$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f5d1727a-eb2f-4ae0-881e-c8fdc344b95f.roa File: f5d1727a-eb2f-4ae0-881e-c8fdc344b95f.roa (raw, json) Hash identifier: kIpk4vlIWeXxuF7uRUjBcdtxEBd8zflRyZMn14GIxiM= Subject key identifier: 17:04:F7:74:C0:58:32:4A:41:1A:1F:FE:C6:EF:EA:42:C4:ED:C0:69 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 67757C35B09939FA6D051FF9C613AED52113C121 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f5d1727a-eb2f-4ae0-881e-c8fdc344b95f.roa Signing time: Mon 31 Mar 2025 18:51:22 +0000 ROA not before: Mon 31 Mar 2025 18:51:22 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e000::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:75:7c:35:b0:99:39:fa:6d:05:1f:f9:c6:13:ae:d5:21:13:c1:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:51:22 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:06:2d:ba:d0:22:2f:38:89:6d:39:f7:08:fd: 76:aa:4e:a0:82:80:7c:75:bf:65:8f:7d:4f:cc:54: a4:47:ba:6f:4d:6e:d6:e1:a1:d3:dd:1b:d8:ab:3a: fc:7f:33:da:0e:b3:1f:e8:bd:54:ad:b6:df:65:b4: 0b:f5:04:46:8a:33:6b:29:e3:69:30:38:fe:73:ed: 0d:9c:b2:2c:9a:5d:87:78:5e:0b:51:7b:22:51:0b: 41:4b:c0:65:da:a1:74:b3:36:5b:d7:7e:db:82:6f: 14:68:7a:65:d7:45:bb:dd:42:2e:b3:c2:b9:aa:13: f2:27:55:d8:81:b6:92:c4:c4:bf:3f:bc:e4:43:ad: 6d:95:3d:85:53:f2:10:c3:72:5e:92:74:0f:7a:af: a5:a7:a5:05:21:66:be:33:57:0e:e3:95:02:12:93: f2:44:28:64:3a:55:d6:f5:4a:1b:21:b3:fe:80:58: eb:ad:6b:cb:df:4d:bb:61:0c:b5:4d:0e:58:38:65: 16:1a:05:19:54:ec:f6:24:ff:c6:c9:09:43:01:80: d3:8a:f2:e8:aa:63:d7:a5:8c:d1:3b:05:a9:a0:19: 76:81:cd:5f:0b:eb:8b:a8:db:f3:f6:62:6b:b0:a7: 90:2c:d8:c4:a3:02:13:05:a0:c7:af:c7:d7:21:43: 99:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:04:F7:74:C0:58:32:4A:41:1A:1F:FE:C6:EF:EA:42:C4:ED:C0:69 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f5d1727a-eb2f-4ae0-881e-c8fdc344b95f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/42 Signature Algorithm: sha256WithRSAEncryption 4f:30:33:d1:37:b6:0f:be:61:f8:52:90:71:f1:60:8a:a8:2b: 5c:3f:0f:c3:c4:58:8c:f6:81:da:21:2f:42:32:6c:a0:2c:2f: 91:17:ae:3d:18:37:a0:c1:47:c7:b3:57:fd:8b:83:51:3f:c6: d0:a6:73:18:59:89:71:24:b5:8e:9c:a9:d4:68:0a:be:a1:59: 50:88:18:f7:9e:8b:d9:5d:8e:07:c8:dd:b9:47:31:5c:71:e3: 69:04:a9:20:ee:c0:35:8b:ce:37:6e:9f:af:b9:96:00:d0:85: 81:01:27:e6:d4:fa:cb:41:2c:e5:9d:73:07:5e:e0:3c:ff:4f: 7b:e6:0d:46:c1:10:d3:41:b0:02:0e:f0:eb:9d:c8:b7:b2:a5: 45:6c:4e:28:c5:3c:c6:a0:7c:30:18:ee:d4:7c:8a:25:03:be: c6:fc:cc:0f:02:68:81:b9:66:c5:0f:1d:01:ea:f5:d9:79:67: 48:44:bc:7a:30:76:29:45:55:d4:52:ba:b9:70:6e:b6:c7:24: c2:42:1e:58:a4:11:49:dc:46:93:65:f6:bc:82:65:66:a6:c4: ec:ef:cf:5c:df:61:77:cb:ba:23:6f:d4:3e:f0:d7:ec:13:d4: c8:59:46:23:8a:85:a4:50:29:d4:aa:8d:04:08:e2:36:e2:21: 23:8b:86:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZ3V8NbCZOfptBR/5xhOu1SETwSEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg1MTIyWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWI2MzhhMjAzOTY5MDMxZTY4MGVmOTlmMzI4NDU5YTM0 MGJlZjljZWMwYmUwNTZiMGIxMjkxZjMzMzdiODFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiBi260CIvOIltOfcI/XaqTqCCgHx1v2WPfU/MVKRHum9N btbhodPdG9irOvx/M9oOsx/ovVSttt9ltAv1BEaKM2sp42kwOP5z7Q2csiyaXYd4 XgtReyJRC0FLwGXaoXSzNlvXftuCbxRoemXXRbvdQi6zwrmqE/InVdiBtpLExL8/ vORDrW2VPYVT8hDDcl6SdA96r6WnpQUhZr4zVw7jlQISk/JEKGQ6Vdb1Shshs/6A WOuta8vfTbthDLVNDlg4ZRYaBRlU7PYk/8bJCUMBgNOK8uiqY9eljNE7BamgGXaB zV8L64uo2/P2Ymuwp5As2MSjAhMFoMevx9chQ5kJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFwT3dMBYMkpBGh/+xu/qQsTtwGkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y1ZDE3MjdhLWViMmYtNGFlMC04ODFlLWM4ZmRjMzQ0Yjk1Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74AAwDQYJKoZIhvcNAQELBQADggEBAE8wM9E3tg++YfhSkHHxYIqo K1w/D8PEWIz2gdohL0IybKAsL5EXrj0YN6DBR8ezV/2Lg1E/xtCmcxhZiXEktY6c qdRoCr6hWVCIGPeei9ldjgfI3blHMVxx42kEqSDuwDWLzjdun6+5lgDQhYEBJ+bU +stBLOWdcwde4Dz/T3vmDUbBENNBsAIO8OudyLeypUVsTijFPMagfDAY7tR8iiUD vsb8zA8CaIG5ZsUPHQHq9dl5Z0hEvHowdilFVdRSurlwbrbHJMJCHlikEUncRpNl 9ryCZWamxOzvz1zfYXfLuiNv1D7w1+wT1MhZRiOKhaRQKdSqjQQI4jbiISOLhtY= -----END CERTIFICATE-----Generated at Sat Apr 5 11:12:57 2025 by rpki-client