$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb75fc4b-0627-4c79-b591-308eee344e77.roa File: bb75fc4b-0627-4c79-b591-308eee344e77.roa (raw, json) Hash identifier: iBFmgPP99GtdLqnE/7+6HXWLukACRgVG2zVijSSBL/E= Subject key identifier: E3:07:7B:18:B8:6F:AA:13:DE:4A:7E:1B:24:2F:1F:3C:A5:0E:AD:DE Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 26F7E2DEB961B2C98FD1C499DF905124C0AB5D27 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb75fc4b-0627-4c79-b591-308eee344e77.roa Signing time: Tue 01 Apr 2025 00:51:14 +0000 ROA not before: Tue 01 Apr 2025 00:51:14 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:610::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:f7:e2:de:b9:61:b2:c9:8f:d1:c4:99:df:90:51:24:c0:ab:5d:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 00:51:14 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=5ab9b6f4169d9a45b12c596ce565381ec379e576a06df5732089969b65d75676, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6a:0f:df:25:fd:1a:48:f2:a7:b2:9f:1d:75: c4:ed:54:19:ee:85:04:25:0f:00:a8:84:b1:a8:1a: 7e:fc:d2:c2:95:9b:85:56:4b:37:77:5a:2b:41:b6: d1:f3:d5:72:02:6b:7c:75:88:78:de:6c:b5:64:ed: ce:f4:45:e9:28:18:11:7b:28:00:fb:de:08:d9:e3: 9f:34:77:cb:96:7f:cd:b2:41:0f:3b:cf:58:4d:d7: 6f:03:3f:b8:a3:b7:c8:e8:44:89:49:cb:b6:8b:be: 4a:ea:a3:db:92:23:e1:2b:ae:88:00:3c:e4:19:a8: ee:81:e9:48:8e:dc:63:b8:fb:79:a4:fc:0f:83:9b: 13:5c:29:66:1f:29:0a:7f:8c:fa:95:bd:bc:9d:ab: 78:c5:d4:d5:7c:d0:6b:ba:41:8a:96:6f:df:bd:ad: c5:d3:bb:d4:38:c6:08:31:84:38:fc:a1:81:93:c9: 7a:71:00:c1:04:20:22:ce:53:e9:8a:52:55:9c:9b: 60:1e:62:49:2b:07:f2:03:b0:89:17:65:53:9c:c5: 7e:7c:b6:4d:cd:fb:00:03:12:7e:27:5c:d8:13:c0: 0a:87:19:03:4a:16:29:87:40:52:89:bd:ca:19:c0: 99:0f:51:3a:b6:3f:34:44:70:1f:7a:60:91:c7:31: 71:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:07:7B:18:B8:6F:AA:13:DE:4A:7E:1B:24:2F:1F:3C:A5:0E:AD:DE X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb75fc4b-0627-4c79-b591-308eee344e77.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:610::/48 Signature Algorithm: sha256WithRSAEncryption 90:68:d4:84:35:33:19:fb:71:3f:15:e2:8a:4d:0e:47:46:ad: 80:72:08:c6:f2:4c:3b:d6:13:58:d7:ec:77:0d:f9:a9:ea:85: bd:a8:21:1a:09:75:48:ee:b0:9d:5a:5d:62:da:9a:89:08:88: d1:a8:9a:d9:f4:0f:1b:3d:6d:fd:11:bd:08:23:63:6a:cf:4a: 8b:16:d4:95:f5:66:44:41:29:ef:cf:9e:43:0f:e6:a9:0a:3f: 32:3d:a9:33:82:9c:a9:09:51:81:f6:36:00:a7:77:20:ae:f6: 97:29:c0:6a:1e:2c:80:a9:3e:4e:e2:7e:ae:f5:a5:24:91:b2: 27:6e:0a:05:b4:60:34:f2:fb:3f:b6:7c:69:2a:5c:03:36:c0: 8e:1d:36:72:e2:be:e3:77:9b:ef:f6:aa:fa:b9:1b:59:35:53: 09:4c:cf:2d:84:c1:4a:d9:d1:4b:26:3c:d7:ff:46:0b:95:87: ef:2b:9f:6b:6b:c3:8c:ae:a2:5b:4f:49:71:44:f3:2d:55:32: 1a:6a:ff:93:ac:0c:35:74:55:a3:97:13:aa:1a:63:97:84:d1: fa:11:87:48:ea:0c:49:0d:50:dd:f4:33:f3:ac:8a:5e:58:d2: c4:50:a9:89:46:75:31:12:cf:08:85:4d:7b:7e:cd:7c:c1:73: 6b:34:e2:65 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJvfi3rlhssmP0cSZ35BRJMCrXScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMDA1MTE0WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWI5YjZmNDE2OWQ5YTQ1YjEyYzU5NmNlNTY1MzgxZWMz NzllNTc2YTA2ZGY1NzMyMDg5OTY5YjY1ZDc1Njc2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDuag/fJf0aSPKnsp8ddcTtVBnuhQQlDwCohLGoGn780sKV m4VWSzd3WitBttHz1XICa3x1iHjebLVk7c70RekoGBF7KAD73gjZ4580d8uWf82y QQ87z1hN128DP7ijt8joRIlJy7aLvkrqo9uSI+ErrogAPOQZqO6B6UiO3GO4+3mk /A+DmxNcKWYfKQp/jPqVvbydq3jF1NV80Gu6QYqWb9+9rcXTu9Q4xggxhDj8oYGT yXpxAMEEICLOU+mKUlWcm2AeYkkrB/IDsIkXZVOcxX58tk3N+wADEn4nXNgTwAqH GQNKFimHQFKJvcoZwJkPUTq2PzREcB96YJHHMXHZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4wd7GLhvqhPeSn4bJC8fPKUOrd4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JiNzVmYzRiLTA2MjctNGM3OS1iNTkxLTMwOGVlZTM0NGU3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhAwDQYJKoZIhvcNAQELBQADggEBAJBo1IQ1Mxn7cT8V4opNDkdG rYByCMbyTDvWE1jX7HcN+anqhb2oIRoJdUjusJ1aXWLamokIiNGomtn0Dxs9bf0R vQgjY2rPSosW1JX1ZkRBKe/PnkMP5qkKPzI9qTOCnKkJUYH2NgCndyCu9pcpwGoe LICpPk7ifq71pSSRsiduCgW0YDTy+z+2fGkqXAM2wI4dNnLivuN3m+/2qvq5G1k1 UwlMzy2EwUrZ0UsmPNf/RguVh+8rn2trw4yuoltPSXFE8y1VMhpq/5OsDDV0VaOX E6oaY5eE0foRh0jqDEkNUN30M/Osil5Y0sRQqYlGdTESzwiFTXt+zXzBc2s04mU= -----END CERTIFICATE-----Generated at Sat Apr 26 13:24:01 2025 by rpki-client