$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa File: d040f02c-c962-433b-9282-37c1d283eaeb.roa (raw, json) Hash identifier: piaBgsA4plT8tNkQyGQ69a+URezeIhKgdCUhSoNK2aA= Subject key identifier: 69:DC:BD:4B:A8:A1:06:D0:BB:8F:DF:67:DC:BC:13:DD:CD:33:B5:60 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2E5B63DA39136F82656F9758555743C7A9CE968E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa Signing time: Fri 25 Apr 2025 18:00:19 +0000 ROA not before: Fri 25 Apr 2025 18:00:19 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:5b:63:da:39:13:6f:82:65:6f:97:58:55:57:43:c7:a9:ce:96:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:19 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=a9032d40726b9e4de70739e80983c51c69c32a740639991f6121aeecedeb5f0a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2a:27:59:ac:bb:fe:d0:fb:63:3b:44:e4:a4: bc:44:fb:3d:f0:a6:b5:3d:0e:57:6a:fc:13:ee:0e: 40:af:42:47:36:79:6e:8b:b3:2e:59:7d:2f:1e:9e: a7:f7:e7:32:b8:e7:15:63:ac:70:60:bb:30:22:3d: 42:fd:44:19:19:02:a5:f1:55:03:a0:60:7c:7f:69: 18:4a:0a:f7:82:ad:70:c1:98:8a:a0:73:28:a5:6b: 60:76:cb:89:b2:57:1e:ee:b0:99:61:7c:9d:18:c9: d7:88:be:52:15:81:b5:83:c4:ac:c2:92:19:ac:4d: 40:7a:ff:dd:a1:fe:fd:40:2e:ab:33:db:14:71:e9: b9:c8:38:fc:08:26:74:60:14:27:31:79:59:ef:03: 93:a2:4f:6d:15:e1:58:fc:7b:74:75:47:76:dd:f2: cd:a4:64:72:e1:36:01:f9:27:0e:b3:3b:8f:5b:dc: 3d:57:2e:4b:c1:e4:b3:b5:01:e8:bf:b5:15:93:0f: b2:30:42:9f:71:09:7d:7c:e3:64:d5:bc:e1:1e:5f: 0c:14:c3:08:c0:2f:c9:c2:e4:b7:cd:72:60:ca:c2: 55:2f:ca:c3:1b:2b:62:0b:03:c0:37:fd:58:e3:da: 7f:6a:72:d7:a4:4a:a9:d0:75:5c:e6:a4:7e:a2:1c: 10:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DC:BD:4B:A8:A1:06:D0:BB:8F:DF:67:DC:BC:13:DD:CD:33:B5:60 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 1d:6a:d0:4b:6f:55:e9:65:c6:4f:80:5f:38:73:1c:ba:ae:b2: e2:b2:be:00:af:38:6a:18:a7:6d:f4:1b:a5:03:44:2b:4b:3d: 08:67:ff:96:86:3b:65:10:d5:a5:99:76:6a:25:45:49:0d:57: 38:3f:9c:84:b1:c8:fd:47:08:95:10:e4:07:17:4c:41:90:1f: a1:03:1f:c9:fb:5c:0e:38:2a:85:3d:34:2b:79:b6:69:31:fe: cd:10:ec:a4:33:5c:c0:f5:f4:09:32:3f:d9:14:80:f1:19:20: 99:33:f8:37:b5:82:5d:82:5b:02:a5:87:86:bf:6c:e1:9a:6a: 31:5e:c8:80:33:e8:5d:83:99:32:8b:fe:2c:f2:bd:50:d5:b0: dc:0f:1f:5d:01:f6:7b:a0:96:7a:57:c1:d5:34:da:02:67:ec: b1:1b:53:4a:94:c9:ef:60:70:fa:e7:c9:bc:2b:ac:dd:55:61: 18:5a:e8:b8:b8:a2:d1:e8:a9:b8:2e:77:0f:91:81:57:5c:69: d8:58:07:a0:48:ad:c3:bd:01:e1:fd:1f:bf:c2:d6:08:a2:f4: c1:aa:11:b9:b1:d6:97:52:5c:4c:47:03:6e:5c:79:0e:42:4c: 8f:95:ba:61:8e:92:52:63:74:06:ce:66:cb:ad:a2:6f:69:04: 17:ec:c5:74 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULltj2jkTb4Jlb5dYVVdDx6nOlo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDE5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTAzMmQ0MDcyNmI5ZTRkZTcwNzM5ZTgwOTgzYzUxYzY5 YzMyYTc0MDYzOTk5MWY2MTIxYWVlY2VkZWI1ZjBhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBKidZrLv+0PtjO0TkpLxE+z3wprU9Dldq/BPuDkCvQkc2 eW6Lsy5ZfS8enqf35zK45xVjrHBguzAiPUL9RBkZAqXxVQOgYHx/aRhKCveCrXDB mIqgcyila2B2y4myVx7usJlhfJ0YydeIvlIVgbWDxKzCkhmsTUB6/92h/v1ALqsz 2xRx6bnIOPwIJnRgFCcxeVnvA5OiT20V4Vj8e3R1R3bd8s2kZHLhNgH5Jw6zO49b 3D1XLkvB5LO1Aei/tRWTD7IwQp9xCX1842TVvOEeXwwUwwjAL8nC5LfNcmDKwlUv ysMbK2ILA8A3/Vjj2n9qctekSqnQdVzmpH6iHBAlAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUady9S6ihBtC7j99n3LwT3c0ztWAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QwNDBmMDJjLWM5NjItNDMzYi05MjgyLTM3YzFkMjgzZWFlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76zANBgkqhkiG9w0BAQsFAAOCAQEAHWrQS29V6WXGT4BfOHMcuq6y 4rK+AK84ahinbfQbpQNEK0s9CGf/loY7ZRDVpZl2aiVFSQ1XOD+chLHI/UcIlRDk BxdMQZAfoQMfyftcDjgqhT00K3m2aTH+zRDspDNcwPX0CTI/2RSA8RkgmTP4N7WC XYJbAqWHhr9s4ZpqMV7IgDPoXYOZMov+LPK9UNWw3A8fXQH2e6CWelfB1TTaAmfs sRtTSpTJ72Bw+ufJvCus3VVhGFrouLii0eipuC53D5GBV1xp2FgHoEitw70B4f0f v8LWCKL0waoRubHWl1JcTEcDblx5DkJMj5W6YY6SUmN0Bs5my62ib2kEF+zFdA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:42 2025 by rpki-client