$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f02d3a40-b034-4d92-872a-57ed67af80de.roa File: f02d3a40-b034-4d92-872a-57ed67af80de.roa (raw, json) Hash identifier: VoS/qmrQLMRtAg2A5n25ifJ85/nubzK8tJ9fGE0DwOQ= Subject key identifier: 17:4C:2B:CC:96:75:81:FD:9A:EB:0D:D9:A3:90:74:12:6D:64:CB:28 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 25F774B119A8CEE04275F79A4B7BBBA5AFDF69A2 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f02d3a40-b034-4d92-872a-57ed67af80de.roa Signing time: Tue 01 Apr 2025 00:50:08 +0000 ROA not before: Tue 01 Apr 2025 00:50:08 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:48f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f7:74:b1:19:a8:ce:e0:42:75:f7:9a:4b:7b:bb:a5:af:df:69:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 00:50:08 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:93:3d:bb:0f:b1:22:33:00:8c:75:28:36: b0:28:80:c1:a5:59:4d:08:e2:37:3a:26:4b:f2:4d: c5:85:81:3a:53:9b:08:15:f3:28:f3:79:64:40:6b: 10:ef:98:b2:69:0f:27:a6:13:72:e3:77:4e:93:6e: d9:bc:40:e9:67:d4:02:b2:1f:c4:d3:e7:6f:56:35: 59:c7:ef:7f:c2:d7:72:0e:71:a5:93:b4:17:af:a7: 12:33:a7:1f:f8:55:13:14:c3:d6:55:e4:00:4b:4d: 46:02:da:39:d1:49:f1:e5:ec:6b:8d:31:0b:b3:9a: e2:a0:9f:c6:39:bc:93:34:f3:c6:58:ba:bd:58:f7: 35:9e:b8:18:28:8d:50:a7:25:a9:f8:7d:8f:5c:0c: f0:51:55:d7:6c:f2:9a:66:2f:d9:86:e0:e6:7c:d9: a0:32:e3:25:7b:41:ac:37:8f:20:1a:b6:0e:73:03: ef:34:83:fd:9a:f1:3a:9e:75:f5:5a:e8:13:4e:83: 39:13:ec:63:43:db:58:ac:3e:51:e8:ba:8f:d2:0d: 80:be:28:47:14:b5:88:a3:ff:c9:9c:48:7f:37:72: 2b:d3:5b:08:ef:66:ec:bd:60:3c:68:a7:35:cb:d9: 26:d0:b4:99:d3:f9:16:26:25:47:a5:c1:03:64:a4: e8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:4C:2B:CC:96:75:81:FD:9A:EB:0D:D9:A3:90:74:12:6D:64:CB:28 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f02d3a40-b034-4d92-872a-57ed67af80de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:48f::/48 Signature Algorithm: sha256WithRSAEncryption 5a:5b:0b:05:cd:4d:fe:09:d3:37:a3:df:07:bf:0e:4f:b9:72: dd:12:df:19:3f:31:5c:28:f6:16:2d:cc:f0:44:1d:d9:b1:66: ee:73:bc:53:9d:07:fb:09:8b:b4:1c:45:2b:94:ff:ea:27:a6: a8:a1:c9:df:74:3d:91:1a:67:a7:88:8d:56:a0:cb:70:47:1f: 36:05:09:27:0e:6a:2f:24:ca:d2:91:e0:b6:52:fe:2f:e9:1a: ef:3c:af:65:40:72:f5:81:01:f3:c1:49:ac:eb:73:5a:d7:93: 12:1e:2d:da:c3:c2:89:ff:95:d0:fb:c3:f0:fe:7b:7e:69:53: a3:aa:80:00:37:f5:38:c5:a4:ad:07:34:e0:29:ec:e0:c3:4d: 20:0d:5c:70:86:ff:6b:31:1f:e5:b5:cd:5b:c3:2d:e1:7f:99: f7:5c:fb:13:f3:d6:e6:04:ff:36:08:de:89:41:9d:b2:ab:67: 7a:81:25:42:7d:e9:92:14:be:c2:4f:ec:35:c9:a2:46:b3:a5: 1d:80:a2:d5:18:14:3b:4d:38:65:47:a4:d3:62:f9:cc:c8:aa: 75:ff:e6:10:6f:5e:48:e4:19:7e:05:0f:6c:53:18:36:0c:dd: 75:8b:51:ae:2a:8f:5e:ab:95:19:13:3b:d6:d6:fb:26:9d:93: f1:fc:53:f9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJfd0sRmozuBCdfeaS3u7pa/faaIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMDA1MDA4WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzU2YjUxYzdiMGVkZTRiNTA0YWVkOWJmMzQwYWQwMzg2 MWNlZGVkODVlZTE0ZWJjYmM4Yzc3MTc2NTU0YjhlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6KZM9uw+xIjMAjHUoNrAogMGlWU0I4jc6JkvyTcWFgTpT mwgV8yjzeWRAaxDvmLJpDyemE3Ljd06Tbtm8QOln1AKyH8TT529WNVnH73/C13IO caWTtBevpxIzpx/4VRMUw9ZV5ABLTUYC2jnRSfHl7GuNMQuzmuKgn8Y5vJM088ZY ur1Y9zWeuBgojVCnJan4fY9cDPBRVdds8ppmL9mG4OZ82aAy4yV7Qaw3jyAatg5z A+80g/2a8TqedfVa6BNOgzkT7GND21isPlHouo/SDYC+KEcUtYij/8mcSH83civT WwjvZuy9YDxopzXL2SbQtJnT+RYmJUelwQNkpOiTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUF0wrzJZ1gf2a6w3Zo5B0Em1kyygwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2YwMmQzYTQwLWIwMzQtNGQ5Mi04NzJhLTU3ZWQ2N2FmODBkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABI8wDQYJKoZIhvcNAQELBQADggEBAFpbCwXNTf4J0zej3we/Dk+5 ct0S3xk/MVwo9hYtzPBEHdmxZu5zvFOdB/sJi7QcRSuU/+onpqihyd90PZEaZ6eI jVagy3BHHzYFCScOai8kytKR4LZS/i/pGu88r2VAcvWBAfPBSazrc1rXkxIeLdrD won/ldD7w/D+e35pU6OqgAA39TjFpK0HNOAp7ODDTSANXHCG/2sxH+W1zVvDLeF/ mfdc+xPz1uYE/zYI3olBnbKrZ3qBJUJ96ZIUvsJP7DXJokazpR2AotUYFDtNOGVH pNNi+czIqnX/5hBvXkjkGX4FD2xTGDYM3XWLUa4qj16rlRkTO9bW+yadk/H8U/k= -----END CERTIFICATE-----Generated at Fri Apr 4 23:34:03 2025 by rpki-client