$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa File: 3b1d79f6-944a-4da0-acd2-15477b975226.roa (raw, json) Hash identifier: Xmzik32JHGXSmeLV+80hR56ZmzW90JHSi/JyEOH185U= Subject key identifier: 20:64:2A:6C:02:EF:24:D3:90:32:6C:96:7C:BD:F4:C9:17:7C:64:D4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 267E36E273F4C6BD2D190055D5CFD581F2872AAA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa Signing time: Fri 25 Apr 2025 17:50:09 +0000 ROA not before: Fri 25 Apr 2025 17:50:09 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:7e:36:e2:73:f4:c6:bd:2d:19:00:55:d5:cf:d5:81:f2:87:2a:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:09 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=a1358d2db4d1f14683b12009527591777d7ee37083e1da018735887314d52d6f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1c:a8:6c:a1:54:ba:be:fd:14:f8:a5:3a:e7: ea:52:dd:d1:94:b8:31:9c:83:b8:fc:39:48:f4:15: f3:9c:19:db:2a:90:57:02:48:e8:81:b5:0c:f0:f5: b5:00:5a:9d:44:68:f1:2d:7d:9d:8d:f6:f2:fd:06: fb:93:4b:1f:a0:03:43:f4:72:37:e9:6e:4d:30:a9: a5:ad:2f:4a:2b:57:70:de:40:cc:dd:a2:b9:bc:47: 4a:3f:4e:7e:de:54:7c:01:74:e6:cc:24:75:84:07: b9:9b:34:dc:0d:c6:10:ee:db:80:b4:83:da:d9:50: 6e:72:de:5b:57:60:8c:44:34:0d:ba:c1:25:0b:50: 63:15:3e:4d:f4:58:53:c4:9d:98:18:20:2d:2c:2f: 81:9e:c0:a6:16:51:1a:14:4b:25:24:dc:f9:64:0a: 77:5f:d2:f5:ee:67:df:87:b5:de:c9:9d:c5:d0:02: c6:b0:79:06:1d:47:aa:57:80:80:b4:5b:5f:c2:71: 76:5e:bf:4c:8f:81:b4:97:da:1a:ef:ef:97:cc:5b: d8:a4:ee:4a:1f:e6:8f:21:b9:cc:2b:bb:00:d6:7f: 3d:2b:f4:cc:f0:13:ad:41:2f:b1:6c:70:36:1a:a0: 2b:f8:59:a2:cd:5c:99:9d:28:ba:09:5b:31:a2:f4: d6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:64:2A:6C:02:EF:24:D3:90:32:6C:96:7C:BD:F4:C9:17:7C:64:D4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551b::/48 Signature Algorithm: sha256WithRSAEncryption 1c:70:e0:4c:ab:43:8f:6c:68:01:f6:67:81:1d:6b:25:42:30: 4a:b6:fb:f3:1e:72:47:09:51:c9:a9:01:11:25:08:03:b3:4a: 4d:a9:09:f2:e1:75:be:03:b4:54:df:bc:aa:d0:51:c7:10:f4: c4:fd:51:13:9b:fb:05:59:b7:91:3a:dc:fc:99:a4:57:c7:64: 62:99:2b:1a:aa:c7:31:0c:35:f7:a1:c0:bf:d0:aa:10:23:af: 3b:28:2f:75:b5:6e:59:31:1e:89:f2:43:32:0d:12:28:a7:c2: 1e:b8:75:38:9c:cb:67:cd:27:f3:91:af:f5:e8:df:df:ce:67: 5f:61:79:45:47:52:ac:59:15:17:13:20:a6:e0:42:ee:89:11: dd:b4:38:e9:c2:f9:e0:8f:b1:84:ae:82:29:71:41:45:3d:7a: ef:77:d6:4b:95:3b:a9:e5:23:96:e8:2d:95:c1:a0:41:18:23: 07:33:69:df:4c:22:cb:d4:d7:ae:2e:ff:a8:db:d2:78:34:8e: c4:d0:06:15:7c:0a:8b:09:a4:71:98:72:05:e9:6f:3a:7d:ca: 9e:bc:8c:a4:92:26:cf:46:4f:30:b0:6d:e4:fe:a9:cf:0b:78: 23:f2:a0:08:ec:fa:e4:18:99:27:8f:e9:32:24:27:48:57:18: 2b:d6:53:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJn424nP0xr0tGQBV1c/VgfKHKqowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDA5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTM1OGQyZGI0ZDFmMTQ2ODNiMTIwMDk1Mjc1OTE3Nzdk N2VlMzcwODNlMWRhMDE4NzM1ODg3MzE0ZDUyZDZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWHKhsoVS6vv0U+KU65+pS3dGUuDGcg7j8OUj0FfOcGdsq kFcCSOiBtQzw9bUAWp1EaPEtfZ2N9vL9BvuTSx+gA0P0cjfpbk0wqaWtL0orV3De QMzdorm8R0o/Tn7eVHwBdObMJHWEB7mbNNwNxhDu24C0g9rZUG5y3ltXYIxENA26 wSULUGMVPk30WFPEnZgYIC0sL4GewKYWURoUSyUk3PlkCndf0vXuZ9+Htd7JncXQ AsaweQYdR6pXgIC0W1/CcXZev0yPgbSX2hrv75fMW9ik7kof5o8hucwruwDWfz0r 9MzwE61BL7FscDYaoCv4WaLNXJmdKLoJWzGi9NabAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIGQqbALvJNOQMmyWfL30yRd8ZNQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNiMWQ3OWY2LTk0NGEtNGRhMC1hY2QyLTE1NDc3Yjk3NTIyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRswDQYJKoZIhvcNAQELBQADggEBABxw4EyrQ49saAH2Z4EdayVC MEq2+/MeckcJUcmpARElCAOzSk2pCfLhdb4DtFTfvKrQUccQ9MT9UROb+wVZt5E6 3PyZpFfHZGKZKxqqxzEMNfehwL/QqhAjrzsoL3W1blkxHonyQzINEiinwh64dTic y2fNJ/ORr/Xo39/OZ19heUVHUqxZFRcTIKbgQu6JEd20OOnC+eCPsYSugilxQUU9 eu931kuVO6nlI5boLZXBoEEYIwczad9MIsvU164u/6jb0ng0jsTQBhV8CosJpHGY cgXpbzp9yp68jKSSJs9GTzCwbeT+qc8LeCPyoAjs+uQYmSeP6TIkJ0hXGCvWU6s= -----END CERTIFICATE-----Generated at Sat Apr 26 13:34:18 2025 by rpki-client