$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa File: 07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa (raw, json) Hash identifier: j07M4solYeSckfUjiSFc8XCVil2xBSWlkAM0G373xQA= Subject key identifier: B4:C1:F2:53:17:C5:35:FE:C0:EC:4E:FF:76:10:F7:A4:80:BD:9B:2E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 16ED8F4E0942736BB42167171029CEAC7BF3CAAB Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa Signing time: Mon 28 Apr 2025 15:31:07 +0000 ROA not before: Mon 28 Apr 2025 15:31:07 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ed:8f:4e:09:42:73:6b:b4:21:67:17:10:29:ce:ac:7b:f3:ca:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 28 15:31:07 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=3499d8995a0b6f7181b4e498c329f5c581a87d8afe16eef4f4f27d5ad68c699b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2a:71:3a:eb:27:42:41:37:aa:fe:e9:59:95: ed:05:d7:dd:95:64:d3:de:c9:da:2b:db:cb:e6:b6: df:a3:cc:68:76:38:1a:cf:54:cf:00:6e:87:01:eb: d5:70:f2:f2:56:b4:a8:a9:fe:e0:73:df:19:b3:be: 62:51:f0:0e:ff:ac:89:6c:09:4a:1d:67:e5:3b:b3: 4c:24:39:dd:c3:75:90:c6:0c:12:a6:98:db:f5:a3: 1f:38:ad:80:79:b6:81:54:e7:df:89:50:72:9a:0f: 4a:d9:d7:10:d0:30:66:7c:5d:e7:c8:80:71:bc:9a: 5c:b1:de:a8:ca:70:9b:25:15:a3:c4:b8:76:2a:99: 0a:bf:2f:fe:c1:a1:67:06:6c:6f:f0:f2:ea:06:f4: 97:f3:a4:07:98:a6:c8:36:95:08:10:7f:e7:88:1c: a9:0e:47:46:16:be:07:0c:57:81:07:1d:f5:a3:e0: d4:2f:9d:d8:21:dd:e5:f4:31:78:f6:1d:da:21:6a: 4d:1d:b1:e1:d5:f5:a3:93:01:08:ac:de:a1:78:09: 41:a3:6a:74:e3:2a:d4:8f:24:3c:f2:23:30:4c:72: 63:10:06:0d:63:b5:78:4e:a0:12:5e:b9:36:e7:2c: 02:80:95:d5:9c:d7:f2:b2:99:a5:c4:f5:82:b4:2f: 47:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C1:F2:53:17:C5:35:FE:C0:EC:4E:FF:76:10:F7:A4:80:BD:9B:2E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/07c9abfe-b5c3-4291-af5f-3eaa31b11ad6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 25:fb:6e:79:b1:bf:1a:18:74:78:ba:09:9d:c0:25:1b:58:ef: 1d:d5:69:bd:50:7f:be:36:0f:4f:4e:94:c0:18:7d:0a:df:29: 6b:3e:69:47:cc:6a:0f:32:a7:31:ae:70:83:9b:3f:24:e6:ec: 0f:69:0a:92:02:3b:aa:61:1c:69:eb:b5:6e:7c:b6:63:78:b9: 30:7b:2a:0c:d8:0c:31:e4:52:b8:3c:71:e1:43:2b:8a:70:ee: 31:f6:8d:3a:fd:6e:0a:fd:b1:ee:5f:2d:62:37:90:e0:3e:71: 66:12:7b:5f:96:ed:a4:1d:c3:98:e7:a3:b8:32:e2:15:30:8e: 3d:1a:a7:2f:8f:41:80:b6:28:3b:6e:ce:14:28:5a:f4:f0:ca: d4:34:72:a7:f6:4e:21:bd:51:92:4c:0c:73:27:0c:8f:ce:6f: a6:21:69:f4:e5:a6:f8:e4:a0:d1:4d:fd:4b:17:3c:0c:3e:81: e4:d6:31:b4:24:d5:b4:df:b6:3c:63:6f:f9:d9:32:b5:6f:07: 35:47:54:e5:75:5a:56:c9:7c:11:57:60:a0:2a:76:3a:fa:51: 71:b0:2a:b5:e0:f5:16:63:41:f1:5c:90:48:94:e1:50:86:34: b5:7e:06:d1:4e:44:a8:4e:f0:fc:93:cd:9f:8d:0e:f8:96:6d: c3:4a:4a:74 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFu2PTglCc2u0IWcXECnOrHvzyqswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI4MTUzMTA3WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDk5ZDg5OTVhMGI2ZjcxODFiNGU0OThjMzI5ZjVjNTgx YTg3ZDhhZmUxNmVlZjRmNGYyN2Q1YWQ2OGM2OTliMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMKnE66ydCQTeq/ulZle0F192VZNPeydor28vmtt+jzGh2 OBrPVM8AbocB69Vw8vJWtKip/uBz3xmzvmJR8A7/rIlsCUodZ+U7s0wkOd3DdZDG DBKmmNv1ox84rYB5toFU59+JUHKaD0rZ1xDQMGZ8XefIgHG8mlyx3qjKcJslFaPE uHYqmQq/L/7BoWcGbG/w8uoG9JfzpAeYpsg2lQgQf+eIHKkOR0YWvgcMV4EHHfWj 4NQvndgh3eX0MXj2Hdohak0dseHV9aOTAQis3qF4CUGjanTjKtSPJDzyIzBMcmMQ Bg1jtXhOoBJeuTbnLAKAldWc1/KymaXE9YK0L0dVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtMHyUxfFNf7A7E7/dhD3pIC9my4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzA3YzlhYmZlLWI1YzMtNDI5MS1hZjVmLTNlYWEzMWIxMWFkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBACX7bnmxvxoYdHi6CZ3AJRtY 7x3Vab1Qf742D09OlMAYfQrfKWs+aUfMag8ypzGucIObPyTm7A9pCpICO6phHGnr tW58tmN4uTB7KgzYDDHkUrg8ceFDK4pw7jH2jTr9bgr9se5fLWI3kOA+cWYSe1+W 7aQdw5jno7gy4hUwjj0apy+PQYC2KDtuzhQoWvTwytQ0cqf2TiG9UZJMDHMnDI/O b6YhafTlpvjkoNFN/UsXPAw+geTWMbQk1bTftjxjb/nZMrVvBzVHVOV1WlbJfBFX YKAqdjr6UXGwKrXg9RZjQfFckEiU4VCGNLV+BtFORKhO8PyTzZ+NDviWbcNKSnQ= -----END CERTIFICATE-----Generated at Mon May 5 06:06:53 2025 by rpki-client