$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa File: d040f02c-c962-433b-9282-37c1d283eaeb.roa (raw, json) Hash identifier: 9203GNq7iKV0Xtye4V+IWwTx9SVPBO6Zn4mGt1z8Szc= Subject key identifier: D2:80:C2:53:F1:80:44:73:1C:4E:E9:44:FB:6F:8C:BE:81:BB:B6:1C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1FBCE376723E913D9FF65BDB98706173D323044A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa Signing time: Mon 16 Jun 2025 19:31:11 +0000 ROA not before: Mon 16 Jun 2025 19:31:11 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:bc:e3:76:72:3e:91:3d:9f:f6:5b:db:98:70:61:73:d3:23:04:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:31:11 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=326079c089be5f787e3edd084b2941a7c15e348aa6e1c00d306046f0fcedf4f9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:30:27:6f:73:2d:20:11:47:db:9f:84:bd: 53:dc:cf:18:1b:ff:1e:d4:70:f3:bf:9e:3d:4d:0e: b1:7c:68:9a:28:bd:45:b2:fb:48:78:c4:b8:33:f9: 7a:72:dc:da:7b:c7:72:f4:71:4d:e1:81:88:40:1b: 2d:e6:0e:fb:86:5a:99:ef:c4:de:72:a0:55:99:79: 9e:61:22:43:9d:d3:50:80:23:ad:13:4b:ce:e2:84: 73:c8:b1:78:bc:b7:f8:a9:62:45:94:2b:db:d3:21: 17:b5:6b:90:56:ed:64:c9:72:66:28:2f:5b:d8:7a: da:1b:6a:46:b6:16:56:3e:af:89:96:32:5e:c6:3d: 02:0c:15:15:ea:b2:83:3b:aa:3c:c9:6f:5b:c4:20: 54:45:4e:1d:f1:08:54:12:26:94:25:97:4e:9a:f6: 2c:11:14:e0:bf:fb:02:61:c2:6c:c6:43:f4:5f:e4: f2:da:e5:ae:10:3b:44:b2:9c:d0:13:b8:bf:11:1a: fe:fd:71:85:27:24:b7:93:4d:9b:4b:29:07:b3:b8: 75:63:da:f6:4a:c4:02:db:d2:45:e8:6a:e2:af:e4: 5b:d6:cb:26:63:06:42:bf:61:4a:55:d6:36:f2:d5: b8:13:89:35:b3:8e:6f:31:bf:3c:9e:da:61:47:a9: f4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:80:C2:53:F1:80:44:73:1C:4E:E9:44:FB:6F:8C:BE:81:BB:B6:1C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 18:34:c6:05:26:ea:6f:4a:f9:db:df:3d:b2:ee:0f:5f:38:28: b5:cd:6c:68:00:a0:9f:61:a6:bb:2b:ac:a3:fc:e9:5c:10:1f: b6:b2:a0:9e:8f:46:0a:e2:f1:7b:79:24:83:43:96:bb:3e:0e: 45:3c:76:46:7a:4e:71:be:ba:45:f9:9e:2e:17:5b:9c:80:28: 44:07:76:05:77:28:83:d6:f7:6f:ad:d4:65:f4:96:66:48:5e: 93:4a:05:a3:78:fd:4d:6a:ef:08:3b:01:0c:13:0b:08:42:bd: ec:9c:df:88:09:4d:f8:e6:6e:de:e3:2f:7e:7d:96:9a:8a:9a: 24:2b:32:86:60:bb:d1:0f:75:5e:38:52:69:71:f3:9b:29:22: 5c:29:22:ae:33:6a:a0:35:65:45:42:23:d2:2e:68:df:33:c6: cb:1e:53:de:53:53:83:45:3e:7e:e8:1d:05:e3:d5:ca:44:19: bd:6c:ec:47:33:75:b1:9d:97:c8:3a:b4:c0:15:fb:bc:21:5f: c0:97:ff:3c:2d:57:6c:b1:b1:1d:74:f0:20:a7:a9:19:51:aa: 4e:dd:10:36:b7:92:df:8c:16:af:88:cf:5a:e3:89:73:0a:24: 70:3e:02:30:90:e1:f2:1c:6f:63:fa:64:f8:00:a2:e1:5b:62: 3b:40:16:48 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUH7zjdnI+kT2f9lvbmHBhc9MjBEowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMTExWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjYwNzljMDg5YmU1Zjc4N2UzZWRkMDg0YjI5NDFhN2Mx NWUzNDhhYTZlMWMwMGQzMDYwNDZmMGZjZWRmNGY5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGODAnb3MtIBFH25+EvVPczxgb/x7UcPO/nj1NDrF8aJoo vUWy+0h4xLgz+Xpy3Np7x3L0cU3hgYhAGy3mDvuGWpnvxN5yoFWZeZ5hIkOd01CA I60TS87ihHPIsXi8t/ipYkWUK9vTIRe1a5BW7WTJcmYoL1vYetobaka2FlY+r4mW Ml7GPQIMFRXqsoM7qjzJb1vEIFRFTh3xCFQSJpQll06a9iwRFOC/+wJhwmzGQ/Rf 5PLa5a4QO0SynNATuL8RGv79cYUnJLeTTZtLKQezuHVj2vZKxALb0kXoauKv5FvW yyZjBkK/YUpV1jby1bgTiTWzjm8xvzye2mFHqfQbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0oDCU/GARHMcTulE+2+MvoG7thwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QwNDBmMDJjLWM5NjItNDMzYi05MjgyLTM3YzFkMjgzZWFlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76zANBgkqhkiG9w0BAQsFAAOCAQEAGDTGBSbqb0r52989su4PXzgo tc1saACgn2Gmuyuso/zpXBAftrKgno9GCuLxe3kkg0OWuz4ORTx2RnpOcb66Rfme LhdbnIAoRAd2BXcog9b3b63UZfSWZkhek0oFo3j9TWrvCDsBDBMLCEK97JzfiAlN +OZu3uMvfn2WmoqaJCsyhmC70Q91XjhSaXHzmykiXCkirjNqoDVlRUIj0i5o3zPG yx5T3lNTg0U+fugdBePVykQZvWzsRzN1sZ2XyDq0wBX7vCFfwJf/PC1XbLGxHXTw IKepGVGqTt0QNreS34wWr4jPWuOJcwokcD4CMJDh8hxvY/pk+ACi4VtiO0AWSA== -----END CERTIFICATE-----Generated at Sun Jun 29 08:57:13 2025 by rpki-client