$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa File: a84b381b-bc70-4b19-91a5-fa66fa80011e.roa (raw, json) Hash identifier: Tcn/N2MmfD1dXIbTh0CpGRDaTANKb6sgDsMiO2vh4Eg= Subject key identifier: 6B:E7:EB:C5:3F:9C:7C:CB:A2:77:36:2F:BA:E9:30:AA:DD:3F:E6:DC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 27541B50B234F9A71548D6EF7807F125FE253E57 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa Signing time: Fri 04 Apr 2025 00:20:32 +0000 ROA not before: Fri 04 Apr 2025 00:20:32 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:54:1b:50:b2:34:f9:a7:15:48:d6:ef:78:07:f1:25:fe:25:3e:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 4 00:20:32 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e5:97:f4:53:49:d6:cb:fb:fd:76:6b:16:d7: 9f:f7:7e:c9:0a:a7:ef:af:a8:e2:95:56:75:57:76: 79:79:ba:3e:86:32:99:d1:83:b4:df:61:0f:88:a4: 14:6c:17:14:23:44:35:c0:03:65:56:06:e8:5a:06: ba:4f:22:f8:db:e6:ef:b0:a6:9b:37:a1:2c:f7:59: c1:54:b9:cd:c5:f5:1d:9b:cd:9d:f9:68:e4:33:39: b9:5b:51:22:50:f2:fc:43:46:92:cd:5e:a3:bf:70: de:27:bf:f2:d6:79:00:9e:53:74:86:ef:04:34:9c: ba:78:24:4b:a7:00:13:79:9a:ee:4c:fb:67:e7:aa: 6b:aa:65:d0:04:30:e3:eb:e0:53:77:bb:b2:c7:a9: 95:cf:85:67:59:15:1a:93:aa:09:2f:94:ce:71:eb: e3:7f:d6:19:87:b3:45:97:fc:91:95:bb:62:4b:57: f8:f2:7e:d9:8b:56:98:f5:ec:82:0c:c1:4d:37:88: b7:a7:69:bf:89:06:cd:35:7d:f7:36:4d:b4:9b:d9: 73:54:14:c0:70:62:a2:50:05:41:2a:60:63:50:b7: 11:07:de:a4:6c:d5:c0:6b:82:53:ff:4d:4a:79:ba: 4b:5e:14:11:48:95:25:4c:ed:df:b3:38:78:18:1f: 9d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E7:EB:C5:3F:9C:7C:CB:A2:77:36:2F:BA:E9:30:AA:DD:3F:E6:DC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption 72:c6:4b:1b:b7:e7:da:3b:1c:da:1a:4c:41:9f:0b:4b:f6:93: 18:9c:8c:82:05:42:aa:c6:27:82:49:06:89:a9:f5:19:13:d5: 7b:8f:78:b3:8b:78:ae:28:17:fe:57:aa:1b:94:bd:e6:1b:49: 1a:e5:84:b8:7f:02:7b:a9:a4:86:65:47:e4:c3:fe:6f:39:3f: eb:df:7d:e1:49:62:a0:20:0d:6f:20:c1:ca:ff:20:20:d7:d2: 36:b2:cb:fb:00:9c:74:95:ff:ea:5a:24:a2:60:3c:72:26:18: 52:dd:fe:88:c6:e4:d2:ec:f9:cf:b0:4d:8b:36:71:e6:d6:b9: 52:af:b3:c5:5f:0f:95:33:21:4f:c0:68:be:5b:45:8a:66:32: c9:a1:ca:31:fb:ba:98:0d:67:5c:3e:77:fc:ac:b8:18:4f:d6: 22:23:1e:28:8b:09:2c:52:00:df:47:27:c8:7b:3f:2d:cc:93: c5:99:60:65:ac:28:77:ed:f0:c2:82:19:56:51:f9:28:59:2f: 0d:e5:35:93:da:c2:e5:ee:f2:ea:17:03:f8:2c:e2:92:91:4e: cf:82:d7:70:84:11:f4:f0:77:ca:fe:8d:b6:08:fc:f3:6a:b6: b6:32:9d:d2:73:f8:97:08:c8:4d:71:9a:91:cf:75:6f:5d:4c: 6a:5e:17:dd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ1QbULI0+acVSNbveAfxJf4lPlcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDA0MDAyMDMyWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNGU1Zjg5MmQzYTVmM2Q1NzExZTU5ODdkNzc4ZDRlMzIx Y2E1MzcyMDUyN2ZmM2EyNmQ0ZGVkMGFjZDQ1ZjFmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu5Zf0U0nWy/v9dmsW15/3fskKp++vqOKVVnVXdnl5uj6G MpnRg7TfYQ+IpBRsFxQjRDXAA2VWBuhaBrpPIvjb5u+wpps3oSz3WcFUuc3F9R2b zZ35aOQzOblbUSJQ8vxDRpLNXqO/cN4nv/LWeQCeU3SG7wQ0nLp4JEunABN5mu5M +2fnqmuqZdAEMOPr4FN3u7LHqZXPhWdZFRqTqgkvlM5x6+N/1hmHs0WX/JGVu2JL V/jyftmLVpj17IIMwU03iLenab+JBs01ffc2TbSb2XNUFMBwYqJQBUEqYGNQtxEH 3qRs1cBrglP/TUp5ukteFBFIlSVM7d+zOHgYH50NAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUa+frxT+cfMuidzYvuukwqt0/5twwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E4NGIzODFiLWJjNzAtNGIxOS05MWE1LWZhNjZmYTgwMDExZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBAHLGSxu359o7HNoaTEGfC0v2 kxicjIIFQqrGJ4JJBomp9RkT1XuPeLOLeK4oF/5XqhuUveYbSRrlhLh/AnuppIZl R+TD/m85P+vffeFJYqAgDW8gwcr/ICDX0jayy/sAnHSV/+paJKJgPHImGFLd/ojG 5NLs+c+wTYs2cebWuVKvs8VfD5UzIU/AaL5bRYpmMsmhyjH7upgNZ1w+d/ysuBhP 1iIjHiiLCSxSAN9HJ8h7Py3Mk8WZYGWsKHft8MKCGVZR+ShZLw3lNZPawuXu8uoX A/gs4pKRTs+C13CEEfTwd8r+jbYI/PNqtrYyndJz+JcIyE1xmpHPdW9dTGpeF90= -----END CERTIFICATE-----Generated at Sat Apr 5 11:02:15 2025 by rpki-client