$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa File: a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa (raw, json) Hash identifier: b5+g3wSFrh+jUDiINdXd7Hd9LMgTZZMsjAZrfUAlBKQ= Subject key identifier: 13:19:18:52:D8:52:57:CF:39:89:C0:32:12:28:42:66:DD:2B:22:E6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 205563309B1C22845D672F5142C04B3010D87816 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa Signing time: Fri 25 Apr 2025 17:50:13 +0000 ROA not before: Fri 25 Apr 2025 17:50:13 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:55:63:30:9b:1c:22:84:5d:67:2f:51:42:c0:4b:30:10:d8:78:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:13 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=d925f1eacffffea12d29b6fbf94ede662806e6b3d8d216a7c838e6ae1fc6f124, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7c:d5:49:04:fc:45:6c:7c:e2:b0:ac:1d:94: 6a:66:93:a9:3f:09:16:e7:76:19:2a:8f:cd:05:30: a7:cb:57:9f:7b:cf:ad:ed:dd:3d:63:7f:58:86:60: 05:c5:50:8f:d8:36:91:84:c2:4d:c6:a4:ca:e4:b8: 7f:14:c3:ca:df:49:67:37:7b:b3:62:8e:ba:0f:7c: 3b:8f:08:f3:9f:12:35:86:13:9a:2e:93:bb:70:3a: c2:2d:fa:df:5a:df:ce:d7:d3:69:ac:d7:99:a7:29: 63:7c:3d:76:ce:04:f4:f9:cd:2d:11:3d:b6:29:88: 59:15:ed:f8:37:39:60:59:ea:7f:9b:74:f9:01:8b: fd:02:35:a9:36:f6:f4:26:6e:58:16:30:07:28:26: 02:21:03:19:e9:43:f0:cc:ff:96:f9:8c:44:86:6a: 94:6a:64:3b:24:88:2f:b8:29:98:84:47:54:8e:86: 55:1e:95:10:59:3b:a5:86:97:88:e4:b6:8f:9e:46: d6:ee:fe:40:37:3c:0e:ef:95:f0:b9:29:d4:77:bd: 66:dc:a1:67:c8:41:85:11:10:87:31:33:04:92:88: f5:a3:8f:b5:98:47:ca:c7:c7:c7:0b:fb:f1:9d:6a: df:93:21:45:92:8d:28:cc:0e:ae:57:8e:20:98:a6: 36:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:19:18:52:D8:52:57:CF:39:89:C0:32:12:28:42:66:DD:2B:22:E6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 3e:8f:da:75:e9:f2:81:d6:c0:d9:9f:12:ab:c1:03:5a:ed:0c: b8:c4:12:63:f5:cf:b0:12:7d:2e:ba:1b:d1:ed:d4:e1:22:60: 3d:a2:95:ba:2b:dc:42:e1:34:d1:9a:66:99:e9:c8:b6:00:02: cb:7e:5e:ba:19:99:4b:49:b7:4c:75:1f:cf:36:74:a6:32:53: 1d:b4:f3:31:1f:e7:4f:04:f4:d5:a4:3c:8b:f1:92:27:b4:dd: df:54:a8:62:66:2a:68:94:41:4d:e2:65:8f:1e:df:2d:36:b4: 70:b7:11:69:f2:16:df:56:2d:51:6d:79:c1:59:07:c5:92:fc: ef:34:33:04:0a:91:8c:61:76:47:91:ed:a7:f6:89:39:cb:4d: 2a:7c:59:76:0b:e6:f6:e2:e7:23:c3:49:6a:fe:2b:03:54:eb: f3:8d:af:b0:32:e2:4d:c2:64:ae:a4:1e:59:c6:af:b2:95:5b: ec:17:19:08:9d:89:dd:f4:52:38:0c:a9:e0:51:2b:a9:29:f0: 42:1e:58:88:45:de:b2:4b:c3:f1:17:2a:a0:35:88:03:7d:60: e1:65:52:f4:67:b5:d7:26:49:c4:8a:35:dc:7c:0b:df:13:9f: df:68:0a:53:86:7c:2d:5f:e7:ef:89:2b:70:5f:80:ed:c8:e6: b7:f7:f1:04 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIFVjMJscIoRdZy9RQsBLMBDYeBYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDEzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTI1ZjFlYWNmZmZmZWExMmQyOWI2ZmJmOTRlZGU2NjI4 MDZlNmIzZDhkMjE2YTdjODM4ZTZhZTFmYzZmMTI0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCffNVJBPxFbHzisKwdlGpmk6k/CRbndhkqj80FMKfLV597 z63t3T1jf1iGYAXFUI/YNpGEwk3GpMrkuH8Uw8rfSWc3e7NijroPfDuPCPOfEjWG E5ouk7twOsIt+t9a387X02ms15mnKWN8PXbOBPT5zS0RPbYpiFkV7fg3OWBZ6n+b dPkBi/0CNak29vQmblgWMAcoJgIhAxnpQ/DM/5b5jESGapRqZDskiC+4KZiER1SO hlUelRBZO6WGl4jkto+eRtbu/kA3PA7vlfC5KdR3vWbcoWfIQYUREIcxMwSSiPWj j7WYR8rHx8cL+/Gdat+TIUWSjSjMDq5XjiCYpjb/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUExkYUthSV885icAyEihCZt0rIuYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2NWRjNTc5LTU1ZDAtNDY0MC04ZWU1LTZiZDcwZTNkZDcyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAD6P2nXp8oHWwNmfEqvBA1rt DLjEEmP1z7ASfS66G9Ht1OEiYD2ilbor3ELhNNGaZpnpyLYAAst+XroZmUtJt0x1 H882dKYyUx208zEf508E9NWkPIvxkie03d9UqGJmKmiUQU3iZY8e3y02tHC3EWny Ft9WLVFtecFZB8WS/O80MwQKkYxhdkeR7af2iTnLTSp8WXYL5vbi5yPDSWr+KwNU 6/ONr7Ay4k3CZK6kHlnGr7KVW+wXGQidid30UjgMqeBRK6kp8EIeWIhF3rJLw/EX KqA1iAN9YOFlUvRntdcmScSKNdx8C98Tn99oClOGfC1f5++JK3BfgO3I5rf38QQ= -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:38 2025 by rpki-client