$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa File: b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa (raw, json) Hash identifier: AdoXarUer/18RvpJk5K0oJCuYaKia/Zu3Js2KzHeWW0= Subject key identifier: 62:9A:2A:66:8A:B6:45:9C:17:E2:5C:63:FE:61:D1:7D:3A:97:8B:DF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 110D96A2745CDEA55C2D2E447A132D8725FCAD89 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa Signing time: Tue 06 May 2025 00:30:44 +0000 ROA not before: Tue 06 May 2025 00:30:44 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c07::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:0d:96:a2:74:5c:de:a5:5c:2d:2e:44:7a:13:2d:87:25:fc:ad:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 6 00:30:44 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=a8ada2164032ae3cb09a890944a15fa745e568136c4ecb18f2718254fee5e93e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:17:0e:00:28:ae:4d:f4:25:e2:db:f0:38:e7: f8:f9:4d:bc:6f:6a:ee:33:de:54:d4:e8:0d:22:5f: 83:7f:c5:ec:a9:ff:27:36:3d:70:ae:06:a6:4f:56: a8:bd:1e:44:e1:ea:c7:26:3f:17:bf:85:c7:b2:28: aa:97:43:ca:b4:22:d4:42:f8:1b:24:2f:d9:c3:07: da:60:f7:4e:0e:57:5d:a0:07:e0:02:80:98:a8:c9: 73:9b:84:7a:8c:89:96:b7:90:9b:b2:ed:54:51:c6: 36:19:37:0c:ea:46:d3:a2:b6:a8:21:37:50:39:db: 91:2e:f0:08:bf:d7:da:f1:7b:72:16:38:ea:92:3d: 19:81:5a:86:5d:f2:28:07:d3:f1:0b:1c:f9:e8:79: ab:be:c6:57:b8:af:1a:ef:81:4f:d5:9b:b5:af:55: 14:b2:b8:20:40:3b:98:35:ac:8e:06:d9:19:ac:7d: e6:f5:19:5e:58:64:c6:ad:a7:1a:90:ea:96:76:44: 86:a9:08:82:9d:12:ac:a8:fd:7b:8e:36:95:76:f2: 56:6c:f9:0f:b5:59:d1:9f:5c:97:5b:e1:53:77:f6: a4:7a:a6:0e:af:40:94:65:d0:05:a7:c5:41:46:06: ce:e7:a5:29:03:99:a4:1d:9c:50:64:be:33:a3:60: b3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:9A:2A:66:8A:B6:45:9C:17:E2:5C:63:FE:61:D1:7D:3A:97:8B:DF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c07::/48 Signature Algorithm: sha256WithRSAEncryption 6c:1b:db:78:a6:2a:de:d7:72:0f:99:fb:af:46:6b:0d:68:bb: b7:8d:dc:cd:87:4a:f1:8e:d0:f1:e2:a3:7b:7e:72:5a:eb:05: 8a:55:1c:08:1b:5e:b8:6c:cd:42:8c:42:b7:4d:59:78:ed:84: 27:6d:8f:1c:04:75:ea:77:93:54:a5:42:e1:e5:92:c8:a0:c7: 1a:68:00:1e:f6:3a:10:14:85:b9:1c:e1:0b:81:ea:df:90:09: 4e:24:89:ee:7c:42:ff:cb:4e:f1:99:60:34:b6:97:a3:43:f4: aa:38:b4:d6:08:66:8f:f8:de:a3:b0:82:f3:40:54:e4:04:d1: b3:f8:34:13:29:7f:12:f6:1b:b5:85:95:70:a4:80:25:ea:df: b4:ca:8c:de:6c:81:d4:bf:28:98:35:c7:35:c6:72:a9:b3:43: 44:09:49:ea:96:8f:b8:bc:57:65:5a:dd:dc:4e:bd:63:62:44: ae:e2:27:44:ee:cf:65:d0:da:a4:74:93:dd:24:80:f6:90:34: 0b:aa:70:a8:de:f6:66:48:a7:3e:c0:5c:92:2c:31:3f:2f:03: 6d:f0:7c:22:20:46:d5:0a:54:ac:4f:ee:33:6e:ff:5f:df:6a: 40:f3:a5:e3:4f:bb:7e:66:f4:90:94:20:ee:9e:26:9f:21:42: c0:45:57:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEQ2WonRc3qVcLS5EehMthyX8rYkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTA2MDAzMDQ0WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGFkYTIxNjQwMzJhZTNjYjA5YTg5MDk0NGExNWZhNzQ1 ZTU2ODEzNmM0ZWNiMThmMjcxODI1NGZlZTVlOTNlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNFw4AKK5N9CXi2/A45/j5Tbxvau4z3lTU6A0iX4N/xeyp /yc2PXCuBqZPVqi9HkTh6scmPxe/hceyKKqXQ8q0ItRC+BskL9nDB9pg904OV12g B+ACgJioyXObhHqMiZa3kJuy7VRRxjYZNwzqRtOitqghN1A525Eu8Ai/19rxe3IW OOqSPRmBWoZd8igH0/ELHPnoeau+xle4rxrvgU/Vm7WvVRSyuCBAO5g1rI4G2Rms feb1GV5YZMatpxqQ6pZ2RIapCIKdEqyo/XuONpV28lZs+Q+1WdGfXJdb4VN39qR6 pg6vQJRl0AWnxUFGBs7npSkDmaQdnFBkvjOjYLNpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYpoqZoq2RZwX4lxj/mHRfTqXi98wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2I0MTg4ODczLWY1ZjgtNGFiOS1hOWZhLTdiNjFhNDg2MGYyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAcwDQYJKoZIhvcNAQELBQADggEBAGwb23imKt7Xcg+Z+69Gaw1o u7eN3M2HSvGO0PHio3t+clrrBYpVHAgbXrhszUKMQrdNWXjthCdtjxwEdep3k1Sl QuHlksigxxpoAB72OhAUhbkc4QuB6t+QCU4kie58Qv/LTvGZYDS2l6ND9Ko4tNYI Zo/43qOwgvNAVOQE0bP4NBMpfxL2G7WFlXCkgCXq37TKjN5sgdS/KJg1xzXGcqmz Q0QJSeqWj7i8V2Va3dxOvWNiRK7iJ0Tuz2XQ2qR0k90kgPaQNAuqcKje9mZIpz7A XJIsMT8vA23wfCIgRtUKVKxP7jNu/1/fakDzpeNPu35m9JCUIO6eJp8hQsBFV/E= -----END CERTIFICATE-----Generated at Fri May 9 04:50:01 2025 by rpki-client