$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa File: 16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa (raw, json) Hash identifier: ixTd8VYMP2Rewxb5wZGQ19ND031Bs4o9584AlXaQKVA= Subject key identifier: 58:1E:6D:35:BE:B0:E6:86:FA:80:6A:27:06:FA:F4:E6:6F:87:3C:2F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5E14985393B80B15E1A3D87614BEE509C148C2A6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa Signing time: Tue 29 Apr 2025 00:30:13 +0000 ROA not before: Tue 29 Apr 2025 00:30:13 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:14:98:53:93:b8:0b:15:e1:a3:d8:76:14:be:e5:09:c1:48:c2:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:30:13 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=1f6284800dd383d0685bd709e29923a66abee99e21fba49d606ef9d82dd8e0ce, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:aa:de:42:7f:a3:11:6f:2b:24:09:2b:f6: ca:23:2f:01:02:f5:29:f1:71:e8:47:91:ae:c2:52: 7a:21:dd:88:d2:6f:2f:07:44:02:5e:46:fe:0f:d9: 62:45:75:97:71:ba:4c:7f:be:68:60:b6:ff:a7:b5: fb:20:d1:ab:08:a2:23:a3:e8:98:44:8d:b3:a0:e5: 06:69:1d:9a:5e:84:83:aa:75:2c:0b:8e:c2:34:b4: 9d:e4:50:f5:5e:b5:b8:e0:5c:e6:7f:f4:fb:af:37: 27:d7:44:14:fb:8c:7c:bf:d4:38:07:b5:fc:28:bc: 2f:12:01:17:8a:e4:61:1e:f8:94:cb:32:b9:2c:88: 3a:e1:f4:73:5d:c4:84:fd:ea:b6:0a:2e:ed:ee:74: af:a8:0a:a5:0d:67:84:b9:18:13:cd:1c:eb:b6:51: ff:06:32:19:b8:91:3b:9e:28:d4:dd:6c:b8:bc:a3: b0:bf:ab:1b:19:a6:92:c3:fb:e9:4c:e0:c1:76:ef: 68:f1:d2:0d:06:63:bd:c6:fb:64:6a:b0:bf:f9:1d: b2:de:57:a0:d2:7e:ec:ea:f6:83:07:56:72:0e:ba: 7f:08:94:88:44:88:b5:68:51:40:6d:fb:f4:bd:8c: 8d:f1:84:ce:93:be:73:c3:d9:d4:99:90:0f:ba:38: 91:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1E:6D:35:BE:B0:E6:86:FA:80:6A:27:06:FA:F4:E6:6F:87:3C:2F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 61:d7:07:46:d3:01:1b:01:78:3f:35:b8:f0:54:b3:1d:68:e4: f4:97:ff:1a:e8:a5:9b:d0:90:47:52:05:04:19:e1:95:60:e8: 5a:86:4f:9f:a3:fc:9e:ee:86:b8:1b:c2:d5:82:b2:24:24:7a: 5b:e3:f7:29:6c:8c:3c:c2:23:57:04:c8:a7:4e:61:be:20:fb: 59:a5:96:99:d2:df:bd:2f:2b:fc:22:cd:2e:ab:9f:d7:a4:ea: a1:8c:8e:89:eb:ce:28:ce:ce:42:1e:0c:7c:85:d1:3b:77:a9: 71:d7:75:ab:ca:04:51:fd:5c:0f:d5:b0:3e:7e:81:4b:80:6a: ba:3c:fe:1d:54:86:a9:bf:62:0e:c4:eb:ca:dc:0c:d9:34:77: 1f:cb:37:9a:14:ae:50:9d:27:02:91:bf:c3:0e:cc:e1:0c:d5: a7:6b:20:cb:e1:97:85:50:2c:c9:73:68:b0:7f:3b:e7:a7:ae: 95:12:54:da:27:f0:55:ec:d7:6c:f7:f6:da:59:37:70:98:c5: 7c:c8:68:7a:d6:46:9a:3c:46:e8:71:b3:24:35:58:d8:e1:fb: bc:b7:7b:3c:13:ed:78:e7:bb:92:e1:0e:9a:b0:77:ed:7c:da: 74:40:bc:3f:4e:94:67:13:47:27:24:14:0a:84:76:8b:e5:f1: 3f:9d:29:7e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXhSYU5O4CxXho9h2FL7lCcFIwqYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI5MDAzMDEzWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjYyODQ4MDBkZDM4M2QwNjg1YmQ3MDllMjk5MjNhNjZh YmVlOTllMjFmYmE0OWQ2MDZlZjlkODJkZDhlMGNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyC6reQn+jEW8rJAkr9sojLwEC9SnxcehHka7CUnoh3YjS by8HRAJeRv4P2WJFdZdxukx/vmhgtv+ntfsg0asIoiOj6JhEjbOg5QZpHZpehIOq dSwLjsI0tJ3kUPVetbjgXOZ/9PuvNyfXRBT7jHy/1DgHtfwovC8SAReK5GEe+JTL MrksiDrh9HNdxIT96rYKLu3udK+oCqUNZ4S5GBPNHOu2Uf8GMhm4kTueKNTdbLi8 o7C/qxsZppLD++lM4MF272jx0g0GY73G+2RqsL/5HbLeV6DSfuzq9oMHVnIOun8I lIhEiLVoUUBt+/S9jI3xhM6TvnPD2dSZkA+6OJE3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWB5tNb6w5ob6gGonBvr05m+HPC8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE2YjIyZWE4LTRhN2MtNDMxYS1iZDc0LThhMmNjZWFhYWY0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAGHXB0bTARsBeD81uPBUsx1o 5PSX/xropZvQkEdSBQQZ4ZVg6FqGT5+j/J7uhrgbwtWCsiQkelvj9ylsjDzCI1cE yKdOYb4g+1mllpnS370vK/wizS6rn9ek6qGMjonrzijOzkIeDHyF0Tt3qXHXdavK BFH9XA/VsD5+gUuAaro8/h1Uhqm/Yg7E68rcDNk0dx/LN5oUrlCdJwKRv8MOzOEM 1adrIMvhl4VQLMlzaLB/O+enrpUSVNon8FXs12z39tpZN3CYxXzIaHrWRpo8Ruhx syQ1WNjh+7y3ezwT7Xjnu5LhDpqwd+182nRAvD9OlGcTRyckFAqEdovl8T+dKX4= -----END CERTIFICATE-----Generated at Tue May 6 06:17:19 2025 by rpki-client