$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa File: 50aa830a-891f-4ae0-bee7-f2758c54eae3.roa (raw, json) Hash identifier: kqViYewy7v1H8oEHe36w6tHthxjxMAdqSa32LLLbqsc= Subject key identifier: 26:ED:EB:A9:58:19:2D:CD:C8:9A:E9:D5:19:DD:D7:DF:34:0C:9B:D0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1B4034DA5E5E5D57DD6BFE6D08E2D0279C59B6D8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa Signing time: Mon 31 Mar 2025 18:41:01 +0000 ROA not before: Mon 31 Mar 2025 18:41:01 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:40:34:da:5e:5e:5d:57:dd:6b:fe:6d:08:e2:d0:27:9c:59:b6:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:41:01 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5a:32:a7:67:a2:58:12:c1:ff:ac:d7:f0:cb: e4:a8:c5:79:de:1e:7d:45:34:be:86:d0:24:6a:ac: 4d:81:6d:5e:04:7c:d5:e0:94:9e:17:43:1e:67:c7: 1b:30:41:b4:3f:8f:7e:1f:89:6f:29:58:47:f5:84: d5:b0:52:0d:e1:69:94:82:0d:8a:71:5f:69:af:24: be:8a:ae:3f:13:ce:21:e6:15:18:03:61:d1:0e:71: 8b:2a:df:9b:d4:a1:ea:11:e3:33:24:4b:ab:11:fb: 5d:1b:c6:b5:ef:ea:eb:47:03:6f:8b:4a:0a:22:56: c0:96:29:f5:2d:18:52:c4:7c:4a:a1:94:0b:eb:02: ef:d8:1a:fb:0a:77:40:54:2c:41:2b:9e:88:95:d1: d1:e0:d2:b9:55:c5:5b:9a:fb:71:e8:ec:12:be:f6: 7c:76:8e:52:3a:58:f8:f7:17:59:2d:17:d8:c1:76: 05:a7:44:31:49:49:cd:2e:f4:d3:e7:ff:d2:c7:ef: 93:a6:21:56:70:a8:5c:b6:2f:20:b7:38:72:1f:58: c4:67:19:07:44:e8:a1:5b:33:89:c9:e7:94:60:d1: dd:b8:e4:8d:ae:f7:9d:3e:35:7d:5f:62:b5:26:11: c9:9c:d8:97:13:3d:7d:fe:fc:92:b1:62:4e:9c:17: 13:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:ED:EB:A9:58:19:2D:CD:C8:9A:E9:D5:19:DD:D7:DF:34:0C:9B:D0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:50::/44 Signature Algorithm: sha256WithRSAEncryption 08:bb:d9:93:f0:07:27:39:c0:db:1f:16:ed:a3:f3:c8:54:45: e6:1a:c1:b4:09:49:b1:1d:e7:cf:e7:85:fc:83:e1:94:bd:0b: 85:85:97:d1:06:7e:d7:77:f8:f4:72:3b:36:06:f4:65:3f:a7: 15:34:7e:b5:30:07:fe:2d:ea:a8:24:e4:f4:5d:54:30:0f:ae: 0e:1a:97:17:74:43:fe:29:f5:e6:9f:18:a0:a1:08:2b:68:86: 9d:b8:bb:3d:5d:c4:8a:36:31:65:ea:b8:53:a2:e0:1c:a6:4f: df:67:24:70:97:23:6e:4d:2f:94:76:43:fa:e4:7c:e4:94:fb: 16:18:c6:9d:fd:dd:70:d8:aa:ea:4a:9a:15:71:82:29:98:1b: 64:7a:f1:04:68:05:f1:78:23:be:7f:89:5c:ba:dc:cf:87:e1: 82:78:7b:10:af:39:75:ed:7d:e3:51:40:0b:29:bc:32:b5:26: 8b:89:23:be:3f:4c:2a:d1:27:0d:70:13:cb:6b:1c:82:2d:a3: 9e:90:3c:24:24:16:a4:3c:4a:d4:c7:bc:95:1f:d6:ee:2b:e6: 15:95:dc:5a:4f:1a:01:0f:98:61:dd:57:2b:92:68:f3:83:1e: 55:00:96:81:37:e4:d0:7c:82:99:1f:2c:00:32:b3:c1:f0:b6: 0e:e2:a7:15 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG0A02l5eXVfda/5tCOLQJ5xZttgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg0MTAxWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmFkNTBiM2Y5NTI5YzZlNGM3YWI4MTRlYzE3MjkzMzBm YzdmZjg5MmE1MzkzYzdlMjNkMzQ4MDBjNzhkMDExMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLWjKnZ6JYEsH/rNfwy+SoxXneHn1FNL6G0CRqrE2BbV4E fNXglJ4XQx5nxxswQbQ/j34fiW8pWEf1hNWwUg3haZSCDYpxX2mvJL6Krj8TziHm FRgDYdEOcYsq35vUoeoR4zMkS6sR+10bxrXv6utHA2+LSgoiVsCWKfUtGFLEfEqh lAvrAu/YGvsKd0BULEErnoiV0dHg0rlVxVua+3Ho7BK+9nx2jlI6WPj3F1ktF9jB dgWnRDFJSc0u9NPn/9LH75OmIVZwqFy2LyC3OHIfWMRnGQdE6KFbM4nJ55Rg0d24 5I2u950+NX1fYrUmEcmc2JcTPX3+/JKxYk6cFxPnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJu3rqVgZLc3ImunVGd3X3zQMm9AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUwYWE4MzBhLTg5MWYtNGFlMC1iZWU3LWYyNzU4YzU0ZWFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAFAwDQYJKoZIhvcNAQELBQADggEBAAi72ZPwByc5wNsfFu2j88hU ReYawbQJSbEd58/nhfyD4ZS9C4WFl9EGftd3+PRyOzYG9GU/pxU0frUwB/4t6qgk 5PRdVDAPrg4alxd0Q/4p9eafGKChCCtohp24uz1dxIo2MWXquFOi4BymT99nJHCX I25NL5R2Q/rkfOSU+xYYxp393XDYqupKmhVxgimYG2R68QRoBfF4I75/iVy63M+H 4YJ4exCvOXXtfeNRQAspvDK1JouJI74/TCrRJw1wE8trHIIto56QPCQkFqQ8StTH vJUf1u4r5hWV3FpPGgEPmGHdVyuSaPODHlUAloE35NB8gpkfLAAys8Hwtg7ipxU= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:34 2025 by rpki-client