$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa File: b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa (raw, json) Hash identifier: /IP6/J1VtWcGMJ3uCGV4cq0DuiODTPm3/6zRTv6d5KI= Subject key identifier: 0C:C1:66:3E:9E:93:79:54:62:78:7F:AE:66:76:A5:B8:A9:56:91:C8 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 15BC5CF8493A145CB202BA2F3DDC256017727506 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa Signing time: Tue 18 Feb 2025 16:20:50 +0000 ROA not before: Tue 18 Feb 2025 16:20:50 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c07::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:bc:5c:f8:49:3a:14:5c:b2:02:ba:2f:3d:dc:25:60:17:72:75:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 18 16:20:50 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2c:40:7a:b1:9e:32:90:45:ef:d8:87:25:4c: 7c:1c:ca:c5:ab:67:35:30:95:d0:7b:5e:14:43:98: fa:e1:a0:c4:84:72:95:03:11:da:9a:f6:29:80:38: 22:18:c0:bc:81:a6:55:81:a2:84:78:f7:81:e1:92: 84:48:39:60:38:22:89:80:a0:9b:bd:bd:90:93:b2: c4:5e:be:33:46:3c:31:ad:df:49:b3:0d:02:38:42: e3:b0:ca:b6:51:65:cc:a4:28:26:73:09:41:18:ac: a9:2b:c1:77:ff:d9:9f:6d:98:cd:f8:f6:06:bc:41: 85:a7:8b:11:19:61:07:97:87:f0:67:61:91:e1:34: 0b:32:0a:fb:2b:91:a4:b7:35:04:37:9f:af:bb:f4: 66:d9:a1:d5:8e:85:a3:08:3c:1a:bb:b9:85:7c:d9: 80:ea:c9:b8:80:55:dc:c8:82:2e:03:cf:6d:2c:39: 65:59:da:99:85:91:1a:3d:11:3f:0d:ca:ce:59:23: 77:e8:13:5c:dc:e2:43:a1:47:f2:89:76:45:aa:92: 9d:3a:7b:7a:69:8c:ee:fc:5c:1e:db:94:8d:57:39: a5:3c:78:88:b4:c3:7e:1a:67:89:91:33:91:9c:d8: d0:77:d2:e4:c5:d3:ff:8e:84:21:6a:91:99:49:22: 5a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C1:66:3E:9E:93:79:54:62:78:7F:AE:66:76:A5:B8:A9:56:91:C8 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c07::/48 Signature Algorithm: sha256WithRSAEncryption 27:07:5e:c8:0f:1e:b9:2a:82:9d:ce:2c:e2:0f:4b:6b:1e:50: f9:04:99:cd:0d:a6:16:84:a4:d5:8c:f5:30:93:dd:05:f1:93: 5c:c4:7a:83:ca:dd:30:a1:44:bb:2a:b9:f2:c4:7b:a0:08:47: 00:24:27:02:86:c5:28:99:20:2f:a9:b7:18:9f:12:2d:f2:19: a7:be:52:cf:9f:95:27:7c:e1:33:46:ef:92:cc:44:3b:60:26: e3:e2:35:a7:8d:03:39:51:e7:cf:45:e8:45:51:a3:cf:07:60: d8:4f:a1:f2:5e:f1:a1:c6:85:9b:11:65:15:66:0b:99:b2:86: 60:cf:a0:d4:52:6d:88:c7:bf:0e:b9:fa:7a:82:8e:7d:f9:df: 78:aa:46:cc:05:e0:2e:da:41:5a:05:58:d6:8a:7b:cd:f6:f7: ea:d8:46:85:de:c1:a9:c2:2c:fc:c7:97:eb:61:50:db:2a:7e: e5:49:df:d9:2c:e2:33:c8:77:a9:bc:5f:23:d1:a8:01:16:5a: 47:42:f8:9f:b0:84:aa:49:86:06:6d:c8:a9:07:68:21:79:d3: 23:eb:e5:eb:f6:4f:40:ef:ab:05:a4:67:84:e4:6e:ca:af:4b: b6:62:26:42:f5:23:9b:aa:c4:3b:cf:dd:40:eb:d2:70:0b:91: 56:c6:a3:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFbxc+Ek6FFyyArovPdwlYBdydQYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjE4MTYyMDUwWhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmE1OGU5M2VlZTE4ZDE2ODA3ZWI1OGE2N2RmMWRlYzdl NTcwYTEwODQ2OTA1ZDM4YmFlYjVhYzUxZmFkZjgxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3LEB6sZ4ykEXv2IclTHwcysWrZzUwldB7XhRDmPrhoMSE cpUDEdqa9imAOCIYwLyBplWBooR494HhkoRIOWA4IomAoJu9vZCTssRevjNGPDGt 30mzDQI4QuOwyrZRZcykKCZzCUEYrKkrwXf/2Z9tmM349ga8QYWnixEZYQeXh/Bn YZHhNAsyCvsrkaS3NQQ3n6+79GbZodWOhaMIPBq7uYV82YDqybiAVdzIgi4Dz20s OWVZ2pmFkRo9ET8Nys5ZI3foE1zc4kOhR/KJdkWqkp06e3ppjO78XB7blI1XOaU8 eIi0w34aZ4mRM5Gc2NB30uTF0/+OhCFqkZlJIloXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDMFmPp6TeVRieH+uZnaluKlWkcgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2I0MTg4ODczLWY1ZjgtNGFiOS1hOWZhLTdiNjFhNDg2MGYyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAcwDQYJKoZIhvcNAQELBQADggEBACcHXsgPHrkqgp3OLOIPS2se UPkEmc0NphaEpNWM9TCT3QXxk1zEeoPK3TChRLsqufLEe6AIRwAkJwKGxSiZIC+p txifEi3yGae+Us+flSd84TNG75LMRDtgJuPiNaeNAzlR589F6EVRo88HYNhPofJe 8aHGhZsRZRVmC5myhmDPoNRSbYjHvw65+nqCjn3533iqRswF4C7aQVoFWNaKe832 9+rYRoXewanCLPzHl+thUNsqfuVJ39ks4jPId6m8XyPRqAEWWkdC+J+whKpJhgZt yKkHaCF50yPr5ev2T0DvqwWkZ4TkbsqvS7ZiJkL1I5uqxDvP3UDr0nALkVbGo9Q= -----END CERTIFICATE-----Generated at Thu Mar 13 23:52:45 2025 by rpki-client