$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa File: e1f114b0-d940-4fa0-8376-bac93d2868fc.roa (raw, json) Hash identifier: DqTF9v29IfCg0b/3mN8/9eNIVk7411nQgVjaI20rqyE= Subject key identifier: 2E:5C:99:6F:8D:A8:1C:83:2F:31:3F:EB:C7:4B:AB:16:BF:6D:33:FD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 626392AD37BC4AAA0F42F5C66A1E13CCF9F9DF81 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa Signing time: Tue 25 Mar 2025 20:22:00 +0000 ROA not before: Tue 25 Mar 2025 20:22:00 +0000 ROA not after: Tue 29 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:63:92:ad:37:bc:4a:aa:0f:42:f5:c6:6a:1e:13:cc:f9:f9:df:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 25 20:22:00 2025 GMT Not After : Apr 29 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5e:2b:f0:32:df:b5:7b:95:50:8e:b6:37:11: 5a:05:d0:94:ce:4d:c3:a2:28:95:fc:60:0c:c1:97: a8:46:a6:3c:4e:ad:79:e2:bd:cd:c1:78:a0:e5:c5: 0f:06:89:38:67:71:ea:eb:63:68:af:05:53:73:f1: 69:c8:3a:ee:56:b8:c7:13:7a:87:a6:bf:c1:c2:20: 4e:4d:4e:0e:51:b1:f0:78:d9:b8:12:ed:2e:a3:c7: fb:d3:aa:3a:73:16:2f:99:2b:e9:1a:5b:c0:9f:3b: 0e:dd:d4:5c:37:0d:19:96:54:7d:41:60:7b:59:85: dd:bd:09:de:35:5f:58:e7:20:8b:0f:b2:a4:13:7d: 96:af:ca:b2:47:ac:a8:26:16:39:d1:72:96:32:43: e3:36:f0:a5:a6:fd:bf:bc:51:1b:e2:72:94:3a:5a: 0f:f9:9b:ed:f5:e5:90:e4:bc:e2:b2:ed:96:d9:04: 95:80:d4:de:bc:ee:0a:75:3d:90:62:94:57:f6:83: d2:e8:59:33:ba:45:fe:bf:d5:62:e9:70:70:ac:ef: 02:8a:e6:eb:38:1c:05:e6:cf:82:b9:60:a9:cc:65: d8:5f:43:a7:15:f3:bd:30:15:7d:32:3c:8c:c9:50: 62:29:09:92:20:cb:37:0a:74:05:31:95:65:af:86: 97:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:5C:99:6F:8D:A8:1C:83:2F:31:3F:EB:C7:4B:AB:16:BF:6D:33:FD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 79:6a:98:10:8c:c0:8f:8c:66:c2:7c:c5:d7:ad:3b:dd:dd:42: ff:b5:65:ac:ca:ef:9b:a6:b2:5d:3e:1a:f7:54:94:3b:1e:e6: 08:3e:6a:44:b8:04:9d:d1:b6:f6:3a:37:54:7a:39:52:b9:00: 94:45:c1:54:84:e9:c9:53:40:46:ae:eb:f7:82:ed:88:c1:d6: 6e:ec:74:59:d9:8d:28:1f:b8:75:41:b8:4f:56:c5:f4:d4:55: 05:14:39:eb:ac:1a:8d:e3:8c:22:b0:40:c0:e1:e0:b7:65:42: cf:6f:38:f9:53:e0:f0:87:3a:34:85:23:e4:69:b4:d5:68:95: 84:45:80:d4:13:62:a5:88:d0:c4:4e:d0:3f:f3:54:8e:f4:b8: 19:2e:0b:e9:ba:df:50:28:58:6a:84:86:5d:e7:d2:65:56:91: ce:6d:9b:84:41:2d:fc:55:8b:8b:7e:ec:a3:75:11:f2:8e:fd: a3:aa:76:b6:ab:9e:41:05:32:8a:8c:5b:f7:2e:c5:a7:2b:6d: 04:89:08:7a:cc:03:0a:52:02:a1:7e:63:63:f3:2d:84:cf:c6: c4:5e:29:d7:ca:bc:74:6f:32:b4:6d:db:cb:70:89:71:b4:2a: 66:95:fa:9d:eb:bb:87:62:30:2f:47:28:3c:dc:03:e1:53:ff: 56:6a:54:75 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYmOSrTe8SqoPQvXGah4TzPn534EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzI1MjAyMjAwWhcNMjUwNDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Mzc0ODNjOGJmMjE1NmEzMDE0NThlMzNmMDM0MjgzYTEw NGYzOGExNzU3NGIyODc0ZWI5NDYyN2M3NDE5Y2ZkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYXivwMt+1e5VQjrY3EVoF0JTOTcOiKJX8YAzBl6hGpjxO rXnivc3BeKDlxQ8GiThncerrY2ivBVNz8WnIOu5WuMcTeoemv8HCIE5NTg5RsfB4 2bgS7S6jx/vTqjpzFi+ZK+kaW8CfOw7d1Fw3DRmWVH1BYHtZhd29Cd41X1jnIIsP sqQTfZavyrJHrKgmFjnRcpYyQ+M28KWm/b+8URvicpQ6Wg/5m+315ZDkvOKy7ZbZ BJWA1N687gp1PZBilFf2g9LoWTO6Rf6/1WLpcHCs7wKK5us4HAXmz4K5YKnMZdhf Q6cV870wFX0yPIzJUGIpCZIgyzcKdAUxlWWvhpdjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULlyZb42oHIMvMT/rx0urFr9tM/0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxZjExNGIwLWQ5NDAtNGZhMC04Mzc2LWJhYzkzZDI4NjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAeWqYEIzAj4xmwnzF16073d1C /7VlrMrvm6ayXT4a91SUOx7mCD5qRLgEndG29jo3VHo5UrkAlEXBVITpyVNARq7r 94LtiMHWbux0WdmNKB+4dUG4T1bF9NRVBRQ566wajeOMIrBAwOHgt2VCz284+VPg 8Ic6NIUj5Gm01WiVhEWA1BNipYjQxE7QP/NUjvS4GS4L6brfUChYaoSGXefSZVaR zm2bhEEt/FWLi37so3UR8o79o6p2tqueQQUyioxb9y7FpyttBIkIeswDClICoX5j Y/MthM/GxF4p18q8dG8ytG3by3CJcbQqZpX6neu7h2IwL0coPNwD4VP/VmpUdQ== -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:39 2025 by rpki-client