$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f45e2fc4-e171-4aa3-862b-4af57208c9ee.roa File: f45e2fc4-e171-4aa3-862b-4af57208c9ee.roa (raw, json) Hash identifier: q8YLGf1apDVinWLRBZK1AIyuhUF9GwIvOlqqfgNb5y0= Subject key identifier: 18:87:9E:93:B2:75:D9:76:33:3B:B8:E9:D2:0A:F7:7F:3A:5C:C9:69 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4DA239FD3605B47205969994FA74FFB7719594EF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f45e2fc4-e171-4aa3-862b-4af57208c9ee.roa Signing time: Tue 20 May 2025 17:51:07 +0000 ROA not before: Tue 20 May 2025 17:51:07 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a2:39:fd:36:05:b4:72:05:96:99:94:fa:74:ff:b7:71:95:94:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:51:07 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=ede8a8fbe1778f6d3a99026fe77294b0c7147a53b17094eab72025a9b5362133, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:01:43:cd:fe:34:b5:b1:f5:42:41:72:89:dd: 26:7e:94:22:b8:75:1b:40:16:8a:6a:07:73:ef:74: 1d:c8:d8:d7:26:91:17:b1:aa:1e:8c:f1:23:b9:02: 71:ae:61:96:fb:2f:52:e8:dd:3c:43:29:e3:32:d1: 8b:c8:bc:60:45:f5:25:11:7b:af:39:3e:a4:49:8f: 04:bf:5f:de:a8:e2:4c:98:d6:49:64:0c:c8:2f:7f: f8:03:0f:e9:0c:d0:dc:0d:1c:cb:3d:fc:ea:17:ce: 4f:1e:01:c0:80:b4:d8:8b:10:b7:2a:83:c7:fb:a7: 47:2b:f3:ae:f5:8d:4c:c7:e6:d4:49:1f:3e:24:1d: 36:fb:1c:7d:7c:4e:aa:4f:dd:9a:b7:4b:f6:a3:41: c2:69:17:65:18:20:af:44:96:f6:3c:b3:79:86:a2: c4:d1:34:5f:e6:fe:51:1d:5e:2c:24:14:d4:d4:19: 79:ca:8b:7d:0c:a6:8e:2e:32:d1:2f:d4:1d:35:8a: 79:93:4f:67:df:28:d7:d5:3c:d6:64:56:9c:6b:8e: 08:68:68:88:a2:b3:90:9a:07:79:4d:61:92:63:d4: 67:e8:94:a5:aa:7b:1c:72:b0:2f:ce:85:ca:57:c0: f9:4a:20:46:8c:f7:d4:df:ed:a3:d0:c3:65:71:5e: b8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:87:9E:93:B2:75:D9:76:33:3B:B8:E9:D2:0A:F7:7F:3A:5C:C9:69 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f45e2fc4-e171-4aa3-862b-4af57208c9ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c23::/48 Signature Algorithm: sha256WithRSAEncryption a3:2f:98:c9:b7:0b:1a:8d:40:be:5a:f2:15:a4:db:e4:82:d1: 31:ec:02:fb:e5:ca:04:53:19:56:45:4c:0d:db:2c:fb:9b:4a: c4:77:03:8b:04:01:af:36:e1:e2:12:3c:ec:72:c9:f8:45:95: e6:33:63:f0:23:db:9f:f8:4d:49:1f:8f:95:f5:01:b4:d7:02: a3:1f:ee:a2:34:90:d8:f5:b2:a4:a1:b5:c3:8c:5d:db:b2:db: c3:dc:37:61:2c:91:7c:3a:3d:5f:2c:cb:cb:99:9e:cb:90:68: cb:b3:80:2b:96:54:5b:8b:5b:5f:2f:52:b4:6c:9b:8a:02:67: 18:db:54:1e:ca:b5:1b:c3:91:cc:1a:e6:6a:89:5c:50:ad:e9: cf:fc:95:3f:20:a0:c1:6d:5d:8a:98:82:cf:0f:ec:b8:26:53: eb:34:54:68:8f:d4:b6:bf:8b:d1:e1:8e:dc:70:33:f4:91:57: 24:4e:99:78:d2:6d:95:2e:84:5d:c2:39:9d:de:9a:45:5c:a2: 1c:4a:91:16:70:ee:35:3a:11:37:4e:36:b0:96:21:c4:cb:66: c2:16:d1:dc:28:fe:b0:a9:cb:3b:27:e6:81:db:27:a3:38:27: 6c:a3:81:89:28:20:8d:29:ea:52:a4:92:2a:d0:57:de:de:24: 36:d0:aa:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTaI5/TYFtHIFlpmU+nT/t3GVlO8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MTA3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGU4YThmYmUxNzc4ZjZkM2E5OTAyNmZlNzcyOTRiMGM3 MTQ3YTUzYjE3MDk0ZWFiNzIwMjVhOWI1MzYyMTMzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPAUPN/jS1sfVCQXKJ3SZ+lCK4dRtAFopqB3PvdB3I2Ncm kRexqh6M8SO5AnGuYZb7L1Lo3TxDKeMy0YvIvGBF9SURe685PqRJjwS/X96o4kyY 1klkDMgvf/gDD+kM0NwNHMs9/OoXzk8eAcCAtNiLELcqg8f7p0cr8671jUzH5tRJ Hz4kHTb7HH18TqpP3Zq3S/ajQcJpF2UYIK9ElvY8s3mGosTRNF/m/lEdXiwkFNTU GXnKi30Mpo4uMtEv1B01inmTT2ffKNfVPNZkVpxrjghoaIiis5CaB3lNYZJj1Gfo lKWqexxysC/OhcpXwPlKIEaM99Tf7aPQw2VxXrhXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGIeek7J12XYzO7jp0gr3fzpcyWkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Y0NWUyZmM0LWUxNzEtNGFhMy04NjJiLTRhZjU3MjA4YzllZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADCMwDQYJKoZIhvcNAQELBQADggEBAKMvmMm3CxqNQL5a8hWk2+SC 0THsAvvlygRTGVZFTA3bLPubSsR3A4sEAa824eISPOxyyfhFleYzY/Aj25/4TUkf j5X1AbTXAqMf7qI0kNj1sqShtcOMXduy28PcN2EskXw6PV8sy8uZnsuQaMuzgCuW VFuLW18vUrRsm4oCZxjbVB7KtRvDkcwa5mqJXFCt6c/8lT8goMFtXYqYgs8P7Lgm U+s0VGiP1La/i9HhjtxwM/SRVyROmXjSbZUuhF3COZ3emkVcohxKkRZw7jU6ETdO NrCWIcTLZsIW0dwo/rCpyzsn5oHbJ6M4J2yjgYkoII0p6lKkkirQV97eJDbQqrc= -----END CERTIFICATE-----Generated at Fri Jun 6 03:49:17 2025 by rpki-client