$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa File: 0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa (raw, json) Hash identifier: jB3i9y4C5kJGWwzxIKEWU6so7loOUZlPqJeJ2HtlXPk= Subject key identifier: E2:D4:84:2F:C5:F8:F5:A0:AD:8E:A1:94:0E:15:CB:F7:5C:C4:5D:B0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 304445F0A32FE1FE7EFB69FE22A9DF1258B7F585 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa Signing time: Mon 31 Mar 2025 18:40:17 +0000 ROA not before: Mon 31 Mar 2025 18:40:17 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:44:45:f0:a3:2f:e1:fe:7e:fb:69:fe:22:a9:df:12:58:b7:f5:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:40:17 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ee:b3:2d:0b:ad:07:4e:27:d5:d7:3c:f8:86: bc:f9:b3:b6:c4:71:b4:0d:c8:94:60:ba:7a:f1:76: d1:b4:89:d4:fc:7f:70:74:79:e8:6b:b7:48:19:36: fa:c5:54:19:2f:0a:2e:1e:78:09:26:b1:53:9f:fb: b6:0e:80:67:80:c8:fc:71:cb:6e:9d:4e:e5:31:6c: 58:4c:be:86:c1:9a:be:f0:07:30:a5:96:56:90:de: f8:2c:6f:e8:6e:14:27:e2:af:df:b8:8c:55:a5:99: 26:d0:61:27:3e:07:2c:13:a4:12:49:4a:b2:ec:2f: 09:78:22:21:2a:6c:cd:8a:02:1e:f3:92:28:fa:1b: cd:41:9d:63:06:4f:1d:63:b4:89:a5:a1:b3:de:cf: e0:33:84:e7:d3:7a:56:14:38:2e:8b:8d:d3:b6:55: 21:ff:a0:08:9e:3a:33:42:61:91:00:06:f8:14:21: 0e:47:6c:31:db:16:8d:7a:13:8e:42:c0:5e:dd:d4: bc:77:a2:2c:df:e4:b4:4e:f8:9d:64:1b:dc:76:ea: af:24:86:0f:dc:5f:c4:5e:3e:f5:4e:77:9c:29:bc: bb:e4:09:3c:f4:30:80:5e:ab:ed:d6:cd:d0:b2:ae: 4d:7a:ba:c0:04:a7:52:f1:a5:a0:b2:b0:5a:e6:03: 6b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D4:84:2F:C5:F8:F5:A0:AD:8E:A1:94:0E:15:CB:F7:5C:C4:5D:B0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:20::/48 Signature Algorithm: sha256WithRSAEncryption 75:40:23:f3:bd:02:cc:28:51:25:d6:31:e8:af:88:c7:b6:7d: fc:13:98:eb:44:61:7f:17:70:0b:26:92:d3:8c:55:52:26:d7: 0b:29:ec:9a:e4:64:01:2d:21:46:7f:ac:73:93:d0:fe:19:01: 5e:b7:7b:70:00:d5:ed:7d:dd:fe:c7:ba:be:6f:9b:7f:18:21: 72:34:e9:ac:36:ba:61:60:57:88:2c:a0:ae:f3:c5:7a:d4:ed: c7:f8:03:d0:78:0e:6d:95:35:f2:da:af:e9:7d:a0:75:94:d7: 93:bf:85:15:36:4c:24:93:be:f4:47:da:44:fb:31:fb:d4:d4: da:3b:31:7b:59:af:53:d8:a6:d6:c5:f8:a1:2c:aa:50:fc:e4: b7:44:b8:51:61:3a:6f:b4:57:fd:25:39:5c:d8:f8:11:e0:85: b0:b3:ec:e6:9a:38:71:45:a2:0c:25:27:a1:fd:a0:eb:64:ee: a1:73:28:1d:e3:62:69:4b:57:55:5d:13:b0:33:82:39:1f:dd: 87:5b:c6:f9:e9:4d:f2:27:c9:f9:b4:f8:a6:4a:01:9f:1e:02: 8d:7f:31:b6:ff:5a:16:05:0b:74:46:9d:dd:c7:ef:eb:6f:6b: 8d:92:94:94:fb:72:93:2d:5e:21:cf:09:5e:33:c0:ee:3c:39: 1e:80:bb:62 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMERF8KMv4f5++2n+IqnfEli39YUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg0MDE3WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGUwMTRmNmJjNDQ5YjMzMjFiYWU5MTM2NDAwNjBiMjcx NTU1OGI2YWIwYjVkYmExYzA3ODdlNTZlYTQwZDIyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS7rMtC60HTifV1zz4hrz5s7bEcbQNyJRgunrxdtG0idT8 f3B0eehrt0gZNvrFVBkvCi4eeAkmsVOf+7YOgGeAyPxxy26dTuUxbFhMvobBmr7w BzClllaQ3vgsb+huFCfir9+4jFWlmSbQYSc+BywTpBJJSrLsLwl4IiEqbM2KAh7z kij6G81BnWMGTx1jtImlobPez+AzhOfTelYUOC6LjdO2VSH/oAieOjNCYZEABvgU IQ5HbDHbFo16E45CwF7d1Lx3oizf5LRO+J1kG9x26q8khg/cX8RePvVOd5wpvLvk CTz0MIBeq+3WzdCyrk16usAEp1LxpaCysFrmA2uJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4tSEL8X49aCtjqGUDhXL91zEXbAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiODljNGZlLTY3MzAtNGY2MC1iYzRjLWVhMTZiMTljMmMzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwACAwDQYJKoZIhvcNAQELBQADggEBAHVAI/O9AswoUSXWMeiviMe2 ffwTmOtEYX8XcAsmktOMVVIm1wsp7JrkZAEtIUZ/rHOT0P4ZAV63e3AA1e193f7H ur5vm38YIXI06aw2umFgV4gsoK7zxXrU7cf4A9B4Dm2VNfLar+l9oHWU15O/hRU2 TCSTvvRH2kT7MfvU1No7MXtZr1PYptbF+KEsqlD85LdEuFFhOm+0V/0lOVzY+BHg hbCz7OaaOHFFogwlJ6H9oOtk7qFzKB3jYmlLV1VdE7Azgjkf3YdbxvnpTfInyfm0 +KZKAZ8eAo1/Mbb/WhYFC3RGnd3H7+tva42SlJT7cpMtXiHPCV4zwO48OR6Au2I= -----END CERTIFICATE-----Generated at Sat Apr 5 10:53:17 2025 by rpki-client