$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa File: ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa (raw, json) Hash identifier: p997rlsVabrylKzN3EBoWOq4JMlHNuEPKWp4SWPDnGY= Subject key identifier: A6:71:DD:E4:48:8C:BB:6D:1E:D5:44:A8:88:3B:1F:87:1D:B1:80:E7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 139EFBBC906709B14D9232C4A2C2F816111721F1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa Signing time: Tue 20 May 2025 18:11:34 +0000 ROA not before: Tue 20 May 2025 18:11:34 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:9e:fb:bc:90:67:09:b1:4d:92:32:c4:a2:c2:f8:16:11:17:21:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:34 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=ec7692f4ee2a7d881fe8534bf155b7d12ab04114d5833a4cf5e7e2910698841e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:25:a6:f0:3d:45:a5:d1:56:87:64:23:55:a4: 32:0a:36:7c:36:35:05:0a:c3:fd:10:2c:4d:2a:ef: 90:76:d5:14:7f:e6:3c:7d:6d:c8:9f:a9:0a:a4:9e: 2e:16:3c:2f:82:c0:72:82:62:7c:6b:24:8b:14:75: 65:d1:ca:52:55:9c:b5:b7:da:c9:9d:50:b7:fa:3e: 02:4e:c7:ec:0e:ff:67:72:f8:7a:db:f0:d6:10:9e: f7:88:84:c1:60:04:72:53:da:d6:95:a3:83:3c:72: 2b:ee:2a:15:62:42:d1:53:4e:a3:1e:f8:20:48:2f: d8:d1:8f:8b:ca:8b:11:d0:6d:59:73:23:36:b1:27: 18:0c:fe:b3:3e:7a:2e:ff:11:05:8e:30:6b:4e:80: b6:b2:23:8f:43:37:66:b4:79:ea:e6:87:fb:3c:4b: 5d:f7:29:3d:bb:7e:0a:b4:94:c7:8e:dc:e7:d6:36: 79:83:84:7e:eb:60:8f:0d:9c:27:49:9f:08:f2:1f: ce:19:49:31:3b:b6:cf:5f:c3:48:89:e5:b4:60:7a: da:9c:c6:73:92:87:22:6c:d6:74:c6:e2:6e:3d:a7: 27:dd:86:c0:be:e4:f9:44:5a:60:fa:da:43:41:9d: ec:2b:ad:f8:7a:78:f6:1f:b7:88:78:9d:26:0b:52: 7e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:71:DD:E4:48:8C:BB:6D:1E:D5:44:A8:88:3B:1F:87:1D:B1:80:E7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 2d:0f:e1:d6:af:8c:5b:38:72:b7:c4:26:8d:9a:99:39:5f:2e: 17:d8:e8:e0:41:fe:8a:b2:2a:65:fe:9a:1d:2f:e9:69:23:55: c6:98:d3:f1:2a:08:b5:b1:f3:87:95:fe:96:58:27:f6:8f:79: ea:46:b0:a4:13:f2:33:d9:79:af:62:8e:c3:0c:44:24:d8:45: 54:7f:64:de:8d:f5:cb:48:24:5b:59:69:07:d3:ce:8d:71:14: 00:ab:fe:77:8f:b9:ad:91:82:4b:92:42:53:46:e4:9b:d4:fc: d3:64:46:eb:b3:5c:7b:12:ae:56:5b:34:ce:c9:ee:ce:1a:ff: 81:c2:b4:81:94:30:83:fa:86:61:fb:35:8b:95:aa:5f:9e:ee: 6e:00:9a:5d:bf:fd:59:9b:61:3a:a6:71:3a:55:c8:ce:e6:55: c3:90:52:73:f3:43:3e:fd:a1:e3:84:8e:e4:d0:57:9b:42:a6: 0f:19:75:6b:3c:eb:4a:fb:4e:ee:63:74:db:23:26:56:3a:82: 7e:4d:75:bb:2e:48:f5:59:89:a6:8d:83:b9:b3:2c:f0:e8:9f: d2:87:39:c4:55:0f:66:28:d3:37:d0:da:5f:f8:37:6a:cb:12: 79:92:f7:3f:70:a9:89:43:ab:84:3f:b1:79:1e:c0:28:b3:b2: 3f:9c:0a:a0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE577vJBnCbFNkjLEosL4FhEXIfEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTM0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzc2OTJmNGVlMmE3ZDg4MWZlODUzNGJmMTU1YjdkMTJh YjA0MTE0ZDU4MzNhNGNmNWU3ZTI5MTA2OTg4NDFlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6JabwPUWl0VaHZCNVpDIKNnw2NQUKw/0QLE0q75B21RR/ 5jx9bcifqQqkni4WPC+CwHKCYnxrJIsUdWXRylJVnLW32smdULf6PgJOx+wO/2dy +Hrb8NYQnveIhMFgBHJT2taVo4M8civuKhViQtFTTqMe+CBIL9jRj4vKixHQbVlz IzaxJxgM/rM+ei7/EQWOMGtOgLayI49DN2a0eermh/s8S133KT27fgq0lMeO3OfW NnmDhH7rYI8NnCdJnwjyH84ZSTE7ts9fw0iJ5bRgetqcxnOShyJs1nTG4m49pyfd hsC+5PlEWmD62kNBnewrrfh6ePYft4h4nSYLUn7TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpnHd5EiMu20e1USoiDsfhx2xgOcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmNDkyNDdmLWUxYmItNGUwZS05ZGYwLTZlZGI5NzQwNGY5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBAC0P4davjFs4crfEJo2amTlf LhfY6OBB/oqyKmX+mh0v6WkjVcaY0/EqCLWx84eV/pZYJ/aPeepGsKQT8jPZea9i jsMMRCTYRVR/ZN6N9ctIJFtZaQfTzo1xFACr/nePua2RgkuSQlNG5JvU/NNkRuuz XHsSrlZbNM7J7s4a/4HCtIGUMIP6hmH7NYuVql+e7m4Aml2//VmbYTqmcTpVyM7m VcOQUnPzQz79oeOEjuTQV5tCpg8ZdWs860r7Tu5jdNsjJlY6gn5NdbsuSPVZiaaN g7mzLPDon9KHOcRVD2Yo0zfQ2l/4N2rLEnmS9z9wqYlDq4Q/sXkewCizsj+cCqA= -----END CERTIFICATE-----Generated at Sat Jun 14 06:51:46 2025 by rpki-client