$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa File: e0124927-afa7-4267-814d-16ec9e0135d2.roa (raw, json) Hash identifier: lzjuDh42BBEqoRqSx4TGeSMbKtRbbdShQxmnPyCM2Ts= Subject key identifier: C5:07:E3:5F:6A:7C:BA:36:A1:FD:4D:9F:9C:C2:B1:00:7D:F8:97:BC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 60B428305EF0F1288D9D5F9465E4E007E006CB56 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa Signing time: Fri 25 Apr 2025 17:50:20 +0000 ROA not before: Fri 25 Apr 2025 17:50:20 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b4:28:30:5e:f0:f1:28:8d:9d:5f:94:65:e4:e0:07:e0:06:cb:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:20 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ccb9572f80c9ba93aa2c8518ede69ad9f8f9002fbf555081dde7ba6544ec5981, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:00:c8:91:08:9f:bb:87:05:28:0d:2f:5f:cb: 9b:be:93:99:0e:2b:c8:81:f2:8b:12:87:91:8e:db: 92:f3:57:05:c5:3f:b6:c7:0a:7d:6d:3b:ad:c4:26: ad:14:6b:97:2f:77:60:48:ed:db:bf:af:68:a2:74: 6b:ac:20:09:e1:61:ac:0a:d6:84:6b:51:22:2e:f1: b2:d3:d7:f4:4f:2e:b2:43:7d:1f:a8:a1:32:b7:89: cf:f0:ac:54:b0:7b:f4:5f:62:69:76:c6:39:66:48: b4:6a:46:f8:98:3c:b3:95:99:d4:a5:c4:fb:42:9c: 2d:a3:f1:77:39:ff:fb:52:e3:c1:7b:d3:64:93:1b: 42:52:09:ea:7d:f9:d9:c7:f4:ba:37:c8:e0:fa:1f: 87:41:26:35:76:09:cd:d9:15:ab:77:cb:6d:fc:72: ae:dc:98:70:17:d9:2d:ff:d6:b1:b4:ab:d1:28:0e: 19:97:a5:29:23:3f:6a:eb:76:44:22:0e:26:75:e4: a7:7d:c2:b6:dd:5d:11:9b:4f:75:62:86:9e:6e:38: 14:fe:55:44:43:01:63:ee:63:ff:f5:1e:60:12:6d: 49:f1:55:ce:a3:ef:2c:b0:8a:ac:96:21:3d:a8:f8: 2c:22:a0:76:6d:8b:79:54:cd:7b:c6:da:5a:86:c1: 4d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:07:E3:5F:6A:7C:BA:36:A1:FD:4D:9F:9C:C2:B1:00:7D:F8:97:BC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:2::/48 Signature Algorithm: sha256WithRSAEncryption 5f:a9:4a:fd:cd:d6:a9:60:40:bc:61:87:29:f5:e9:5b:db:0f: 7a:67:47:fd:86:0b:1a:fe:a6:67:70:4c:91:c7:a8:0c:93:0a: 86:2a:35:42:3a:eb:75:ee:b2:88:e1:d8:35:81:45:c7:61:98: 2e:b5:8c:d8:c0:14:ba:fb:cc:3e:94:2f:35:bf:c4:a3:ac:42: f1:59:72:7c:3c:1b:a2:a7:eb:4b:43:15:d9:be:8f:af:22:d9: 46:d9:4a:5f:a0:a5:c7:64:92:85:a2:d6:ef:bf:e4:d9:97:50: c0:86:5d:4f:91:18:5a:b9:47:69:7a:41:b7:32:25:98:be:8c: 2a:f1:ed:25:77:9f:44:85:86:bd:b2:74:df:3c:f3:ae:16:a2: e7:87:ed:52:b9:5f:db:de:a2:5f:0f:c2:8e:a9:53:42:21:e4: 64:c3:c7:aa:32:dc:cc:d3:a0:e7:8c:d4:de:e0:bc:80:d1:30: 64:cc:ca:cb:b8:5f:e1:59:56:27:95:f6:ac:3f:9a:ab:b0:fa: cf:57:66:1f:cb:92:be:7a:54:1f:16:d1:bf:65:b7:53:39:62: b8:e1:03:f8:23:e9:1b:0c:b5:7a:72:b1:c6:dc:98:01:17:eb: 5d:4c:33:08:f3:c8:19:dd:43:04:2c:c4:73:6e:03:66:25:a5: 09:77:a8:6c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYLQoMF7w8SiNnV+UZeTgB+AGy1YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDIwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2I5NTcyZjgwYzliYTkzYWEyYzg1MThlZGU2OWFkOWY4 ZjkwMDJmYmY1NTUwODFkZGU3YmE2NTQ0ZWM1OTgxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeAMiRCJ+7hwUoDS9fy5u+k5kOK8iB8osSh5GO25LzVwXF P7bHCn1tO63EJq0Ua5cvd2BI7du/r2iidGusIAnhYawK1oRrUSIu8bLT1/RPLrJD fR+ooTK3ic/wrFSwe/RfYml2xjlmSLRqRviYPLOVmdSlxPtCnC2j8Xc5//tS48F7 02STG0JSCep9+dnH9Lo3yOD6H4dBJjV2Cc3ZFat3y238cq7cmHAX2S3/1rG0q9Eo DhmXpSkjP2rrdkQiDiZ15Kd9wrbdXRGbT3Vihp5uOBT+VURDAWPuY//1HmASbUnx Vc6j7yywiqyWIT2o+CwioHZti3lUzXvG2lqGwU1LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxQfjX2p8ujah/U2fnMKxAH34l7wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UwMTI0OTI3LWFmYTctNDI2Ny04MTRkLTE2ZWM5ZTAxMzVkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAIwDQYJKoZIhvcNAQELBQADggEBAF+pSv3N1qlgQLxhhyn16Vvb D3pnR/2GCxr+pmdwTJHHqAyTCoYqNUI663Xusojh2DWBRcdhmC61jNjAFLr7zD6U LzW/xKOsQvFZcnw8G6Kn60tDFdm+j68i2UbZSl+gpcdkkoWi1u+/5NmXUMCGXU+R GFq5R2l6QbcyJZi+jCrx7SV3n0SFhr2ydN88864WoueH7VK5X9veol8Pwo6pU0Ih 5GTDx6oy3MzToOeM1N7gvIDRMGTMysu4X+FZVieV9qw/mquw+s9XZh/Lkr56VB8W 0b9lt1M5YrjhA/gj6RsMtXpyscbcmAEX611MMwjzyBndQwQsxHNuA2YlpQl3qGw= -----END CERTIFICATE-----Generated at Sat Apr 26 13:20:25 2025 by rpki-client