$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa File: 0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa (raw, json) Hash identifier: gI3RJjc6U+dWmyEX45vFMCYXLq9HkpgLc/rvb8lzyDs= Subject key identifier: 7D:EE:04:B9:88:53:7D:B6:FB:AB:84:06:92:38:0B:0E:FA:FC:E9:32 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2193A505C5612E6144D815C813B4B9BEB46C9C27 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa Signing time: Tue 06 May 2025 00:30:13 +0000 ROA not before: Tue 06 May 2025 00:30:13 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c03::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:93:a5:05:c5:61:2e:61:44:d8:15:c8:13:b4:b9:be:b4:6c:9c:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 6 00:30:13 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=51a3d912c19481dceecd018f313028a436ffb33e72dc17c4636c2355b5ec96e7, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f2:5c:51:b8:1b:18:e9:f6:88:e7:d1:80:23: 46:6e:34:63:b6:cb:95:14:e6:d7:88:c5:52:e8:23: 30:6b:02:da:b2:14:d8:bb:dd:fc:71:d4:f9:32:71: a3:e8:e4:41:2c:51:77:74:de:3a:aa:1d:32:e1:80: 45:26:a0:8e:2a:b1:ca:a2:aa:7b:23:c9:49:b1:9e: b4:97:dc:3b:06:d3:3b:3f:55:2b:5f:b1:ae:e0:ab: 17:0f:7b:8f:f4:48:94:11:f4:94:14:e4:21:d6:3f: a5:88:1b:7e:12:16:00:34:1e:2f:6a:6f:61:df:2d: 5c:e4:9e:ec:78:fc:4e:5f:41:19:f0:8b:c7:0c:b9: 12:71:e1:fc:c9:1e:c4:60:d5:ae:88:fe:83:5e:9b: 07:70:66:b0:1e:27:52:b8:86:0f:72:dd:ad:dd:48: e4:77:5c:ec:7a:72:dd:ed:a6:b9:41:5c:41:90:4c: d0:19:a0:a0:09:5a:bc:81:e2:f2:83:7f:90:e9:31: 9a:c2:e2:62:fd:aa:40:c5:9e:8a:97:45:ef:8e:a3: 50:cf:19:ab:ca:b9:28:d1:20:3c:b2:b9:a4:72:d1: 5e:35:73:b5:0c:b5:4b:2d:a0:ac:52:8f:f4:b7:46: 22:56:0e:63:aa:a9:b3:30:bb:8f:cf:33:89:55:61: f5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:EE:04:B9:88:53:7D:B6:FB:AB:84:06:92:38:0B:0E:FA:FC:E9:32 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0c8fb97d-8e7e-45c9-9b3a-838dd669dd47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c03::/48 Signature Algorithm: sha256WithRSAEncryption 5b:9f:7b:d7:66:d4:8e:c8:7e:69:44:cc:9c:b9:b6:10:a4:3f: 5c:c1:8c:c6:89:da:44:67:d3:4e:99:4a:c0:d4:1c:a6:cb:ba: 0c:68:40:f0:4b:31:88:5f:24:d1:6f:de:51:c6:57:0a:2d:83: 71:03:40:ac:d8:de:b1:48:ef:0b:4c:87:56:5f:5c:f5:02:4c: 18:da:cd:66:cb:0c:2d:4a:f9:14:98:85:f2:57:ed:80:b7:3e: ef:0b:25:36:7b:56:64:6d:e7:a8:2c:5a:3e:ad:ea:ae:f1:68: 60:a0:c0:3f:b7:7d:33:d5:c5:0b:62:e1:89:28:80:c7:af:70: 30:8d:62:b8:76:e5:5b:70:92:29:72:ce:22:35:05:df:af:1c: f0:3d:6f:6e:c9:31:3c:e0:c4:48:d4:88:f3:eb:75:0b:a3:2d: 85:63:1b:d7:f9:6f:41:1e:06:b9:5f:9f:05:24:27:84:27:cf: 34:e3:61:05:b7:1f:5f:8c:28:fe:20:d9:8d:8d:fb:81:b5:44: e0:aa:1e:21:c4:41:f0:18:8d:96:c1:6d:28:59:16:52:b6:d0: f2:90:74:a7:49:85:65:49:15:a3:36:b4:15:59:ed:03:4f:55: 7f:22:b5:ec:ce:a8:5c:b7:83:5c:ac:15:b9:c4:33:c5:97:6b: 58:d9:4f:8c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIZOlBcVhLmFE2BXIE7S5vrRsnCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTA2MDAzMDEzWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MWEzZDkxMmMxOTQ4MWRjZWVjZDAxOGYzMTMwMjhhNDM2 ZmZiMzNlNzJkYzE3YzQ2MzZjMjM1NWI1ZWM5NmU3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC68lxRuBsY6faI59GAI0ZuNGO2y5UU5teIxVLoIzBrAtqy FNi73fxx1PkycaPo5EEsUXd03jqqHTLhgEUmoI4qscqiqnsjyUmxnrSX3DsG0zs/ VStfsa7gqxcPe4/0SJQR9JQU5CHWP6WIG34SFgA0Hi9qb2HfLVzknux4/E5fQRnw i8cMuRJx4fzJHsRg1a6I/oNemwdwZrAeJ1K4hg9y3a3dSOR3XOx6ct3tprlBXEGQ TNAZoKAJWryB4vKDf5DpMZrC4mL9qkDFnoqXRe+Oo1DPGavKuSjRIDyyuaRy0V41 c7UMtUstoKxSj/S3RiJWDmOqqbMwu4/PM4lVYfX/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfe4EuYhTfbb7q4QGkjgLDvr86TIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzBjOGZiOTdkLThlN2UtNDVjOS05YjNhLTgzOGRkNjY5ZGQ0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAMwDQYJKoZIhvcNAQELBQADggEBAFufe9dm1I7IfmlEzJy5thCk P1zBjMaJ2kRn006ZSsDUHKbLugxoQPBLMYhfJNFv3lHGVwotg3EDQKzY3rFI7wtM h1ZfXPUCTBjazWbLDC1K+RSYhfJX7YC3Pu8LJTZ7VmRt56gsWj6t6q7xaGCgwD+3 fTPVxQti4YkogMevcDCNYrh25VtwkilyziI1Bd+vHPA9b27JMTzgxEjUiPPrdQuj LYVjG9f5b0EeBrlfnwUkJ4QnzzTjYQW3H1+MKP4g2Y2N+4G1ROCqHiHEQfAYjZbB bShZFlK20PKQdKdJhWVJFaM2tBVZ7QNPVX8itezOqFy3g1ysFbnEM8WXa1jZT4w= -----END CERTIFICATE-----Generated at Tue May 6 02:55:09 2025 by rpki-client