$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa File: ab860450-a818-47f3-a42f-5570594471c3.roa (raw, json) Hash identifier: zzH6U37Jslp9jM4MS1Y7lnoHlKWDG4AP4zBQTdFWdxc= Subject key identifier: 89:58:44:75:12:81:C4:CB:FD:90:28:BD:26:7E:00:31:E0:5F:7E:0E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 27AE17AFAA503717D67162F4EA21715D0F70623B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa Signing time: Fri 25 Apr 2025 18:00:12 +0000 ROA not before: Fri 25 Apr 2025 18:00:12 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ae:17:af:aa:50:37:17:d6:71:62:f4:ea:21:71:5d:0f:70:62:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:12 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=71f08591ae8f591278978f731385439696347c567cb34c2863857a4ef0dfbedf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:17:8a:e4:9f:29:89:7d:fc:48:7c:d1:6d:89: 40:99:64:9b:01:63:97:2e:e9:b5:78:2c:1b:4d:ad: 97:81:7c:41:23:5d:e6:42:2b:8e:58:e4:90:43:30: 83:cd:73:b1:c1:93:51:67:34:f1:48:03:25:c4:97: 6c:24:55:84:70:8e:b2:a4:6f:dc:ee:1f:22:da:2c: 81:40:f4:ae:e8:d6:36:07:0e:59:f8:33:3e:41:5a: 0c:8d:80:27:47:de:75:0d:0a:12:43:6a:88:18:1c: 62:96:8c:c3:3c:52:ca:75:04:ea:a4:f8:35:28:ab: b8:27:b0:de:34:53:f9:80:40:59:36:17:fa:39:6e: fc:ae:95:52:0f:43:2d:c8:05:47:7c:d9:60:bf:ef: 3b:49:12:8b:2f:7f:c9:59:fb:e7:e4:2f:aa:c9:d2: 65:64:4c:16:6c:ff:7c:05:04:d9:0c:f7:76:f6:69: 8a:31:67:14:bc:87:19:d9:85:93:06:8d:92:5a:0b: 38:56:3d:6a:49:af:3f:39:11:4f:69:ac:1d:44:5a: 47:84:2f:ed:12:77:8a:5e:a7:6d:a7:3c:be:44:dc: 28:8a:72:61:99:78:c3:91:a7:81:75:7b:8b:d3:a0: 4d:4d:7d:af:e7:b3:fb:8d:6a:a9:17:93:f7:ba:f1: d5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:58:44:75:12:81:C4:CB:FD:90:28:BD:26:7E:00:31:E0:5F:7E:0E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 85:0f:bd:06:1b:46:09:81:bc:13:75:c0:ac:2f:cd:96:1a:19: c8:f6:d1:00:a1:56:af:ea:1d:ec:b0:93:7b:04:5c:c2:01:7b: 56:d3:7f:d4:e2:1a:5e:79:15:35:9d:12:28:47:98:3d:9a:38: 58:3c:39:0f:cf:98:c3:26:bd:db:f7:d4:53:cc:57:78:99:23: 4e:7b:4c:2c:58:e7:f1:4a:7a:9f:26:5e:d1:14:02:93:e2:8b: 98:3c:3c:eb:71:a8:66:63:b7:ff:88:e6:da:e8:26:73:36:bf: e6:7c:48:7f:51:2f:df:cf:54:90:0f:0d:2c:f9:df:5f:fb:da: 82:9f:4c:92:47:2a:a3:8c:02:b3:d7:18:ad:57:08:c8:ea:78: c3:26:53:fa:1d:14:82:9c:e0:5c:ba:2c:ab:f7:ac:f3:22:72: 92:bf:e2:09:70:ab:52:5c:2d:c0:67:45:0a:fe:45:e5:a6:10: 9f:98:fa:a0:f4:52:50:82:ff:14:dc:91:89:1e:4f:02:38:09: a6:b7:52:16:f5:49:12:81:3e:1f:d7:71:93:54:65:22:7a:94: fb:9f:cf:a0:3c:4c:6b:fc:7c:3d:5e:98:b7:06:48:cc:ca:08: 66:2c:91:94:46:81:94:16:b1:28:95:34:92:4d:e4:02:db:64: a0:97:85:f3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ64Xr6pQNxfWcWL06iFxXQ9wYjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDEyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWYwODU5MWFlOGY1OTEyNzg5NzhmNzMxMzg1NDM5Njk2 MzQ3YzU2N2NiMzRjMjg2Mzg1N2E0ZWYwZGZiZWRmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGF4rknymJffxIfNFtiUCZZJsBY5cu6bV4LBtNrZeBfEEj XeZCK45Y5JBDMIPNc7HBk1FnNPFIAyXEl2wkVYRwjrKkb9zuHyLaLIFA9K7o1jYH Dln4Mz5BWgyNgCdH3nUNChJDaogYHGKWjMM8Usp1BOqk+DUoq7gnsN40U/mAQFk2 F/o5bvyulVIPQy3IBUd82WC/7ztJEosvf8lZ++fkL6rJ0mVkTBZs/3wFBNkM93b2 aYoxZxS8hxnZhZMGjZJaCzhWPWpJrz85EU9prB1EWkeEL+0Sd4pep22nPL5E3CiK cmGZeMORp4F1e4vToE1Nfa/ns/uNaqkXk/e68dVJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiVhEdRKBxMv9kCi9Jn4AMeBffg4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiODYwNDUwLWE4MTgtNDdmMy1hNDJmLTU1NzA1OTQ0NzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBAIUPvQYbRgmBvBN1wKwvzZYa Gcj20QChVq/qHeywk3sEXMIBe1bTf9TiGl55FTWdEihHmD2aOFg8OQ/PmMMmvdv3 1FPMV3iZI057TCxY5/FKep8mXtEUApPii5g8POtxqGZjt/+I5troJnM2v+Z8SH9R L9/PVJAPDSz531/72oKfTJJHKqOMArPXGK1XCMjqeMMmU/odFIKc4Fy6LKv3rPMi cpK/4glwq1JcLcBnRQr+ReWmEJ+Y+qD0UlCC/xTckYkeTwI4Caa3Uhb1SRKBPh/X cZNUZSJ6lPufz6A8TGv8fD1emLcGSMzKCGYskZRGgZQWsSiVNJJN5ALbZKCXhfM= -----END CERTIFICATE-----Generated at Sat Apr 26 16:35:31 2025 by rpki-client