$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e44f32b3-ff36-487e-b814-9b622650bde3.roa File: e44f32b3-ff36-487e-b814-9b622650bde3.roa (raw, json) Hash identifier: CUlJR9Z6aLcl2XwrSjusAyBGnaJclqgZ8DopLv4+1Uk= Subject key identifier: DA:34:81:03:FC:74:15:87:2B:CD:FE:78:BF:2B:CD:82:D7:E0:0F:1D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 705B46208C471B16735E097D62340F04F0A59C6D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e44f32b3-ff36-487e-b814-9b622650bde3.roa Signing time: Mon 14 Apr 2025 17:30:05 +0000 ROA not before: Mon 14 Apr 2025 17:30:05 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:5b:46:20:8c:47:1b:16:73:5e:09:7d:62:34:0f:04:f0:a5:9c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 14 17:30:05 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=98f719a26dc07c2aeafedfc4378f16e4e111634c071f3d9674a77a38fde1fbf6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:b0:ec:01:4e:ca:2e:ff:70:4a:5a:9e:0c:a4: 60:92:e8:a1:ae:4e:2d:70:32:b3:2a:09:ea:7f:34: 30:c5:70:ec:a8:64:10:11:9e:46:4a:fa:7e:1e:2b: e8:e1:59:95:f1:ed:24:a7:07:0c:2c:e2:61:ff:43: 7d:83:e8:ce:bc:17:02:1d:37:7d:2b:67:bb:7c:ad: eb:50:ee:a5:60:3d:b9:a2:6c:6a:6d:19:1d:ae:35: 01:36:f3:f8:1a:b8:63:89:17:61:f6:46:d5:8e:b3: 30:ea:d1:69:bb:31:74:2b:e1:db:b6:df:86:a7:30: 10:8a:4c:c3:36:75:43:2a:31:23:65:68:46:ea:de: fa:e8:7e:a3:bf:71:30:ae:25:68:e9:07:56:1d:47: 10:94:20:60:75:07:92:fe:0f:e6:c4:01:57:0a:17: 33:94:3a:44:1f:67:a5:d1:49:67:db:94:9b:3d:63: 40:d9:cc:1a:91:3c:6f:06:07:19:0d:33:13:1a:c7: e7:ad:81:e9:a8:c0:6c:38:e3:0e:af:7b:d1:33:50: 65:b0:ea:df:bd:33:16:27:ea:94:c5:07:62:83:cf: 17:c4:b2:25:27:1a:ed:9d:11:ce:4e:09:d0:d9:d9: 12:a7:c4:2c:ce:31:d9:83:69:56:b4:90:5e:a2:a0: dd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:34:81:03:FC:74:15:87:2B:CD:FE:78:BF:2B:CD:82:D7:E0:0F:1D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e44f32b3-ff36-487e-b814-9b622650bde3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1100::/40 Signature Algorithm: sha256WithRSAEncryption 92:fe:52:09:c2:ae:17:a6:7f:5d:26:af:6b:20:0e:89:2c:d1: 74:df:8c:8a:73:36:08:a8:03:60:a5:56:56:ed:f1:65:55:98: 13:94:30:74:52:c1:63:15:07:f3:4b:cf:47:17:e8:68:59:53: cc:a6:ce:9d:55:75:95:36:6e:5a:8f:08:77:e8:9c:0f:1c:87: cb:5e:47:01:db:5a:d4:7e:2e:1f:08:0b:64:b3:a8:91:aa:fe: 45:23:1b:c1:a6:f5:c4:0e:7b:72:c2:46:a0:b0:bc:29:73:28: 9b:48:4e:91:4f:0c:bc:83:2a:37:cd:46:31:36:02:06:30:05: e3:1e:4c:52:23:35:41:87:20:c9:4b:63:61:8d:6a:c4:ab:8d: b1:ea:0f:dd:5d:00:2c:17:e8:95:7a:80:77:28:ae:12:69:d8: 31:7d:ec:ea:91:5b:24:28:68:e3:8b:8a:d9:af:7d:fc:9f:67: 16:08:5a:ba:6f:21:45:86:f4:89:a4:01:9d:14:0c:2e:3c:dc: 9e:09:7d:6a:59:e3:a1:12:0e:9a:1f:7c:b3:d8:30:ba:26:37: eb:76:f4:ef:e5:13:db:46:41:da:e8:07:79:c6:6b:3c:58:63: ac:6c:2b:6d:92:8e:bb:33:de:d0:13:d4:40:0f:40:a8:5a:6b: 1e:50:15:af -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcFtGIIxHGxZzXgl9YjQPBPClnG0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDE0MTczMDA1WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OGY3MTlhMjZkYzA3YzJhZWFmZWRmYzQzNzhmMTZlNGUx MTE2MzRjMDcxZjNkOTY3NGE3N2EzOGZkZTFmYmY2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIsOwBTsou/3BKWp4MpGCS6KGuTi1wMrMqCep/NDDFcOyo ZBARnkZK+n4eK+jhWZXx7SSnBwws4mH/Q32D6M68FwIdN30rZ7t8retQ7qVgPbmi bGptGR2uNQE28/gauGOJF2H2RtWOszDq0Wm7MXQr4du234anMBCKTMM2dUMqMSNl aEbq3vrofqO/cTCuJWjpB1YdRxCUIGB1B5L+D+bEAVcKFzOUOkQfZ6XRSWfblJs9 Y0DZzBqRPG8GBxkNMxMax+etgemowGw44w6ve9EzUGWw6t+9MxYn6pTFB2KDzxfE siUnGu2dEc5OCdDZ2RKnxCzOMdmDaVa0kF6ioN1lAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU2jSBA/x0FYcrzf54vyvNgtfgDx0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2U0NGYzMmIzLWZmMzYtNDg3ZS1iODE0LTliNjIyNjUwYmRlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwETANBgkqhkiG9w0BAQsFAAOCAQEAkv5SCcKuF6Z/XSavayAOiSzR dN+MinM2CKgDYKVWVu3xZVWYE5QwdFLBYxUH80vPRxfoaFlTzKbOnVV1lTZuWo8I d+icDxyHy15HAdta1H4uHwgLZLOokar+RSMbwab1xA57csJGoLC8KXMom0hOkU8M vIMqN81GMTYCBjAF4x5MUiM1QYcgyUtjYY1qxKuNseoP3V0ALBfolXqAdyiuEmnY MX3s6pFbJCho44uK2a99/J9nFghaum8hRYb0iaQBnRQMLjzcngl9alnjoRIOmh98 s9gwuiY363b07+UT20ZB2ugHecZrPFhjrGwrbZKOuzPe0BPUQA9AqFprHlAVrw== -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:58 2025 by rpki-client