$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6d22e3ab-59b8-41bb-8685-0758081d8424.roa File: 6d22e3ab-59b8-41bb-8685-0758081d8424.roa (raw, json) Hash identifier: D/FqmVGAnEfNpYwNXXVP7NkbCq2kWR5a4Z4pNeu/hZg= Subject key identifier: 13:AD:BC:48:21:14:51:9B:77:3C:D4:F7:C6:24:7B:A5:29:15:42:C9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 55DF0D72410A16400EBBF5FD82759DF1270FB777 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6d22e3ab-59b8-41bb-8685-0758081d8424.roa Signing time: Mon 28 Apr 2025 15:31:11 +0000 ROA not before: Mon 28 Apr 2025 15:31:11 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:64b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:df:0d:72:41:0a:16:40:0e:bb:f5:fd:82:75:9d:f1:27:0f:b7:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 28 15:31:11 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=79a8e3147a5cff92a0a8006f97dc96c91ba54f97e44458c43a03d7cfa9991bad, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e1:12:c1:be:9c:9e:2c:9d:81:91:1a:da:bb: c9:4a:97:13:d7:23:94:e8:28:ca:59:db:f3:4d:b2: 76:b5:09:a9:8c:5c:7d:4b:bc:6c:cb:f8:6d:7a:dd: 67:bf:02:67:97:fa:76:d2:dc:5b:3c:93:aa:c1:3d: 9f:e0:2a:03:0e:a1:9a:ee:98:18:00:d0:7b:db:f5: 19:e6:a7:ca:bc:38:e1:e9:59:a0:ee:3b:f2:74:87: 57:8c:79:ba:ad:ac:b5:11:db:2d:9f:3a:e4:26:00: 2c:0a:26:c2:ee:ed:7a:22:b3:d6:9f:91:72:59:a8: 63:6e:d9:16:64:78:94:52:64:7a:a7:90:c1:86:34: 75:9c:0f:ed:31:51:bb:23:97:3a:13:e8:24:d1:18: a7:35:b6:a7:a9:31:8f:34:f9:15:04:3a:07:89:19: 14:bd:32:7a:a2:88:99:03:00:01:b9:32:af:69:0a: 1a:e3:8a:8b:2f:60:8c:b6:8e:60:80:b5:1b:9d:59: fb:5d:d2:57:94:01:8c:d1:4b:b5:7e:0a:e1:58:a0: 01:c1:5f:7d:84:8f:56:20:2b:48:9c:4a:5d:c2:91: 6b:fe:94:d7:2e:7a:85:10:ad:cd:df:8b:2f:77:b9: 20:0d:94:73:37:24:fe:58:16:c6:2d:66:96:45:37: c0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:AD:BC:48:21:14:51:9B:77:3C:D4:F7:C6:24:7B:A5:29:15:42:C9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6d22e3ab-59b8-41bb-8685-0758081d8424.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64b::/48 Signature Algorithm: sha256WithRSAEncryption a3:7a:be:3a:e5:b1:45:3e:da:22:0f:67:f2:a9:91:f9:0b:ec: f7:0d:75:43:2b:dd:30:5d:c9:40:31:af:bd:29:19:b5:11:53: ac:52:78:f4:2c:56:c8:54:9b:cc:c1:e0:1d:81:83:5f:8c:bf: 90:35:44:5c:0d:1f:7e:fa:20:82:6a:fb:ad:f1:b1:71:84:b1: 3e:f1:03:19:4c:ca:9f:5f:7f:3c:56:6e:3a:8c:ab:64:eb:0d: 6f:78:2c:9a:d5:11:7d:f7:e7:1e:72:58:fe:ba:04:46:a2:71: e3:61:ca:91:eb:40:3b:44:31:3c:7f:04:dc:3f:75:89:a5:7c: 6a:18:95:32:2e:27:ce:e0:20:32:de:bc:e9:8b:76:91:b3:af: 7b:9a:1f:2b:48:82:5c:94:d4:31:01:99:06:75:f2:99:7a:95: 07:d9:18:21:e5:d0:b4:5f:f6:63:df:21:26:18:64:30:3b:09: de:cb:03:66:4a:9f:56:e9:31:84:bc:90:7a:22:81:b4:91:d0: 08:95:ce:52:f2:a6:0e:49:0e:26:35:93:0c:f5:78:7e:86:aa: 54:62:21:84:ef:2c:4c:fd:fb:e8:87:48:8e:88:d6:3d:de:7d: d8:b3:aa:04:12:43:f0:ef:2e:7b:3e:16:b4:a7:16:59:3d:58: df:0c:fe:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVd8NckEKFkAOu/X9gnWd8ScPt3cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI4MTUzMTExWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWE4ZTMxNDdhNWNmZjkyYTBhODAwNmY5N2RjOTZjOTFi YTU0Zjk3ZTQ0NDU4YzQzYTAzZDdjZmE5OTkxYmFkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm4RLBvpyeLJ2BkRrau8lKlxPXI5ToKMpZ2/NNsna1CamM XH1LvGzL+G163We/AmeX+nbS3Fs8k6rBPZ/gKgMOoZrumBgA0Hvb9Rnmp8q8OOHp WaDuO/J0h1eMebqtrLUR2y2fOuQmACwKJsLu7Xois9afkXJZqGNu2RZkeJRSZHqn kMGGNHWcD+0xUbsjlzoT6CTRGKc1tqepMY80+RUEOgeJGRS9MnqiiJkDAAG5Mq9p ChrjiosvYIy2jmCAtRudWftd0leUAYzRS7V+CuFYoAHBX32Ej1YgK0icSl3CkWv+ lNcueoUQrc3fiy93uSANlHM3JP5YFsYtZpZFN8C1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUE628SCEUUZt3PNT3xiR7pSkVQskwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzZkMjJlM2FiLTU5YjgtNDFiYi04Njg1LTA3NTgwODFkODQyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkswDQYJKoZIhvcNAQELBQADggEBAKN6vjrlsUU+2iIPZ/KpkfkL 7PcNdUMr3TBdyUAxr70pGbURU6xSePQsVshUm8zB4B2Bg1+Mv5A1RFwNH376IIJq +63xsXGEsT7xAxlMyp9ffzxWbjqMq2TrDW94LJrVEX335x5yWP66BEaiceNhypHr QDtEMTx/BNw/dYmlfGoYlTIuJ87gIDLevOmLdpGzr3uaHytIglyU1DEBmQZ18pl6 lQfZGCHl0LRf9mPfISYYZDA7Cd7LA2ZKn1bpMYS8kHoigbSR0AiVzlLypg5JDiY1 kwz1eH6GqlRiIYTvLEz9++iHSI6I1j3efdizqgQSQ/DvLns+FrSnFlk9WN8M/i4= -----END CERTIFICATE-----Generated at Tue May 6 08:44:00 2025 by rpki-client