$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa File: 5362b40e-d987-4a9d-8f30-59c3b7075db1.roa (raw, json) Hash identifier: UwC2L1k6bNeGXqziOTavjX4Fpl/eXmym/Bwfh9W2guc= Subject key identifier: FC:C8:B9:82:BA:C9:09:2C:AF:C7:7E:EB:71:09:8D:01:2A:63:B1:A4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 187C95ED6BDED04739AD6EF88467BA5CCD2B7A78 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa Signing time: Fri 25 Apr 2025 17:50:43 +0000 ROA not before: Fri 25 Apr 2025 17:50:43 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5530::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:7c:95:ed:6b:de:d0:47:39:ad:6e:f8:84:67:ba:5c:cd:2b:7a:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:43 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=d2b67f0066dd4c9422a6244b6aa7c97149de8e436260a3b96a443d6168e69493, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:44:55:b3:9f:96:3b:b3:9c:2a:dc:d4:af:7d: 35:e4:a1:3e:95:07:e3:11:38:5d:85:3d:3b:04:01: b9:5b:bf:68:bb:56:5e:47:48:13:28:65:c5:4e:8f: c2:01:c0:49:ea:f2:7d:9a:54:60:12:a1:e2:53:38: a5:21:43:3d:65:9b:41:e8:a5:db:88:df:d6:81:16: 43:32:cc:fb:4a:52:e9:17:28:b5:7f:c9:49:fc:10: fb:6b:0f:99:e5:c1:42:27:e5:c8:b1:89:bd:46:02: c4:8b:95:2c:c1:87:64:d0:af:b6:f0:5d:5e:dc:bf: e6:e7:63:28:93:b5:58:ea:45:83:63:5c:ca:28:cb: 5d:c7:ac:6c:50:b9:40:29:10:af:b1:ea:fe:1a:2c: 13:f1:71:33:37:bb:3b:20:cc:68:25:0b:f9:80:1c: 61:96:e9:b4:37:41:a7:a7:47:3d:16:d3:e5:12:0e: f2:f0:85:ff:82:16:1f:2f:2c:d7:b1:82:4c:63:47: 24:de:fe:e1:8a:52:eb:60:98:10:25:5d:db:2f:31: e7:9a:83:53:14:f7:a1:1e:29:29:de:ff:2f:a5:67: 18:89:d5:cf:5a:79:8c:72:30:ef:a6:4b:86:54:18: 02:df:ba:41:1e:6c:5a:e6:86:a8:a0:0a:df:54:06: c4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C8:B9:82:BA:C9:09:2C:AF:C7:7E:EB:71:09:8D:01:2A:63:B1:A4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5530::/44 Signature Algorithm: sha256WithRSAEncryption 94:a5:4d:58:b9:76:79:01:10:e2:16:21:0a:bb:9f:50:93:10: e6:17:18:53:24:90:d9:e9:4a:e9:10:2f:83:b1:f3:9a:1a:c1: ef:87:b8:d3:02:5b:74:9b:01:a4:94:0f:e6:72:59:93:98:04: d9:b8:51:c9:1f:9a:4f:80:e8:11:86:ab:72:ba:bf:c7:05:6f: 52:60:7a:02:cc:51:20:a6:9b:18:a1:31:96:ce:54:30:65:a6: 63:13:ef:ae:63:47:71:3f:b0:40:b2:f1:af:a3:ef:c3:15:dc: 02:61:89:1e:b5:cc:3e:f4:f4:20:90:e9:58:0d:92:cd:ce:2c: 50:2d:fc:76:ed:fe:88:44:7e:c3:4b:48:d2:40:ec:05:1c:a8: fe:16:68:74:f4:ca:2c:57:0b:51:dd:84:ae:84:f3:4f:e7:0c: d5:3b:09:55:96:4a:68:55:ef:87:ca:e1:96:af:ed:10:ad:1a: b8:9a:85:2c:6d:04:f9:93:2e:51:43:64:0d:49:fa:7a:60:9a: c7:9d:15:56:a3:64:ee:0c:26:d7:9b:70:a1:80:41:d2:db:e8: c0:3e:40:94:e1:bd:03:25:98:0f:7e:a5:a7:41:09:f4:80:63: 82:43:83:04:2d:82:cd:ce:64:73:79:76:f3:a6:be:95:e5:6d: 58:28:5a:8e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGHyV7Wve0Ec5rW74hGe6XM0rengwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDQzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmI2N2YwMDY2ZGQ0Yzk0MjJhNjI0NGI2YWE3Yzk3MTQ5 ZGU4ZTQzNjI2MGEzYjk2YTQ0M2Q2MTY4ZTY5NDkzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0RFWzn5Y7s5wq3NSvfTXkoT6VB+MROF2FPTsEAblbv2i7 Vl5HSBMoZcVOj8IBwEnq8n2aVGASoeJTOKUhQz1lm0HopduI39aBFkMyzPtKUukX KLV/yUn8EPtrD5nlwUIn5cixib1GAsSLlSzBh2TQr7bwXV7cv+bnYyiTtVjqRYNj XMooy13HrGxQuUApEK+x6v4aLBPxcTM3uzsgzGglC/mAHGGW6bQ3QaenRz0W0+US DvLwhf+CFh8vLNexgkxjRyTe/uGKUutgmBAlXdsvMeeag1MU96EeKSne/y+lZxiJ 1c9aeYxyMO+mS4ZUGALfukEebFrmhqigCt9UBsRHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/Mi5grrJCSyvx37rcQmNASpjsaQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUzNjJiNDBlLWQ5ODctNGE5ZC04ZjMwLTU5YzNiNzA3NWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVTAwDQYJKoZIhvcNAQELBQADggEBAJSlTVi5dnkBEOIWIQq7n1CT EOYXGFMkkNnpSukQL4Ox85oawe+HuNMCW3SbAaSUD+ZyWZOYBNm4Uckfmk+A6BGG q3K6v8cFb1JgegLMUSCmmxihMZbOVDBlpmMT765jR3E/sECy8a+j78MV3AJhiR61 zD709CCQ6VgNks3OLFAt/Hbt/ohEfsNLSNJA7AUcqP4WaHT0yixXC1HdhK6E80/n DNU7CVWWSmhV74fK4Zav7RCtGriahSxtBPmTLlFDZA1J+npgmsedFVajZO4MJteb cKGAQdLb6MA+QJThvQMlmA9+padBCfSAY4JDgwQtgs3OZHN5dvOmvpXlbVgoWo4= -----END CERTIFICATE-----Generated at Sat Apr 26 20:24:11 2025 by rpki-client