$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b10ce8-13f0-4570-9b30-d060db1fc6c1.roa File: 86b10ce8-13f0-4570-9b30-d060db1fc6c1.roa (raw, json) Hash identifier: 56k8aQpN3DgT/NIfBdMzi4dFsMXI5QUML96yslQ0EtE= Subject key identifier: 3D:EB:A6:A6:BF:4B:60:9B:BD:16:37:CC:A2:63:0C:06:A5:17:B7:F9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 661CE44FB0A22E736EEB97C88A41586E39B5761D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b10ce8-13f0-4570-9b30-d060db1fc6c1.roa Signing time: Fri 11 Apr 2025 00:30:19 +0000 ROA not before: Fri 11 Apr 2025 00:30:19 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c03::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:1c:e4:4f:b0:a2:2e:73:6e:eb:97:c8:8a:41:58:6e:39:b5:76:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:30:19 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=427f1386bb1202047ebdcdd2f97e88ad10b3570d4f3b8da777daa56a99d1ea4d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:59:54:4e:08:96:1f:56:65:87:40:19:fc:2e: 89:19:73:fb:8f:c5:9e:66:17:3c:c8:a3:7a:cb:e7: 2b:f8:14:fb:91:a7:5c:16:73:84:e2:cf:02:79:2e: 43:92:e8:f7:b1:c1:26:03:c6:4e:b5:0a:f0:e2:78: 99:82:74:0c:35:4b:84:8b:02:86:69:ef:88:a3:76: 70:86:41:44:41:69:7a:27:7f:8d:4b:d8:0f:f6:75: 9d:45:68:bf:b8:dd:0b:1e:ee:30:17:41:9d:a0:0e: a6:33:b3:e5:25:db:62:3b:92:04:08:4b:be:07:9d: d9:72:b0:e0:cc:3c:81:d9:3a:f3:c4:c5:6c:1e:02: 7d:58:ba:47:07:b8:cf:91:fc:37:01:af:40:a8:f0: b8:2f:11:05:8b:70:74:a2:25:34:02:22:3c:83:f0: 89:25:de:b8:e9:5d:f8:82:c9:5a:92:fd:13:b2:6d: 57:3c:d5:f4:25:45:fc:6b:4c:db:31:32:7e:18:c3: f9:26:a1:70:5d:38:2c:ae:d1:43:04:20:58:d6:33: 7a:3f:e6:a1:63:80:2c:23:29:cb:0e:ef:c3:ff:15: 45:20:53:51:15:8a:99:7c:32:20:2d:81:a2:06:ad: d4:68:2b:c7:d2:8e:15:e4:34:dc:05:75:bf:87:5a: 13:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:EB:A6:A6:BF:4B:60:9B:BD:16:37:CC:A2:63:0C:06:A5:17:B7:F9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b10ce8-13f0-4570-9b30-d060db1fc6c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c03::/48 Signature Algorithm: sha256WithRSAEncryption 82:ff:96:ba:b6:3e:6b:fa:29:3a:bd:35:32:ad:66:ac:c4:b9: 20:f2:fc:13:66:1b:32:9d:ab:38:4f:96:d3:88:ce:48:72:c8: 74:11:d8:2c:4b:c2:51:7f:3e:1d:8d:79:8c:88:7b:20:bd:67: 10:6f:ff:d7:46:84:cb:8e:b0:e0:bc:01:f6:36:11:51:cb:ac: d8:0b:bd:d3:4c:44:02:b8:94:ec:b3:56:02:4d:5f:ed:2b:75: bc:bf:e6:9a:85:88:59:24:c5:88:4e:6c:b4:83:d7:70:f8:a3: c6:6c:9f:dc:eb:bc:29:3e:9c:9c:a8:1f:4e:1d:76:f0:82:ba: d4:32:6f:2b:e7:9f:5e:89:27:03:3e:f4:e3:42:c6:b3:eb:6e: fe:cf:dd:e5:81:35:bd:66:4f:c9:88:29:89:d9:64:0b:a1:33: d3:92:a0:e0:ef:e1:92:3f:b2:5f:18:77:ab:5c:24:6b:40:d0: cc:1f:5e:29:9a:92:3e:c8:08:dc:9d:4e:bc:95:ec:6d:c6:e9: 9c:33:19:fa:f4:5d:9a:26:d9:eb:30:e6:f4:52:78:7b:7c:0c: 0a:5d:0f:f9:2c:f7:f9:05:73:84:39:b3:a9:a8:79:8f:bd:5e: e6:b3:f9:27:3d:79:30:57:9f:38:d6:4b:89:ed:db:88:e1:9f: 7f:b2:64:56 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZhzkT7CiLnNu65fIikFYbjm1dh0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAzMDE5WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjdmMTM4NmJiMTIwMjA0N2ViZGNkZDJmOTdlODhhZDEw YjM1NzBkNGYzYjhkYTc3N2RhYTU2YTk5ZDFlYTRkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZWVROCJYfVmWHQBn8LokZc/uPxZ5mFzzIo3rL5yv4FPuR p1wWc4TizwJ5LkOS6PexwSYDxk61CvDieJmCdAw1S4SLAoZp74ijdnCGQURBaXon f41L2A/2dZ1FaL+43Qse7jAXQZ2gDqYzs+Ul22I7kgQIS74HndlysODMPIHZOvPE xWweAn1YukcHuM+R/DcBr0Co8LgvEQWLcHSiJTQCIjyD8Ikl3rjpXfiCyVqS/ROy bVc81fQlRfxrTNsxMn4Yw/kmoXBdOCyu0UMEIFjWM3o/5qFjgCwjKcsO78P/FUUg U1EVipl8MiAtgaIGrdRoK8fSjhXkNNwFdb+HWhMdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPeumpr9LYJu9FjfMomMMBqUXt/kwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg2YjEwY2U4LTEzZjAtNDU3MC05YjMwLWQwNjBkYjFmYzZjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAMwDQYJKoZIhvcNAQELBQADggEBAIL/lrq2Pmv6KTq9NTKtZqzE uSDy/BNmGzKdqzhPltOIzkhyyHQR2CxLwlF/Ph2NeYyIeyC9ZxBv/9dGhMuOsOC8 AfY2EVHLrNgLvdNMRAK4lOyzVgJNX+0rdby/5pqFiFkkxYhObLSD13D4o8Zsn9zr vCk+nJyoH04ddvCCutQybyvnn16JJwM+9ONCxrPrbv7P3eWBNb1mT8mIKYnZZAuh M9OSoODv4ZI/sl8Yd6tcJGtA0MwfXimakj7ICNydTryV7G3G6ZwzGfr0XZom2esw 5vRSeHt8DApdD/ks9/kFc4Q5s6moeY+9Xuaz+Sc9eTBXnzjWS4nt24jhn3+yZFY= -----END CERTIFICATE-----Generated at Sat Apr 26 13:15:48 2025 by rpki-client