$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6912c7e5-41f4-4b82-9db8-51bac2912f50.roa File: 6912c7e5-41f4-4b82-9db8-51bac2912f50.roa (raw, json) Hash identifier: HrCW7lGz2agVDA3MTcf30S+qmYP1pQJfwUBsi4UYRMg= Subject key identifier: C5:90:0A:66:CB:9A:77:39:B3:F9:4B:F4:8C:35:90:DC:38:2C:75:D4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3899594CFC7362E37DAD692B14CF97B389582F21 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6912c7e5-41f4-4b82-9db8-51bac2912f50.roa Signing time: Tue 29 Apr 2025 00:30:15 +0000 ROA not before: Tue 29 Apr 2025 00:30:15 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:99:59:4c:fc:73:62:e3:7d:ad:69:2b:14:cf:97:b3:89:58:2f:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:30:15 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=bd79217b7f14f4461f45e493d875d1d58b0e64f4d36847183f729f8d25c94e9a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:25:34:7b:17:2e:c4:ff:7e:4c:ff:e5:60:3d: 48:87:52:0d:9e:30:5e:a7:66:66:94:16:df:c3:9d: dc:58:e1:14:5f:da:ea:b1:fc:f7:6f:be:9a:16:4e: 42:e8:b0:74:52:1b:49:29:c9:97:9c:52:a8:43:e1: fc:cd:ba:b1:36:0d:94:8c:6a:80:be:30:0e:6e:5d: fd:a1:e2:df:47:43:72:a7:38:19:c8:75:7c:5f:33: 29:a0:2e:3e:77:0d:c3:f3:dc:a8:75:2d:04:2a:52: 53:16:b0:74:7f:29:e6:57:49:ca:ee:2e:fd:16:a9: 76:f9:af:99:c5:0b:ec:c8:67:fe:be:9c:59:8a:a8: 8f:a8:f6:da:61:9a:5d:0a:84:82:0e:1b:10:f5:95: d7:a6:15:f0:58:29:0a:30:73:d2:76:b1:12:eb:1a: 9d:d9:74:72:0b:04:03:79:a5:d7:ce:2d:f4:54:2d: 58:65:6b:6a:53:07:ab:93:dc:5d:58:53:03:97:e6: 2b:3d:3b:6b:47:20:87:29:d4:4d:b0:ca:f5:aa:fd: 0f:2e:54:64:30:e8:d0:0d:69:b8:1e:ba:11:eb:e6: f8:50:b4:15:e2:95:25:53:6f:4d:47:17:1d:6c:f7: 4a:bd:36:c9:7e:af:37:1d:f4:42:07:d7:44:72:13: ec:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:90:0A:66:CB:9A:77:39:B3:F9:4B:F4:8C:35:90:DC:38:2C:75:D4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6912c7e5-41f4-4b82-9db8-51bac2912f50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/44 Signature Algorithm: sha256WithRSAEncryption 3c:4b:ed:9c:21:d1:30:58:3a:ea:b1:bc:88:39:ca:1b:41:5f: 1d:0f:ea:d9:17:7d:32:63:00:7e:ab:a9:4c:a7:39:13:e1:93: 02:e1:87:96:bb:6b:97:cc:8f:37:b0:6d:cd:a2:58:ea:88:2c: 2b:5f:a3:47:02:28:3e:01:ca:57:55:18:a4:b7:23:76:a6:a3: 4e:a0:2a:72:2a:3e:99:14:ab:cc:6f:82:12:c3:9a:ff:c1:0d: 98:21:13:a3:11:7c:9f:00:78:af:eb:97:13:f5:8e:57:70:52: c6:30:2e:bf:40:d4:c7:83:a1:d4:78:0a:3e:2f:72:8d:11:2d: a3:9a:7f:ad:2d:06:fd:c0:87:ec:9b:9b:75:aa:e0:d1:62:fe: e0:14:04:cd:50:04:63:c2:8e:bf:c0:2c:75:bd:04:fa:b5:0d: 35:24:f8:35:74:5c:d8:0a:b4:0f:1b:53:13:4a:d3:ba:38:5a: 64:16:15:d4:66:01:68:5c:24:a1:28:3c:9b:86:13:f3:0d:64: 91:96:8d:23:9c:e8:b2:2e:38:49:f6:6f:58:17:ac:51:c9:93: d2:17:9a:7f:bb:fd:25:51:09:60:fd:8d:4d:74:78:fa:c4:da: 77:9f:5f:24:77:8c:78:8f:ad:9b:40:b9:77:bb:b6:71:60:04: 26:98:6d:89 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOJlZTPxzYuN9rWkrFM+Xs4lYLyEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI5MDAzMDE1WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDc5MjE3YjdmMTRmNDQ2MWY0NWU0OTNkODc1ZDFkNThi MGU2NGY0ZDM2ODQ3MTgzZjcyOWY4ZDI1Yzk0ZTlhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtJTR7Fy7E/35M/+VgPUiHUg2eMF6nZmaUFt/DndxY4RRf 2uqx/PdvvpoWTkLosHRSG0kpyZecUqhD4fzNurE2DZSMaoC+MA5uXf2h4t9HQ3Kn OBnIdXxfMymgLj53DcPz3Kh1LQQqUlMWsHR/KeZXScruLv0WqXb5r5nFC+zIZ/6+ nFmKqI+o9tphml0KhIIOGxD1ldemFfBYKQowc9J2sRLrGp3ZdHILBAN5pdfOLfRU LVhla2pTB6uT3F1YUwOX5is9O2tHIIcp1E2wyvWq/Q8uVGQw6NANabgeuhHr5vhQ tBXilSVTb01HFx1s90q9Nsl+rzcd9EIH10RyE+w3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxZAKZsuadzmz+Uv0jDWQ3DgsddQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY5MTJjN2U1LTQxZjQtNGI4Mi05ZGI4LTUxYmFjMjkxMmY1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBADxL7Zwh0TBYOuqxvIg5yhtB Xx0P6tkXfTJjAH6rqUynORPhkwLhh5a7a5fMjzewbc2iWOqILCtfo0cCKD4ByldV GKS3I3amo06gKnIqPpkUq8xvghLDmv/BDZghE6MRfJ8AeK/rlxP1jldwUsYwLr9A 1MeDodR4Cj4vco0RLaOaf60tBv3Ah+ybm3Wq4NFi/uAUBM1QBGPCjr/ALHW9BPq1 DTUk+DV0XNgKtA8bUxNK07o4WmQWFdRmAWhcJKEoPJuGE/MNZJGWjSOc6LIuOEn2 b1gXrFHJk9IXmn+7/SVRCWD9jU10ePrE2nefXyR3jHiPrZtAuXe7tnFgBCaYbYk= -----END CERTIFICATE-----Generated at Mon May 5 11:21:07 2025 by rpki-client