$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1a27840b-04f0-4281-ae61-d39dd7cf54c3.roa File: 1a27840b-04f0-4281-ae61-d39dd7cf54c3.roa (raw, json) Hash identifier: V8ekDmjpywY4HMlcG/wOAZalxAGu6syr7WQexEIPyK0= Subject key identifier: 05:1B:C5:27:6B:CC:36:F5:29:80:FC:D9:6E:D6:15:38:E0:64:FD:3A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2D00570324936BECFBCCDE9CF7B0C6799C276334 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1a27840b-04f0-4281-ae61-d39dd7cf54c3.roa Signing time: Mon 28 Apr 2025 15:30:21 +0000 ROA not before: Mon 28 Apr 2025 15:30:21 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:549::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 08 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:00:57:03:24:93:6b:ec:fb:cc:de:9c:f7:b0:c6:79:9c:27:63:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 28 15:30:21 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=9d36bc8a1c24c0dc616b901a9183c4d9280862180496cb82a728a1fb4b73281e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:69:3a:27:a2:0b:61:30:68:d8:3f:0b:25:2d: e6:dc:1b:02:1b:cd:a0:86:f3:65:b3:bc:a4:55:0c: c7:91:9b:24:c3:10:7d:ef:d4:bb:ad:62:cc:5a:06: 16:ec:97:b0:53:69:f3:31:ff:00:ef:4e:61:29:5f: 23:80:26:e5:88:58:76:fc:3a:ff:99:b5:93:a9:7b: 93:97:06:ea:3a:35:03:fc:f8:33:8c:4c:70:b7:2f: a8:5d:a2:6a:a9:5a:50:19:e0:48:c7:33:69:fa:8a: 1d:8d:8d:65:86:a7:98:67:be:9a:5c:ee:16:6c:04: e7:e0:b7:bb:12:2d:e4:99:57:5e:65:ef:7c:94:e1: 95:b5:7f:8f:36:6b:7b:1c:14:3e:d2:18:01:bf:af: 5f:fb:0a:e3:a2:9e:0c:c8:a4:d0:4c:e4:f8:1a:09: ad:60:ea:11:ed:c8:fc:0b:c6:a9:44:ff:3a:70:8b: 2c:79:69:42:f1:5a:b9:e1:d2:f1:63:89:da:d5:3f: 69:70:cf:3c:42:4b:14:f1:4a:11:83:03:a7:3d:b2: 62:e0:b7:f5:14:75:e8:60:7b:5f:78:43:d3:50:3f: aa:0b:2c:63:f8:e7:0c:7b:78:9c:4f:9d:58:87:1d: dd:ca:06:dc:43:73:83:37:86:39:13:7e:ba:83:e0: dd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:1B:C5:27:6B:CC:36:F5:29:80:FC:D9:6E:D6:15:38:E0:64:FD:3A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1a27840b-04f0-4281-ae61-d39dd7cf54c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:549::/48 Signature Algorithm: sha256WithRSAEncryption 8a:67:6c:be:e4:5a:69:97:a2:48:f7:83:c5:22:0b:47:b6:b4: 1d:ff:84:a7:42:e6:43:dd:0d:63:95:9d:53:61:a4:61:d7:81: ec:e2:aa:51:37:25:d1:56:7f:c0:d7:62:b0:ad:e6:d5:a1:6c: 4a:45:d9:a1:85:18:73:9d:c2:80:ba:ab:c3:2a:c3:63:50:29: 03:ff:06:2f:4a:4d:2a:f6:8f:60:14:b0:2f:0a:6c:63:c4:23: 39:17:36:66:51:c1:99:44:fb:c9:80:ab:5c:29:1b:a6:da:01: 82:fc:ea:c6:a0:70:fc:42:fa:90:ac:b9:49:c4:19:c9:8e:8c: 5d:e3:2a:9d:94:14:aa:dd:90:a9:60:f4:c8:4a:a2:9e:1c:b4: 60:b0:cc:6b:70:f0:18:45:88:82:6b:ed:73:ef:5f:f4:56:1c: d5:89:d1:a4:0c:d3:25:b4:ba:f9:3c:16:0e:be:70:b2:74:d5: 82:20:23:d0:7b:83:dd:3b:ac:fd:f8:98:57:33:5f:c5:50:91: f0:45:a3:eb:32:09:1f:96:0e:6a:30:07:53:d3:48:e7:92:e3: 38:11:fd:07:23:d3:2b:6e:9f:81:ff:9e:3c:0e:c8:28:3f:bd: a8:a5:6f:f3:46:14:b9:fe:67:b6:41:81:4b:42:d0:e8:af:2e: 7d:c4:cd:90 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULQBXAySTa+z7zN6c97DGeZwnYzQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI4MTUzMDIxWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDM2YmM4YTFjMjRjMGRjNjE2YjkwMWE5MTgzYzRkOTI4 MDg2MjE4MDQ5NmNiODJhNzI4YTFmYjRiNzMyODFlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkaTonogthMGjYPwslLebcGwIbzaCG82WzvKRVDMeRmyTD EH3v1LutYsxaBhbsl7BTafMx/wDvTmEpXyOAJuWIWHb8Ov+ZtZOpe5OXBuo6NQP8 +DOMTHC3L6hdomqpWlAZ4EjHM2n6ih2NjWWGp5hnvppc7hZsBOfgt7sSLeSZV15l 73yU4ZW1f482a3scFD7SGAG/r1/7CuOingzIpNBM5PgaCa1g6hHtyPwLxqlE/zpw iyx5aULxWrnh0vFjidrVP2lwzzxCSxTxShGDA6c9smLgt/UUdehge194Q9NQP6oL LGP45wx7eJxPnViHHd3KBtxDc4M3hjkTfrqD4N0bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBRvFJ2vMNvUpgPzZbtYVOOBk/TowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzFhMjc4NDBiLTA0ZjAtNDI4MS1hZTYxLWQzOWRkN2NmNTRjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUkwDQYJKoZIhvcNAQELBQADggEBAIpnbL7kWmmXokj3g8UiC0e2 tB3/hKdC5kPdDWOVnVNhpGHXgeziqlE3JdFWf8DXYrCt5tWhbEpF2aGFGHOdwoC6 q8Mqw2NQKQP/Bi9KTSr2j2AUsC8KbGPEIzkXNmZRwZlE+8mAq1wpG6baAYL86sag cPxC+pCsuUnEGcmOjF3jKp2UFKrdkKlg9MhKop4ctGCwzGtw8BhFiIJr7XPvX/RW HNWJ0aQM0yW0uvk8Fg6+cLJ01YIgI9B7g907rP34mFczX8VQkfBFo+syCR+WDmow B1PTSOeS4zgR/Qcj0ytun4H/njwOyCg/vailb/NGFLn+Z7ZBgUtC0OivLn3EzZA= -----END CERTIFICATE-----Generated at Wed May 7 03:41:58 2025 by rpki-client