$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/853b3b65-1306-46a2-bc1b-93ee2b22e8e1.roa File: 853b3b65-1306-46a2-bc1b-93ee2b22e8e1.roa (raw, json) Hash identifier: zXEw/MvSzj/8+kofGq2/qrf5WAJKqGfyExQtqgJ5/DU= Subject key identifier: C0:C9:53:15:2B:B7:15:71:6E:20:C5:D2:16:3D:F1:3F:3C:F4:2D:FC Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3170B0DD7047FED2F80686CABB459328CF77E981 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/853b3b65-1306-46a2-bc1b-93ee2b22e8e1.roa Signing time: Mon 17 Mar 2025 15:31:40 +0000 ROA not before: Mon 17 Mar 2025 15:31:40 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:70:b0:dd:70:47:fe:d2:f8:06:86:ca:bb:45:93:28:cf:77:e9:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 17 15:31:40 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6d:55:c0:be:b7:23:a0:80:08:48:66:17:5f: b8:d3:8a:0c:8e:fb:f1:f2:c5:fb:15:ba:73:18:1f: 68:7e:e7:20:79:5f:0f:50:77:13:cb:1f:b1:9b:6f: a3:38:e8:50:06:44:9a:47:86:4d:38:55:a9:5c:4e: ea:9a:d1:65:80:ec:eb:2a:40:ba:64:28:ea:5a:48: 0a:2c:cc:83:94:02:23:cc:1b:a3:a0:64:0f:71:d6: 84:33:c5:a5:48:dd:fe:c1:c9:9d:0a:db:9f:08:66: fd:71:10:5c:49:89:45:6f:7f:f0:4a:84:d9:6a:27: 0f:fd:2a:28:da:35:88:fc:c9:c5:5d:17:0a:16:28: 08:b7:d1:82:5b:30:eb:a8:51:85:d2:28:0e:3d:e8: c0:d5:cd:35:c4:c4:0c:42:cc:eb:4e:0f:24:f7:c5: a7:0d:f1:cd:2c:97:a3:75:76:e9:a3:a3:27:d3:e1: c9:3f:8d:65:46:96:2e:e7:3a:12:0c:8d:b1:ea:b0: c4:51:f9:6e:41:04:18:ff:e3:ed:5d:7f:f9:3f:4a: 27:eb:3a:5f:a4:76:90:53:b9:f3:69:f4:e4:a2:78: 24:df:fc:0a:e0:65:be:23:b2:4a:da:a6:a3:b3:66: 54:93:df:df:3e:20:cd:c3:5c:ea:81:ad:f5:77:cb: d2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:C9:53:15:2B:B7:15:71:6E:20:C5:D2:16:3D:F1:3F:3C:F4:2D:FC X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/853b3b65-1306-46a2-bc1b-93ee2b22e8e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c11::/48 Signature Algorithm: sha256WithRSAEncryption 51:52:03:e6:de:a5:c6:e1:45:42:e2:f3:e5:f9:45:9c:07:ee: ba:90:30:ea:f3:1d:cc:ca:32:f5:fc:cb:34:3a:34:b6:0c:ef: f0:b1:f1:44:ae:0f:ff:3b:c0:42:20:37:1b:3b:24:d3:bf:2c: 37:73:96:5a:5c:e6:10:c2:4e:f2:32:90:35:d2:0c:39:0f:73: bb:4e:8e:7e:d6:0a:8c:6e:27:0e:ca:59:96:64:81:b8:bb:77: 18:d5:8a:36:87:a6:fe:95:ee:47:9a:a9:f0:63:a5:e5:56:49: 76:54:92:b5:c3:dd:17:8c:64:d6:55:66:e5:1d:c0:c0:1c:33: 5a:03:5d:a8:d9:4d:4b:b2:86:24:bc:23:d1:57:38:ac:3e:6e: 32:27:bc:06:25:0a:8e:c8:8c:bc:04:d5:2b:07:58:ad:02:4d: a3:5c:0a:69:d6:11:62:c2:60:36:b3:3c:fa:ad:99:be:b2:a4: d7:a9:6c:0d:f3:09:1a:47:bb:1f:82:5f:cf:0e:7b:09:a8:15: be:14:7b:46:e5:4d:99:8d:51:e1:6a:e7:ef:c3:01:c4:01:ff: 8d:65:51:17:96:a9:fb:73:0e:1a:fe:b0:27:3b:e8:bf:d8:5e: c0:19:83:e8:95:37:a9:5e:ae:50:37:13:ad:85:e7:65:6a:46: ba:37:92:3a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMXCw3XBH/tL4BobKu0WTKM936YEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzE3MTUzMTQwWhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjZlOGRmNTc5Zjg4NDdjZGU2MTM3YzFhMDYyODI4YmFk OTFjNWQ5YTZmODQyMjA4OWQ4Mjk1OWQ4Y2FhYzVlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7bVXAvrcjoIAISGYXX7jTigyO+/HyxfsVunMYH2h+5yB5 Xw9QdxPLH7Gbb6M46FAGRJpHhk04ValcTuqa0WWA7OsqQLpkKOpaSAoszIOUAiPM G6OgZA9x1oQzxaVI3f7ByZ0K258IZv1xEFxJiUVvf/BKhNlqJw/9KijaNYj8ycVd FwoWKAi30YJbMOuoUYXSKA496MDVzTXExAxCzOtODyT3xacN8c0sl6N1dumjoyfT 4ck/jWVGli7nOhIMjbHqsMRR+W5BBBj/4+1df/k/SifrOl+kdpBTufNp9OSieCTf /ArgZb4jskrapqOzZlST398+IM3DXOqBrfV3y9LBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwMlTFSu3FXFuIMXSFj3xPzz0LfwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg1M2IzYjY1LTEzMDYtNDZhMi1iYzFiLTkzZWUyYjIyZThlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBEwDQYJKoZIhvcNAQELBQADggEBAFFSA+bepcbhRULi8+X5RZwH 7rqQMOrzHczKMvX8yzQ6NLYM7/Cx8USuD/87wEIgNxs7JNO/LDdzllpc5hDCTvIy kDXSDDkPc7tOjn7WCoxuJw7KWZZkgbi7dxjVijaHpv6V7keaqfBjpeVWSXZUkrXD 3ReMZNZVZuUdwMAcM1oDXajZTUuyhiS8I9FXOKw+bjInvAYlCo7IjLwE1SsHWK0C TaNcCmnWEWLCYDazPPqtmb6ypNepbA3zCRpHux+CX88OewmoFb4Ue0blTZmNUeFq 5+/DAcQB/41lUReWqftzDhr+sCc76L/YXsAZg+iVN6lerlA3E62F52VqRro3kjo= -----END CERTIFICATE-----Generated at Sat Apr 5 12:17:16 2025 by rpki-client