$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f0f08d8e-64f4-4e2b-8f33-26427783e662.roa File: f0f08d8e-64f4-4e2b-8f33-26427783e662.roa (raw, json) Hash identifier: 3vRKlX9qhXUNDIuVmuxKYmnuN4DqvhYvm6iMefaS/eQ= Subject key identifier: 6A:21:38:A7:1E:90:51:0E:18:4B:27:FC:7B:0B:37:15:2C:37:CE:AF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 027F6105A9094C958E94E9930977C60FF58900ED Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f0f08d8e-64f4-4e2b-8f33-26427783e662.roa Signing time: Mon 28 Apr 2025 15:30:23 +0000 ROA not before: Mon 28 Apr 2025 15:30:23 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:54a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:7f:61:05:a9:09:4c:95:8e:94:e9:93:09:77:c6:0f:f5:89:00:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 28 15:30:23 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=387e4cf42fe913cf8c6e635dedea0281019a07242849fee3ad65ced24c360b37, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c0:96:cd:03:4f:51:06:bf:af:54:90:6a:26: 90:81:c9:74:4c:d0:0a:23:f0:b0:de:04:bf:2c:51: 12:10:50:98:59:cb:f3:c5:5c:d9:76:e1:86:15:ca: b9:04:fe:12:c1:41:e7:14:0c:6a:4a:0f:37:45:c3: 74:96:a2:21:37:63:b6:69:c9:cf:2e:c5:41:63:7d: ac:7a:f3:de:f8:3a:c3:3b:1f:9e:6a:53:d5:21:85: f7:39:d8:2b:19:3c:1b:b9:c6:b5:3a:6b:f0:f7:3a: 55:2b:20:5e:ed:7d:d4:76:65:1c:0f:cb:37:dd:f9: 60:19:d1:a9:e1:d4:01:06:52:4b:c7:17:6a:69:ec: 76:4b:03:f5:fc:ed:9d:14:9a:90:8b:99:27:40:24: a3:39:e1:c9:ef:a7:d1:af:63:62:0d:4c:4c:a9:20: 68:70:3c:04:5f:98:1d:a6:11:e8:c8:4b:3d:ea:d3: 29:3f:8c:93:10:ad:d6:13:4b:c7:2f:be:37:59:3a: f4:f0:35:91:85:d0:54:4c:0a:33:e8:e9:43:b8:47: 21:a9:1b:fd:62:be:1a:9a:26:7d:7f:64:80:b5:79: a6:51:c6:d5:0f:3b:ad:4d:f3:8c:ba:12:d8:85:07: 8f:16:54:86:82:39:ab:b6:c8:a7:b9:45:4b:e6:5c: f6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:21:38:A7:1E:90:51:0E:18:4B:27:FC:7B:0B:37:15:2C:37:CE:AF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f0f08d8e-64f4-4e2b-8f33-26427783e662.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:54a::/48 Signature Algorithm: sha256WithRSAEncryption 9e:68:b9:4f:a5:c2:4e:f6:27:a6:c5:81:67:de:e5:bc:5f:8d: 91:8c:4f:81:bb:a1:12:29:8a:72:1c:4c:77:a5:7d:ca:7a:be: af:06:a5:4f:32:1b:2c:6f:49:75:30:c5:fa:b8:fe:ad:2a:1b: 8b:7b:16:15:5f:4a:6d:e3:e7:0d:d3:df:cf:e1:3c:f7:0f:8f: 4d:7b:3c:f0:bc:86:83:f3:ce:55:3f:ab:3e:03:94:2a:5a:ce: 68:d1:41:c8:a8:6a:3d:73:75:80:87:ee:12:39:cc:86:13:70: 55:83:04:dc:af:48:88:16:2a:25:b9:41:bd:ea:ee:11:26:9f: 12:e5:85:a5:29:31:a6:f5:6a:e1:d5:d9:8c:e3:42:f9:6d:fd: ae:78:d2:6c:ca:ee:5f:6a:8a:6b:62:e2:63:e4:5c:0b:8b:08: af:fd:13:40:32:26:70:e4:41:41:30:50:09:08:d0:ce:c7:b0: 22:b5:93:38:bd:c9:a9:37:e5:d3:24:84:03:3a:5a:c2:4c:18: 51:42:46:39:bf:d0:53:05:9f:1b:2f:93:0d:83:3d:d0:9d:7a: 6a:02:26:a6:62:5f:35:19:87:30:03:31:d7:1d:75:01:8e:89: 5d:2f:6a:36:d4:ac:f4:ce:f5:44:8b:00:c5:31:e3:9a:1d:4a: 68:82:dd:98 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAn9hBakJTJWOlOmTCXfGD/WJAO0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI4MTUzMDIzWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzODdlNGNmNDJmZTkxM2NmOGM2ZTYzNWRlZGVhMDI4MTAx OWEwNzI0Mjg0OWZlZTNhZDY1Y2VkMjRjMzYwYjM3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDawJbNA09RBr+vVJBqJpCByXRM0Aoj8LDeBL8sURIQUJhZ y/PFXNl24YYVyrkE/hLBQecUDGpKDzdFw3SWoiE3Y7Zpyc8uxUFjfax68974OsM7 H55qU9Uhhfc52CsZPBu5xrU6a/D3OlUrIF7tfdR2ZRwPyzfd+WAZ0anh1AEGUkvH F2pp7HZLA/X87Z0UmpCLmSdAJKM54cnvp9GvY2INTEypIGhwPARfmB2mEejISz3q 0yk/jJMQrdYTS8cvvjdZOvTwNZGF0FRMCjPo6UO4RyGpG/1ivhqaJn1/ZIC1eaZR xtUPO61N84y6EtiFB48WVIaCOau2yKe5RUvmXPY7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaiE4px6QUQ4YSyf8ews3FSw3zq8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2YwZjA4ZDhlLTY0ZjQtNGUyYi04ZjMzLTI2NDI3NzgzZTY2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUowDQYJKoZIhvcNAQELBQADggEBAJ5ouU+lwk72J6bFgWfe5bxf jZGMT4G7oRIpinIcTHelfcp6vq8GpU8yGyxvSXUwxfq4/q0qG4t7FhVfSm3j5w3T 38/hPPcPj017PPC8hoPzzlU/qz4DlCpazmjRQcioaj1zdYCH7hI5zIYTcFWDBNyv SIgWKiW5Qb3q7hEmnxLlhaUpMab1auHV2YzjQvlt/a540mzK7l9qimti4mPkXAuL CK/9E0AyJnDkQUEwUAkI0M7HsCK1kzi9yak35dMkhAM6WsJMGFFCRjm/0FMFnxsv kw2DPdCdemoCJqZiXzUZhzADMdcddQGOiV0vajbUrPTO9USLAMUx45odSmiC3Zg= -----END CERTIFICATE-----Generated at Tue May 6 12:58:58 2025 by rpki-client