$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa File: f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa (raw, json) Hash identifier: of9TiE+NcWMvhnUIMXF7lycJRrSQqbn8JSSDqvapmQc= Subject key identifier: 81:EB:DB:6F:C5:77:A3:CB:E8:11:78:6B:58:32:FF:78:E0:00:6B:AD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 03E5DF779B4EB4D03A6BFEB765CDB5002606459C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa Signing time: Mon 31 Mar 2025 18:41:12 +0000 ROA not before: Mon 31 Mar 2025 18:41:12 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:8000::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e5:df:77:9b:4e:b4:d0:3a:6b:fe:b7:65:cd:b5:00:26:06:45:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:41:12 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e4:86:c9:17:47:11:dd:c7:93:08:6f:19:5a: c7:e1:1d:9e:05:ec:54:3c:be:d9:fe:ac:32:69:cc: e7:56:54:50:1f:58:94:b3:9a:8b:cf:ff:ae:05:49: 6a:82:a2:46:61:aa:de:5a:3b:c0:1a:1e:1d:cd:f9: 4f:4f:74:68:c7:77:69:1d:4d:f5:43:b5:54:70:c0: 6d:9e:4e:10:be:d2:71:bb:47:ad:29:da:e2:76:98: dd:31:55:e1:79:50:27:01:5c:6e:fe:3b:15:d3:20: b8:3c:95:05:aa:2b:bd:20:73:2d:98:c7:8f:41:d9: d5:5d:40:75:d6:ae:2b:78:e1:5b:42:dd:45:f0:46: 70:20:d1:e0:0b:d9:fb:aa:cb:d0:7a:6c:39:a1:c2: 19:a0:60:3a:f0:9d:6c:f8:00:0f:88:6e:db:a2:e6: a6:6a:24:f7:fc:9d:9c:dc:0c:8e:50:f6:59:71:10: 0e:bc:34:3a:48:5f:62:e0:fe:a7:a8:37:2c:30:21: ef:41:1b:e7:07:72:c2:90:fd:fc:b5:07:af:6d:6f: c6:f5:ef:92:42:30:38:8c:bb:0b:27:36:2d:f1:f1: 61:73:d5:ac:c4:95:02:07:5a:3e:f7:fe:c6:5f:42: 6a:74:45:54:63:da:7a:12:64:22:f3:65:f1:eb:85: 04:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:EB:DB:6F:C5:77:A3:CB:E8:11:78:6B:58:32:FF:78:E0:00:6B:AD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:8000::/42 Signature Algorithm: sha256WithRSAEncryption 81:f1:37:4e:ab:c7:eb:c1:11:24:bc:3c:7c:56:1b:c1:a0:57: 4a:2a:96:3b:cb:4b:3c:42:db:ef:ac:47:a2:4d:06:f0:58:7c: 62:a5:3e:22:99:ef:d6:bc:6c:86:fc:cd:6d:21:37:5e:ae:35: ae:e5:3e:94:0c:a1:15:9e:f7:50:d9:89:6e:dd:b1:e4:5b:77: 17:00:05:4d:6b:45:3b:8a:c0:51:7d:4c:85:9b:1f:85:c4:56: 44:4d:dd:5b:51:73:51:06:14:24:34:ea:06:3d:b1:a0:5e:de: f9:22:bb:ef:cb:e1:ba:06:09:67:26:18:e9:81:4b:8a:4f:f0: 1b:12:ad:80:f2:e6:23:d7:73:8d:50:0e:97:95:f8:da:c7:e5: 08:59:77:28:0a:90:be:7c:cf:e1:a3:b6:50:f4:97:ca:cc:0d: 0c:51:d9:0c:1c:de:9d:a0:8c:57:a6:1a:39:02:48:93:0b:56: 28:ff:77:b7:86:31:e3:92:dd:a5:7b:3e:13:6b:57:d3:56:6e: 7e:01:a2:20:cc:86:6e:c3:f5:95:8c:4d:39:fd:42:6b:d8:12: 33:e9:d8:90:d4:5c:79:22:16:a0:53:ad:ef:0b:fd:19:ff:fd: bf:c7:58:a5:04:81:8f:06:e6:73:7b:a9:7d:38:13:62:2c:16: 34:18:66:82 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUA+Xfd5tOtNA6a/63Zc21ACYGRZwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg0MTEyWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTZiNzNmNDNlYWYxZDAwNDI3N2ZmMDQwYjYzMzU5ZDBm NTQ0ODY2YTg5MTBhNzA5NjVlMmM0MzQ1ZGJlMzJiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl5IbJF0cR3ceTCG8ZWsfhHZ4F7FQ8vtn+rDJpzOdWVFAf WJSzmovP/64FSWqCokZhqt5aO8AaHh3N+U9PdGjHd2kdTfVDtVRwwG2eThC+0nG7 R60p2uJ2mN0xVeF5UCcBXG7+OxXTILg8lQWqK70gcy2Yx49B2dVdQHXWrit44VtC 3UXwRnAg0eAL2fuqy9B6bDmhwhmgYDrwnWz4AA+Ibtui5qZqJPf8nZzcDI5Q9llx EA68NDpIX2Lg/qeoNywwIe9BG+cHcsKQ/fy1B69tb8b175JCMDiMuwsnNi3x8WFz 1azElQIHWj73/sZfQmp0RVRj2noSZCLzZfHrhQSvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgevbb8V3o8voEXhrWDL/eOAAa60wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YzN2M4NjMzLWFhZjMtNGE0OS1iZmE2LTc3NWFiNzcyNGQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD7gAAwDQYJKoZIhvcNAQELBQADggEBAIHxN06rx+vBESS8PHxWG8Gg V0oqljvLSzxC2++sR6JNBvBYfGKlPiKZ79a8bIb8zW0hN16uNa7lPpQMoRWe91DZ iW7dseRbdxcABU1rRTuKwFF9TIWbH4XEVkRN3VtRc1EGFCQ06gY9saBe3vkiu+/L 4boGCWcmGOmBS4pP8BsSrYDy5iPXc41QDpeV+NrH5QhZdygKkL58z+GjtlD0l8rM DQxR2Qwc3p2gjFemGjkCSJMLVij/d7eGMeOS3aV7PhNrV9NWbn4BoiDMhm7D9ZWM TTn9QmvYEjPp2JDUXHkiFqBTre8L/Rn//b/HWKUEgY8G5nN7qX04E2IsFjQYZoI= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:49 2025 by rpki-client