$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa File: 14518d87-9a80-47da-80c6-efeb62f0643b.roa (raw, json) Hash identifier: D5skOySY8ZsYtHIXdYxnRLYdq1tWqtcYQJAcas+RvQA= Subject key identifier: 2D:5E:42:89:F5:9E:20:3F:5B:1E:6C:18:2D:71:0D:D9:C0:49:B0:46 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 481446A4AAAF8ACFB3B04B22ACD114E70E9D9505 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa Signing time: Mon 31 Mar 2025 18:40:42 +0000 ROA not before: Mon 31 Mar 2025 18:40:42 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:14:46:a4:aa:af:8a:cf:b3:b0:4b:22:ac:d1:14:e7:0e:9d:95:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:40:42 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0c:85:18:57:52:6e:e3:be:a7:77:db:2c:17: 28:ec:88:22:1a:2f:3e:d5:4d:cb:8d:c0:0e:57:69: 7e:a1:ad:43:be:d0:59:36:55:be:d1:7d:c9:ef:cf: 73:48:0c:30:9c:7b:22:17:f1:e1:d8:17:5e:09:0a: ad:f4:20:cd:26:90:2c:c3:12:1f:e6:60:63:3f:0e: 28:1a:13:86:16:05:96:43:01:49:1c:1d:c7:f3:a7: c5:17:ad:65:33:13:de:00:9f:63:e3:79:38:48:1f: c5:25:20:3c:31:e8:f0:6f:e1:a7:2e:6e:4a:7d:6b: ad:89:24:ff:68:88:4e:7a:e2:a2:32:aa:4a:11:25: d3:08:d1:e8:ed:4b:2e:c3:db:0f:a7:06:c3:9a:7f: 53:af:1b:60:ba:10:e4:86:dc:20:aa:98:e4:a3:90: 52:ba:52:49:b9:4a:76:7e:2f:0a:28:a3:37:a0:95: 4d:68:de:70:a5:d8:44:c3:96:54:d4:67:7b:c8:22: c4:2e:d1:7c:43:92:f9:02:e3:ee:45:56:49:33:22: af:04:4e:3e:bc:23:bf:de:5f:f5:e1:87:06:0c:2e: 35:d0:da:33:d7:72:24:09:f8:27:ed:47:73:03:d4: ef:5f:6f:09:3f:c2:07:2c:1e:1f:d3:ee:43:b7:fd: 9e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:5E:42:89:F5:9E:20:3F:5B:1E:6C:18:2D:71:0D:D9:C0:49:B0:46 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:3::/48 Signature Algorithm: sha256WithRSAEncryption 9a:56:92:33:cf:af:cd:c7:8b:4f:32:ea:e8:32:1a:8e:35:7e: b7:22:51:f9:7c:46:cf:0d:3b:c7:6e:60:6e:25:5c:28:1c:d2: 0f:29:5d:14:ad:a7:43:54:02:f0:a8:23:fb:63:0e:3a:b5:24: f9:a1:2f:c3:cb:57:f7:bb:3b:19:36:ae:1a:18:c6:42:96:1d: 7f:36:74:1c:a1:4c:53:77:4c:6f:dc:e9:9d:e2:47:d1:85:6d: 13:91:d9:10:97:1a:65:3f:95:a5:95:2b:bd:4a:18:8b:f1:f1: 2e:0f:51:f1:d8:79:3a:5f:da:c7:e8:7c:e9:e9:dc:44:7d:de: d2:da:08:0b:eb:93:fc:ad:7e:41:94:65:e4:98:99:2b:f7:4a: 17:b3:49:b8:10:01:66:81:cb:0e:3d:71:78:8d:c0:09:82:88: bb:0d:0c:42:18:c0:da:ea:62:2d:fa:d3:2c:72:0a:ee:90:eb: 1c:a4:24:ef:8b:2f:e4:e8:7b:56:08:95:bf:c8:47:69:4f:38: 9f:2e:fb:fb:b6:c6:cf:91:ba:99:0d:6f:12:5d:5e:cd:52:9e: 8e:07:2a:15:2f:92:40:bc:1d:e6:27:e7:25:14:d5:fd:f9:48: b6:05:ad:45:df:d1:7a:33:2c:f4:4e:74:bf:9f:60:32:7d:e8: b5:bd:7b:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSBRGpKqvis+zsEsirNEU5w6dlQUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg0MDQyWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTczNzkwOWQ2NTdlZTBmZWRlNGIzYzk3ZDExMzEzYzg4 M2ZjNzVhZjY1OTcyMTk4ZGY0YTBlNTc4NDRmM2ZjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+DIUYV1Ju476nd9ssFyjsiCIaLz7VTcuNwA5XaX6hrUO+ 0Fk2Vb7Rfcnvz3NIDDCceyIX8eHYF14JCq30IM0mkCzDEh/mYGM/DigaE4YWBZZD AUkcHcfzp8UXrWUzE94An2PjeThIH8UlIDwx6PBv4acubkp9a62JJP9oiE564qIy qkoRJdMI0ejtSy7D2w+nBsOaf1OvG2C6EOSG3CCqmOSjkFK6Ukm5SnZ+Lwooozeg lU1o3nCl2ETDllTUZ3vIIsQu0XxDkvkC4+5FVkkzIq8ETj68I7/eX/XhhwYMLjXQ 2jPXciQJ+CftR3MD1O9fbwk/wgcsHh/T7kO3/Z6DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULV5CifWeID9bHmwYLXEN2cBJsEYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE0NTE4ZDg3LTlhODAtNDdkYS04MGM2LWVmZWI2MmYwNjQzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAMwDQYJKoZIhvcNAQELBQADggEBAJpWkjPPr83Hi08y6ugyGo41 frciUfl8Rs8NO8duYG4lXCgc0g8pXRStp0NUAvCoI/tjDjq1JPmhL8PLV/e7Oxk2 rhoYxkKWHX82dByhTFN3TG/c6Z3iR9GFbROR2RCXGmU/laWVK71KGIvx8S4PUfHY eTpf2sfofOnp3ER93tLaCAvrk/ytfkGUZeSYmSv3ShezSbgQAWaByw49cXiNwAmC iLsNDEIYwNrqYi360yxyCu6Q6xykJO+LL+Toe1YIlb/IR2lPOJ8u+/u2xs+RupkN bxJdXs1Sno4HKhUvkkC8HeYn5yUU1f35SLYFrUXf0XozLPROdL+fYDJ96LW9e7M= -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:45 2025 by rpki-client