$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/adb258f2-061e-4e94-b6ee-d4de9405ec61.roa File: adb258f2-061e-4e94-b6ee-d4de9405ec61.roa (raw, json) Hash identifier: 0EtYjDVRwy601T36QNpsboDu9UvE2C5EShsSOGY7MHw= Subject key identifier: B6:FD:35:78:57:E0:0C:0B:CF:40:B1:03:18:50:5A:9A:C2:0F:3F:7E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 62CAE317EC9C9B7FC872A697672A917DEEB65EA6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/adb258f2-061e-4e94-b6ee-d4de9405ec61.roa Signing time: Mon 31 Mar 2025 19:00:07 +0000 ROA not before: Mon 31 Mar 2025 19:00:07 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ca:e3:17:ec:9c:9b:7f:c8:72:a6:97:67:2a:91:7d:ee:b6:5e:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 19:00:07 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fe:97:7d:7d:28:22:57:87:4b:33:43:2c:6b: 70:70:c2:5b:64:16:36:f2:6f:95:80:f0:78:cf:fc: ee:e1:83:e7:f7:8b:ed:f5:b7:85:eb:3f:7c:f4:06: 1b:63:e4:1d:2d:14:5c:4a:88:93:61:d5:6a:7a:0f: 60:54:4e:cb:b0:7f:55:2e:64:4a:18:61:01:9d:2d: e4:2c:19:f4:34:74:f8:e0:5c:f6:00:26:f7:8e:df: d7:c7:cb:49:e5:34:5a:af:71:50:e9:ad:a3:27:e7: 0e:4d:ec:ab:7d:ca:5d:01:52:b1:bb:89:26:a0:93: 58:3b:62:47:a1:a1:03:28:ae:0d:5d:4f:6e:08:94: 07:a5:b5:2e:17:6d:dc:77:14:0a:f4:b2:76:01:52: 51:b3:80:2f:7d:b4:b4:b1:87:dd:10:5d:8f:08:50: 0a:f3:d4:0c:b2:95:01:1d:a5:4d:d0:f1:79:dd:de: 58:d2:0c:10:da:d6:69:db:df:69:b5:ca:96:eb:b1: f5:fa:71:a5:8e:fe:88:b3:ed:e9:84:19:09:5a:57: 86:80:85:e9:9c:99:8b:bb:86:ee:3c:a5:89:50:bb: 9a:32:55:3c:1b:94:13:bf:1f:98:4d:00:23:04:04: 63:84:ca:79:0c:d4:d9:54:3d:a5:7f:12:c6:e4:ac: 4a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:FD:35:78:57:E0:0C:0B:CF:40:B1:03:18:50:5A:9A:C2:0F:3F:7E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/adb258f2-061e-4e94-b6ee-d4de9405ec61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:8000::/40 Signature Algorithm: sha256WithRSAEncryption 33:5c:6e:fe:48:e8:3e:39:a9:1a:4e:e8:c7:51:07:11:2d:73: 50:a8:64:24:05:fc:17:d2:61:fa:4d:cc:a5:d3:f6:4d:b8:e7: 13:6b:70:9f:a2:f6:09:dd:65:96:4c:39:ed:dd:85:b6:eb:89: bd:e4:2e:71:a6:81:bc:a1:e2:47:c7:7d:a0:24:57:64:0d:38: 3a:6d:8d:bc:ee:f0:0d:80:92:22:ce:9a:f6:1c:25:3f:0d:9c: 97:60:77:18:e1:62:ff:14:e3:f0:24:98:32:49:0e:2f:34:eb: ba:e0:ed:e5:47:24:cf:9a:65:13:0b:3d:6e:d7:7c:91:30:6a: fe:a2:82:d2:35:e6:1a:4d:44:49:b7:f3:31:b6:1d:11:89:ec: 3f:79:ff:ec:a6:fc:b6:be:89:15:16:5a:9e:6f:77:1d:5c:24: da:2d:48:9b:96:0a:9a:c8:22:ae:80:7c:4a:7f:ec:1e:d5:d9: c8:5f:75:f2:c7:06:dd:2c:f6:2c:e7:19:ff:7d:98:c3:ad:05: 10:b6:19:c6:9c:c1:77:08:aa:4a:08:c2:dc:96:af:7f:39:6d: 75:c4:f6:79:64:1a:0c:30:44:2d:65:7f:19:41:c7:1f:d6:ec: 2b:f0:7c:b1:0a:f7:05:94:08:98:2c:d7:2b:b7:8f:49:5e:95: a8:93:8f:f6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYsrjF+ycm3/IcqaXZyqRfe62XqYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTkwMDA3WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzUwYzc0ODRmZTk5ZDNkNWIxMmEyYzU1NjkwMzMzMmIy ZDM3NTk1ZDRiZmEwZTI2YzBiMjExMTQyYjZmN2U2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCV/pd9fSgiV4dLM0Msa3BwwltkFjbyb5WA8HjP/O7hg+f3 i+31t4XrP3z0Bhtj5B0tFFxKiJNh1Wp6D2BUTsuwf1UuZEoYYQGdLeQsGfQ0dPjg XPYAJveO39fHy0nlNFqvcVDpraMn5w5N7Kt9yl0BUrG7iSagk1g7YkehoQMorg1d T24IlAeltS4Xbdx3FAr0snYBUlGzgC99tLSxh90QXY8IUArz1AyylQEdpU3Q8Xnd 3ljSDBDa1mnb32m1ypbrsfX6caWO/oiz7emEGQlaV4aAhemcmYu7hu48pYlQu5oy VTwblBO/H5hNACMEBGOEynkM1NlUPaV/EsbkrEodAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUtv01eFfgDAvPQLEDGFBamsIPP34wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FkYjI1OGYyLTA2MWUtNGU5NC1iNmVlLWQ0ZGU5NDA1ZWM2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwgDANBgkqhkiG9w0BAQsFAAOCAQEAM1xu/kjoPjmpGk7ox1EHES1z UKhkJAX8F9Jh+k3MpdP2TbjnE2twn6L2Cd1llkw57d2FtuuJveQucaaBvKHiR8d9 oCRXZA04Om2NvO7wDYCSIs6a9hwlPw2cl2B3GOFi/xTj8CSYMkkOLzTruuDt5Uck z5plEws9btd8kTBq/qKC0jXmGk1ESbfzMbYdEYnsP3n/7Kb8tr6JFRZanm93HVwk 2i1Im5YKmsgiroB8Sn/sHtXZyF918scG3Sz2LOcZ/32Yw60FELYZxpzBdwiqSgjC 3JavfzltdcT2eWQaDDBELWV/GUHHH9bsK/B8sQr3BZQImCzXK7ePSV6VqJOP9g== -----END CERTIFICATE-----Generated at Sat Apr 5 11:05:36 2025 by rpki-client