$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/59d06962-7aa4-4507-aeb0-a842d588bc31.roa File: 59d06962-7aa4-4507-aeb0-a842d588bc31.roa (raw, json) Hash identifier: jIrfaxp08JxGKGl1rMuNnIxKm17Nl4Wmd7CuuRPlsOs= Subject key identifier: 8F:DD:7A:17:E4:76:45:C2:67:64:13:07:52:F2:65:66:62:64:C8:19 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 553A674CCA91EC7BB9709219AC9A464306061ED6 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/59d06962-7aa4-4507-aeb0-a842d588bc31.roa Signing time: Tue 01 Apr 2025 00:51:07 +0000 ROA not before: Tue 01 Apr 2025 00:51:07 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:549::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:3a:67:4c:ca:91:ec:7b:b9:70:92:19:ac:9a:46:43:06:06:1e:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 1 00:51:07 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8e:a4:af:39:52:c9:d4:f2:9d:e8:9f:77:12: 55:fe:fd:f9:e2:be:85:e4:3c:65:c0:85:5e:68:0f: 6d:3f:54:89:56:0f:d3:b2:22:81:0c:bd:03:dc:db: 1c:e1:59:b5:18:29:e4:d7:4a:ab:d6:2e:9b:4e:6c: 97:27:0c:d5:1d:2d:60:ee:3a:be:d9:4b:80:d0:d0: 8f:3f:41:5a:b1:ca:94:5e:cd:4e:54:15:96:8a:79: 61:70:2e:2f:2a:92:bf:e6:7e:56:5f:bd:69:82:b1: 84:be:6d:4c:78:22:1c:3b:31:73:63:6b:48:f6:a2: e4:0b:1f:fd:31:ab:58:63:77:a5:ad:53:6e:54:ef: b7:1f:d9:62:aa:87:19:98:b8:e4:8c:97:88:ce:b0: 8a:2e:43:d3:22:43:ce:08:e5:72:91:55:87:b3:09: 9a:d6:1c:2a:a6:aa:6b:d7:c6:1d:13:ee:e4:e1:c5: be:78:0a:59:cb:88:94:61:71:49:c6:41:3d:63:7f: 29:13:70:ca:d6:e4:fd:fe:83:05:f2:77:22:f3:b0: d7:1a:7a:43:d1:94:e4:1a:97:cf:1a:0e:b2:fc:f9: 1e:50:f3:b4:61:78:3d:dd:42:89:1d:24:c1:f7:13: 4e:b7:18:cb:93:cb:5b:27:1d:86:59:4c:95:38:af: 5c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DD:7A:17:E4:76:45:C2:67:64:13:07:52:F2:65:66:62:64:C8:19 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/59d06962-7aa4-4507-aeb0-a842d588bc31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:549::/48 Signature Algorithm: sha256WithRSAEncryption 7a:6f:56:0a:4d:bb:e8:dd:32:1c:6a:cc:5e:d4:e2:d6:33:f3: b9:03:26:2e:61:2c:7c:d2:81:64:22:3c:ad:6e:c9:cd:f8:62: 6a:50:06:a1:ad:cb:ee:45:7e:88:3a:61:31:68:07:f6:d2:b8: 19:cc:99:5a:f0:5b:2e:1c:14:93:f9:d7:e0:76:99:95:61:f1: d6:05:71:26:7a:89:c4:fb:b0:0a:a9:f9:d7:10:9a:4a:5f:2b: c7:78:83:94:73:4a:9c:a0:dc:6e:b0:b6:a9:3a:12:eb:00:d4: 22:ec:ed:99:eb:31:0a:03:af:2e:f2:11:57:3c:85:7f:83:50: 2d:15:58:f4:53:2b:6a:8c:2a:9f:bf:63:50:07:72:ce:f0:b8: 65:2e:29:ea:d3:d1:5a:69:5d:6e:7b:9f:10:5e:e8:3a:03:72: 3e:90:30:cf:28:3f:1e:2e:c0:7a:37:0c:ac:d8:d7:ec:27:bd: d7:93:c2:79:82:0b:3d:11:61:41:e3:09:34:bf:21:f1:c0:72: ac:77:70:c6:80:db:9b:32:c5:0d:da:fc:80:71:b5:03:cb:c9: c9:9b:89:91:a0:3e:17:a5:4e:ab:f6:f5:f9:ff:e1:fe:ab:cc: e3:fa:5c:8e:b7:09:04:f7:b1:f1:80:64:55:40:ad:24:af:08: 48:4a:25:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVTpnTMqR7Hu5cJIZrJpGQwYGHtYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDAxMDA1MTA3WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGMxNTk0NDExMDI2ZmRkMjgzMWZiYjM0YjlmNTVjYzNi N2Y1YzhjZjVlMjFhZDQzZmNlY2I4OTQ5ZWE3ZGMzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyjqSvOVLJ1PKd6J93ElX+/fnivoXkPGXAhV5oD20/VIlW D9OyIoEMvQPc2xzhWbUYKeTXSqvWLptObJcnDNUdLWDuOr7ZS4DQ0I8/QVqxypRe zU5UFZaKeWFwLi8qkr/mflZfvWmCsYS+bUx4Ihw7MXNja0j2ouQLH/0xq1hjd6Wt U25U77cf2WKqhxmYuOSMl4jOsIouQ9MiQ84I5XKRVYezCZrWHCqmqmvXxh0T7uTh xb54ClnLiJRhcUnGQT1jfykTcMrW5P3+gwXydyLzsNcaekPRlOQal88aDrL8+R5Q 87RheD3dQokdJMH3E063GMuTy1snHYZZTJU4r1yLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUj916F+R2RcJnZBMHUvJlZmJkyBkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzU5ZDA2OTYyLTdhYTQtNDUwNy1hZWIwLWE4NDJkNTg4YmMzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUkwDQYJKoZIhvcNAQELBQADggEBAHpvVgpNu+jdMhxqzF7U4tYz 87kDJi5hLHzSgWQiPK1uyc34YmpQBqGty+5Ffog6YTFoB/bSuBnMmVrwWy4cFJP5 1+B2mZVh8dYFcSZ6icT7sAqp+dcQmkpfK8d4g5RzSpyg3G6wtqk6EusA1CLs7Znr MQoDry7yEVc8hX+DUC0VWPRTK2qMKp+/Y1AHcs7wuGUuKerT0VppXW57nxBe6DoD cj6QMM8oPx4uwHo3DKzY1+wnvdeTwnmCCz0RYUHjCTS/IfHAcqx3cMaA25syxQ3a /IBxtQPLycmbiZGgPhelTqv29fn/4f6rzOP6XI63CQT3sfGAZFVArSSvCEhKJSw= -----END CERTIFICATE-----Generated at Fri Apr 4 23:31:22 2025 by rpki-client