$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa File: 4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa (raw, json) Hash identifier: 4cN9/wX4n5snVy0bCUnBOVADZQsO/sOFWvhVUd0xVUU= Subject key identifier: A0:8D:3D:C1:E8:76:F9:2A:20:76:38:CC:20:E9:F9:1A:5A:9C:D8:7D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 26150F662ABFB139FFA2CE1EC415CF413BF29C8A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa Signing time: Mon 31 Mar 2025 18:41:11 +0000 ROA not before: Mon 31 Mar 2025 18:41:11 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5520::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:15:0f:66:2a:bf:b1:39:ff:a2:ce:1e:c4:15:cf:41:3b:f2:9c:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:41:11 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e8:22:a9:d2:dd:03:62:49:bd:ed:40:5e:25: cb:f3:f5:88:f4:6e:38:76:34:83:1c:91:ad:5c:ce: d9:d5:b6:3c:8a:e3:92:dd:b3:d3:c8:4c:64:42:94: 22:f8:d5:b7:c4:e6:75:8d:a6:58:58:12:30:c0:7f: 59:d6:84:ee:13:b5:76:68:8b:49:34:18:c6:54:63: d0:3b:9c:cf:3d:0f:6f:03:23:f7:c4:58:3f:67:42: 65:6d:d7:80:68:55:84:50:e9:c0:29:ac:12:15:4a: 7e:b6:f1:05:04:f3:b3:36:d4:d9:b7:0a:c8:2a:20: 29:76:b9:8c:fd:5f:78:01:0c:a3:86:86:0d:f1:0f: ae:b5:ff:f1:4c:02:8b:a8:99:b5:bf:07:17:6d:56: 7a:23:41:26:87:3e:9b:3f:13:f6:21:9c:f4:53:03: 70:c4:5a:e2:fc:29:e1:c3:ce:bc:ac:1b:27:84:00: d0:1f:d2:69:5d:45:36:c7:4b:c4:be:87:34:11:61: 78:fd:e8:dc:69:9c:a5:02:8f:fb:20:bf:81:fa:8d: 60:38:e9:f9:9e:a2:5b:e8:32:08:e5:d9:f8:de:f1: 35:f0:a6:2b:fb:10:3b:ce:f2:40:6c:f2:5e:4f:51: 03:c4:1e:ea:ee:7e:60:1d:3b:1a:43:e8:f9:88:72: 55:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:8D:3D:C1:E8:76:F9:2A:20:76:38:CC:20:E9:F9:1A:5A:9C:D8:7D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5520::/44 Signature Algorithm: sha256WithRSAEncryption 5b:3c:0a:da:55:25:de:82:62:1e:5f:28:22:26:98:6a:2c:f6: 28:f4:ae:99:21:29:d2:84:a8:dc:2c:7b:32:f0:a7:b8:19:23: 97:0d:fe:c8:03:63:c1:07:04:ab:35:ae:7a:9a:6c:2c:ad:e5: 25:2a:47:07:e8:80:81:07:51:82:e5:35:86:fa:09:75:54:1d: 81:4c:03:7a:f2:da:e6:f6:67:6b:07:b6:b9:54:4a:9f:8d:74: 75:04:95:a1:66:e5:99:05:ea:b8:6d:be:b0:3d:9a:c7:e9:7a: c3:94:4a:02:14:f7:45:fc:3c:03:ab:b8:da:58:11:dd:bb:e1: 2e:2c:60:2a:2e:bc:77:c1:d3:67:95:6b:75:41:28:8b:e1:0d: ba:92:eb:b5:52:fc:95:cf:cb:f2:a1:40:09:40:8d:9c:34:76: 6d:0f:96:10:3d:6c:15:70:96:1e:32:93:06:dd:55:b5:56:90: 69:53:13:dd:42:85:a9:48:d8:ce:5f:a0:a4:de:8f:51:e2:76: cb:6b:4a:16:91:55:60:2e:a1:5c:f7:7c:6d:dc:df:3c:c8:9c: 40:3e:2b:19:50:f9:ab:f7:f1:a8:50:95:16:88:79:ea:77:e6: d4:d4:84:1b:1c:b5:51:89:97:b9:44:c4:95:c9:68:7e:d1:39: a2:e4:35:d5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJhUPZiq/sTn/os4exBXPQTvynIowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg0MTExWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTY5OWNmYTQzNTQwN2MzZTRiOGFiNDYyNGFlZmQxNzVj ODI1ZmJmNDA5MGZhYjRmYWExOTJhNDk0MWM1ZmMwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDk6CKp0t0DYkm97UBeJcvz9Yj0bjh2NIMcka1cztnVtjyK 45Lds9PITGRClCL41bfE5nWNplhYEjDAf1nWhO4TtXZoi0k0GMZUY9A7nM89D28D I/fEWD9nQmVt14BoVYRQ6cAprBIVSn628QUE87M21Nm3CsgqICl2uYz9X3gBDKOG hg3xD661//FMAouombW/BxdtVnojQSaHPps/E/YhnPRTA3DEWuL8KeHDzrysGyeE ANAf0mldRTbHS8S+hzQRYXj96NxpnKUCj/sgv4H6jWA46fmeolvoMgjl2fje8TXw piv7EDvO8kBs8l5PUQPEHurufmAdOxpD6PmIclXXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoI09weh2+SogdjjMIOn5Glqc2H0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRjZGI0M2RkLTFiNDktNGYyMi05M2U4LWIyMTUzYzJjYWM4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVSAwDQYJKoZIhvcNAQELBQADggEBAFs8CtpVJd6CYh5fKCImmGos 9ij0rpkhKdKEqNwsezLwp7gZI5cN/sgDY8EHBKs1rnqabCyt5SUqRwfogIEHUYLl NYb6CXVUHYFMA3ry2ub2Z2sHtrlUSp+NdHUElaFm5ZkF6rhtvrA9msfpesOUSgIU 90X8PAOruNpYEd274S4sYCouvHfB02eVa3VBKIvhDbqS67VS/JXPy/KhQAlAjZw0 dm0PlhA9bBVwlh4ykwbdVbVWkGlTE91ChalI2M5foKTej1HidstrShaRVWAuoVz3 fG3c3zzInEA+KxlQ+av38ahQlRaIeep35tTUhBsctVGJl7lExJXJaH7ROaLkNdU= -----END CERTIFICATE-----Generated at Sat Apr 5 11:17:55 2025 by rpki-client