$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa File: 3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa (raw, json) Hash identifier: QRZI/+yDrRA9j7HI+ZOEjeH7zM+vugwrXutEVcufBos= Subject key identifier: FA:E6:71:4F:07:23:FF:C6:AB:24:36:1F:3D:53:B7:83:68:A9:1F:99 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 14F8FC5D4C0F1B9E4D53EC8AC682EA8086B29326 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa Signing time: Mon 28 Apr 2025 15:30:31 +0000 ROA not before: Mon 28 Apr 2025 15:30:31 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f8:fc:5d:4c:0f:1b:9e:4d:53:ec:8a:c6:82:ea:80:86:b2:93:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 28 15:30:31 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=22f873d41351ffb54826d19237d51c8804194f3810db5268e322ce302044bd87, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a0:9b:f1:24:c6:41:fd:10:d7:c8:42:80:88: fa:88:1c:55:f3:66:04:d5:a6:55:a6:fc:19:37:24: db:32:3c:dd:b4:dd:33:ba:eb:0f:ad:92:4a:35:4f: d3:8e:4d:65:6d:2b:ee:9c:b9:da:f0:06:2b:58:d3: 4e:2c:22:d9:5e:dc:d5:5b:46:70:60:e3:b2:49:dc: 53:72:d5:16:df:82:91:d5:c4:05:1c:ef:81:9d:8c: 73:5a:a6:c7:99:9d:45:f5:ec:35:9e:3e:5f:c6:a8: 1e:7c:6e:00:c7:ff:23:ce:56:37:10:f7:9a:83:9a: d9:aa:be:a7:82:32:63:b9:65:73:af:fe:3f:ed:b0: bd:f8:17:41:a6:c0:2a:6b:14:f2:bd:3e:0e:17:0e: 45:dc:4e:30:31:64:94:65:86:d2:d5:e0:3a:71:a2: c3:6a:9e:4e:13:51:97:3f:d0:6a:17:e0:d6:39:ba: 97:20:ca:7c:73:a9:47:a1:e4:d6:9c:d0:ba:38:1b: fd:07:17:3d:a4:09:93:05:78:47:b1:57:31:f5:6e: 43:7b:db:52:87:f6:66:60:2c:46:df:15:98:48:ac: f4:13:16:1b:87:15:6f:e1:38:33:f6:52:f3:bc:c8: 7c:c8:a0:94:2f:c3:52:3f:19:f5:9d:32:16:1f:0d: 26:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E6:71:4F:07:23:FF:C6:AB:24:36:1F:3D:53:B7:83:68:A9:1F:99 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 6c:8b:0f:52:17:96:8b:19:31:44:20:9e:9e:8f:cd:73:ce:de: 8f:7a:5b:ef:14:ce:ce:71:64:04:fd:0c:6a:61:84:f6:91:5a: 9f:60:5b:89:8e:c1:24:34:0e:25:0b:74:0e:a5:a1:93:83:9a: 78:e2:a0:66:b8:62:7e:07:a4:c1:b9:d4:fa:22:33:b8:b7:c8: 8e:42:bc:60:e8:9f:52:4f:2b:a5:df:1c:62:c4:3f:3c:bd:c4: a7:d4:91:cf:27:75:53:c6:78:a2:45:df:53:04:98:18:00:b4: 16:a8:1f:5c:1d:bb:db:60:8b:34:f0:4e:6d:d9:bb:48:c2:35: 50:01:5d:43:bd:65:a6:9a:e3:b0:84:69:59:34:f6:1a:c2:b9: b3:99:79:8c:86:6f:1a:09:2a:cc:4f:4b:16:aa:69:62:ab:5f: 10:3c:ac:17:da:c5:41:64:b1:eb:e3:2b:bd:ee:8f:6d:85:3a: 14:44:7c:a5:a6:03:29:de:cd:23:e3:5d:6d:74:6b:99:dc:cd: 99:ff:fa:d3:8d:a8:a4:30:96:59:86:d6:8f:c7:c0:bd:fd:fe: e9:8e:11:d3:f5:5a:9e:9b:d7:80:c7:06:d8:14:a7:cf:a9:3e: 6d:e2:38:f6:a7:76:1d:66:a2:f9:86:09:eb:92:5f:9a:7d:49: 3c:63:d4:af -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFPj8XUwPG55NU+yKxoLqgIaykyYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI4MTUzMDMxWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmY4NzNkNDEzNTFmZmI1NDgyNmQxOTIzN2Q1MWM4ODA0 MTk0ZjM4MTBkYjUyNjhlMzIyY2UzMDIwNDRiZDg3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMoJvxJMZB/RDXyEKAiPqIHFXzZgTVplWm/Bk3JNsyPN20 3TO66w+tkko1T9OOTWVtK+6cudrwBitY004sItle3NVbRnBg47JJ3FNy1RbfgpHV xAUc74GdjHNapseZnUX17DWePl/GqB58bgDH/yPOVjcQ95qDmtmqvqeCMmO5ZXOv /j/tsL34F0GmwCprFPK9Pg4XDkXcTjAxZJRlhtLV4DpxosNqnk4TUZc/0GoX4NY5 upcgynxzqUeh5Nac0Lo4G/0HFz2kCZMFeEexVzH1bkN721KH9mZgLEbfFZhIrPQT FhuHFW/hODP2UvO8yHzIoJQvw1I/GfWdMhYfDSZpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+uZxTwcj/8arJDYfPVO3g2ipH5kwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZWY5ZDNlLTJhZDItNGUzOC05MmZjLTVlYWI3NmE1Mzk1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAGyLD1IXlosZMUQgnp6PzXPO 3o96W+8Uzs5xZAT9DGphhPaRWp9gW4mOwSQ0DiULdA6loZODmnjioGa4Yn4HpMG5 1PoiM7i3yI5CvGDon1JPK6XfHGLEPzy9xKfUkc8ndVPGeKJF31MEmBgAtBaoH1wd u9tgizTwTm3Zu0jCNVABXUO9Zaaa47CEaVk09hrCubOZeYyGbxoJKsxPSxaqaWKr XxA8rBfaxUFksevjK73uj22FOhREfKWmAynezSPjXW10a5nczZn/+tONqKQwllmG 1o/HwL39/umOEdP1Wp6b14DHBtgUp8+pPm3iOPandh1movmGCeuSX5p9STxj1K8= -----END CERTIFICATE-----Generated at Mon May 5 08:43:32 2025 by rpki-client