$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f45e2fc4-e171-4aa3-862b-4af57208c9ee.roa File: f45e2fc4-e171-4aa3-862b-4af57208c9ee.roa (raw, json) Hash identifier: D6pMOE8rwWYcy7wPCDkBz/e0py2xo6zI8t4rm/Y9Flk= Subject key identifier: CE:2F:1C:71:63:9E:78:C1:18:5D:BF:93:85:F2:10:4E:09:35:88:8E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 642CC68F4951FCA7C6D962353C0C54615CAA9C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f45e2fc4-e171-4aa3-862b-4af57208c9ee.roa Signing time: Mon 31 Mar 2025 18:31:39 +0000 ROA not before: Mon 31 Mar 2025 18:31:39 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:2c:c6:8f:49:51:fc:a7:c6:d9:62:35:3c:0c:54:61:5c:aa:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 31 18:31:39 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cd:54:05:f3:02:53:b0:ef:08:af:c3:a5:80: 5d:b6:0c:49:06:19:0c:50:24:33:d9:20:2b:c0:b7: 6b:2c:0e:37:13:82:c4:76:29:19:25:25:1b:3d:44: 47:8e:f4:aa:30:2d:85:32:de:cc:80:d2:fb:98:bf: a7:11:44:0e:d6:6c:04:c9:a0:81:f5:68:aa:65:13: ce:cb:43:46:49:51:2d:26:5c:92:b0:ad:04:80:a2: 67:6e:ee:75:10:0d:b6:6d:b4:f0:eb:93:c2:4b:de: 54:b3:df:9a:64:cc:00:6a:8b:4e:c3:9b:9c:21:b6: 76:45:b5:ff:2a:bb:f1:dc:49:45:3d:f0:83:56:91: 95:43:79:50:3c:86:d9:a6:11:f9:de:ba:45:74:b1: 2b:c3:99:56:3e:2d:90:d2:5b:50:12:5d:cc:ac:bd: 4e:1c:6b:2f:fb:ec:e2:ad:76:7c:e6:08:eb:ef:7d: 04:df:33:27:61:db:bc:b2:1f:88:17:da:10:13:36: 25:80:02:e7:7e:0a:4a:f5:7e:fe:e7:d0:6f:e1:44: 01:de:19:4b:67:d2:34:16:ba:48:ab:d2:c4:28:8b: dd:bf:de:14:93:5a:89:31:b1:d3:24:f0:f1:55:08: 80:4c:f0:d7:c0:f4:1b:f1:fb:10:98:56:bd:a4:a8: 5a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2F:1C:71:63:9E:78:C1:18:5D:BF:93:85:F2:10:4E:09:35:88:8E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f45e2fc4-e171-4aa3-862b-4af57208c9ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c23::/48 Signature Algorithm: sha256WithRSAEncryption 48:69:d3:16:fa:f8:9f:89:0f:38:1e:e7:8f:06:13:7f:1a:b5: ac:1b:ee:e1:9b:85:36:e0:4d:c6:6a:12:ce:91:7c:bb:a2:6d: 45:75:d4:ee:10:bf:ff:7a:80:36:61:38:e2:2e:7d:d5:7b:17: b0:7c:f3:51:80:b9:25:76:e6:5b:a3:66:6f:02:12:56:27:da: b8:49:ac:a8:95:bd:7c:72:05:79:22:84:14:9e:fc:3a:d5:47: 78:83:b9:c1:78:51:de:93:26:c1:9c:a4:39:96:dc:3c:e7:51: f0:72:e1:d5:f2:8d:15:a3:56:42:36:c9:38:22:0c:5a:0f:10: 