$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa File: 8979840e-82a9-441b-924a-93b9c7ea006b.roa (raw, json) Hash identifier: svhAuXpdRjJrrSPU4t1T3+vafWXh0ICJ/CUl6eVv4tA= Subject key identifier: 7B:7D:3F:90:49:B8:6D:63:75:1D:E8:02:97:87:1B:A2:4D:3A:F2:9C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7A147FA5E96548CB58ABF2824D1A49F4ACCC8173 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa Signing time: Fri 25 Apr 2025 17:50:21 +0000 ROA not before: Fri 25 Apr 2025 17:50:21 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:14:7f:a5:e9:65:48:cb:58:ab:f2:82:4d:1a:49:f4:ac:cc:81:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:21 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=0a7f089353731e7de56a44199a59aa5fe9dc58fc52f3261baeb720e2762b6d21, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ef:be:bb:18:a9:4c:3f:9d:af:dc:2c:07:c0: 04:a1:bd:85:d1:ba:4b:13:d8:a7:6e:97:25:d2:3b: a0:62:03:a5:78:53:25:52:c3:0d:e3:95:8d:1a:ca: 6e:cc:30:d6:66:e3:de:75:6d:5f:13:61:a9:75:70: b5:9c:87:c7:de:55:e5:d6:b7:44:06:fe:f8:e9:d3: af:5d:ef:b7:67:0a:7a:5e:4b:25:af:28:7b:59:84: 1f:c7:88:76:ef:2b:e0:66:ae:d9:b8:1a:36:eb:68: 1d:91:44:4f:d4:78:90:36:d8:09:ea:28:5f:40:ff: ed:61:17:25:ee:d2:54:b9:f8:a8:64:b8:bc:17:c0: f8:eb:d7:36:72:58:eb:8a:3e:45:a7:0b:5e:04:07: 2c:8f:76:95:a4:27:9e:2c:b8:5d:78:61:b6:26:9c: 7c:2c:bf:3d:f8:73:51:5e:23:2f:d5:02:62:ee:21: 12:04:f0:82:33:1c:af:c4:a2:fb:33:49:92:5f:8f: 8a:af:d7:97:2a:01:93:ca:4d:32:34:e7:ce:f1:89: 48:7c:f4:3b:5a:14:71:b8:5b:78:7f:70:bb:3e:59: ad:6b:40:5d:e2:6f:5c:9d:a9:b9:0b:ea:c5:11:0b: b0:80:c2:14:59:b8:f2:a8:0a:56:56:38:9a:74:2a: 38:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:7D:3F:90:49:B8:6D:63:75:1D:E8:02:97:87:1B:A2:4D:3A:F2:9C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:2::/48 Signature Algorithm: sha256WithRSAEncryption 24:f3:84:b3:26:17:c4:ad:dc:04:e2:38:7a:93:8d:b6:a7:d1: e2:1f:92:72:28:65:e1:04:45:e5:51:d8:eb:0b:4b:f8:92:db: b0:d0:2d:6c:b4:36:d6:b2:73:2f:56:1c:2d:c0:bd:f6:3a:ea: 4f:66:5c:b4:9c:19:a1:62:9d:62:6b:90:46:13:f8:9e:3b:c3: 05:9a:78:8f:65:bc:4c:f9:32:90:c5:11:ab:84:9f:cf:16:3b: ed:a5:1c:10:2a:16:ca:34:be:1c:05:54:d9:0a:72:27:da:47: 82:b2:27:e6:68:e9:11:fe:eb:68:e2:c5:39:af:91:0e:1d:43: 02:ee:60:f5:25:08:07:b3:52:7e:49:2e:6a:bc:52:7b:7f:f8: f3:cf:5c:7d:26:20:61:d0:1d:5f:a6:06:12:e2:ae:97:8e:5a: dc:d4:5c:cd:0e:00:f4:52:24:a0:41:ff:81:d1:cc:10:93:25: 6d:30:33:25:98:33:b1:fb:bb:76:03:2c:30:78:0d:18:db:53: 8f:9f:4d:e0:94:1c:23:6b:15:fc:b0:7f:6a:2f:7e:2b:38:da: 02:69:02:12:26:22:d4:ee:a8:aa:68:48:9c:22:b7:59:14:8c: 99:fa:49:e4:0f:be:fd:56:da:22:a9:a9:06:6e:e3:e5:be:59: 49:99:75:de -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUehR/pellSMtYq/KCTRpJ9KzMgXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDIxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTdmMDg5MzUzNzMxZTdkZTU2YTQ0MTk5YTU5YWE1ZmU5 ZGM1OGZjNTJmMzI2MWJhZWI3MjBlMjc2MmI2ZDIxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC47767GKlMP52v3CwHwAShvYXRuksT2KdulyXSO6BiA6V4 UyVSww3jlY0aym7MMNZm4951bV8TYal1cLWch8feVeXWt0QG/vjp069d77dnCnpe SyWvKHtZhB/HiHbvK+Bmrtm4GjbraB2RRE/UeJA22AnqKF9A/+1hFyXu0lS5+Khk uLwXwPjr1zZyWOuKPkWnC14EByyPdpWkJ54suF14YbYmnHwsvz34c1FeIy/VAmLu IRIE8IIzHK/EovszSZJfj4qv15cqAZPKTTI0587xiUh89DtaFHG4W3h/cLs+Wa1r QF3ib1ydqbkL6sURC7CAwhRZuPKoClZWOJp0KjiTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUe30/kEm4bWN1HegCl4cbok068pwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg5Nzk4NDBlLTgyYTktNDQxYi05MjRhLTkzYjljN2VhMDA2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAIwDQYJKoZIhvcNAQELBQADggEBACTzhLMmF8St3ATiOHqTjban 0eIfknIoZeEEReVR2OsLS/iS27DQLWy0Ntaycy9WHC3AvfY66k9mXLScGaFinWJr kEYT+J47wwWaeI9lvEz5MpDFEauEn88WO+2lHBAqFso0vhwFVNkKcifaR4KyJ+Zo 6RH+62jixTmvkQ4dQwLuYPUlCAezUn5JLmq8Unt/+PPPXH0mIGHQHV+mBhLirpeO WtzUXM0OAPRSJKBB/4HRzBCTJW0wMyWYM7H7u3YDLDB4DRjbU4+fTeCUHCNrFfyw f2ovfis42gJpAhImItTuqKpoSJwit1kUjJn6SeQPvv1W2iKpqQZu4+W+WUmZdd4= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:53 2025 by rpki-client