$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2f789924-a980-48eb-b42e-463688379f41.roa File: 2f789924-a980-48eb-b42e-463688379f41.roa (raw, json) Hash identifier: VFOOKAVv7TdHsRqKOUrr5QUUc5Zn4BisNJvd+t95Oh0= Subject key identifier: 92:6C:4C:64:ED:71:90:85:5E:B8:59:AB:83:B2:46:33:56:43:E0:E2 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 056491B1B6AD3FEAC77DC4A285EA89F83FAB466C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2f789924-a980-48eb-b42e-463688379f41.roa Signing time: Tue 06 May 2025 00:20:26 +0000 ROA not before: Tue 06 May 2025 00:20:26 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:64c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:64:91:b1:b6:ad:3f:ea:c7:7d:c4:a2:85:ea:89:f8:3f:ab:46:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 6 00:20:26 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=81c09f40ed3b4b76e5a1f4d41c9a85e3a92254beab35196661758cc0e0a379b4, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:0c:5c:b6:62:22:47:e3:0e:b5:c2:26:90:f4: a3:32:d1:89:e0:c4:34:3c:fd:97:5b:f2:9c:fc:2d: 8d:ae:5c:9c:d2:89:a8:af:4f:05:ef:34:83:f5:6b: 13:83:3e:01:20:83:ed:4e:8d:3b:2f:06:e8:a4:40: e9:4c:d3:51:d5:58:97:14:0d:2a:ec:1e:0a:40:36: 07:d3:99:24:1c:44:9f:cc:f5:3a:d5:7c:68:92:61: e0:ba:e3:f2:37:74:95:a4:d0:68:2f:9a:eb:a4:12: a9:f1:d1:4a:57:73:df:d1:db:a9:69:3e:a2:7c:64: aa:37:9d:2f:65:5a:23:9a:f9:b6:6e:64:c4:1e:52: 6b:d8:1b:3d:6b:35:b7:a4:f7:d2:9f:a9:04:79:7e: 11:ae:ba:12:83:89:84:90:ca:4a:1b:f4:ae:76:4e: ee:48:24:4f:e6:86:83:6d:d1:b3:8a:8a:11:db:0a: a9:b8:23:45:d3:c0:25:19:0a:0b:0b:63:17:34:7b: b5:1f:31:2f:b8:4e:7f:61:18:f1:7b:6e:39:62:74: f9:c1:0d:e5:56:f9:a9:8c:db:5a:b9:fd:4e:76:5a: 2d:70:c5:50:2b:b5:aa:1f:8a:13:0b:72:69:38:06: a6:8a:f3:58:e5:a1:34:6f:4b:a9:a3:e4:a4:42:03: 3a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6C:4C:64:ED:71:90:85:5E:B8:59:AB:83:B2:46:33:56:43:E0:E2 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2f789924-a980-48eb-b42e-463688379f41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64c::/48 Signature Algorithm: sha256WithRSAEncryption 9b:01:d4:f4:a6:58:d9:14:b0:45:47:d2:72:cd:75:2c:f3:3a: 69:7b:5e:3b:8d:c0:36:e6:05:ce:7d:48:f2:1f:10:25:27:1f: 7c:20:9a:f5:a4:d2:32:4b:69:d2:b5:a8:91:db:40:4e:fe:cd: ff:2e:a2:56:b2:d8:25:e3:91:97:37:ba:ce:e4:d0:1c:54:c9: 61:11:09:80:b3:b2:00:0f:7c:fd:83:f0:98:31:ec:15:28:bf: 5a:40:01:05:06:47:25:d5:ce:3e:a8:27:59:e3:84:a5:a1:01: 28:01:e0:df:47:e4:7d:13:fc:e4:f4:6d:29:a9:36:24:2d:8f: 2d:51:22:16:ab:a7:c7:47:b4:50:dc:57:92:45:23:64:61:88: cf:dd:48:9e:79:d0:c8:da:a0:6a:d0:84:e8:44:c4:f8:77:83: 58:8e:12:9c:62:b8:4f:8b:cc:fb:aa:0c:43:69:4e:41:55:ce: 46:f4:87:27:d6:3c:78:28:8e:d6:ba:a3:73:66:1b:90:c0:76: db:4f:d7:21:1d:97:10:fe:50:e5:30:bb:55:5f:80:b3:c8:8f: 8e:56:02:b0:26:62:83:9a:09:43:cc:91:c3:f2:78:56:f2:b0: 7c:f8:c4:de:15:cb:58:cc:bf:49:09:21:29:e6:58:91:f0:15: 8c:45:6e:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBWSRsbatP+rHfcSiheqJ+D+rRmwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTA2MDAyMDI2WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWMwOWY0MGVkM2I0Yjc2ZTVhMWY0ZDQxYzlhODVlM2E5 MjI1NGJlYWIzNTE5NjY2MTc1OGNjMGUwYTM3OWI0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPDFy2YiJH4w61wiaQ9KMy0YngxDQ8/Zdb8pz8LY2uXJzS iaivTwXvNIP1axODPgEgg+1OjTsvBuikQOlM01HVWJcUDSrsHgpANgfTmSQcRJ/M 9TrVfGiSYeC64/I3dJWk0GgvmuukEqnx0UpXc9/R26lpPqJ8ZKo3nS9lWiOa+bZu ZMQeUmvYGz1rNbek99KfqQR5fhGuuhKDiYSQykob9K52Tu5IJE/mhoNt0bOKihHb Cqm4I0XTwCUZCgsLYxc0e7UfMS+4Tn9hGPF7bjlidPnBDeVW+amM21q5/U52Wi1w xVArtaofihMLcmk4BqaK81jloTRvS6mj5KRCAzoVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkmxMZO1xkIVeuFmrg7JGM1ZD4OIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJmNzg5OTI0LWE5ODAtNDhlYi1iNDJlLTQ2MzY4ODM3OWY0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkwwDQYJKoZIhvcNAQELBQADggEBAJsB1PSmWNkUsEVH0nLNdSzz Oml7XjuNwDbmBc59SPIfECUnH3wgmvWk0jJLadK1qJHbQE7+zf8uolay2CXjkZc3 us7k0BxUyWERCYCzsgAPfP2D8Jgx7BUov1pAAQUGRyXVzj6oJ1njhKWhASgB4N9H 5H0T/OT0bSmpNiQtjy1RIharp8dHtFDcV5JFI2RhiM/dSJ550MjaoGrQhOhExPh3 g1iOEpxiuE+LzPuqDENpTkFVzkb0hyfWPHgojta6o3NmG5DAdttP1yEdlxD+UOUw u1VfgLPIj45WArAmYoOaCUPMkcPyeFbysHz4xN4Vy1jMv0kJISnmWJHwFYxFblo= -----END CERTIFICATE-----Generated at Fri May 9 23:53:05 2025 by rpki-client