$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8f13536f-25a3-4ff1-9141-9b85d7e40b8b.roa File: 8f13536f-25a3-4ff1-9141-9b85d7e40b8b.roa (raw, json) Hash identifier: N42uxG+10Ddi3kaoS+HDbMdVrJPSy2QYL4oeIg6n3So= Subject key identifier: 85:73:31:9D:0D:BC:C3:C9:B1:74:C4:58:97:4A:9A:84:B7:A1:AA:6A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1EA462B3C642A2A99ACF97E2A74FF26532D2EAC1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8f13536f-25a3-4ff1-9141-9b85d7e40b8b.roa Signing time: Fri 25 Apr 2025 17:50:31 +0000 ROA not before: Fri 25 Apr 2025 17:50:31 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:a4:62:b3:c6:42:a2:a9:9a:cf:97:e2:a7:4f:f2:65:32:d2:ea:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:31 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=65db7aeec7047c25d29a4582f96055e2eb88c1fe3ed1251952ce27f3779425f6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0e:f0:c6:ae:69:8b:b4:9d:e0:7d:d6:de:9c: e5:d2:c2:10:4d:7e:d5:38:9d:80:9f:6a:1e:e6:94: 59:63:01:fc:d0:e5:a6:f3:79:99:77:43:3e:5e:30: 6b:3f:67:0a:4e:17:11:ec:e6:58:86:5c:21:bd:a0: 26:f7:c6:27:ae:a9:b6:74:82:87:02:98:0c:4d:f8: a2:cd:8c:bf:c3:c9:8d:06:9a:6e:9a:a3:cd:1e:50: d9:8e:59:75:dc:8b:b7:20:02:8c:10:6b:2c:8c:53: df:70:0e:2a:7e:4f:af:40:19:5b:9e:32:fe:0e:f6: 14:33:88:d4:d1:c7:1e:bb:10:ec:80:52:94:b4:bc: f0:76:5c:82:6b:c0:e6:0b:7c:3a:93:67:a0:10:e6: cc:c0:a7:c7:f9:b2:62:be:c3:9a:40:1a:03:0d:9b: 28:2c:f1:4b:f7:f5:15:c5:26:1e:78:01:81:e9:46: 10:fe:2e:d9:25:c3:e2:d6:24:32:83:35:f8:da:a4: 84:a2:a7:fe:e0:cd:fd:a1:16:01:4c:a4:3f:3a:b4: 44:bc:05:5d:e5:e9:f8:1a:4b:dc:7f:02:05:9e:5a: 1e:6c:7c:41:32:7d:bd:70:94:8d:36:c9:93:8a:d5: 15:93:61:b4:de:05:bb:94:74:41:50:97:3d:c4:94: 0b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:73:31:9D:0D:BC:C3:C9:B1:74:C4:58:97:4A:9A:84:B7:A1:AA:6A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8f13536f-25a3-4ff1-9141-9b85d7e40b8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a0::/48 Signature Algorithm: sha256WithRSAEncryption 46:f8:d3:a4:3a:8f:db:34:43:8a:40:41:96:2f:c4:e9:75:ee: 11:68:02:f8:9d:1a:43:29:a7:cb:ff:78:94:14:ed:f2:55:9b: d2:14:34:78:8e:ca:ec:6d:27:76:f6:75:59:81:04:57:60:f6: 54:a6:c6:7c:a6:7e:fc:27:82:67:a5:1f:40:f1:8c:9a:60:62: 8d:3e:d3:ac:21:47:f1:10:84:2f:ff:2a:12:81:70:04:2a:71: 4b:ec:da:91:12:bd:d5:ce:b1:ea:c6:86:1d:37:79:9d:e6:be: c3:cf:cc:c5:cb:ce:9e:4d:0c:df:d9:d2:9e:0e:b8:8e:7f:60: 81:3a:6a:17:cd:cd:22:da:34:f4:87:85:ee:61:87:31:42:e9: b2:95:01:9e:f8:46:e9:ab:9a:01:07:e8:b9:8e:41:f2:f1:d9: 32:1c:78:36:25:a7:bb:06:2f:0b:77:38:c1:d5:12:c7:5b:1c: 4d:fb:be:e4:b2:a2:63:55:0b:e8:69:22:51:1d:a3:10:db:61: 36:66:06:ed:d7:ad:53:2c:2f:49:00:94:27:7b:c3:bd:21:0a: 3b:82:76:35:1d:e2:13:68:75:76:69:e7:14:e0:bd:61:d8:07: b8:95:dd:85:c6:1f:c0:9c:39:3d:6c:7f:f7:02:22:5a:d1:ee: a7:2f:ed:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHqRis8ZCoqmaz5fip0/yZTLS6sEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDMxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWRiN2FlZWM3MDQ3YzI1ZDI5YTQ1ODJmOTYwNTVlMmVi ODhjMWZlM2VkMTI1MTk1MmNlMjdmMzc3OTQyNWY2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUDvDGrmmLtJ3gfdbenOXSwhBNftU4nYCfah7mlFljAfzQ 5abzeZl3Qz5eMGs/ZwpOFxHs5liGXCG9oCb3xieuqbZ0gocCmAxN+KLNjL/DyY0G mm6ao80eUNmOWXXci7cgAowQayyMU99wDip+T69AGVueMv4O9hQziNTRxx67EOyA UpS0vPB2XIJrwOYLfDqTZ6AQ5szAp8f5smK+w5pAGgMNmygs8Uv39RXFJh54AYHp RhD+Ltklw+LWJDKDNfjapISip/7gzf2hFgFMpD86tES8BV3l6fgaS9x/AgWeWh5s fEEyfb1wlI02yZOK1RWTYbTeBbuUdEFQlz3ElAsVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhXMxnQ28w8mxdMRYl0qahLehqmowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhmMTM1MzZmLTI1YTMtNGZmMS05MTQxLTliODVkN2U0MGI4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAKAwDQYJKoZIhvcNAQELBQADggEBAEb406Q6j9s0Q4pAQZYvxOl1 7hFoAvidGkMpp8v/eJQU7fJVm9IUNHiOyuxtJ3b2dVmBBFdg9lSmxnymfvwngmel H0DxjJpgYo0+06whR/EQhC//KhKBcAQqcUvs2pESvdXOserGhh03eZ3mvsPPzMXL zp5NDN/Z0p4OuI5/YIE6ahfNzSLaNPSHhe5hhzFC6bKVAZ74RumrmgEH6LmOQfLx 2TIceDYlp7sGLwt3OMHVEsdbHE37vuSyomNVC+hpIlEdoxDbYTZmBu3XrVMsL0kA lCd7w70hCjuCdjUd4hNodXZp5xTgvWHYB7iV3YXGH8CcOT1sf/cCIlrR7qcv7Ss= -----END CERTIFICATE-----Generated at Sat Apr 26 13:24:04 2025 by rpki-client