$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa File: 03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa (raw, json) Hash identifier: BdPuKWIo5JiK/jbySfg4ujpfcxBCDaSF7950UaKuOqc= Subject key identifier: D2:BA:49:4F:03:A7:E8:9E:26:70:9E:30:7A:A7:B5:C5:75:93:D6:79 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0ED29DF597DEE35C89BA88197669AF178CC1AE50 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa Signing time: Fri 11 Apr 2025 00:31:38 +0000 ROA not before: Fri 11 Apr 2025 00:31:38 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d2:9d:f5:97:de:e3:5c:89:ba:88:19:76:69:af:17:8c:c1:ae:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:31:38 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=54c7b1eb6aa88a56acec2f77f2fec1d5f4e2090bc7b8ff7a4c126ed534432478, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:35:d6:8b:f8:c4:6d:c9:cc:40:15:49:38:27: 30:1e:f1:db:44:55:fa:b6:ea:37:e6:cf:f2:65:57: 9b:c4:4b:71:c4:0f:fa:0c:2b:16:cf:8c:11:58:11: d1:a8:be:da:46:72:6d:d2:fe:8a:c2:46:16:52:9c: e9:28:cb:45:19:a3:b6:2e:ee:1c:6f:c5:1e:4f:89: bd:ea:d7:2c:c0:18:a4:3d:b3:51:da:cc:2b:a6:8d: 0d:44:4a:d3:36:fc:ab:17:5a:63:60:4c:3f:52:36: 87:26:ac:7d:9f:06:5c:7c:7d:bd:c0:5b:e0:74:91: 65:16:40:f0:23:1b:f3:f9:77:19:ad:3e:c6:a4:5b: 1a:ad:f6:89:8a:7b:72:a8:66:05:06:4f:28:b8:ef: 81:ee:01:d0:05:0c:4e:a6:5e:ac:be:b2:8b:b1:63: b4:d9:0d:d5:51:8a:c0:1a:be:fe:9e:11:8d:15:12: 3a:9c:b0:fa:ce:b0:4f:ef:9d:1e:76:db:d5:b4:b5: b4:a0:99:6f:6c:b8:10:68:d7:aa:d3:26:a1:8d:54: 0f:76:e3:f8:f6:96:5b:a6:67:73:f6:fe:7e:6b:e3: a7:0f:44:03:09:4d:01:4c:f6:40:c5:71:71:27:ce: fd:cd:b2:2c:83:43:e9:cb:c4:30:2c:1e:7f:dd:3e: 0b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BA:49:4F:03:A7:E8:9E:26:70:9E:30:7A:A7:B5:C5:75:93:D6:79 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/03f5a9d6-dd97-47b4-808d-4536aea7c03e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0d::/48 Signature Algorithm: sha256WithRSAEncryption 4b:91:a3:b2:c6:22:7c:2e:64:64:1c:8f:38:5b:e3:33:ef:19: a3:1c:e3:f6:3c:6f:f7:68:84:3f:8f:c2:67:0a:9c:a7:aa:dc: 93:07:49:fb:31:2c:40:4f:32:d7:aa:80:08:2d:b8:5a:70:8d: 58:07:6b:c4:b5:65:dc:17:82:19:78:e5:cb:a6:bc:28:f8:f5: fe:39:86:7c:d0:8d:50:22:d2:79:79:35:85:3f:d9:41:79:7c: 2a:4d:a0:0e:85:2a:c7:e2:de:a9:0d:09:da:6e:d6:2c:36:93: de:e1:c1:db:04:ed:cb:5e:36:da:92:e1:be:7a:cc:59:6e:f3: e5:bf:1b:e2:38:c1:6b:13:33:97:a4:01:57:c9:e8:3c:1a:85: e6:85:39:19:fe:87:d1:c8:a3:7e:88:0d:50:99:83:c9:2b:59: 8c:3e:dc:fc:5d:fc:c1:7e:ca:01:75:6e:da:90:23:4c:3a:a9: 05:7d:e1:54:00:10:23:80:99:7e:21:a0:85:a0:21:9f:e8:28: 97:92:9f:aa:11:e6:ec:f6:e3:5f:a7:ac:d5:2c:13:e5:cc:bf: 1b:17:a8:f3:50:98:c2:87:2a:2b:1e:f5:5b:37:66:4b:c5:97: 72:b5:a2:d3:6a:95:57:ab:c2:ac:57:ee:2e:8a:a9:83:2b:55: b3:bb:7a:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDtKd9Zfe41yJuogZdmmvF4zBrlAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAzMTM4WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGM3YjFlYjZhYTg4YTU2YWNlYzJmNzdmMmZlYzFkNWY0 ZTIwOTBiYzdiOGZmN2E0YzEyNmVkNTM0NDMyNDc4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsNdaL+MRtycxAFUk4JzAe8dtEVfq26jfmz/JlV5vES3HE D/oMKxbPjBFYEdGovtpGcm3S/orCRhZSnOkoy0UZo7Yu7hxvxR5Pib3q1yzAGKQ9 s1HazCumjQ1EStM2/KsXWmNgTD9SNocmrH2fBlx8fb3AW+B0kWUWQPAjG/P5dxmt PsakWxqt9omKe3KoZgUGTyi474HuAdAFDE6mXqy+souxY7TZDdVRisAavv6eEY0V EjqcsPrOsE/vnR5229W0tbSgmW9suBBo16rTJqGNVA924/j2llumZ3P2/n5r46cP RAMJTQFM9kDFcXEnzv3NsiyDQ+nLxDAsHn/dPgvBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0rpJTwOn6J4mcJ4weqe1xXWT1nkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAzZjVhOWQ2LWRkOTctNDdiNC04MDhkLTQ1MzZhZWE3YzAzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA0wDQYJKoZIhvcNAQELBQADggEBAEuRo7LGInwuZGQcjzhb4zPv GaMc4/Y8b/dohD+PwmcKnKeq3JMHSfsxLEBPMteqgAgtuFpwjVgHa8S1ZdwXghl4 5cumvCj49f45hnzQjVAi0nl5NYU/2UF5fCpNoA6FKsfi3qkNCdpu1iw2k97hwdsE 7cteNtqS4b56zFlu8+W/G+I4wWsTM5ekAVfJ6DwaheaFORn+h9HIo36IDVCZg8kr WYw+3Pxd/MF+ygF1btqQI0w6qQV94VQAECOAmX4hoIWgIZ/oKJeSn6oR5uz241+n rNUsE+XMvxsXqPNQmMKHKise9Vs3ZkvFl3K1otNqlVerwqxX7i6KqYMrVbO7esQ= -----END CERTIFICATE-----Generated at Sat Apr 26 18:33:27 2025 by rpki-client