$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0b8d065e-bd01-4340-853a-c0b5b836446c.roa File: 0b8d065e-bd01-4340-853a-c0b5b836446c.roa (raw, json) Hash identifier: 6DwMckriJvO/A1c0RC3KjnogptUqdpI6YXUdWrcimcA= Subject key identifier: 1D:39:1F:72:7D:C5:87:3E:3A:5A:34:D8:DD:FD:F4:52:22:4E:D8:B3 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2A1B55CEED45EB3AD4CAB604F6B7B5D1F299FAEF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0b8d065e-bd01-4340-853a-c0b5b836446c.roa Signing time: Fri 02 May 2025 00:20:17 +0000 ROA not before: Fri 02 May 2025 00:20:17 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c50::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:1b:55:ce:ed:45:eb:3a:d4:ca:b6:04:f6:b7:b5:d1:f2:99:fa:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 2 00:20:17 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=abc8910b98097aa9784136da5692e595ba3515d14fb898cea21ca928c59cb96a, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:30:b8:ce:2d:9f:c2:90:4d:94:35:a9:cb:8f: 4c:35:2a:85:c4:8e:bc:a6:e1:75:cb:e5:9c:a9:67: 2e:67:15:49:4b:7f:84:67:6c:fe:f8:00:27:05:fa: 77:03:9f:e5:65:e1:c1:36:dd:94:07:9d:d7:76:fb: 30:18:d1:9f:1d:a8:02:b2:b9:c7:8f:a8:5c:a9:f3: 19:ef:45:b9:e9:ac:4c:d0:bb:7b:2c:c5:c1:5a:21: 58:c1:34:86:34:11:1b:86:e9:b3:9b:74:8d:16:4c: a0:80:0e:1e:66:87:64:79:c9:8c:1d:cb:50:89:25: b3:4d:79:58:94:51:50:f3:87:ce:55:1b:d1:87:6d: 65:3b:c5:88:bc:7d:48:6c:9e:3b:3b:b8:6a:1e:52: 9b:b2:df:c8:32:19:5d:47:9f:dd:ba:c5:45:a1:2b: e6:ac:aa:2c:a1:e1:e4:99:da:7c:86:02:cb:c6:e2: 35:80:7b:12:7d:86:90:d8:e9:5a:46:e7:26:44:cf: e7:89:05:ef:e6:d4:32:f7:f5:33:bf:99:8f:29:1a: d6:ca:e1:f5:f5:ca:7e:d3:eb:2a:b8:32:7e:d2:38: 9d:d5:82:90:c7:d0:f5:3d:1d:75:32:92:78:2e:b6: 1e:e7:c0:43:87:60:e6:be:4d:c2:28:16:af:12:fe: 2b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:39:1F:72:7D:C5:87:3E:3A:5A:34:D8:DD:FD:F4:52:22:4E:D8:B3 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0b8d065e-bd01-4340-853a-c0b5b836446c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c50::/44 Signature Algorithm: sha256WithRSAEncryption 4f:12:d0:d7:d7:b6:35:45:de:6d:ff:38:d9:df:72:3c:1e:f9: c2:4a:4b:1b:f7:a6:45:c8:40:64:4e:03:a3:62:3b:da:75:f9: 82:88:06:c8:97:a1:9c:e5:ab:df:ce:79:b1:79:0a:cd:fd:3d: 9a:03:af:00:f2:6e:0a:3c:bc:89:a2:53:1c:ff:61:26:c4:c4: 5c:14:c5:bb:4b:dd:82:50:28:13:f6:98:72:2d:4a:55:20:c8: 78:60:90:2f:7c:4e:42:e6:d0:62:a9:a4:58:b3:16:05:d1:89: e7:33:91:33:93:ef:4a:df:b0:40:bb:b1:56:29:f4:7a:3b:10: a5:6e:7b:d6:b9:66:93:12:0a:d5:bb:df:9c:ee:fb:27:ee:c5: 6b:b3:86:23:f0:aa:09:f7:a0:e5:01:33:97:a9:c9:fc:94:62: 52:1c:a9:97:75:01:b3:90:15:1d:71:f0:db:40:ef:3c:a8:d0: b4:86:78:24:59:2c:2a:54:62:89:ef:d5:87:3a:1d:e7:6b:29: be:30:ad:1e:ba:52:f6:b5:25:3d:02:13:b4:a0:64:2c:86:bc: 1b:0b:ef:e9:69:d4:30:12:4c:9b:ce:c4:50:27:05:21:34:93: 81:81:e0:6f:db:7d:02:16:e1:37:e7:bd:f5:30:21:a2:09:79: e5:26:ad:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKhtVzu1F6zrUyrYE9re10fKZ+u8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTAyMDAyMDE3WhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmM4OTEwYjk4MDk3YWE5Nzg0MTM2ZGE1NjkyZTU5NWJh MzUxNWQxNGZiODk4Y2VhMjFjYTkyOGM1OWNiOTZhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8MLjOLZ/CkE2UNanLj0w1KoXEjrym4XXL5ZypZy5nFUlL f4RnbP74ACcF+ncDn+Vl4cE23ZQHndd2+zAY0Z8dqAKyucePqFyp8xnvRbnprEzQ u3ssxcFaIVjBNIY0ERuG6bObdI0WTKCADh5mh2R5yYwdy1CJJbNNeViUUVDzh85V G9GHbWU7xYi8fUhsnjs7uGoeUpuy38gyGV1Hn926xUWhK+asqiyh4eSZ2nyGAsvG 4jWAexJ9hpDY6VpG5yZEz+eJBe/m1DL39TO/mY8pGtbK4fX1yn7T6yq4Mn7SOJ3V gpDH0PU9HXUyknguth7nwEOHYOa+TcIoFq8S/iuRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHTkfcn3Fhz46WjTY3f30UiJO2LMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBiOGQwNjVlLWJkMDEtNDM0MC04NTNhLWMwYjViODM2NDQ2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmBZzADFAwDQYJKoZIhvcNAQELBQADggEBAE8S0NfXtjVF3m3/ONnfcjwe +cJKSxv3pkXIQGROA6NiO9p1+YKIBsiXoZzlq9/OebF5Cs39PZoDrwDybgo8vImi Uxz/YSbExFwUxbtL3YJQKBP2mHItSlUgyHhgkC98TkLm0GKppFizFgXRieczkTOT 70rfsEC7sVYp9Ho7EKVue9a5ZpMSCtW735zu+yfuxWuzhiPwqgn3oOUBM5epyfyU YlIcqZd1AbOQFR1x8NtA7zyo0LSGeCRZLCpUYonv1Yc6HedrKb4wrR66Uva1JT0C E7SgZCyGvBsL7+lp1DASTJvOxFAnBSE0k4GB4G/bfQIW4TfnvfUwIaIJeeUmres= -----END CERTIFICATE-----Generated at Mon May 5 06:06:44 2025 by rpki-client