$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa File: 8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa (raw, json) Hash identifier: eguezdVtN3SD3ewNx+gRYTGK/JNFJ3QTS+sNtrdpeIs= Subject key identifier: 15:2D:FF:F2:2C:BB:5E:41:B7:8D:52:2A:E1:2A:2E:6D:C8:C8:36:51 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 566C3E1CE828A8B64B07F99C1B860F370C7E4BA8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa Signing time: Tue 08 Apr 2025 15:00:32 +0000 ROA not before: Tue 08 Apr 2025 15:00:32 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:6c:3e:1c:e8:28:a8:b6:4b:07:f9:9c:1b:86:0f:37:0c:7e:4b:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 8 15:00:32 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=102a898837c9fc7396916e8436a98beaa7685f53f17c9d755eb6c657ec16963e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:87:25:60:b0:e2:61:b9:74:6e:26:d4:04:85: 51:a2:6e:98:4d:4c:71:15:54:d1:e2:e2:3c:ef:ad: 54:b9:7d:f5:e9:82:f8:4d:ef:9e:77:7c:d8:fa:89: f2:b9:4a:41:44:50:e3:c6:bd:fc:cf:ad:3b:3c:e0: 05:7b:ea:99:82:61:27:f5:e1:fd:52:a2:37:3d:7d: 9e:37:8c:0e:a5:d6:93:82:6b:d1:e2:9e:6a:15:61: 98:5a:d6:56:cd:f8:28:32:c2:c0:20:62:e4:0d:8f: eb:df:93:01:53:4a:3b:da:a7:50:3e:bb:a9:12:9a: c8:5f:42:41:52:47:00:c4:84:d6:60:9c:d0:39:bc: 55:1b:b8:1f:38:b1:a1:60:0c:fa:6c:bb:c5:67:5b: df:d4:c7:d5:d8:22:f7:bf:63:25:af:28:6e:3a:63: ec:b9:ed:dd:a2:17:ee:c1:00:d3:bc:de:fc:1e:f3: cb:c5:9d:39:c9:3a:8c:37:ff:fd:5d:48:95:8e:5d: e2:61:c5:1f:a3:0e:69:b2:de:87:fc:ce:b3:be:de: 8b:83:a3:cf:ed:e5:88:44:e7:73:7d:17:75:a4:30: ce:ba:1c:08:ac:9e:7a:33:e7:60:03:40:bd:19:2e: 7f:4f:05:6a:a9:bd:52:2d:aa:40:8d:3f:6b:18:77: 7f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:2D:FF:F2:2C:BB:5E:41:B7:8D:52:2A:E1:2A:2E:6D:C8:C8:36:51 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f020::/44 Signature Algorithm: sha256WithRSAEncryption 89:96:81:49:89:1e:69:a5:b9:b0:2b:cc:f5:7d:6a:02:cd:c3: b2:de:91:56:ea:44:75:b7:1d:79:fd:de:62:61:64:11:f7:ba: 81:5d:ae:e7:b5:e1:a5:fc:fd:5d:07:28:f5:a4:ba:33:d8:67: 05:1d:01:87:00:f5:f9:8e:43:ac:9c:d0:d8:04:11:53:3d:17: 58:8f:ba:e5:17:ca:7e:31:05:d4:d9:e5:bb:09:a5:00:7d:23: d2:64:df:fe:87:f6:66:3d:84:01:15:d7:15:3f:fb:a3:ff:91: 0a:c3:5f:ab:6a:9e:0d:b6:3e:b7:50:53:4e:ce:44:18:6d:32: cc:0a:2f:e1:1b:84:72:a4:07:20:c3:26:11:4f:fb:fc:a6:4a: 1c:c7:ab:34:ad:0e:33:3b:20:d3:ce:90:df:7f:67:41:b7:61: f8:ea:4e:a9:78:0f:48:e7:f5:0d:f0:c9:42:09:81:db:73:7f: ce:63:1b:d8:99:b5:34:0e:35:ef:c7:48:a7:e1:b5:b4:6f:c7: 27:c7:8c:83:23:35:67:36:9f:e3:31:a8:b3:3c:22:41:b9:67: bd:66:00:bd:e4:80:98:68:6c:2c:57:4b:65:62:f0:91:fd:0e: b6:12:7b:b7:1c:a0:7f:59:84:c4:66:8f:17:8c:3b:6d:2c:95: f0:ec:d6:8d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVmw+HOgoqLZLB/mcG4YPNwx+S6gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDA4MTUwMDMyWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDJhODk4ODM3YzlmYzczOTY5MTZlODQzNmE5OGJlYWE3 Njg1ZjUzZjE3YzlkNzU1ZWI2YzY1N2VjMTY5NjNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGhyVgsOJhuXRuJtQEhVGibphNTHEVVNHi4jzvrVS5ffXp gvhN7553fNj6ifK5SkFEUOPGvfzPrTs84AV76pmCYSf14f1Sojc9fZ43jA6l1pOC a9HinmoVYZha1lbN+CgywsAgYuQNj+vfkwFTSjvap1A+u6kSmshfQkFSRwDEhNZg nNA5vFUbuB84saFgDPpsu8VnW9/Ux9XYIve/YyWvKG46Y+y57d2iF+7BANO83vwe 88vFnTnJOow3//1dSJWOXeJhxR+jDmmy3of8zrO+3ouDo8/t5YhE53N9F3WkMM66 HAisnnoz52ADQL0ZLn9PBWqpvVItqkCNP2sYd39TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFS3/8iy7XkG3jVIq4SoubcjINlEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhjMGU2NWU1LTQzMTQtNGMyNS05NWVhLWJkNzI4YmE0MTdmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78CAwDQYJKoZIhvcNAQELBQADggEBAImWgUmJHmmlubArzPV9agLN w7LekVbqRHW3HXn93mJhZBH3uoFdrue14aX8/V0HKPWkujPYZwUdAYcA9fmOQ6yc 0NgEEVM9F1iPuuUXyn4xBdTZ5bsJpQB9I9Jk3/6H9mY9hAEV1xU/+6P/kQrDX6tq ng22PrdQU07ORBhtMswKL+EbhHKkByDDJhFP+/ymShzHqzStDjM7INPOkN9/Z0G3 YfjqTql4D0jn9Q3wyUIJgdtzf85jG9iZtTQONe/HSKfhtbRvxyfHjIMjNWc2n+Mx qLM8IkG5Z71mAL3kgJhobCxXS2Vi8JH9DrYSe7ccoH9ZhMRmjxeMO20slfDs1o0= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:46 2025 by rpki-client