$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa File: aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa (raw, json) Hash identifier: IoF5RVkWCOpid3wFcbcYqGMeVc+Kjgoz9Qjgd3rjajM= Subject key identifier: B7:56:74:3E:1F:1A:F6:A6:52:9B:82:F8:7D:66:0D:0E:B3:80:DF:74 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 102185243984C7624AEEFC39D3461A7F1A58D8D9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa Signing time: Mon 31 Mar 2025 18:50:17 +0000 ROA not before: Mon 31 Mar 2025 18:50:17 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:21:85:24:39:84:c7:62:4a:ee:fc:39:d3:46:1a:7f:1a:58:d8:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:50:17 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bc:73:1f:e2:d5:10:e0:54:85:88:b8:73:af: d5:b8:2a:ed:80:d9:7a:53:3b:52:eb:e0:f2:69:45: 81:db:25:92:c3:2e:f3:81:c9:62:2a:2b:1f:62:74: 4e:1e:a4:a2:cc:6c:9a:15:c4:ab:ae:c9:05:f2:f1: 56:3d:a7:1e:cc:f7:c2:15:83:a1:4b:c5:7e:e2:ae: 0b:e7:4d:22:c8:b0:1e:96:68:52:2a:26:22:86:1f: 3f:83:dd:cc:7d:48:8e:5d:86:9d:b1:57:33:9e:59: 3a:0c:c7:5d:16:bc:b5:ab:9f:5c:e2:8f:a6:73:7d: 33:f9:64:08:c1:25:69:12:5c:a0:e2:a4:e5:f5:a5: 68:b6:ca:be:e2:64:30:6f:7f:4b:f8:59:93:a6:32: 4b:22:8b:09:88:aa:d6:03:cb:6e:ba:9b:0d:02:89: 2a:98:66:ec:61:37:06:2f:d2:69:a5:c2:89:ef:89: 39:56:1b:4d:9a:a6:5b:17:1d:2d:52:da:6f:35:6b: c8:b1:6b:c9:b0:1d:b4:44:cc:10:dc:52:21:ac:d0: 4b:5d:19:a8:ae:3b:8a:b4:99:8a:03:1c:75:94:48: d5:21:94:7c:3b:bd:45:8b:a7:91:20:2e:2e:f5:9a: c5:30:e7:a3:26:9d:3b:57:47:48:23:8a:65:e9:30: cf:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:56:74:3E:1F:1A:F6:A6:52:9B:82:F8:7D:66:0D:0E:B3:80:DF:74 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/42 Signature Algorithm: sha256WithRSAEncryption 47:6e:f0:10:71:76:15:7e:88:cc:59:ed:d2:a5:0a:41:81:7c: 96:5f:31:49:b5:a2:f5:45:b0:97:ed:43:e2:f0:5c:87:20:b7: 6f:18:d9:e7:ea:ea:6a:03:65:e4:97:21:86:69:28:21:70:1d: 59:d2:8a:ae:b6:b3:18:e7:c0:85:01:b2:f7:96:45:10:ef:e6: b4:33:a4:d2:8a:85:b6:5a:45:29:f7:5d:88:8e:d8:61:5d:a5: 50:57:02:90:b1:c9:f8:07:c7:d2:4f:77:bb:14:f5:50:83:fb: d0:97:aa:1a:04:8a:5d:62:7c:91:c6:10:ce:2b:64:b5:84:68: 08:34:21:02:9b:11:b8:26:b5:b5:c6:4a:ed:0a:68:88:59:dd: 53:b5:0f:68:61:94:08:58:65:dd:3f:c4:4e:66:4b:99:6f:02: ff:54:4d:85:e7:b9:9e:e7:fa:6d:9f:3a:48:ba:63:f4:d8:8b: 15:17:43:80:93:cc:7c:72:09:8b:42:bf:58:c5:ce:ba:a4:47: bf:f9:78:e1:90:9f:46:06:fb:5b:14:d2:c6:0d:dd:3d:45:6a: 27:7e:fb:e2:b7:3f:6f:61:c7:81:32:63:d5:6e:cd:27:3d:68: ae:83:3d:3f:f4:6f:eb:53:9b:52:27:9b:25:b3:40:2b:ca:bc: df:4b:48:68 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUECGFJDmEx2JK7vw500YafxpY2NkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg1MDE3WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTYyY2NiODE5OTFmYzFkYTNiNDEzMTA1MTdhMmJhZDg4 OWViNDlmNzFkOTEwOGJlMmEwYWZkMGM5MmJmNjQxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsvHMf4tUQ4FSFiLhzr9W4Ku2A2XpTO1Lr4PJpRYHbJZLD LvOByWIqKx9idE4epKLMbJoVxKuuyQXy8VY9px7M98IVg6FLxX7irgvnTSLIsB6W aFIqJiKGHz+D3cx9SI5dhp2xVzOeWToMx10WvLWrn1zij6ZzfTP5ZAjBJWkSXKDi pOX1pWi2yr7iZDBvf0v4WZOmMksiiwmIqtYDy266mw0CiSqYZuxhNwYv0mmlwonv iTlWG02aplsXHS1S2m81a8ixa8mwHbREzBDcUiGs0EtdGaiuO4q0mYoDHHWUSNUh lHw7vUWLp5EgLi71msUw56MmnTtXR0gjimXpMM+xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUt1Z0Ph8a9qZSm4L4fWYNDrOA33QwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZjUxNDAyLWYxYmYtNGU3Yi1iN2MzLTY1ZDkzZGVmNmJkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74gAwDQYJKoZIhvcNAQELBQADggEBAEdu8BBxdhV+iMxZ7dKlCkGB fJZfMUm1ovVFsJftQ+LwXIcgt28Y2efq6moDZeSXIYZpKCFwHVnSiq62sxjnwIUB sveWRRDv5rQzpNKKhbZaRSn3XYiO2GFdpVBXApCxyfgHx9JPd7sU9VCD+9CXqhoE il1ifJHGEM4rZLWEaAg0IQKbEbgmtbXGSu0KaIhZ3VO1D2hhlAhYZd0/xE5mS5lv Av9UTYXnuZ7n+m2fOki6Y/TYixUXQ4CTzHxyCYtCv1jFzrqkR7/5eOGQn0YG+1sU 0sYN3T1Faid+++K3P29hx4EyY9VuzSc9aK6DPT/0b+tTm1InmyWzQCvKvN9LSGg= -----END CERTIFICATE-----Generated at Sat Apr 5 11:17:58 2025 by rpki-client