$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3f9eac71-74eb-41d6-909a-a188024d8d5f.roa File: 3f9eac71-74eb-41d6-909a-a188024d8d5f.roa (raw, json) Hash identifier: Eq2qiagj4ggcORALD7tWQZiGaHjfOpj+ujQo/K4+6sM= Subject key identifier: 4A:16:B9:F1:61:53:61:57:17:4A:8E:30:DF:03:03:56:CF:9F:9F:CD Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 41B9C76E317F96F2D9287C0B88A9F2ED4F94C080 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3f9eac71-74eb-41d6-909a-a188024d8d5f.roa Signing time: Tue 06 May 2025 00:40:37 +0000 ROA not before: Tue 06 May 2025 00:40:37 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 08 May 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b9:c7:6e:31:7f:96:f2:d9:28:7c:0b:88:a9:f2:ed:4f:94:c0:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 6 00:40:37 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=7a5d980d57e5000440bbb6e48b656ed0d26e76da5601b722b3ff43784726fcf0, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9f:0f:56:65:2c:d2:6b:99:f6:7e:ad:cd:eb: fa:f5:eb:da:30:f2:c8:20:7f:17:e8:7b:23:01:2b: eb:a1:1e:a0:b6:6f:02:d8:ed:9a:67:f9:b3:33:d0: 14:65:c4:a3:65:09:97:fb:53:a6:c9:ce:e0:40:5d: 38:58:73:84:c9:8e:be:d7:78:c2:26:b0:b2:c0:45: fa:51:0c:df:3f:c3:66:f3:ed:12:17:0d:93:d5:3a: 2c:d6:e3:4e:10:68:78:a1:78:e6:81:c9:52:71:d9: fa:02:70:03:59:b6:70:fc:dd:43:3b:6c:fc:38:1b: 4d:67:06:a7:9b:01:20:86:7a:d2:75:20:98:68:b1: 6b:d0:e8:ad:09:6c:b0:21:72:3f:e7:29:f7:ad:ae: 2b:91:9c:24:1f:49:e7:6b:01:f8:57:b6:c7:05:4e: 58:59:9f:76:7a:51:c4:50:f7:9d:46:55:65:42:2e: 9f:f9:26:59:7f:46:97:07:b8:92:ce:5c:ec:49:02: 52:56:61:61:26:e5:6d:d9:1e:c6:df:b0:3c:6b:d4: 37:ec:52:6a:8e:37:10:25:f5:4b:70:b9:09:14:ca: 73:16:bd:f7:16:e6:05:23:29:80:bb:19:84:8c:57: c2:0f:af:26:86:14:02:23:7f:bb:3e:f0:6f:9e:b6: fb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:16:B9:F1:61:53:61:57:17:4A:8E:30:DF:03:03:56:CF:9F:9F:CD X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3f9eac71-74eb-41d6-909a-a188024d8d5f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c16::/48 Signature Algorithm: sha256WithRSAEncryption 40:91:09:ff:6e:d3:57:d5:2a:ec:57:0b:11:db:2e:ec:fc:30: 21:8d:95:94:3f:51:56:41:2f:63:ea:08:7d:a2:f3:19:e9:3b: 68:b4:68:f3:bf:ea:9b:38:af:91:8c:1e:77:3e:15:88:38:a9: 39:ea:c4:5a:9d:3e:53:8f:d0:69:4b:53:4f:0a:c8:7d:bd:9e: 8b:d8:81:2b:60:2a:dc:8f:ef:05:00:5f:8a:73:ab:f0:b9:21: 1e:bd:d5:1a:ab:57:6f:6b:91:06:f9:c8:7c:16:10:44:35:5b: 1c:31:d0:ca:4c:d2:26:72:58:25:e3:9c:76:55:9c:aa:15:2b: 8f:bc:6f:0b:4b:06:1f:5f:f6:f2:58:3d:23:b6:f8:43:86:8d: 0e:16:62:8c:9e:db:c2:39:7e:c0:61:db:43:40:0c:8a:74:2e: 05:95:30:8e:0d:03:02:87:f1:c2:01:a0:7a:44:67:6c:16:87: e9:1f:39:55:12:2d:d1:1c:60:67:7d:a3:27:11:e4:96:9b:b6: da:2c:6d:6a:40:cb:ff:2c:8e:56:57:bc:f6:00:fb:82:96:38: 56:88:0f:dd:62:c7:f3:d1:3b:1b:f2:2e:15:d2:03:e7:35:ff: 63:2c:c6:d8:c9:d9:1a:37:a8:0f:b1:ce:16:44:8c:1d:cc:b4: 0d:e7:a3:cf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQbnHbjF/lvLZKHwLiKny7U+UwIAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTA2MDA0MDM3WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTVkOTgwZDU3ZTUwMDA0NDBiYmI2ZTQ4YjY1NmVkMGQy NmU3NmRhNTYwMWI3MjJiM2ZmNDM3ODQ3MjZmY2YwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxnw9WZSzSa5n2fq3N6/r169ow8sggfxfoeyMBK+uhHqC2 bwLY7Zpn+bMz0BRlxKNlCZf7U6bJzuBAXThYc4TJjr7XeMImsLLARfpRDN8/w2bz 7RIXDZPVOizW404QaHiheOaByVJx2foCcANZtnD83UM7bPw4G01nBqebASCGetJ1 IJhosWvQ6K0JbLAhcj/nKfetriuRnCQfSedrAfhXtscFTlhZn3Z6UcRQ951GVWVC Lp/5Jll/RpcHuJLOXOxJAlJWYWEm5W3ZHsbfsDxr1DfsUmqONxAl9UtwuQkUynMW vfcW5gUjKYC7GYSMV8IPryaGFAIjf7s+8G+etvvpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSha58WFTYVcXSo4w3wMDVs+fn80wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmOWVhYzcxLTc0ZWItNDFkNi05MDlhLWExODgwMjRkOGQ1Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBYwDQYJKoZIhvcNAQELBQADggEBAECRCf9u01fVKuxXCxHbLuz8 MCGNlZQ/UVZBL2PqCH2i8xnpO2i0aPO/6ps4r5GMHnc+FYg4qTnqxFqdPlOP0GlL U08KyH29novYgStgKtyP7wUAX4pzq/C5IR691RqrV29rkQb5yHwWEEQ1Wxwx0MpM 0iZyWCXjnHZVnKoVK4+8bwtLBh9f9vJYPSO2+EOGjQ4WYoye28I5fsBh20NADIp0 LgWVMI4NAwKH8cIBoHpEZ2wWh+kfOVUSLdEcYGd9oycR5JabttosbWpAy/8sjlZX vPYA+4KWOFaID91ix/PROxvyLhXSA+c1/2MsxtjJ2Ro3qA+xzhZEjB3MtA3no88= -----END CERTIFICATE-----Generated at Tue May 6 20:43:39 2025 by rpki-client