$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53491bc-c995-40aa-b532-7c3c0d39d244.roa File: d53491bc-c995-40aa-b532-7c3c0d39d244.roa (raw, json) Hash identifier: KOONOwJhQNZItusqlO8VeoRLm9MJEH44UK1rjzgS/vc= Subject key identifier: 34:FF:A0:48:6D:47:80:F3:A6:E2:1E:69:C4:8E:D1:B5:6C:4F:E3:4B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3F790A7B2D6960F08FE63428537355EF59676518 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53491bc-c995-40aa-b532-7c3c0d39d244.roa Signing time: Fri 25 Apr 2025 17:40:38 +0000 ROA not before: Fri 25 Apr 2025 17:40:38 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c40::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:79:0a:7b:2d:69:60:f0:8f:e6:34:28:53:73:55:ef:59:67:65:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:40:38 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=35e71de02d39a0f15d4617799cdea56ba5392f685cf6f783471e124f17b77264, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ee:b0:06:cc:a1:26:1b:f5:77:9d:21:d2:2d: 39:3d:5a:b6:ec:38:b9:15:2c:9a:5f:b5:bd:00:42: f7:c4:93:f7:e7:81:cb:97:e8:80:66:13:8a:72:ae: 82:18:68:31:4c:a2:f0:7e:ef:9f:0a:89:24:20:ce: 47:0a:73:a9:f0:b9:59:2e:2c:38:38:b2:df:5c:40: 78:83:dd:ac:ed:2a:fd:98:54:6d:38:b3:56:29:00: 40:34:4d:9e:10:70:a5:6b:7e:11:13:64:8c:b5:f7: 8d:7c:28:48:bd:1e:a8:f6:2b:09:33:27:f1:95:5a: 43:7c:ef:ec:40:d3:c5:15:99:a0:05:18:0d:f5:8b: 87:88:a4:07:27:c9:8f:65:41:2a:d5:92:ee:bc:21: 7c:1d:33:a3:d1:a9:e1:77:82:8d:0c:e3:62:a6:eb: d5:9c:3f:08:4d:56:77:d0:9f:22:a5:5c:2c:f6:b9: 4f:eb:c7:c8:3d:25:64:64:fb:24:b4:83:62:d1:3e: 9a:9a:c9:ed:f0:68:b1:16:58:ab:8d:30:6f:64:6c: f0:8d:0c:3b:9d:fb:c9:b5:51:61:2b:9e:c8:45:0d: 1d:63:f1:7f:0b:b0:a2:bb:e2:e5:87:82:31:78:4a: 62:71:bd:9e:f2:7f:29:ac:b0:90:01:9d:2b:81:ea: 64:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:FF:A0:48:6D:47:80:F3:A6:E2:1E:69:C4:8E:D1:B5:6C:4F:E3:4B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53491bc-c995-40aa-b532-7c3c0d39d244.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c40::/45 Signature Algorithm: sha256WithRSAEncryption 6e:58:89:4d:6f:6c:37:ca:b2:98:c8:37:98:e2:e3:95:65:84: 60:73:58:da:10:c2:cb:a4:fe:2b:8c:a5:1f:13:a7:51:18:7d: 70:cc:85:c6:28:c4:32:db:b6:d5:30:9f:f7:70:2c:59:69:e8: 58:4e:b9:6c:a5:94:9c:d5:3a:2e:f2:4f:48:05:a1:f7:4e:af: da:e9:1e:80:12:53:a4:43:02:e5:db:5b:80:93:be:f8:c9:80: 82:ae:b3:c6:b8:83:5d:05:09:1f:eb:6e:f0:3d:23:ff:15:66: df:da:e7:ba:53:cc:6a:5d:f3:ce:1b:5a:a0:36:fa:f6:4e:65: 08:6f:08:de:cd:76:f0:c8:c6:b6:17:f4:65:7f:9b:87:d2:45: c2:e5:40:5f:84:8e:3e:6e:87:80:a4:5e:c5:5e:68:59:57:a0: af:68:15:4d:97:dd:ba:e5:a5:e4:09:8f:97:5e:83:b7:dd:fe: 82:11:9c:e7:9f:cb:a9:c9:64:25:a9:62:8d:f1:65:5f:ee:5b: 8a:2e:bc:f5:a1:50:f4:d2:70:7d:97:50:d3:10:4d:bd:18:84: 5f:bd:89:d1:ff:25:be:d4:2a:99:2a:30:4d:fc:04:04:a8:e1: 6b:a5:c9:71:21:cf:aa:42:e1:53:83:d2:36:1c:0b:ae:cf:61: 59:bf:b8:f9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP3kKey1pYPCP5jQoU3NV71lnZRgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTc0MDM4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWU3MWRlMDJkMzlhMGYxNWQ0NjE3Nzk5Y2RlYTU2YmE1 MzkyZjY4NWNmNmY3ODM0NzFlMTI0ZjE3Yjc3MjY0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC07rAGzKEmG/V3nSHSLTk9WrbsOLkVLJpftb0AQvfEk/fn gcuX6IBmE4pyroIYaDFMovB+758KiSQgzkcKc6nwuVkuLDg4st9cQHiD3aztKv2Y VG04s1YpAEA0TZ4QcKVrfhETZIy19418KEi9Hqj2KwkzJ/GVWkN87+xA08UVmaAF GA31i4eIpAcnyY9lQSrVku68IXwdM6PRqeF3go0M42Km69WcPwhNVnfQnyKlXCz2 uU/rx8g9JWRk+yS0g2LRPpqaye3waLEWWKuNMG9kbPCNDDud+8m1UWErnshFDR1j 8X8LsKK74uWHgjF4SmJxvZ7yfymssJABnSuB6mQXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNP+gSG1HgPOm4h5pxI7RtWxP40swHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q1MzQ5MWJjLWM5OTUtNDBhYS1iNTMyLTdjM2MwZDM5ZDI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmBZzADEAwDQYJKoZIhvcNAQELBQADggEBAG5YiU1vbDfKspjIN5ji45Vl hGBzWNoQwsuk/iuMpR8Tp1EYfXDMhcYoxDLbttUwn/dwLFlp6FhOuWyllJzVOi7y T0gFofdOr9rpHoASU6RDAuXbW4CTvvjJgIKus8a4g10FCR/rbvA9I/8VZt/a57pT zGpd884bWqA2+vZOZQhvCN7NdvDIxrYX9GV/m4fSRcLlQF+Ejj5uh4CkXsVeaFlX oK9oFU2X3brlpeQJj5deg7fd/oIRnOefy6nJZCWpYo3xZV/uW4ouvPWhUPTScH2X UNMQTb0YhF+9idH/Jb7UKpkqME38BASo4WulyXEhz6pC4VOD0jYcC67PYVm/uPk= -----END CERTIFICATE-----Generated at Sat Apr 26 13:21:04 2025 by rpki-client