$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bc64ede4-78eb-4056-81e0-5a953a42ee96.roa File: bc64ede4-78eb-4056-81e0-5a953a42ee96.roa (raw, json) Hash identifier: jWa4TFeNPqpuWPENBU29rDWNYpZM9H0MfoyCp+WgQyE= Subject key identifier: 35:D3:41:AC:15:1A:8C:A8:59:8E:23:B7:EB:A4:B3:D1:74:9E:67:C6 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 775690F8DC5AA5610C2DB4AF7F8AC4DBF19FBF0B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bc64ede4-78eb-4056-81e0-5a953a42ee96.roa Signing time: Tue 06 May 2025 00:20:16 +0000 ROA not before: Tue 06 May 2025 00:20:16 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 09 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:56:90:f8:dc:5a:a5:61:0c:2d:b4:af:7f:8a:c4:db:f1:9f:bf:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 6 00:20:16 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=719d13b9d7546f8a91fdbae37bf3a72577a2d53bcf7a749a49f994a03b7c3f8b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7b:67:4a:b8:39:d0:6b:3c:34:da:fc:e7:8a: c0:e7:59:2b:05:c0:8d:71:7a:33:3b:f1:bf:3e:f2: 65:83:b3:cc:12:6f:ac:9f:47:79:e0:df:5c:87:fd: ab:6f:22:fe:7f:25:c8:d7:09:89:40:1e:ee:f4:29: 09:c6:28:fe:ce:82:b0:91:c1:27:54:9e:2a:01:89: 09:66:a4:f0:97:59:df:94:1a:14:c1:be:94:d6:f8: fe:5b:ad:75:06:6b:42:0d:e0:53:02:04:8d:b8:ef: f3:d1:4c:56:3e:32:05:ae:46:76:02:66:df:00:8b: ed:f3:3a:47:40:e2:c9:e4:bf:b9:1f:61:c1:17:6c: 78:8b:d7:95:fb:d6:77:82:9b:fc:a2:4e:29:56:97: e1:0f:b4:d0:6e:1e:a8:6b:ee:de:17:9e:10:39:a1: 9f:26:14:e2:f6:f7:00:01:d4:a2:62:17:c5:f7:de: a5:65:cc:8b:45:4e:8d:2d:b7:5a:9f:b8:36:d7:a0: 2e:b8:3c:ea:a0:82:59:db:36:30:a5:fb:80:bb:b1: 3a:67:17:ce:05:17:6e:24:b2:74:9e:05:c0:4e:f3: c8:6a:bf:3a:eb:82:61:23:70:06:91:be:ce:35:01: 80:50:bd:e4:ad:28:5f:62:90:82:8b:26:ba:c1:20: ff:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D3:41:AC:15:1A:8C:A8:59:8E:23:B7:EB:A4:B3:D1:74:9E:67:C6 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bc64ede4-78eb-4056-81e0-5a953a42ee96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 4a:46:26:d7:ff:2d:89:92:5a:1c:1b:55:d5:51:76:7e:53:ff: 6c:e5:05:62:94:8e:d1:6a:a2:1d:86:8f:d2:f3:3e:40:15:88: b4:0e:c5:10:cf:b3:ad:98:36:4f:8c:0f:7f:99:4c:dd:94:37: 67:6b:76:70:51:1d:67:35:67:6d:1a:86:f7:ac:b7:d9:6c:17: 64:86:e2:ec:48:cb:95:63:5c:22:68:36:99:9b:a8:e8:3f:32: 8d:42:d7:98:f1:7f:59:8d:38:84:a5:c3:9c:1c:ce:09:4f:26: ca:84:b8:c6:64:9e:5c:f9:11:bc:ac:01:d8:98:9d:95:c5:5c: 0d:fc:89:06:d6:fe:19:b7:c3:9f:31:ed:be:98:4d:e5:a3:5f: 0c:43:11:78:68:e4:08:73:c0:f2:27:d2:d4:c0:2d:89:3b:00: 23:09:09:0a:79:c2:69:53:74:22:b6:ef:6a:9f:78:b8:71:75: f4:c1:bb:bc:4d:6b:3d:5d:c8:11:db:27:69:e0:8f:8b:55:1d: 2d:b8:6f:8a:cd:ef:91:35:ea:7c:3c:c6:69:dc:97:de:ac:5f: bc:3a:af:1a:0c:5e:aa:a8:b5:24:96:a8:ce:73:5d:ac:86:4a: a2:50:4e:e8:69:d2:f5:58:6f:11:c7:0e:99:1d:05:8d:dc:86: 24:dd:b7:73 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUd1aQ+NxapWEMLbSvf4rE2/GfvwswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTA2MDAyMDE2WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTlkMTNiOWQ3NTQ2ZjhhOTFmZGJhZTM3YmYzYTcyNTc3 YTJkNTNiY2Y3YTc0OWE0OWY5OTRhMDNiN2MzZjhiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1e2dKuDnQazw02vznisDnWSsFwI1xejM78b8+8mWDs8wS b6yfR3ng31yH/atvIv5/JcjXCYlAHu70KQnGKP7OgrCRwSdUnioBiQlmpPCXWd+U GhTBvpTW+P5brXUGa0IN4FMCBI247/PRTFY+MgWuRnYCZt8Ai+3zOkdA4snkv7kf YcEXbHiL15X71neCm/yiTilWl+EPtNBuHqhr7t4XnhA5oZ8mFOL29wAB1KJiF8X3 3qVlzItFTo0tt1qfuDbXoC64POqgglnbNjCl+4C7sTpnF84FF24ksnSeBcBO88hq vzrrgmEjcAaRvs41AYBQveStKF9ikIKLJrrBIP9LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNdNBrBUajKhZjiO366Sz0XSeZ8YwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JjNjRlZGU0LTc4ZWItNDA1Ni04MWUwLTVhOTUzYTQyZWU5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBAEpGJtf/LYmSWhwbVdVRdn5T /2zlBWKUjtFqoh2Gj9LzPkAViLQOxRDPs62YNk+MD3+ZTN2UN2drdnBRHWc1Z20a hvest9lsF2SG4uxIy5VjXCJoNpmbqOg/Mo1C15jxf1mNOISlw5wczglPJsqEuMZk nlz5EbysAdiYnZXFXA38iQbW/hm3w58x7b6YTeWjXwxDEXho5AhzwPIn0tTALYk7 ACMJCQp5wmlTdCK272qfeLhxdfTBu7xNaz1dyBHbJ2ngj4tVHS24b4rN75E16nw8 xmncl96sX7w6rxoMXqqotSSWqM5zXayGSqJQTuhp0vVYbxHHDpkdBY3chiTdt3M= -----END CERTIFICATE-----Generated at Thu May 8 12:29:17 2025 by rpki-client