48:01:95:99:65:c5:74:2e:c7:b1:8c:16:cf:f9:f9:6c:fc:91: f1:b9:c6:5f:57:70:72:cc:a8:d4:27:80:31:07:68:94:24:5d: 57:4e:c9:a2:0a:a8:42:2b:3b:1e:e7:be:79:75:4a:81:11:57: 6e:f2:eb:76:80:7b:fa:ca:e2:2e:ae:5b:e4:2b:66:9d:4f:4a: df:5c:4a:05:bc:cc:0d:4c:35:c8:f5:e6:eb:af:f8:81:37:b4: 81:0b:a7:99:b5:49:ea:d0:cc:43:15:5b:b3:52:f2:47:d2:f0: c5:93:bb:07:24:a8:af:65:11:3d:4e:28:73:f4:ea:19:f7:17: 86:e6:5c:80 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITZCzGj0lR/KfG2WI1PAxUYVyqnDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI5N2FjMDAyOGQ2ZWZiZGRhZmI3ZDljNzFlMjllYjcxYzAw NWUzNGZjMTlmMWY3YzQyNDAeFw0yNTAzMzExODMxMzlaFw0yNTA1MDUyMzU5NTla MHoxSTBHBgNVBAUTQGIwOWI5MDExNGExMzY5MDM2MTZjYjQ4NGNhMDkwY2Y5MGU4 ZmQ3MGVlYjRmNjk1ZTMyZmVkOTEzNjllZWZlMzIxLTArBgNVBAMTJGY3MjQzNzg1 LTQ2ZGUtNDE0Yi05YjhmLTdhOTY5OWU5NzllMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMHNVAXzAlOw7wivw6WAXbYMSQYZDFAkM9kgK8C3aywONxOC xHYpGSUlGz1ER470qjAthTLezIDS+5i/pxFEDtZsBMmggfVoqmUTzstDRklRLSZc krCtBICiZ27udRANtm208OuTwkveVLPfmmTMAGqLTsObnCG2dkW1/yq78dxJRT3w g1aRlUN5UDyG2aYR+d66RXSxK8OZVj4tkNJbUBJdzKy9ThxrL/vs4q12fOYI6+99 BN8zJ2HbvLIfiBfaEBM2JYAC534KSvV+/ufQb+FEAd4ZS2fSNBa6SKvSxCiL3b/e FJNaiTGx0yTw8VUIgEzw18D0G/H7EJhWvaSoWukCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBTOLxxxY554wRhdv5OF8hBOCTWIjjAfBgNVHSMEGDAWgBS6DOF+Iz+8cdQw q9rCwwx5BLag5zAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzL2QzZWE2ZWFiLWY0 MWYtNGU0Ni1hOGY2LTNkYTRhMTI4ZDc4Yy85N2FjMDAyOGQ2ZWZiZGRhZmI3ZDlj NzFlMjllYjcxYzAwNWUzNGZjMTlmMWY3YzQyNC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81NDYwMmZiMC1hOWQ0LTRmOWYtYjBjYS1iZTJh MTM5ZWE5MmIvZjQ1ZTJmYzQtZTE3MS00YWEzLTg2MmItNGFmNTcyMDhjOWVlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2Et YmUyYTEzOWVhOTJiLzc3M2EtMzJjY2VLZXR4d0FYalQ4R2ZIM3hDUS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACYFnMAMIzANBgkqhkiG9w0BAQsFAAOCAQEASGnTFvr4n4kPOB7njwYTfxq1 rBvu4ZuFNuBNxmoSzpF8u6JtRXXU7hC//3qANmE44i591XsXsHzzUYC5JXbmW6Nm bwISVifauEmsqJW9fHIFeSKEFJ78OtVHeIO5wXhR3pMmwZykOZbcPOdR8HLh1fKN FaNWQjbJOCIMWg8QSAGVmWXFdC7HsYwWz/n5bPyR8bnGX1dwcsyo1CeAMQdolCRd V07JogqoQis7Hue+eXVKgRFXbvLrdoB7+sriLq5b5CtmnU9K31xKBbzMDUw1yPXm 66/4gTe0gQunmbVJ6tDMQxVbs1LyR9LwxZO7BySor2URPU4oc/TqGfcXhuZcgA== -----END CERTIFICATE-----Generated at Fri Apr 4 23:29:06 2025 by rpki-client