$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ee19f4b-6941-451a-a36b-eca835bb4851.roa File: 3ee19f4b-6941-451a-a36b-eca835bb4851.roa (raw, json) Hash identifier: cFn8K96QNk3M8E4TPyUQainsOOTrQ077cvVp/xY3Srs= Subject key identifier: D3:28:FE:F9:94:87:A4:27:42:CD:E3:9C:2D:AD:9C:9D:ED:37:27:35 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2B529B14D43C2CED380B5D8B4A44BB97BA99CF53 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ee19f4b-6941-451a-a36b-eca835bb4851.roa Signing time: Tue 06 May 2025 00:30:56 +0000 ROA not before: Tue 06 May 2025 00:30:56 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:52:9b:14:d4:3c:2c:ed:38:0b:5d:8b:4a:44:bb:97:ba:99:cf:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 6 00:30:56 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=64effe91536ce36447ef18da31b2c6a7d40763f02273167daa0ce0ca04d3c1da, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:a0:42:c0:ba:af:5c:b5:0e:45:54:9d:ee: 83:e4:fc:80:ea:f2:98:c6:21:60:91:e0:00:47:df: 01:34:ea:c7:5a:f5:ec:f5:5a:db:44:4f:1f:c7:fe: 2a:1b:42:7b:2d:fd:f5:0a:56:50:41:4c:a9:36:51: 60:4f:46:cf:c4:67:62:ff:b7:b2:6d:50:f8:ee:11: 50:03:80:21:89:f8:37:49:29:ee:a7:ba:fb:fe:bb: 69:fb:3d:35:8b:e2:d9:58:0b:7f:12:a8:33:6f:c0: df:72:f4:82:eb:e8:cc:74:b9:79:13:44:e9:8f:ec: cf:a9:48:82:d5:b5:36:28:2e:1e:13:d8:c4:16:c2: 3f:0f:64:20:4e:b1:39:2a:d1:fc:1c:23:c5:c7:9a: 9c:e7:3a:76:a3:a7:49:9d:ae:4e:03:c1:8f:85:e5: 44:37:17:4e:4c:68:6b:10:bc:9f:88:d7:7b:cd:b7: df:cf:43:50:4d:96:32:ce:2c:81:4f:8f:a0:35:a0: 10:a4:03:56:31:36:de:40:94:79:3f:20:3d:8b:8e: 00:51:a5:e2:c6:f3:fa:d0:e3:57:a3:42:4c:c0:12: c1:a7:ad:b2:14:a1:1a:ee:a1:ea:ec:7f:69:5a:ec: a5:87:d4:d4:f8:1e:13:b0:e8:7d:dc:0d:4d:01:93: c9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:28:FE:F9:94:87:A4:27:42:CD:E3:9C:2D:AD:9C:9D:ED:37:27:35 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ee19f4b-6941-451a-a36b-eca835bb4851.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0b::/48 Signature Algorithm: sha256WithRSAEncryption 18:37:b5:cb:6f:cf:1d:18:4a:00:ba:18:60:73:2e:3c:fe:b8: 4b:b1:7b:99:61:00:fb:4d:bb:51:78:c6:b9:04:4d:aa:22:da: 36:8e:0c:c3:b4:d2:4e:21:f3:2f:96:d1:0d:a5:17:e7:71:51: a6:47:1c:6c:67:76:11:c9:6f:2e:e4:e9:d4:75:26:6e:6b:c3: 50:4d:ad:ec:bd:17:47:5f:6c:05:00:f9:8a:a3:87:a6:b5:5a: 04:6d:1c:42:cd:e6:0b:a3:5b:e5:24:70:e7:4c:e1:05:fa:cf: 34:1f:b8:06:e0:fd:e9:70:28:f4:6f:fa:2d:a3:67:4f:07:30: 08:5b:b2:ea:18:eb:af:00:1e:0f:d6:6e:cf:35:9a:ba:77:0e: a2:26:43:bf:eb:1e:8e:2a:f5:ff:64:c2:5e:2c:e7:c1:44:89: 83:4f:06:3c:8d:1e:15:f1:fd:4c:23:ed:e9:19:6b:c0:c9:de: 8a:5f:8e:0e:c8:32:78:14:e4:6f:a3:d4:5c:62:14:7c:e1:75: 11:33:39:e5:96:85:fa:9a:c2:49:d0:fb:a6:9d:51:26:75:d5: 37:3e:22:23:d0:2f:7f:62:14:1d:e7:54:5e:d4:5d:d2:b1:d0: b2:1e:91:aa:0a:57:73:6a:57:a0:1b:e5:39:b8:4b:a5:48:72: 19:26:7a:95 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK1KbFNQ8LO04C12LSkS7l7qZz1MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTA2MDAzMDU2WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGVmZmU5MTUzNmNlMzY0NDdlZjE4ZGEzMWIyYzZhN2Q0 MDc2M2YwMjI3MzE2N2RhYTBjZTBjYTA0ZDNjMWRhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/HqBCwLqvXLUORVSd7oPk/IDq8pjGIWCR4ABH3wE06sda 9ez1WttETx/H/iobQnst/fUKVlBBTKk2UWBPRs/EZ2L/t7JtUPjuEVADgCGJ+DdJ Ke6nuvv+u2n7PTWL4tlYC38SqDNvwN9y9ILr6Mx0uXkTROmP7M+pSILVtTYoLh4T 2MQWwj8PZCBOsTkq0fwcI8XHmpznOnajp0mdrk4DwY+F5UQ3F05MaGsQvJ+I13vN t9/PQ1BNljLOLIFPj6A1oBCkA1YxNt5AlHk/ID2LjgBRpeLG8/rQ41ejQkzAEsGn rbIUoRruoersf2la7KWH1NT4HhOw6H3cDU0Bk8nrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0yj++ZSHpCdCzeOcLa2cne03JzUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNlZTE5ZjRiLTY5NDEtNDUxYS1hMzZiLWVjYTgzNWJiNDg1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAswDQYJKoZIhvcNAQELBQADggEBABg3tctvzx0YSgC6GGBzLjz+ uEuxe5lhAPtNu1F4xrkETaoi2jaODMO00k4h8y+W0Q2lF+dxUaZHHGxndhHJby7k 6dR1Jm5rw1BNrey9F0dfbAUA+Yqjh6a1WgRtHELN5gujW+UkcOdM4QX6zzQfuAbg /elwKPRv+i2jZ08HMAhbsuoY668AHg/Wbs81mrp3DqImQ7/rHo4q9f9kwl4s58FE iYNPBjyNHhXx/Uwj7ekZa8DJ3opfjg7IMngU5G+j1FxiFHzhdREzOeWWhfqawknQ +6adUSZ11Tc+IiPQL39iFB3nVF7UXdKx0LIekaoKV3NqV6Ab5Tm4S6VIchkmepU= -----END CERTIFICATE-----Generated at Tue May 6 03:05:52 2025 by rpki-client