$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/011a2018-20b6-4386-aacf-19025e8dc9d2.roa File: 011a2018-20b6-4386-aacf-19025e8dc9d2.roa (raw, json) Hash identifier: mCqrUfRCZPS5glubF+7jUT1ot6ymUmZTEyoLG6ZqmTM= Subject key identifier: 90:D0:5F:74:B7:03:2E:3B:F3:26:C4:00:89:1B:14:B1:A7:3D:68:69 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7620776E1FC47A0E766D55B4948A628BB8564AA2 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/011a2018-20b6-4386-aacf-19025e8dc9d2.roa Signing time: Wed 21 May 2025 00:50:24 +0000 ROA not before: Wed 21 May 2025 00:50:24 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:30b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:20:77:6e:1f:c4:7a:0e:76:6d:55:b4:94:8a:62:8b:b8:56:4a:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 21 00:50:24 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=5e5d0bddb9bc5a9e708027003f7d2f873d2ce46cf1aba84bf77d6e7afee5f160, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d8:43:b3:24:f2:1f:24:86:92:fb:26:0c:8c: f5:57:91:7a:05:6e:dc:5e:b4:c2:b6:ef:93:af:25: a6:f3:c5:f5:91:04:e7:d4:5e:39:4f:61:f8:23:71: 48:77:3e:43:a2:4f:17:5e:26:61:01:87:2f:33:05: 62:41:ba:d9:1e:a2:39:25:9a:b4:cf:3b:a2:f7:cb: 61:a6:7e:7d:c6:7a:1d:3d:ad:4f:aa:a1:07:6e:6f: 6e:70:82:f3:be:b2:91:a7:74:7b:23:0b:83:b4:8e: 74:0c:1f:1e:a8:9a:cc:2d:64:36:2b:31:4b:28:58: fa:1b:7e:7f:f9:c6:30:05:24:41:90:36:31:b6:cf: 5f:65:c7:df:3d:85:25:bd:e2:53:50:92:e1:7f:aa: 5f:7b:c5:a7:1c:63:df:0e:3e:b1:3f:f3:22:d3:0d: 16:4a:81:cd:73:ee:36:d9:53:47:c0:c0:23:f9:d4: a1:ad:fc:7e:38:2e:d6:de:bb:ab:54:32:f1:1f:76: a3:90:87:9c:e8:12:b5:06:6c:da:e3:0f:ce:dc:ca: 6a:8d:f3:87:2e:8a:75:12:e6:99:6b:92:1e:d8:8e: 47:f6:ac:48:b1:12:b6:7e:26:c2:bf:12:bc:fa:de: 8b:2c:0a:19:3f:f9:25:71:06:5c:e3:4c:94:94:05: 3f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:D0:5F:74:B7:03:2E:3B:F3:26:C4:00:89:1B:14:B1:A7:3D:68:69 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/011a2018-20b6-4386-aacf-19025e8dc9d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:30b::/48 Signature Algorithm: sha256WithRSAEncryption 74:02:00:3a:e7:f7:fa:e1:76:75:d6:e1:97:d9:be:03:9e:bc: e3:dc:6e:f8:ac:18:fe:ed:c5:f1:a4:42:d1:fd:16:26:6f:13: b3:ad:94:12:39:61:d2:e2:33:58:69:68:15:36:4c:fa:09:ab: ef:51:11:d0:91:b9:6e:b8:82:41:46:20:f0:bc:25:77:dc:37: 09:ed:02:fb:83:82:50:ba:1c:0b:f9:4c:d9:49:32:60:ba:8c: 1b:bc:1c:af:3f:d3:9e:4d:ab:86:f7:64:00:40:83:46:c3:53: 10:6c:a4:3e:a9:45:51:8a:00:38:37:f4:c1:a8:d8:07:38:77: 2d:92:e6:e6:30:fd:3d:cf:7c:b5:c1:41:eb:39:ea:6d:22:6f: da:64:d8:c8:d8:da:93:64:aa:62:1d:e0:32:b6:fb:c4:48:89: c9:b3:fe:9c:bd:28:34:3d:31:98:73:e0:8f:04:9f:da:99:e0: d2:5b:3e:77:54:91:a7:11:1f:02:3e:de:55:d4:8d:52:2a:64: f3:ce:fa:b8:08:62:05:9d:3e:31:9e:93:14:be:a2:11:3c:d6: 3d:0d:b3:eb:76:ab:cf:40:6f:29:73:17:d7:6e:4e:ec:d2:7e: a1:a7:23:53:97:29:85:4a:88:75:15:60:ac:32:f7:c4:52:3d: 92:54:c8:19 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdiB3bh/Eeg52bVW0lIpii7hWSqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIxMDA1MDI0WhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTVkMGJkZGI5YmM1YTllNzA4MDI3MDAzZjdkMmY4NzNk MmNlNDZjZjFhYmE4NGJmNzdkNmU3YWZlZTVmMTYwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI2EOzJPIfJIaS+yYMjPVXkXoFbtxetMK275OvJabzxfWR BOfUXjlPYfgjcUh3PkOiTxdeJmEBhy8zBWJButkeojklmrTPO6L3y2Gmfn3Geh09 rU+qoQdub25wgvO+spGndHsjC4O0jnQMHx6omswtZDYrMUsoWPobfn/5xjAFJEGQ NjG2z19lx989hSW94lNQkuF/ql97xaccY98OPrE/8yLTDRZKgc1z7jbZU0fAwCP5 1KGt/H44Ltbeu6tUMvEfdqOQh5zoErUGbNrjD87cymqN84cuinUS5plrkh7Yjkf2 rEixErZ+JsK/Erz63ossChk/+SVxBlzjTJSUBT9pAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkNBfdLcDLjvzJsQAiRsUsac9aGkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAxMWEyMDE4LTIwYjYtNDM4Ni1hYWNmLTE5MDI1ZThkYzlkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAwswDQYJKoZIhvcNAQELBQADggEBAHQCADrn9/rhdnXW4ZfZvgOe vOPcbvisGP7txfGkQtH9FiZvE7OtlBI5YdLiM1hpaBU2TPoJq+9REdCRuW64gkFG IPC8JXfcNwntAvuDglC6HAv5TNlJMmC6jBu8HK8/055Nq4b3ZABAg0bDUxBspD6p RVGKADg39MGo2Ac4dy2S5uYw/T3PfLXBQes56m0ib9pk2MjY2pNkqmId4DK2+8RI icmz/py9KDQ9MZhz4I8En9qZ4NJbPndUkacRHwI+3lXUjVIqZPPO+rgIYgWdPjGe kxS+ohE81j0Ns+t2q89AbylzF9duTuzSfqGnI1OXKYVKiHUVYKwy98RSPZJUyBk= -----END CERTIFICATE-----Generated at Wed Jun 4 10:39:35 2025 by rpki-client