$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e3c66b01-c8b4-4cf4-a54f-8356d3d956ed.roa File: e3c66b01-c8b4-4cf4-a54f-8356d3d956ed.roa (raw, json) Hash identifier: uwwtTMYUU5eoo9E01LQT/+M7M2JbBw7ytwRnH02eF88= Subject key identifier: 86:7B:4F:E5:F6:79:BB:CC:C8:4D:39:54:2E:32:E2:A0:A5:32:66:8E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 710D1B42CB564DD2467B8833543217C4B5895C2C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e3c66b01-c8b4-4cf4-a54f-8356d3d956ed.roa Signing time: Tue 18 Feb 2025 16:30:24 +0000 ROA not before: Tue 18 Feb 2025 16:30:24 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:0d:1b:42:cb:56:4d:d2:46:7b:88:33:54:32:17:c4:b5:89:5c:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 18 16:30:24 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3b:60:c1:aa:fa:cf:15:d5:2b:9a:7b:9d:0d: 07:90:68:34:fd:46:c4:a8:6b:f7:9c:e6:53:eb:b3: c2:d2:6f:da:24:38:7c:48:a8:1b:06:e8:2c:35:46: b3:7c:2f:1b:cc:63:ac:29:ff:61:5f:48:af:7b:e9: 45:c2:62:04:78:0b:17:72:07:c2:f6:fd:82:01:28: 6c:53:6a:3f:39:f7:64:1a:67:f4:86:0a:5f:3e:ae: c5:f8:d0:6a:72:95:cb:28:8e:55:ba:e7:47:d0:84: 67:12:c8:e8:2d:26:db:20:01:5a:35:23:32:34:b5: 74:6b:b1:d2:41:49:9b:b9:93:3c:d5:2d:72:09:e0: da:fb:19:54:c8:47:db:d6:ff:43:71:89:04:75:eb: c2:eb:ca:4d:8e:a3:32:20:42:81:2d:9e:36:49:71: a7:29:b1:21:95:b2:d2:c7:b7:a7:bd:2c:9e:23:36: 9a:61:61:27:c8:e7:93:ed:db:5e:50:eb:ae:55:80: ad:e6:58:17:d2:f3:f6:c0:23:19:90:31:c1:b4:90: d4:0c:f4:5a:2a:e4:82:60:2a:c3:9d:19:06:3a:65: 3a:e4:ad:4e:18:31:8b:9a:d3:62:31:45:a6:22:ba: 0b:00:2d:af:ba:06:93:2a:fa:06:e3:01:bf:12:93: d7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7B:4F:E5:F6:79:BB:CC:C8:4D:39:54:2E:32:E2:A0:A5:32:66:8E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e3c66b01-c8b4-4cf4-a54f-8356d3d956ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0f::/48 Signature Algorithm: sha256WithRSAEncryption 13:5e:0d:2c:64:6b:69:fe:0e:d3:ce:41:09:bb:95:4b:3b:d2: fc:60:fe:a6:6d:9e:68:06:3f:f8:1e:dd:51:4e:49:59:8a:c4: 4f:77:0c:0d:0f:b4:da:14:77:96:08:9e:d2:5f:17:f3:5c:0a: 0b:98:70:87:b1:13:8a:07:68:0d:1a:c2:c7:9c:12:f2:ba:dc: c3:b8:64:75:72:39:b8:be:9e:8d:9c:42:f8:a9:0f:04:78:76: 34:b4:95:93:83:cc:e7:33:3b:ea:62:3c:6b:6d:01:07:1d:f9: 5d:ac:4e:af:ca:e8:c0:a9:c3:7d:c5:e9:36:8b:34:56:75:6a: 47:3e:fd:6d:90:3a:7c:52:62:3e:6a:e8:74:9c:ed:0e:38:a3: 75:2f:b3:90:69:15:2a:c4:cd:42:d1:54:c7:67:4a:25:25:d4: 47:b3:0f:26:5c:8e:2a:87:b4:45:93:0e:c5:85:3b:d4:19:b9: c0:ea:d0:16:7e:06:4e:ae:52:67:eb:39:48:39:21:46:6c:f4: 33:14:db:01:d3:c3:ad:af:df:7a:1c:72:86:6f:9a:61:5a:56: 35:0d:29:00:53:1c:bf:0d:fb:66:ef:dd:4b:b0:b4:ae:28:ec: 04:45:4c:27:bb:2e:a5:58:63:da:37:3c:ed:c7:0e:c0:53:16: e1:35:6f:73 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcQ0bQstWTdJGe4gzVDIXxLWJXCwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjE4MTYzMDI0WhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZGJkYTllNzU3MWIzN2Q5NjcxZTlmNTg2OTQ0NTI2ODQ2 MjA5NTM5YTU3OTFiOGU3NWZlMzM5MTg2YzY2ZWYyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6O2DBqvrPFdUrmnudDQeQaDT9RsSoa/ec5lPrs8LSb9ok OHxIqBsG6Cw1RrN8LxvMY6wp/2FfSK976UXCYgR4CxdyB8L2/YIBKGxTaj8592Qa Z/SGCl8+rsX40GpylcsojlW650fQhGcSyOgtJtsgAVo1IzI0tXRrsdJBSZu5kzzV LXIJ4Nr7GVTIR9vW/0NxiQR168Lryk2OozIgQoEtnjZJcacpsSGVstLHt6e9LJ4j NpphYSfI55Pt215Q665VgK3mWBfS8/bAIxmQMcG0kNQM9Foq5IJgKsOdGQY6ZTrk rU4YMYua02IxRaYiugsALa+6BpMq+gbjAb8Sk9dvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhntP5fZ5u8zITTlULjLioKUyZo4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2UzYzY2YjAxLWM4YjQtNGNmNC1hNTRmLTgzNTZkM2Q5NTZlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA8wDQYJKoZIhvcNAQELBQADggEBABNeDSxka2n+DtPOQQm7lUs7 0vxg/qZtnmgGP/ge3VFOSVmKxE93DA0PtNoUd5YIntJfF/NcCguYcIexE4oHaA0a wsecEvK63MO4ZHVyObi+no2cQvipDwR4djS0lZODzOczO+piPGttAQcd+V2sTq/K 6MCpw33F6TaLNFZ1akc+/W2QOnxSYj5q6HSc7Q44o3Uvs5BpFSrEzULRVMdnSiUl 1EezDyZcjiqHtEWTDsWFO9QZucDq0BZ+Bk6uUmfrOUg5IUZs9DMU2wHTw62v33oc coZvmmFaVjUNKQBTHL8N+2bv3UuwtK4o7ARFTCe7LqVYY9o3PO3HDsBTFuE1b3M= -----END CERTIFICATE-----Generated at Thu Mar 13 23:52:59 2025 by rpki-client