$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2ff0469b-9f32-4585-929d-a8709323cfa2.roa File: 2ff0469b-9f32-4585-929d-a8709323cfa2.roa (raw, json) Hash identifier: +g0NDTzhEYfxtJVFTKdSVyxQ0Tu0XRl6KYP6AKj71SQ= Subject key identifier: F4:B6:31:6D:05:19:7E:1C:5E:39:07:42:20:C2:EE:BB:DA:49:F4:B7 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 431E5CF4B9F5AF9AEB84083A0B8D497E4546154C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2ff0469b-9f32-4585-929d-a8709323cfa2.roa Signing time: Tue 06 May 2025 00:31:18 +0000 ROA not before: Tue 06 May 2025 00:31:18 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c0e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:1e:5c:f4:b9:f5:af:9a:eb:84:08:3a:0b:8d:49:7e:45:46:15:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 6 00:31:18 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=aec9d0d8311d7113d384ed1187bf9f4dad014f88aa75e1bc0bac7c1c9b474e00, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a5:a6:24:1d:3b:47:d0:7c:dd:cd:ac:2c:dc: 37:d3:54:5c:af:39:22:c5:c7:82:d7:87:3a:88:df: 34:e5:80:5f:e6:bb:a1:fc:49:b7:41:02:d6:ff:0c: f8:d5:a6:ad:36:25:9b:bf:78:c7:b0:4d:d5:a5:bb: 86:8d:93:bd:0d:3b:44:27:2f:e8:8d:82:cd:be:5e: f7:8d:84:70:a1:93:12:61:63:88:31:b0:ee:04:a5: 30:58:39:8b:aa:79:ae:3f:e8:52:fb:5b:85:53:39: 32:bd:bc:4f:d9:b3:4a:ee:d0:08:62:84:e6:29:90: ac:bc:7b:13:03:6a:7b:18:75:bf:45:a6:62:84:2b: 51:23:e7:e7:ad:67:bf:a6:a1:bf:e9:71:fe:2d:4d: 44:18:f6:e4:3b:36:66:da:60:a8:e4:ec:a5:18:7e: b4:69:a2:e6:e9:86:ae:09:19:2d:94:bf:66:74:55: 6c:1d:a2:9c:6c:95:74:d8:f1:1e:a1:45:95:c4:c4: df:05:b3:c2:aa:a6:9a:bf:f9:82:ff:e4:b8:20:c8: 12:2e:2d:59:1f:97:24:d0:7d:43:00:36:b9:7e:a1: ec:0e:7f:4c:62:5d:47:47:6c:00:24:a9:1c:cc:16: f9:9f:1c:aa:47:43:69:8d:78:45:81:03:b3:2d:15: f0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B6:31:6D:05:19:7E:1C:5E:39:07:42:20:C2:EE:BB:DA:49:F4:B7 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2ff0469b-9f32-4585-929d-a8709323cfa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0e::/48 Signature Algorithm: sha256WithRSAEncryption 35:5a:ff:e5:f3:14:d9:6d:93:84:06:35:ee:3a:dd:22:fd:da: f6:e0:95:fa:9c:c6:9e:11:63:55:d7:77:9f:c6:02:97:02:44: bf:14:d3:d9:49:57:f8:7d:dd:82:fd:9f:82:ff:59:01:5e:21: 96:2b:95:8a:56:0c:b2:6b:7c:4e:3f:12:cb:cb:78:20:82:50: 42:20:a9:77:23:29:32:d3:8e:af:ce:7e:69:b5:8d:89:1b:02: a1:3b:61:aa:dc:52:79:85:f4:6f:fc:cd:b0:cc:c5:4e:1e:f8: 7a:18:7d:e3:95:2e:ea:66:f4:66:08:c2:88:ee:e0:bb:0a:35: 69:c3:68:da:99:0b:01:d3:0b:6b:5e:e9:85:6e:6b:53:0f:ff: 0a:b0:32:af:16:df:2a:d9:49:af:4c:15:b4:8b:45:bc:e5:0a: e2:7d:a4:05:d8:c6:18:54:a8:f5:0d:bb:80:82:b2:2a:d6:e4: 47:9a:93:17:9d:1d:2c:e3:7b:1c:31:a9:c6:63:59:7d:46:2a: a2:18:8f:41:51:35:6b:6c:23:c8:89:5f:d1:87:5d:f0:de:eb: 55:85:47:e6:4e:af:0d:79:8e:e1:00:bc:98:73:65:8e:27:b1: da:bc:63:f1:e1:b6:c1:85:18:5b:72:ae:5f:a3:88:23:78:2a: 54:42:17:0f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQx5c9Ln1r5rrhAg6C41JfkVGFUwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTA2MDAzMTE4WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZWM5ZDBkODMxMWQ3MTEzZDM4NGVkMTE4N2JmOWY0ZGFk MDE0Zjg4YWE3NWUxYmMwYmFjN2MxYzliNDc0ZTAwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCopaYkHTtH0Hzdzaws3DfTVFyvOSLFx4LXhzqI3zTlgF/m u6H8SbdBAtb/DPjVpq02JZu/eMewTdWlu4aNk70NO0QnL+iNgs2+XveNhHChkxJh Y4gxsO4EpTBYOYuqea4/6FL7W4VTOTK9vE/Zs0ru0AhihOYpkKy8exMDansYdb9F pmKEK1Ej5+etZ7+mob/pcf4tTUQY9uQ7NmbaYKjk7KUYfrRpoubphq4JGS2Uv2Z0 VWwdopxslXTY8R6hRZXExN8Fs8Kqppq/+YL/5LggyBIuLVkflyTQfUMANrl+oewO f0xiXUdHbAAkqRzMFvmfHKpHQ2mNeEWBA7MtFfCDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9LYxbQUZfhxeOQdCIMLuu9pJ9LcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJmZjA0NjliLTlmMzItNDU4NS05MjlkLWE4NzA5MzIzY2ZhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA4wDQYJKoZIhvcNAQELBQADggEBADVa/+XzFNltk4QGNe463SL9 2vbglfqcxp4RY1XXd5/GApcCRL8U09lJV/h93YL9n4L/WQFeIZYrlYpWDLJrfE4/ EsvLeCCCUEIgqXcjKTLTjq/Ofmm1jYkbAqE7YarcUnmF9G/8zbDMxU4e+HoYfeOV Lupm9GYIwoju4LsKNWnDaNqZCwHTC2te6YVua1MP/wqwMq8W3yrZSa9MFbSLRbzl CuJ9pAXYxhhUqPUNu4CCsirW5EeakxedHSzjexwxqcZjWX1GKqIYj0FRNWtsI8iJ X9GHXfDe61WFR+ZOrw15juEAvJhzZY4nsdq8Y/HhtsGFGFtyrl+jiCN4KlRCFw8= -----END CERTIFICATE-----Generated at Tue May 6 09:58:51 2025 by rpki-client