$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa File: ea014712-964e-4c9e-bacc-2630e4e451b2.roa (raw, json) Hash identifier: IwfcTUa28RysdxEG1mcPmkHJ7u4nzYhxDhhygRqbclA= Subject key identifier: A9:91:CC:20:F3:A9:BE:80:2C:A5:8B:60:14:87:95:C5:A8:E5:22:7A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 72E0AC40753072B5ADAF9A44D9BD0295226020B6 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa Signing time: Fri 25 Apr 2025 17:40:05 +0000 ROA not before: Fri 25 Apr 2025 17:40:05 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:e0:ac:40:75:30:72:b5:ad:af:9a:44:d9:bd:02:95:22:60:20:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:40:05 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=2029ba847dedb7eff3003c69739f05cf056899edbd34140f9c705f3a69177c2a, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b6:01:f6:3c:92:fe:ed:a1:ae:ac:eb:be:9b: c4:8c:0f:50:99:c2:26:fb:69:23:6f:76:84:e8:04: 95:ce:54:cd:3e:00:c1:cc:4f:2c:f3:67:74:6f:7a: 37:9c:29:c4:0b:85:6a:e7:f6:30:19:45:dc:07:b6: 33:be:73:bf:80:0a:6d:c2:90:8b:46:d0:6b:a8:8f: 4a:35:f6:d6:3c:10:0d:91:54:4d:10:6c:d3:e3:74: af:aa:40:fe:54:75:fe:c1:98:31:8a:42:92:8c:bb: 92:47:32:d8:4f:08:3d:23:68:24:20:83:fa:54:4b: ee:cf:f0:9d:78:ff:3a:5e:2d:cb:68:b3:d2:15:2c: 23:5d:3e:30:43:a9:65:cd:7d:a8:96:d7:e5:fb:26: 7f:48:2c:6c:d1:8a:18:1a:25:d5:f7:75:56:00:5e: c9:2e:eb:4c:93:72:f5:51:12:f5:b0:75:08:06:7d: bf:27:a1:fc:eb:df:a9:59:88:0d:62:22:14:c5:ea: 59:4b:26:5f:02:0f:f7:83:c2:02:d2:6e:96:e2:a1: 40:c9:a6:cd:c0:1e:ae:2c:dc:97:80:b6:43:64:b9: 9c:e7:37:22:65:aa:7a:4e:87:3f:d0:4b:3a:b1:82: bc:d7:65:65:44:2d:e3:84:9b:e7:22:19:5a:a5:cb: 53:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:91:CC:20:F3:A9:BE:80:2C:A5:8B:60:14:87:95:C5:A8:E5:22:7A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:d00::/40 Signature Algorithm: sha256WithRSAEncryption 7c:8d:3e:42:c3:9d:43:95:5c:a2:7c:33:3f:8e:e3:2e:43:5b: 17:22:f6:6f:9f:28:20:ef:70:04:00:85:b7:af:6d:8c:53:01: 5c:f6:76:d0:75:14:fe:5c:9e:9a:22:92:35:b8:19:c5:e4:20: 90:bf:d2:eb:0b:3d:f0:f7:a7:52:a4:3d:78:1d:4d:d5:a5:d4: 94:d5:4e:64:83:44:29:d2:60:31:30:6d:41:94:d2:1f:07:c6: 74:02:ce:13:51:8f:06:22:d6:f1:5d:58:f3:f4:03:ec:c1:6c: 7b:2f:d0:4a:b7:b0:ec:f7:90:7b:c5:1b:84:1b:c1:1d:f7:66: fa:e6:f4:41:ab:36:27:20:3a:46:ef:b9:e8:3c:dd:25:ac:06: ee:5d:b7:f6:6f:b9:1e:55:d0:19:44:c5:bf:9a:57:ac:d0:65: 8c:5a:6a:03:a3:87:ac:2c:d5:b1:b6:97:2c:3b:76:dc:15:7f: bd:12:c0:be:cd:18:a7:1a:03:8a:fe:86:57:00:10:ba:02:7a: ee:a0:aa:34:6b:a5:b4:1a:05:2f:09:6e:d9:50:3d:0d:55:61: 86:c7:48:9a:50:61:ff:2a:73:3f:1e:08:c6:70:4d:43:61:7b: 45:f0:0a:69:2f:76:22:f3:b1:98:c0:64:da:85:78:84:5f:f7: 83:e8:4a:74 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcuCsQHUwcrWtr5pE2b0ClSJgILYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTc0MDA1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDI5YmE4NDdkZWRiN2VmZjMwMDNjNjk3MzlmMDVjZjA1 Njg5OWVkYmQzNDE0MGY5YzcwNWYzYTY5MTc3YzJhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDStgH2PJL+7aGurOu+m8SMD1CZwib7aSNvdoToBJXOVM0+ AMHMTyzzZ3RvejecKcQLhWrn9jAZRdwHtjO+c7+ACm3CkItG0Guoj0o19tY8EA2R VE0QbNPjdK+qQP5Udf7BmDGKQpKMu5JHMthPCD0jaCQgg/pUS+7P8J14/zpeLcto s9IVLCNdPjBDqWXNfaiW1+X7Jn9ILGzRihgaJdX3dVYAXsku60yTcvVREvWwdQgG fb8nofzr36lZiA1iIhTF6llLJl8CD/eDwgLSbpbioUDJps3AHq4s3JeAtkNkuZzn NyJlqnpOhz/QSzqxgrzXZWVELeOEm+ciGVqly1MdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUqZHMIPOpvoAspYtgFIeVxajlInowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2VhMDE0NzEyLTk2NGUtNGM5ZS1iYWNjLTI2MzBlNGU0NTFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBZzADTANBgkqhkiG9w0BAQsFAAOCAQEAfI0+QsOdQ5VconwzP47jLkNb FyL2b58oIO9wBACFt69tjFMBXPZ20HUU/lyemiKSNbgZxeQgkL/S6ws98PenUqQ9 eB1N1aXUlNVOZINEKdJgMTBtQZTSHwfGdALOE1GPBiLW8V1Y8/QD7MFsey/QSrew 7PeQe8UbhBvBHfdm+ub0Qas2JyA6Ru+56DzdJawG7l239m+5HlXQGUTFv5pXrNBl jFpqA6OHrCzVsbaXLDt23BV/vRLAvs0YpxoDiv6GVwAQugJ67qCqNGultBoFLwlu 2VA9DVVhhsdImlBh/ypzPx4IxnBNQ2F7RfAKaS92IvOxmMBk2oV4hF/3g+hKdA== -----END CERTIFICATE-----Generated at Sat Apr 26 19:51:58 2025 by rpki-client