$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa File: 7fef00dc-1a9a-497c-b857-792da38e532f.roa (raw, json) Hash identifier: CF36bD44g9xMjGJlgJfnTUlfBpcfOReaGHapy+EkrJI= Subject key identifier: 96:38:AE:54:61:B7:31:5E:BF:4C:FA:A7:FE:8A:59:F5:08:7D:B0:C4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5C1048C08F7C075BC6AE9CA6FC55E6BA6FC3F792 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa Signing time: Sat 24 May 2025 00:30:38 +0000 ROA not before: Sat 24 May 2025 00:30:38 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:10:48:c0:8f:7c:07:5b:c6:ae:9c:a6:fc:55:e6:ba:6f:c3:f7:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 24 00:30:38 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=6ec37ef51f9f632d9d020e09afee7fa690256c0a5c1b9ed1453069ae2b93a0e0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:16:57:ac:2a:37:58:fa:e5:1a:7d:09:aa:0c: de:20:1b:a4:9f:3e:26:06:81:3a:99:9e:a3:3a:df: c4:22:5c:01:62:41:5a:11:7a:be:e1:76:6c:de:f4: 55:ec:c8:7c:91:1a:d8:55:24:bb:40:05:1c:6f:e6: 93:5c:9a:73:7d:bf:db:5d:6f:38:7b:75:f7:a4:f4: 80:87:e4:5c:e3:eb:b6:2e:35:83:ed:43:94:a6:7d: 91:4b:95:31:b6:af:b6:8c:27:c2:60:aa:68:07:50: 2d:1c:f1:9b:fd:49:d0:e9:b2:3a:d4:c4:5d:5a:55: 0c:1a:b7:1c:e8:d8:8e:2e:18:59:15:83:09:02:06: 7e:e9:6f:29:74:1e:d2:c5:40:86:2b:52:10:70:24: 7c:e2:d3:87:42:be:d9:64:3a:0a:73:ee:78:45:4f: 03:39:56:87:67:e5:5b:a6:f8:8a:c7:c7:45:93:0f: 56:60:bf:31:14:23:83:98:f7:10:2f:31:9a:49:51: 98:fc:6e:fa:6b:90:cd:35:b4:cb:74:d4:05:de:34: 9c:ef:39:19:e5:79:74:28:e7:a0:bd:16:ad:e6:f8: 9f:5c:d1:ad:09:d2:84:c7:0f:f4:b6:5d:68:e4:f9: 57:ee:c7:06:df:db:a4:39:8d:45:ad:48:0c:8c:e9: f7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:38:AE:54:61:B7:31:5E:BF:4C:FA:A7:FE:8A:59:F5:08:7D:B0:C4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5500::/48 Signature Algorithm: sha256WithRSAEncryption 9d:a7:94:ea:e3:09:ee:44:b8:e0:0e:d0:c8:fd:bf:63:c9:46: 4c:4f:ca:f4:f5:ca:e8:1c:ee:b5:fe:23:3d:c5:a8:91:a9:8c: d3:f9:22:cc:8b:ac:67:43:34:aa:cf:82:56:6c:06:d0:25:c3: 4d:80:29:0a:4d:38:c0:89:66:7a:22:b1:5b:ac:3c:21:22:d2: 04:6e:b8:0f:ec:be:00:3a:65:8c:9e:09:6f:4c:a5:e7:d9:bf: d2:63:17:42:b1:06:6c:f5:d8:7b:75:7f:36:b9:b0:60:03:3f: 03:d5:5d:0b:45:4f:80:c1:34:03:3b:0a:da:29:6d:cc:3c:c5: 83:33:4a:ee:cc:82:0e:f7:1c:bf:41:4a:fb:50:86:ce:8a:82: b8:9a:15:8e:92:e6:77:aa:75:e8:6e:85:7d:53:63:3a:83:6c: fa:de:b9:eb:02:f9:41:9b:09:f7:7f:ba:40:2f:04:17:3c:82: ae:9a:19:89:bf:db:59:13:db:5d:95:91:53:b7:b9:02:64:f4: a1:66:c9:81:42:7d:3f:86:55:ec:5c:60:49:29:bc:14:09:10: d4:12:1b:4d:ac:b9:b8:25:b0:ed:e6:d1:53:c6:d7:46:7b:ff: 43:02:52:6f:6d:68:02:6b:f0:f1:73:fb:ba:03:4d:42:de:79: 05:56:7c:c3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXBBIwI98B1vGrpym/FXmum/D95IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI0MDAzMDM4WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZWMzN2VmNTFmOWY2MzJkOWQwMjBlMDlhZmVlN2ZhNjkw MjU2YzBhNWMxYjllZDE0NTMwNjlhZTJiOTNhMGUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdFlesKjdY+uUafQmqDN4gG6SfPiYGgTqZnqM638QiXAFi QVoRer7hdmze9FXsyHyRGthVJLtABRxv5pNcmnN9v9tdbzh7dfek9ICH5Fzj67Yu NYPtQ5SmfZFLlTG2r7aMJ8JgqmgHUC0c8Zv9SdDpsjrUxF1aVQwatxzo2I4uGFkV gwkCBn7pbyl0HtLFQIYrUhBwJHzi04dCvtlkOgpz7nhFTwM5Vodn5Vum+IrHx0WT D1ZgvzEUI4OY9xAvMZpJUZj8bvprkM01tMt01AXeNJzvORnleXQo56C9Fq3m+J9c 0a0J0oTHD/S2XWjk+Vfuxwbf26Q5jUWtSAyM6ffHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUljiuVGG3MV6/TPqn/opZ9Qh9sMQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdmZWYwMGRjLTFhOWEtNDk3Yy1iODU3LTc5MmRhMzhlNTMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQAwDQYJKoZIhvcNAQELBQADggEBAJ2nlOrjCe5EuOAO0Mj9v2PJ RkxPyvT1yugc7rX+Iz3FqJGpjNP5IsyLrGdDNKrPglZsBtAlw02AKQpNOMCJZnoi sVusPCEi0gRuuA/svgA6ZYyeCW9MpefZv9JjF0KxBmz12Ht1fza5sGADPwPVXQtF T4DBNAM7Ctopbcw8xYMzSu7Mgg73HL9BSvtQhs6KgriaFY6S5neqdehuhX1TYzqD bPreuesC+UGbCfd/ukAvBBc8gq6aGYm/21kT212VkVO3uQJk9KFmyYFCfT+GVexc YEkpvBQJENQSG02subglsO3m0VPG10Z7/0MCUm9taAJr8PFz+7oDTULeeQVWfMM= -----END CERTIFICATE-----Generated at Sat Jun 14 06:34:16 2025 by rpki-client