$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa File: 6d504583-8250-4693-a46d-7a40db5add33.roa (raw, json) Hash identifier: tx3Alf/kHCqRwVdpiY0JO3yRy5Ah6I8D7lUY962aCAo= Subject key identifier: 2C:B4:43:1D:BE:94:9C:C1:16:7F:91:FC:DC:C5:E5:34:63:09:CD:A5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 541047E18CD3F5C0F74AAB3B05AB8B0423E44D2E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa Signing time: Fri 25 Apr 2025 18:01:27 +0000 ROA not before: Fri 25 Apr 2025 18:01:27 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:10:47:e1:8c:d3:f5:c0:f7:4a:ab:3b:05:ab:8b:04:23:e4:4d:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:27 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=eb677cf01e9ca3ed793c00dca90a8b617096d8326c60382faa7c51722ac8e727, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:72:5c:ea:5d:79:95:20:fc:91:79:32:99:36: 07:e2:bf:5a:0c:22:12:86:17:1b:4f:e8:86:1a:15: 5b:15:0e:1f:28:8a:5f:6a:4b:c0:f7:26:9a:cc:da: 27:4e:91:f3:2b:9b:2b:59:c1:12:e6:72:c0:94:c4: 66:a4:82:b8:ed:77:06:1d:8c:35:e7:1c:f3:4b:95: 31:82:46:d3:09:19:bb:dd:76:1b:dd:91:64:a0:36: 33:e2:be:b4:82:0b:08:a1:e1:80:bb:58:5a:64:ba: 03:32:70:e3:04:b3:ac:93:33:22:dc:2f:bc:d4:6c: 3e:69:92:66:68:9d:87:87:f5:66:87:89:42:49:01: eb:6e:d9:26:49:e5:1c:ff:64:fe:de:da:18:6a:8d: ef:a6:7a:1e:19:b3:11:99:d6:d3:ca:7a:06:54:84: 7a:e1:e4:1e:79:f8:b0:07:f4:7d:93:c6:bc:6a:9d: be:8b:6b:8f:fc:2c:06:7c:b1:dc:4e:89:71:b4:f4: a5:74:d8:5c:34:f1:fa:22:63:74:0e:ca:3e:07:d7: 0a:96:27:2a:5d:01:62:6e:ff:de:aa:11:f6:30:f7: b9:02:f8:91:77:07:23:bc:23:06:3a:43:d0:28:f3: ba:f0:24:bb:e7:46:62:84:c6:ae:5f:08:20:8d:9b: d5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B4:43:1D:BE:94:9C:C1:16:7F:91:FC:DC:C5:E5:34:63:09:CD:A5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/40 Signature Algorithm: sha256WithRSAEncryption 5b:27:03:c5:1d:67:dc:fd:49:ce:a5:c4:ba:92:23:68:37:3a: 6d:2f:b0:6f:bf:dd:ff:0a:de:9f:26:dd:5b:a5:03:ca:65:f1: bd:7e:33:d2:18:8d:e1:de:75:aa:80:16:85:87:77:81:13:bc: 76:b9:f9:de:3a:9c:08:de:f6:7b:06:cb:16:70:b8:7c:87:c1: 7a:f6:9b:ca:d1:85:6e:30:ee:78:3c:64:22:61:d2:a0:7e:af: 54:d0:38:e2:f7:42:56:47:ac:97:3f:c3:4a:5b:48:11:61:16: a1:81:48:dd:33:f8:6f:08:30:5a:5c:b4:7c:aa:0a:18:3b:fc: ad:79:3f:17:c5:af:dd:ff:71:36:51:47:bf:b8:9e:77:d9:3c: f8:02:c7:66:be:d4:ad:21:44:1a:f9:7e:39:bf:15:65:55:06: 2b:16:72:44:63:d0:ed:f1:71:6d:a4:ef:1a:99:3f:1c:4c:c4: 2b:46:0d:b4:4f:de:6f:68:d9:70:07:88:9e:3a:ee:8f:d4:15: de:bf:c5:30:db:96:28:98:8a:75:d3:63:c2:e4:f3:1f:e4:ba: 32:d1:dd:25:00:6c:dd:8c:78:2d:64:34:47:4c:b3:d6:e3:8e: 3c:63:63:61:d8:54:95:c3:08:0b:7a:f5:df:db:84:2f:60:3b: a6:85:c2:57 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVBBH4YzT9cD3Sqs7BauLBCPkTS4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTI3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjY3N2NmMDFlOWNhM2VkNzkzYzAwZGNhOTBhOGI2MTcw OTZkODMyNmM2MDM4MmZhYTdjNTE3MjJhYzhlNzI3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmclzqXXmVIPyReTKZNgfiv1oMIhKGFxtP6IYaFVsVDh8o il9qS8D3JprM2idOkfMrmytZwRLmcsCUxGakgrjtdwYdjDXnHPNLlTGCRtMJGbvd dhvdkWSgNjPivrSCCwih4YC7WFpkugMycOMEs6yTMyLcL7zUbD5pkmZonYeH9WaH iUJJAetu2SZJ5Rz/ZP7e2hhqje+meh4ZsxGZ1tPKegZUhHrh5B55+LAH9H2Txrxq nb6La4/8LAZ8sdxOiXG09KV02Fw08foiY3QOyj4H1wqWJypdAWJu/96qEfYw97kC +JF3ByO8IwY6Q9Ao87rwJLvnRmKExq5fCCCNm9XzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULLRDHb6UnMEWf5H83MXlNGMJzaUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZkNTA0NTgzLTgyNTAtNDY5My1hNDZkLTdhNDBkYjVhZGQzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75TANBgkqhkiG9w0BAQsFAAOCAQEAWycDxR1n3P1JzqXEupIjaDc6 bS+wb7/d/wrenybdW6UDymXxvX4z0hiN4d51qoAWhYd3gRO8drn53jqcCN72ewbL FnC4fIfBevabytGFbjDueDxkImHSoH6vVNA44vdCVkeslz/DSltIEWEWoYFI3TP4 bwgwWly0fKoKGDv8rXk/F8Wv3f9xNlFHv7ied9k8+ALHZr7UrSFEGvl+Ob8VZVUG KxZyRGPQ7fFxbaTvGpk/HEzEK0YNtE/eb2jZcAeInjruj9QV3r/FMNuWKJiKddNj wuTzH+S6MtHdJQBs3Yx4LWQ0R0yz1uOOPGNjYdhUlcMIC3r139uEL2A7poXCVw== -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:57 2025 by rpki-client