$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa File: ec42dc47-0cc9-474a-9470-19700f756d36.roa (raw, json) Hash identifier: YFyGYIe7SHxBzfp0ARnMbawpXJzQxHH5kMLpV8SbYwc= Subject key identifier: C8:DD:76:7D:F7:9F:3E:EB:23:07:59:8A:BE:C9:F7:9B:C2:23:D0:C3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1CB58BE997D6FB2AA70F17B86CFB4A5067190034 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa Signing time: Fri 25 Apr 2025 17:50:12 +0000 ROA not before: Fri 25 Apr 2025 17:50:12 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b5:8b:e9:97:d6:fb:2a:a7:0f:17:b8:6c:fb:4a:50:67:19:00:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:12 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=e560d16133e04031a8cf16eeed2fd8c55a7d6f4ab45ae1b7f5fea4ce66260884, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cf:df:8f:14:e9:c5:13:50:77:0e:ca:58:12: 9b:0a:b7:e2:c2:5e:d7:6a:52:8f:df:76:44:42:10: 74:80:80:de:f5:bf:9d:bd:72:8f:3d:de:0b:e7:c4: 64:d7:21:a1:37:6f:5d:4b:0e:95:1d:f7:bf:74:9c: 49:5a:81:d4:6b:1a:bd:c6:cf:00:ee:1b:62:b4:30: 88:09:c9:82:c2:58:a8:a1:5f:54:f2:0c:6d:eb:7f: e4:86:e2:aa:2f:41:3c:5b:df:07:84:68:c8:65:e2: 80:59:e4:ba:d9:a3:f2:0a:b0:f1:5f:49:59:e8:48: 95:d7:d7:32:1f:4d:89:b0:37:7c:fa:83:30:3a:a7: 7b:05:58:bb:24:3e:ad:7c:1c:09:56:4f:98:28:4f: 2e:63:d9:4c:22:7c:93:57:d5:a9:4b:67:4d:74:be: b5:e2:30:29:e4:4f:b6:03:90:e6:bb:c4:c9:32:86: 6e:2f:98:cd:9d:ce:f5:22:87:64:51:12:54:09:f8: 96:c5:80:f5:d3:ba:6c:60:28:7a:1b:4e:27:ff:60: 7e:39:1c:48:e0:23:07:73:a8:81:79:f6:46:43:33: f0:27:9f:71:e0:32:e5:07:c2:03:c2:bf:ad:9e:d4: 85:6b:32:44:0a:fa:1a:69:68:b7:ee:f3:9d:60:e1: cb:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:DD:76:7D:F7:9F:3E:EB:23:07:59:8A:BE:C9:F7:9B:C2:23:D0:C3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 33:7d:3d:6a:36:79:3b:7f:a1:b5:89:6d:95:16:d2:3a:01:f6: 57:99:81:c0:a9:01:b4:ea:a3:a6:ac:68:c1:05:12:3f:6f:d8: b5:86:8f:7a:b1:9d:bb:4e:8a:f2:ec:fa:e7:5e:63:8c:ae:3a: 8c:4d:56:c9:b5:c7:07:0a:ca:4e:c4:17:85:30:74:86:e7:c8: f9:63:d8:d6:8e:71:15:bf:b5:b8:94:f7:45:8f:61:7f:33:bb: ba:d6:5b:68:f5:29:c4:63:94:95:b0:ba:a4:2e:d4:0b:39:8d: 37:b1:d6:d9:6d:44:dc:73:a1:4f:fc:04:cf:3c:ae:03:5a:42: b2:94:e7:a9:17:9a:10:5e:b9:7f:2a:97:23:f9:17:ba:3d:ac: 60:c4:99:67:b0:bd:29:59:7b:f3:ee:55:49:35:c9:8c:7c:e8: fb:f6:c3:41:ae:3c:5f:1c:7f:84:f4:83:2e:81:88:e2:6b:58: 9c:78:4b:6e:f8:75:f6:1c:4b:4a:a7:86:cc:4e:0d:b0:a3:9f: 61:bc:97:f8:b9:e3:9e:30:87:e3:ed:4a:7f:38:d8:5c:93:8d: 8b:7f:b0:f4:e9:15:8e:f7:43:ac:c9:31:95:16:ff:20:7b:ea: 21:0b:e3:da:7a:dc:1f:36:9d:0b:2b:ae:38:6a:88:5c:ef:f0: 7a:05:56:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHLWL6ZfW+yqnDxe4bPtKUGcZADQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDEyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTYwZDE2MTMzZTA0MDMxYThjZjE2ZWVlZDJmZDhjNTVh N2Q2ZjRhYjQ1YWUxYjdmNWZlYTRjZTY2MjYwODg0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdz9+PFOnFE1B3DspYEpsKt+LCXtdqUo/fdkRCEHSAgN71 v529co893gvnxGTXIaE3b11LDpUd9790nElagdRrGr3GzwDuG2K0MIgJyYLCWKih X1TyDG3rf+SG4qovQTxb3weEaMhl4oBZ5LrZo/IKsPFfSVnoSJXX1zIfTYmwN3z6 gzA6p3sFWLskPq18HAlWT5goTy5j2UwifJNX1alLZ010vrXiMCnkT7YDkOa7xMky hm4vmM2dzvUih2RRElQJ+JbFgPXTumxgKHobTif/YH45HEjgIwdzqIF59kZDM/An n3HgMuUHwgPCv62e1IVrMkQK+hppaLfu851g4ctLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyN12ffefPusjB1mKvsn3m8Ij0MMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjNDJkYzQ3LTBjYzktNDc0YS05NDcwLTE5NzAwZjc1NmQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBADN9PWo2eTt/obWJbZUW0joB 9leZgcCpAbTqo6asaMEFEj9v2LWGj3qxnbtOivLs+udeY4yuOoxNVsm1xwcKyk7E F4UwdIbnyPlj2NaOcRW/tbiU90WPYX8zu7rWW2j1KcRjlJWwuqQu1As5jTex1tlt RNxzoU/8BM88rgNaQrKU56kXmhBeuX8qlyP5F7o9rGDEmWewvSlZe/PuVUk1yYx8 6Pv2w0GuPF8cf4T0gy6BiOJrWJx4S274dfYcS0qnhsxODbCjn2G8l/i5454wh+Pt Sn842FyTjYt/sPTpFY73Q6zJMZUW/yB76iEL49p63B82nQsrrjhqiFzv8HoFVpw= -----END CERTIFICATE-----Generated at Sat Apr 26 13:33:55 2025 by rpki-client