$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa File: c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa (raw, json) Hash identifier: kFhAWyxDUagcmwafDuBLg+geQ8IGDv/9USeAX8CS40g= Subject key identifier: 73:82:F5:6D:85:4F:A7:E0:7F:60:CE:A7:99:70:97:4C:A7:FB:34:9F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5CE40DC5A2DC3E6E3DF055E255D03A2A1B106719 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa Signing time: Tue 29 Apr 2025 00:30:05 +0000 ROA not before: Tue 29 Apr 2025 00:30:05 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e4:0d:c5:a2:dc:3e:6e:3d:f0:55:e2:55:d0:3a:2a:1b:10:67:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:30:05 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=f2cb09fdcd48e06604bf4ea53d406143c357a4cac8bbf9bc7d27e17229957261, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e0:54:0d:8c:21:2b:44:38:a8:45:54:44:76: 07:80:96:db:2c:51:67:b6:88:97:f5:26:f7:44:38: df:bf:37:d8:b2:d0:b7:22:44:31:17:06:f7:7c:68: 6d:7d:ae:27:89:82:84:2a:9e:d4:34:37:c7:d4:5f: ce:f8:48:35:ff:d6:b9:ae:ce:ee:08:b1:5f:33:d8: db:58:16:e6:ef:a1:18:5a:ed:8f:14:03:bb:30:ec: 98:06:46:1a:ce:00:b4:f8:32:25:db:94:4a:a9:e1: ed:7c:01:4c:d9:3a:da:07:2a:1a:71:c9:82:f4:d2: 4e:de:16:34:a5:40:c0:18:00:cb:5d:cc:63:42:0a: a9:c2:a5:d3:31:f9:02:a6:30:6d:8d:ba:85:37:15: 98:ef:d7:a7:20:31:4d:93:bc:84:bc:77:16:65:a3: d2:73:e1:d7:fe:fc:7a:50:4e:ed:9a:02:04:2a:39: 37:4f:b0:95:09:1f:3a:9d:a1:2a:53:c2:41:85:8f: 02:65:5a:d1:b4:4a:90:2b:ac:eb:2c:91:61:ed:6f: e1:59:5c:c6:85:1f:7e:ed:6c:eb:f0:1d:62:56:8b: 9a:63:c2:f6:27:6e:6e:4b:af:c9:ee:07:90:f3:78: 78:59:6c:fc:26:a6:7c:c0:32:98:90:ae:e2:74:b9: df:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:82:F5:6D:85:4F:A7:E0:7F:60:CE:A7:99:70:97:4C:A7:FB:34:9F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8801::/48 Signature Algorithm: sha256WithRSAEncryption 30:d8:a1:6f:7c:b6:2f:21:cc:25:6c:0b:9d:90:a2:99:7a:9a: c4:b4:ee:21:c1:08:dd:83:bd:5f:91:6c:5a:65:9c:18:c2:ec: 4b:0f:86:26:42:9c:93:b0:14:8a:73:4a:71:49:2a:14:6b:f0: 6c:57:67:bd:9a:77:69:f8:4a:b7:71:57:66:38:99:78:f1:21: d2:95:c2:de:5c:17:a2:e8:a9:07:40:6e:81:a4:64:58:94:66: 87:1b:d7:ed:fb:b7:72:5d:6d:f6:1f:a0:18:43:35:86:2f:77: 91:73:91:8b:3d:c6:c1:ca:bc:fb:e5:a0:82:00:6b:5b:b3:d7: 86:15:bd:46:e2:01:5b:f0:00:ef:06:8f:c3:8b:07:d0:2b:91: d5:f5:72:9b:38:b6:a7:dd:e5:87:ec:97:ca:36:af:9a:78:a8: 92:58:b4:b1:ce:91:0f:18:44:1b:0a:4f:9f:11:2c:2d:99:4c: 65:e5:65:c2:44:0a:d7:a8:c9:53:b3:ad:9e:d6:66:79:a9:c7: 68:2d:f7:cd:a5:55:ed:75:a2:d9:64:ac:59:42:4d:2f:e2:52: 5a:4d:d7:e9:cf:4f:2b:90:82:fc:c4:92:bf:3d:e0:da:e2:ae: 45:84:49:e0:fc:e1:d0:34:02:5b:9c:c4:13:e8:83:b2:64:ef: 1c:d7:78:43 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXOQNxaLcPm498FXiVdA6KhsQZxkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI5MDAzMDA1WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmNiMDlmZGNkNDhlMDY2MDRiZjRlYTUzZDQwNjE0M2Mz NTdhNGNhYzhiYmY5YmM3ZDI3ZTE3MjI5OTU3MjYxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC44FQNjCErRDioRVREdgeAltssUWe2iJf1JvdEON+/N9iy 0LciRDEXBvd8aG19rieJgoQqntQ0N8fUX874SDX/1rmuzu4IsV8z2NtYFubvoRha 7Y8UA7sw7JgGRhrOALT4MiXblEqp4e18AUzZOtoHKhpxyYL00k7eFjSlQMAYAMtd zGNCCqnCpdMx+QKmMG2NuoU3FZjv16cgMU2TvIS8dxZlo9Jz4df+/HpQTu2aAgQq OTdPsJUJHzqdoSpTwkGFjwJlWtG0SpArrOsskWHtb+FZXMaFH37tbOvwHWJWi5pj wvYnbm5Lr8nuB5DzeHhZbPwmpnzAMpiQruJ0ud+PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUc4L1bYVPp+B/YM6nmXCXTKf7NJ8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M0OTc0OWM1LTQyNjMtNDQzZi1hNWQxLWYwZmMxYTI3ZWRjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAEwDQYJKoZIhvcNAQELBQADggEBADDYoW98ti8hzCVsC52Qopl6 msS07iHBCN2DvV+RbFplnBjC7EsPhiZCnJOwFIpzSnFJKhRr8GxXZ72ad2n4Srdx V2Y4mXjxIdKVwt5cF6LoqQdAboGkZFiUZocb1+37t3JdbfYfoBhDNYYvd5FzkYs9 xsHKvPvloIIAa1uz14YVvUbiAVvwAO8Gj8OLB9ArkdX1cps4tqfd5Yfsl8o2r5p4 qJJYtLHOkQ8YRBsKT58RLC2ZTGXlZcJECteoyVOzrZ7WZnmpx2gt982lVe11otlk rFlCTS/iUlpN1+nPTyuQgvzEkr894NrirkWESeD84dA0AlucxBPog7Jk7xzXeEM= -----END CERTIFICATE-----Generated at Mon May 5 05:28:39 2025 by rpki-client