$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa File: a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa (raw, json) Hash identifier: 0doPZvel94iaIT0GXo3vhLawll9DVgLE0CwfvDwYKF0= Subject key identifier: E9:25:7C:4A:EE:8A:74:7D:36:5C:F8:42:A3:52:A2:02:50:92:6F:47 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0B1C1D87BB00B8A93C8F029EF496D723725491DC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa Signing time: Mon 31 Mar 2025 18:51:36 +0000 ROA not before: Mon 31 Mar 2025 18:51:36 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:eb00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:1c:1d:87:bb:00:b8:a9:3c:8f:02:9e:f4:96:d7:23:72:54:91:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:51:36 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:58:2f:36:9b:ee:40:5b:bf:8c:65:9a:3e:b2: 4b:4b:b3:ce:c1:83:70:12:63:02:a7:5c:97:8e:a0: c2:26:3b:5f:06:35:ce:90:d1:18:57:b8:47:72:90: bf:79:c3:dd:6b:a7:38:f5:4c:90:47:92:23:58:1c: 4f:a4:f4:c6:6f:d8:a5:f2:59:89:56:c2:3c:db:61: 1e:45:8b:1b:08:3e:87:fd:d7:55:68:8c:73:a1:f9: 43:5f:88:0d:e3:15:31:fe:b3:b6:0a:76:cc:d2:f2: 34:ed:78:7c:ff:82:43:f3:71:65:b8:c1:7f:95:ad: 4b:78:37:29:60:69:88:bc:5b:d7:f7:08:d7:c9:ae: 8e:c2:9d:66:37:18:ca:15:88:f1:df:f8:4b:dc:b8: 0a:7b:0a:92:84:ce:77:a5:8f:cf:c4:1b:fe:09:13: 6b:ac:09:2a:a6:97:e7:57:1d:63:e1:4f:27:27:05: c8:49:ed:3b:34:f2:af:6f:42:ff:55:9e:89:22:f6: ea:e6:b3:c9:0e:07:66:01:fd:5a:40:92:f8:04:4f: 70:8c:0b:1c:56:eb:9f:5b:4b:c3:49:e5:90:6f:6e: 54:ad:32:88:b7:2b:17:8e:98:b9:e5:cc:6c:b2:28: 9e:44:9f:62:1f:89:41:93:80:f0:ed:ee:c3:c0:85: 46:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:25:7C:4A:EE:8A:74:7D:36:5C:F8:42:A3:52:A2:02:50:92:6F:47 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/42 Signature Algorithm: sha256WithRSAEncryption 67:bc:68:ba:4e:b4:75:27:03:2d:c6:7a:af:cf:8f:0e:27:4d: 5a:96:f4:70:31:74:39:db:c9:d6:21:67:8b:ae:ce:79:4c:67: 43:1d:ea:9d:47:a9:21:8c:b8:64:ca:30:f5:8d:98:02:52:a9: e2:57:c2:0b:27:c6:03:65:96:1c:68:42:d5:e6:73:34:36:cf: ba:37:55:a3:82:59:ae:02:a3:b1:bf:13:77:5c:a3:02:af:d4: a2:ba:bc:ba:32:2d:43:db:e4:5b:53:c2:dc:6c:58:a0:77:19: bb:a9:82:7d:32:59:8c:bd:c9:ba:a4:d5:86:86:40:0f:03:36: 5b:2f:57:1c:69:bb:c3:8a:4d:31:19:65:6e:b0:09:db:63:af: fc:0a:04:36:5d:dd:8d:8f:dc:6f:74:97:46:9f:06:23:aa:9b: 84:2c:0b:d0:83:58:a2:54:be:1d:56:b6:65:f9:24:02:1b:d0: d9:3a:56:81:46:b4:04:32:5f:48:37:0a:da:b9:7c:77:92:f5: ac:94:47:08:d2:54:d1:26:fb:f7:99:1e:ad:58:94:1e:32:e1: b2:d1:81:6e:b3:f7:55:7b:ee:3b:a6:15:f0:36:61:69:37:08: 91:ad:52:4c:ea:98:cd:42:fe:84:7d:ce:c3:b7:10:e7:e6:6e: 86:a6:56:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCxwdh7sAuKk8jwKe9JbXI3JUkdwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg1MTM2WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzljMzExNjYyODJlNWU0NWRmNDUwZTcxMTU3NGE2Mjlj ZGY1OTczOWI0MGMyM2JkZGEzNDljZmM5YmExNmVkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHWC82m+5AW7+MZZo+sktLs87Bg3ASYwKnXJeOoMImO18G Nc6Q0RhXuEdykL95w91rpzj1TJBHkiNYHE+k9MZv2KXyWYlWwjzbYR5FixsIPof9 11VojHOh+UNfiA3jFTH+s7YKdszS8jTteHz/gkPzcWW4wX+VrUt4NylgaYi8W9f3 CNfJro7CnWY3GMoViPHf+EvcuAp7CpKEznelj8/EG/4JE2usCSqml+dXHWPhTycn BchJ7Ts08q9vQv9Vnoki9urms8kOB2YB/VpAkvgET3CMCxxW659bS8NJ5ZBvblSt Moi3KxeOmLnlzGyyKJ5En2IfiUGTgPDt7sPAhUbHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6SV8Su6KdH02XPhCo1KiAlCSb0cwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2Yzk2YzQyLTQzNDQtNDRjOC1hMTk0LTRjODdmMGFkZTNjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76wAwDQYJKoZIhvcNAQELBQADggEBAGe8aLpOtHUnAy3Geq/Pjw4n TVqW9HAxdDnbydYhZ4uuznlMZ0Md6p1HqSGMuGTKMPWNmAJSqeJXwgsnxgNllhxo QtXmczQ2z7o3VaOCWa4Co7G/E3dcowKv1KK6vLoyLUPb5FtTwtxsWKB3Gbupgn0y WYy9ybqk1YaGQA8DNlsvVxxpu8OKTTEZZW6wCdtjr/wKBDZd3Y2P3G90l0afBiOq m4QsC9CDWKJUvh1WtmX5JAIb0Nk6VoFGtAQyX0g3Ctq5fHeS9ayURwjSVNEm+/eZ Hq1YlB4y4bLRgW6z91V77jumFfA2YWk3CJGtUkzqmM1C/oR9zsO3EOfmboamVp0= -----END CERTIFICATE-----Generated at Sat Apr 5 11:16:43 2025 by rpki-client