$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/34aa606e-0ded-49e0-8124-2799643cf271.roa File: 34aa606e-0ded-49e0-8124-2799643cf271.roa (raw, json) Hash identifier: 9zfYpk3b+J/ditRTdvDJ3jfOypRMWzPaoZJttGvks+8= Subject key identifier: D3:9C:E3:4B:20:78:E3:DB:B1:22:F9:AC:61:DF:ED:12:EA:F0:39:5D Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7B84129303DD315077094790E44CD4F84DC3025A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/34aa606e-0ded-49e0-8124-2799643cf271.roa Signing time: Fri 25 Apr 2025 17:30:24 +0000 ROA not before: Fri 25 Apr 2025 17:30:24 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:399::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:84:12:93:03:dd:31:50:77:09:47:90:e4:4c:d4:f8:4d:c3:02:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:30:24 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=3574dbd65117f2416db9922313158fe044b2494a4f05080e5965f0d528daf19c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:aa:95:c0:b2:21:d9:21:02:6f:fe:fc:93:fd: cd:7f:7f:32:4d:ca:ca:0d:82:1d:ec:12:a8:b7:f6: a5:4d:eb:c2:39:cf:65:ca:7d:d8:e4:ca:2a:ad:14: 8e:74:ac:c5:7b:fd:f1:52:4b:0c:62:0b:29:e8:ff: 16:d5:77:75:f8:54:cf:47:e8:45:0f:f2:24:d5:45: b3:c3:56:86:b7:84:82:7f:a8:6d:b5:da:8f:88:f4: 04:05:a0:10:51:83:98:f3:d3:62:17:ee:42:4d:f9: 57:51:a5:56:c0:7a:1b:43:5f:18:29:97:ce:99:19: 67:a8:3c:f9:66:38:90:ba:88:4a:8b:91:b5:c0:d1: c8:c8:a0:03:4a:2e:d5:44:92:60:90:5a:50:f2:50: 71:62:3f:2b:cb:b2:5a:10:70:41:aa:38:b1:87:b5: ab:82:f2:a2:76:36:46:63:1a:90:4d:8e:5b:75:21: 64:78:f4:be:ee:8d:ec:e4:ac:95:2f:ad:1c:7d:f9: 66:9b:a1:bd:08:bd:09:17:97:a6:ab:d7:02:49:1b: 2a:c5:8d:79:21:31:60:ed:8b:96:75:96:a2:0f:a1: 06:6f:5f:a4:49:bf:b3:14:0a:5c:22:63:01:7e:90: f4:ee:d6:07:24:db:d3:72:0e:f5:32:86:e8:3b:47: f0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:9C:E3:4B:20:78:E3:DB:B1:22:F9:AC:61:DF:ED:12:EA:F0:39:5D X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/34aa606e-0ded-49e0-8124-2799643cf271.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:399::/48 Signature Algorithm: sha256WithRSAEncryption 03:1b:32:34:aa:e1:b8:40:b6:b5:4f:60:c1:c2:c8:f5:6a:f6: 86:2c:4d:79:c1:45:97:59:4b:02:bf:8c:47:db:8e:aa:db:ee: 09:45:a2:8f:18:a4:61:30:fc:04:e5:07:cd:9c:bd:05:45:06: da:be:73:ef:2a:57:45:c2:2a:f7:6b:a4:18:bb:9d:cc:b2:38: 49:d5:2a:61:78:3a:09:97:91:43:38:fd:ef:d0:d7:0d:48:c7: 50:20:a9:87:1b:c9:82:81:dc:2a:8d:2a:7d:db:6d:41:6f:ea: a7:f6:27:f4:7e:04:39:df:bc:de:d2:29:93:dc:75:95:04:2f: ec:5b:ca:3a:e1:37:ab:6b:48:4f:e7:bb:77:54:b1:43:62:d8: 9b:05:7b:28:3c:7e:9c:16:e4:2b:73:30:8d:48:c5:2e:30:98: c8:94:98:12:23:04:2e:62:40:49:ee:83:e8:d1:56:b3:a5:63: 95:82:12:de:08:98:bb:fd:f0:2c:f7:2a:6c:ea:76:34:34:57: f1:6d:14:e2:49:bc:06:50:fd:11:64:4a:27:79:f1:3f:d1:90: 40:3a:db:db:69:bb:d3:da:74:c4:81:bd:a2:36:74:ea:53:d4: 5c:ea:41:35:2f:be:d5:c6:9d:10:28:bd:83:ac:78:32:b4:55: 4a:74:b1:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUe4QSkwPdMVB3CUeQ5EzU+E3DAlowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTczMDI0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTc0ZGJkNjUxMTdmMjQxNmRiOTkyMjMxMzE1OGZlMDQ0 YjI0OTRhNGYwNTA4MGU1OTY1ZjBkNTI4ZGFmMTljMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4qpXAsiHZIQJv/vyT/c1/fzJNysoNgh3sEqi39qVN68I5 z2XKfdjkyiqtFI50rMV7/fFSSwxiCyno/xbVd3X4VM9H6EUP8iTVRbPDVoa3hIJ/ qG212o+I9AQFoBBRg5jz02IX7kJN+VdRpVbAehtDXxgpl86ZGWeoPPlmOJC6iEqL kbXA0cjIoANKLtVEkmCQWlDyUHFiPyvLsloQcEGqOLGHtauC8qJ2NkZjGpBNjlt1 IWR49L7ujezkrJUvrRx9+Wabob0IvQkXl6ar1wJJGyrFjXkhMWDti5Z1lqIPoQZv X6RJv7MUClwiYwF+kPTu1gck29NyDvUyhug7R/AfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU05zjSyB449uxIvmsYd/tEurwOV0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM0YWE2MDZlLTBkZWQtNDllMC04MTI0LTI3OTk2NDNjZjI3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5kwDQYJKoZIhvcNAQELBQADggEBAAMbMjSq4bhAtrVPYMHCyPVq 9oYsTXnBRZdZSwK/jEfbjqrb7glFoo8YpGEw/ATlB82cvQVFBtq+c+8qV0XCKvdr pBi7ncyyOEnVKmF4OgmXkUM4/e/Q1w1Ix1AgqYcbyYKB3CqNKn3bbUFv6qf2J/R+ BDnfvN7SKZPcdZUEL+xbyjrhN6trSE/nu3dUsUNi2JsFeyg8fpwW5CtzMI1IxS4w mMiUmBIjBC5iQEnug+jRVrOlY5WCEt4ImLv98Cz3KmzqdjQ0V/FtFOJJvAZQ/RFk Sid58T/RkEA629tpu9PadMSBvaI2dOpT1FzqQTUvvtXGnRAovYOseDK0VUp0sXI= -----END CERTIFICATE-----Generated at Sat May 10 16:46:15 2025 by rpki-client