$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0ca2746d-3202-41d0-813a-04560f31627d.roa File: 0ca2746d-3202-41d0-813a-04560f31627d.roa (raw, json) Hash identifier: orfbivdTXLyUeD1OVzoME65NtY/zU08lhYqZzVAKnUk= Subject key identifier: DF:B6:84:15:EE:BC:6A:9B:8D:23:45:D8:CB:D4:E3:F1:1F:91:06:A5 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 68C9D634AD42EA2148AE583781597FE97E4CA7B3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0ca2746d-3202-41d0-813a-04560f31627d.roa Signing time: Fri 11 Apr 2025 00:30:53 +0000 ROA not before: Fri 11 Apr 2025 00:30:53 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:c9:d6:34:ad:42:ea:21:48:ae:58:37:81:59:7f:e9:7e:4c:a7:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:30:53 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=ecadf83fc648f35c8281f4bbc100767bb5e458260efafbbcd61c2c009a26b36b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:e8:a8:3d:53:ba:0a:a5:10:ac:ee:62:63:1b: 29:c3:f4:07:74:a8:c4:3a:80:a5:e8:cf:7c:4d:76: 30:e0:f0:b2:f1:95:4c:6e:79:7c:a2:e5:d8:ce:21: b9:0e:a7:7f:59:ac:25:3b:a5:23:1e:dc:26:0f:63: 9d:69:a6:09:5f:1b:cb:7b:50:ef:63:f8:54:10:a4: 10:26:f8:53:6a:56:47:33:5b:69:4f:85:9e:e1:55: a2:e9:a7:8b:1d:f2:02:ff:21:61:29:20:f3:e7:fb: 9f:bd:bf:62:f6:65:85:78:7e:06:d3:cd:0d:74:c9: dd:b0:3a:39:a7:76:99:99:54:e6:a2:33:d6:14:a7: 8f:cb:6a:a7:de:a9:05:1b:ac:b4:ea:b9:68:82:a2: d6:e3:dc:4a:a3:b7:06:b3:56:eb:d8:3d:d7:dd:22: 7c:19:fc:bb:d9:8a:6f:2b:21:43:04:b0:64:c6:50: 5f:c1:c6:b7:ce:0c:e5:3b:7d:42:05:10:37:31:95: 19:f1:56:c6:52:43:65:30:55:7b:45:cf:4d:b7:69: f8:c9:1b:1c:b5:bb:d0:11:1a:2a:e3:61:b2:e1:46: 55:4f:79:26:45:68:e3:90:50:1b:fd:14:bc:11:a0: fa:8e:c7:31:28:9c:7b:4f:84:d9:ad:fe:db:66:4b: d3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:B6:84:15:EE:BC:6A:9B:8D:23:45:D8:CB:D4:E3:F1:1F:91:06:A5 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0ca2746d-3202-41d0-813a-04560f31627d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c10::/48 Signature Algorithm: sha256WithRSAEncryption 16:4c:37:eb:72:10:8b:ab:4f:44:96:4a:12:a6:05:71:a7:bd: 44:aa:f3:0a:39:d5:88:30:ad:39:df:6f:2a:b7:86:ad:51:b8: 3d:50:d5:1e:b5:b5:08:d0:9a:80:d2:3b:d0:c0:8f:0f:e7:28: ba:de:81:ba:38:34:fd:0c:dc:c3:57:d7:12:48:8a:22:06:33: 32:6f:62:05:ca:0d:c7:b3:da:c8:16:b7:b4:72:af:c3:ed:1b: 51:d3:48:80:3f:60:c9:1b:95:33:1f:45:f8:05:60:a1:68:7e: 5b:71:60:b9:b8:02:19:70:a2:92:ef:c6:20:73:16:97:b8:61: 71:cc:67:4a:70:d8:6a:ba:29:98:8e:1c:74:b6:4c:97:b9:a3: 21:d8:db:8b:38:75:3b:a8:a9:57:fd:0f:ce:ec:76:9d:f3:4a: 0b:c1:c5:3c:58:3b:ea:2e:0b:e1:53:09:35:00:33:ca:63:ff: 5d:43:cd:5b:4a:5e:58:dd:a5:a4:2d:c0:fd:77:5b:4e:37:b3: 5e:17:3e:aa:33:4d:61:80:99:0b:de:e6:51:8a:d2:09:4d:91: 58:56:71:db:fa:4e:5b:fd:7e:10:36:d0:22:44:74:45:c1:e9: 27:a4:6e:6a:bc:a3:09:6b:f7:25:f3:1f:7b:5b:6e:37:3f:90: 31:bf:7a:34 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaMnWNK1C6iFIrlg3gVl/6X5Mp7MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAzMDUzWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2FkZjgzZmM2NDhmMzVjODI4MWY0YmJjMTAwNzY3YmI1 ZTQ1ODI2MGVmYWZiYmNkNjFjMmMwMDlhMjZiMzZiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCH6Kg9U7oKpRCs7mJjGynD9Ad0qMQ6gKXoz3xNdjDg8LLx lUxueXyi5djOIbkOp39ZrCU7pSMe3CYPY51ppglfG8t7UO9j+FQQpBAm+FNqVkcz W2lPhZ7hVaLpp4sd8gL/IWEpIPPn+5+9v2L2ZYV4fgbTzQ10yd2wOjmndpmZVOai M9YUp4/LaqfeqQUbrLTquWiCotbj3EqjtwazVuvYPdfdInwZ/LvZim8rIUMEsGTG UF/BxrfODOU7fUIFEDcxlRnxVsZSQ2UwVXtFz023afjJGxy1u9ARGirjYbLhRlVP eSZFaOOQUBv9FLwRoPqOxzEonHtPhNmt/ttmS9N9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU37aEFe68apuNI0XYy9Tj8R+RBqUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBjYTI3NDZkLTMyMDItNDFkMC04MTNhLTA0NTYwZjMxNjI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBAwDQYJKoZIhvcNAQELBQADggEBABZMN+tyEIurT0SWShKmBXGn vUSq8wo51YgwrTnfbyq3hq1RuD1Q1R61tQjQmoDSO9DAjw/nKLregbo4NP0M3MNX 1xJIiiIGMzJvYgXKDcez2sgWt7Ryr8PtG1HTSIA/YMkblTMfRfgFYKFofltxYLm4 AhlwopLvxiBzFpe4YXHMZ0pw2Gq6KZiOHHS2TJe5oyHY24s4dTuoqVf9D87sdp3z SgvBxTxYO+ouC+FTCTUAM8pj/11DzVtKXljdpaQtwP13W043s14XPqozTWGAmQve 5lGK0glNkVhWcdv6Tlv9fhA20CJEdEXB6Sekbmq8owlr9yXzH3tbbjc/kDG/ejQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:48:34 2025 by rpki-client