$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa File: 41f74973-a63a-4161-8c87-21184ab17c25.roa (raw, json) Hash identifier: 0BFkSnHuAbFZcuiqtgHxGVRqx6IST1ftxhZl4t7EQcE= Subject key identifier: 42:B8:A8:0B:47:7C:9F:FE:69:CF:51:E2:31:AB:F1:25:6D:2E:33:85 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0ED1293826A69710F2E928A8CF9E6A81CFCC3147 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa Signing time: Tue 06 May 2025 00:40:03 +0000 ROA not before: Tue 06 May 2025 00:40:03 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d1:29:38:26:a6:97:10:f2:e9:28:a8:cf:9e:6a:81:cf:cc:31:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 6 00:40:03 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=7e9db35453588f5a94fedf968c295fe05bac83be8dad6c96f47b33b3fe7cc887, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:19:b2:40:3f:0f:20:89:9f:7c:27:47:fc:a8: 95:82:53:50:89:54:48:5b:82:71:43:d7:f2:f8:33: f8:3d:65:39:c6:95:1a:a0:01:16:5c:35:34:b5:63: 5f:08:5e:3d:5f:bd:c4:fe:b3:69:dc:e7:9f:e4:df: 1a:62:67:e2:89:25:10:d5:d6:e6:4a:94:76:86:08: 9b:f5:9b:4c:3e:5a:f9:48:2a:cd:13:17:72:37:a4: 65:b5:b8:2c:7f:ff:71:69:47:da:44:c7:35:6a:81: 87:c8:7d:35:9f:4d:7c:bb:4b:e1:59:06:43:5a:14: 50:00:52:6e:ae:81:4e:6d:69:5e:cf:57:ea:4d:4b: ab:a1:13:87:4f:aa:cb:ef:81:de:a5:11:be:4c:f3: f0:81:5f:17:f6:6c:bf:3a:fc:2d:70:27:16:34:8e: 3c:d2:c3:cd:4a:e0:dd:1d:cd:2f:7a:d9:f1:4c:80: 70:06:b5:ea:9c:1b:73:85:d0:ce:4b:d2:78:58:a2: 16:dc:02:ed:f6:43:32:81:6c:98:26:db:a9:3d:dc: 11:b7:db:3b:9e:02:4d:f2:4d:a6:ab:46:37:79:90: 6a:1e:56:73:92:03:52:70:88:c1:5d:ad:dc:23:98: 6f:54:c4:7d:a4:22:2a:13:fa:1d:21:c4:c1:01:01: f4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B8:A8:0B:47:7C:9F:FE:69:CF:51:E2:31:AB:F1:25:6D:2E:33:85 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1c::/48 Signature Algorithm: sha256WithRSAEncryption 20:0c:b5:5f:43:26:bc:fb:43:d5:44:b6:14:e5:76:15:4b:ba: 81:63:b4:0c:63:73:07:a6:de:96:f8:16:70:ea:40:12:bd:02: 08:71:c5:aa:e6:7f:95:d2:ac:49:e4:fd:6b:ff:7d:72:af:46: d7:d2:31:49:94:f4:6b:56:29:5f:78:40:6a:23:0b:6f:60:68: c7:a1:a4:9c:40:e0:6f:92:31:1a:5a:df:08:2d:be:9f:60:55: 16:0c:00:fc:d3:96:57:c3:45:9d:17:0b:52:eb:81:4a:0d:2b: d9:6e:14:aa:f0:9d:2e:17:1a:c3:6d:b9:48:26:b6:0f:5b:bf: 7a:f6:92:29:57:2a:17:86:89:b1:ec:34:53:70:f0:7a:9e:a4: 1b:b7:53:93:0e:7a:a5:32:ef:89:f5:ea:b0:48:1c:34:e9:16: e1:8f:5e:72:48:80:9a:91:5d:9e:36:97:cd:a0:f0:68:ef:b4: bc:55:12:3d:9f:2e:b7:d6:24:3c:92:1e:a2:6a:5a:0d:f4:fd: ab:67:f4:30:ae:b7:e2:ae:7b:f5:c9:cb:ff:fd:14:c1:a4:52: b4:af:eb:b9:3a:95:7f:fc:68:43:0f:34:79:b5:65:77:35:bc: b1:c8:68:1b:15:51:e3:47:fa:a1:c1:66:c5:c4:5a:5e:f1:ea: ff:13:37:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDtEpOCamlxDy6Sioz55qgc/MMUcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTA2MDA0MDAzWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTlkYjM1NDUzNTg4ZjVhOTRmZWRmOTY4YzI5NWZlMDVi YWM4M2JlOGRhZDZjOTZmNDdiMzNiM2ZlN2NjODg3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpGbJAPw8giZ98J0f8qJWCU1CJVEhbgnFD1/L4M/g9ZTnG lRqgARZcNTS1Y18IXj1fvcT+s2nc55/k3xpiZ+KJJRDV1uZKlHaGCJv1m0w+WvlI Ks0TF3I3pGW1uCx//3FpR9pExzVqgYfIfTWfTXy7S+FZBkNaFFAAUm6ugU5taV7P V+pNS6uhE4dPqsvvgd6lEb5M8/CBXxf2bL86/C1wJxY0jjzSw81K4N0dzS962fFM gHAGteqcG3OF0M5L0nhYohbcAu32QzKBbJgm26k93BG32zueAk3yTaarRjd5kGoe VnOSA1JwiMFdrdwjmG9UxH2kIioT+h0hxMEBAfQXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQrioC0d8n/5pz1HiMavxJW0uM4UwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQxZjc0OTczLWE2M2EtNDE2MS04Yzg3LTIxMTg0YWIxN2MyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBwwDQYJKoZIhvcNAQELBQADggEBACAMtV9DJrz7Q9VEthTldhVL uoFjtAxjcwem3pb4FnDqQBK9Aghxxarmf5XSrEnk/Wv/fXKvRtfSMUmU9GtWKV94 QGojC29gaMehpJxA4G+SMRpa3wgtvp9gVRYMAPzTllfDRZ0XC1LrgUoNK9luFKrw nS4XGsNtuUgmtg9bv3r2kilXKheGibHsNFNw8HqepBu3U5MOeqUy74n16rBIHDTp FuGPXnJIgJqRXZ42l82g8GjvtLxVEj2fLrfWJDySHqJqWg30/atn9DCut+Kue/XJ y//9FMGkUrSv67k6lX/8aEMPNHm1ZXc1vLHIaBsVUeNH+qHBZsXEWl7x6v8TNy8= -----END CERTIFICATE-----Generated at Tue May 6 06:17:14 2025 by rpki-client