$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa File: b135e8de-4e6c-4d15-87c3-51709cb5a460.roa (raw, json) Hash identifier: osHP3m83LqYArTiSuLJOYtgZ9Rx21zsKs4CT3Epo48E= Subject key identifier: D4:7B:B7:89:88:5C:29:B1:C9:A0:1E:A9:1F:0A:49:B0:A1:7D:A7:05 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1A4FCEF63069A3DD9B29823B5165AD5CE6AE62DE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa Signing time: Tue 20 May 2025 17:50:43 +0000 ROA not before: Tue 20 May 2025 17:50:43 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:39c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:4f:ce:f6:30:69:a3:dd:9b:29:82:3b:51:65:ad:5c:e6:ae:62:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:50:43 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=b9154a20d0601ccd6246ce2df5b6fb05fbb5b6ac531f9dc990623ecb6ab79e2b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3a:57:77:40:ae:18:e4:00:60:8f:a6:c6:15: be:c9:cf:80:cd:3b:a5:d9:96:3e:f0:76:78:6a:e1: b9:02:00:45:3e:6f:c0:8c:15:ae:ab:1f:35:7e:4f: 1f:9b:b0:fc:30:f5:b8:72:87:49:d5:28:93:39:ec: 32:2d:2c:96:71:6f:66:19:09:9d:1b:65:01:ac:6d: ac:60:e7:dc:0e:87:5d:2f:cc:72:c4:b4:6f:88:f6: 13:32:67:a8:2c:ff:96:c8:c7:4e:01:31:77:a1:5d: 98:36:27:7a:2e:8b:8d:aa:4a:17:a9:72:9d:12:6d: a3:d8:18:2c:80:c3:e5:8e:b4:2c:a3:ee:21:24:e1: 88:d4:3a:a9:bb:9e:01:71:97:be:fd:ec:1f:ad:fc: be:9e:2d:3b:a7:a6:7a:00:8a:3a:72:e2:28:6e:15: c5:88:bf:f5:59:fc:e7:93:33:4f:d1:d2:01:67:a8: 49:0d:54:be:e1:43:ec:5a:3c:e3:b0:fc:1b:9a:88: 50:7d:38:70:71:88:cc:d1:61:76:b2:63:c3:15:af: a8:e6:53:de:b1:00:43:63:9b:a6:0b:25:93:35:63: 7f:12:c2:3f:70:e8:0b:fd:fc:a0:f3:45:f6:26:9d: bc:0c:57:93:61:ee:80:a7:13:2b:19:d1:42:22:18: fb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:7B:B7:89:88:5C:29:B1:C9:A0:1E:A9:1F:0A:49:B0:A1:7D:A7:05 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:39c::/48 Signature Algorithm: sha256WithRSAEncryption 50:50:cb:8d:9e:30:28:2b:a7:3b:e7:91:c0:bf:86:4b:c5:ac: c7:e5:13:47:d4:39:a6:75:41:08:b0:25:fe:a1:5c:f9:e0:ef: c5:fa:58:8a:dd:58:3d:f4:c7:12:27:04:a6:d8:17:b2:d3:89: c5:e2:6c:ab:27:17:5d:f3:0d:9f:12:55:c6:fe:0d:45:8d:d1: 5d:99:19:0a:a8:b4:da:dd:d7:66:b4:19:55:f7:f5:10:41:52: 2d:8b:24:1f:3f:28:36:b5:c3:e6:ad:c6:da:f0:4f:73:b0:97: 91:08:f2:dd:68:50:c4:a9:f0:2b:3b:93:56:69:81:df:a4:44: 88:a2:b6:73:b0:42:9c:a3:75:43:6a:e8:72:1b:8f:5b:51:f6: 98:28:74:66:e7:d5:92:93:56:4b:d8:9a:3d:27:42:ac:ea:84: 49:7c:fe:6e:5c:fe:d5:b2:f1:fa:8c:7a:b2:57:97:ff:8e:67: b0:5b:27:6f:50:05:5f:bc:5e:c0:13:f8:a4:9e:ad:14:4f:79: d0:d1:91:1b:a2:e3:c3:e7:af:db:f6:ec:ad:f3:2a:51:0e:5d: 14:91:da:cc:33:c8:07:8a:79:ce:22:69:94:74:f5:a0:54:cd: bb:79:93:13:d2:c0:5b:2a:7a:18:8e:64:18:d6:bb:44:78:e0: c4:1e:82:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGk/O9jBpo92bKYI7UWWtXOauYt4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MDQzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTE1NGEyMGQwNjAxY2NkNjI0NmNlMmRmNWI2ZmIwNWZi YjViNmFjNTMxZjlkYzk5MDYyM2VjYjZhYjc5ZTJiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgOld3QK4Y5ABgj6bGFb7Jz4DNO6XZlj7wdnhq4bkCAEU+ b8CMFa6rHzV+Tx+bsPww9bhyh0nVKJM57DItLJZxb2YZCZ0bZQGsbaxg59wOh10v zHLEtG+I9hMyZ6gs/5bIx04BMXehXZg2J3oui42qShepcp0SbaPYGCyAw+WOtCyj 7iEk4YjUOqm7ngFxl7797B+t/L6eLTunpnoAijpy4ihuFcWIv/VZ/OeTM0/R0gFn qEkNVL7hQ+xaPOOw/BuaiFB9OHBxiMzRYXayY8MVr6jmU96xAENjm6YLJZM1Y38S wj9w6Av9/KDzRfYmnbwMV5Nh7oCnEysZ0UIiGPs3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1Hu3iYhcKbHJoB6pHwpJsKF9pwUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IxMzVlOGRlLTRlNmMtNGQxNS04N2MzLTUxNzA5Y2I1YTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5wwDQYJKoZIhvcNAQELBQADggEBAFBQy42eMCgrpzvnkcC/hkvF rMflE0fUOaZ1QQiwJf6hXPng78X6WIrdWD30xxInBKbYF7LTicXibKsnF13zDZ8S Vcb+DUWN0V2ZGQqotNrd12a0GVX39RBBUi2LJB8/KDa1w+atxtrwT3Owl5EI8t1o UMSp8Cs7k1Zpgd+kRIiitnOwQpyjdUNq6HIbj1tR9pgodGbn1ZKTVkvYmj0nQqzq hEl8/m5c/tWy8fqMerJXl/+OZ7BbJ29QBV+8XsAT+KSerRRPedDRkRui48Pnr9v2 7K3zKlEOXRSR2swzyAeKec4iaZR09aBUzbt5kxPSwFsqehiOZBjWu0R44MQeggU= -----END CERTIFICATE-----Generated at Sat Jun 14 06:15:14 2025 by rpki-client