:e6:8d:6e:39:90: 39:98:e9:29:dc:d4:68:d7:9f:79:00:31:f4:f6:03: 81:c8:2a:f1:97:64:e4:2f:5a:b0:ad:9d:c1:25:7a: 6b:a2:13:fc:0e:65:95:0a:a6:c0:2f:63:1a:b3:05: 21:8d:4a:0e:87:1e:a3:8b:1f:51:35:4e:f8:8e:68: 7e:c3:6f:13:64:38:dd:45:b9:d2:21:3f:47:7e:5c: ee:13:c6:40:ec:53:f6:98:17:cb:6c:12:7b:88:ad: 56:0f:72:92:72:f6:af:4e:19:e6:33:1e:2f:6c:04: 7f:bf:67:87:d4:cb:88:54:ac:1a:a9:51:fc:3b:d3: 41:93:72:c4:7c:de:ed:92:1d:c2:57:1e:f5:27:3b: 38:7f:cd:c2:1f:9a:10:70:20:de:ac:b0:1b:fc:58: 2f:24:fe:3b:9a:8f:6d:16:a8:4f:95:e0:49:8d:4e: 0a:79:c7:bc:7c:6a:e2:36:1e:39:ec:76:d3:95:f6: 5b:e1:3d:95:a2:37:70:ce:7d:0a:95:bd:fa:54:29: 15:af:2b:00:74:91:18:98:e3:e3:94:b7:f5:7a:36: f6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2B:F9:89:FA:B5:84:DE:6B:78:8C:D2:13:17:E6:20:44:C4:83:3D X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:39c::/48 Signature Algorithm: sha256WithRSAEncryption 60:f4:e4:e0:2f:94:e5:84:b3:a3:de:9f:f7:36:8e:13:45:53: 07:d4:1c:a2:c1:ef:57:df:81:17:c0:64:75:35:39:78:58:6d: 25:6b:a8:6e:6f:22:4e:aa:3a:09:07:57:27:ec:5c:8d:54:22: ee:5b:20:b7:6d:9b:19:0f:a8:ae:c0:56:1d:87:2b:24:7f:77: f6:55:f4:11:ff:c6:27:ea:1c:3f:80:e7:8c:47:e1:c5:bd:a1: 54:f9:65:9b:ef:88:11:e8:85:6c:c7:75:cd:0a:c1:fa:66:d9: ad:44:8e:56:26:ce:26:d5:af:98:69:2a:6e:eb:3e:99:c6:56: 46:88:29:c6:2c:2b:90:13:00:54:82:95:30:1f:0f:44:7a:d7: 77:d5:c0:cd:ec:cd:15:2d:cf:af:b6:e7:87:5e:99:4b:28:b4: 21:d7:cc:b1:4f:27:86:2f:1c:45:75:85:cd:66:ea:01:97:1a: 1a:7e:70:ee:60:7e:b8:ef:ba:c5:cd:2e:99:8d:0d:3b:05:07: 23:57:b9:63:bb:41:53:58:3a:32:c0:62:83:7c:87:64:08:ef: 83:62:d7:e2:1b:1a:81:c3:1c:ac:07:2c:da:e4:67:fc:74:ed: de:8b:ca:c6:73:75:6a:1b:73:fc:9a:a7:4d:0d:38:ec:e5:dc: 55:11:7a:84 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPXVCUv7vPJZ0GSyDymxCeL5B5IQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzA0MjI0MDM5WhcNMjUwNDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTI5ZTdhMmIzYTE2MmEzMzFmYzg3NTI1ZDk2NTNmMjg0 YWJkZDg1ZjdkNGE0ZmUxNjQ0YzJlN2Y3OTYzZjAzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfjjL5+jD6BpZzf8QTzvjDV8U0khWZC6J76i73Auks6MEg gA9xccfmjW45kDmY6Snc1GjXn3kAMfT2A4HIKvGXZOQvWrCtncElemuiE/wOZZUK psAvYxqzBSGNSg6HHqOLH1E1TviOaH7DbxNkON1FudIhP0d+XO4TxkDsU/aYF8ts EnuIrVYPcpJy9q9OGeYzHi9sBH+/Z4fUy4hUrBqpUfw700GTcsR83u2SHcJXHvUn Ozh/zcIfmhBwIN6ssBv8WC8k/juaj20WqE+V4EmNTgp5x7x8auI2HjnsdtOV9lvh PZWiN3DOfQqVvfpUKRWvKwB0kRiY4+OUt/V6NvYTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxiv5ifq1hN5reIzSExfmIETEgz0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IxMzVlOGRlLTRlNmMtNGQxNS04N2MzLTUxNzA5Y2I1YTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5wwDQYJKoZIhvcNAQELBQADggEBAGD05OAvlOWEs6Pen/c2jhNF UwfUHKLB71ffgRfAZHU1OXhYbSVrqG5vIk6qOgkHVyfsXI1UIu5bILdtmxkPqK7A Vh2HKyR/d/ZV9BH/xifqHD+A54xH4cW9oVT5ZZvviBHohWzHdc0Kwfpm2a1EjlYm zibVr5hpKm7rPpnGVkaIKcYsK5ATAFSClTAfD0R613fVwM3szRUtz6+254demUso tCHXzLFPJ4YvHEV1hc1m6gGXGhp+cO5gfrjvusXNLpmNDTsFByNXuWO7QVNYOjLA YoN8h2QI74Ni1+IbGoHDHKwHLNrkZ/x07d6LysZzdWobc/yap00NOOzl3FUReoQ= -----END CERTIFICATE-----Generated at Thu Mar 13 23:49:15 2025 by rpki-client