$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa File: 222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa (raw, json) Hash identifier: cj5QtisyzN3nAhmK1+R7/5VQgxR7kkVGcTLp7U4jR24= Subject key identifier: 6E:35:71:CD:51:EF:C8:0C:F1:6F:9D:81:7C:25:D8:A1:3E:DD:07:C7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6B01590F7F77358BCA92F4929D3E341A5EF89AC8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa Signing time: Fri 25 Apr 2025 17:50:08 +0000 ROA not before: Fri 25 Apr 2025 17:50:08 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:01:59:0f:7f:77:35:8b:ca:92:f4:92:9d:3e:34:1a:5e:f8:9a:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:08 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=a51f1b265dfff8bac992318753f0207de384dbb2b06ba99692f7ef23bd94b413, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:50:e6:88:e6:df:df:d4:db:09:1f:aa:59:31: a3:04:72:8d:89:20:d3:4c:15:2b:01:7f:21:d8:a4: 9f:0f:d8:d2:d3:68:19:1e:33:80:1e:15:27:07:06: a6:ce:13:66:ad:b5:f5:2c:d7:a3:62:0b:e5:68:d0: 01:b9:9c:71:1a:02:cf:d1:a0:4d:4a:1e:52:aa:ce: dd:bd:2b:46:92:58:8e:3f:e0:c3:2d:1f:52:68:c9: a5:06:3f:f8:d4:0e:aa:20:15:94:c4:ca:75:2a:f8: 2b:a0:e3:7c:2b:60:2d:23:99:f7:01:a3:9c:83:d2: 69:b5:06:71:14:23:f7:a9:3a:b6:5d:30:5a:0b:51: 14:93:1d:8d:01:94:c4:5b:1a:f2:0a:10:72:2a:fd: 90:70:0d:e4:f6:cb:e7:d6:29:9e:cd:2a:47:ad:b2: ae:b0:df:f3:46:7d:7c:6c:22:77:84:9f:85:37:9d: df:2b:7a:3b:1c:aa:49:61:4f:bd:8d:df:7a:dc:91: 08:9b:17:a6:a6:f1:1d:a6:c7:9c:e5:36:8f:b0:be: e9:f5:68:5a:a4:a2:0a:7b:82:f1:35:ae:2e:fd:bd: 5c:e6:64:cf:e6:39:00:28:1b:7c:23:6a:29:ab:26: 3e:95:7e:13:ee:3c:cc:05:c9:05:ce:c0:95:41:9c: 81:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:35:71:CD:51:EF:C8:0C:F1:6F:9D:81:7C:25:D8:A1:3E:DD:07:C7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:40::/48 Signature Algorithm: sha256WithRSAEncryption 18:9d:1f:34:0f:fb:61:77:c8:a6:2c:4b:03:20:7b:54:03:62: a1:e9:b0:a5:e9:69:56:2b:70:ee:c2:dc:04:4e:1a:40:ed:2d: df:4c:2a:8b:98:46:49:61:6c:9c:84:c6:4e:08:16:b0:12:46: 82:ae:e8:df:32:6b:18:bc:c0:ee:38:97:18:6a:46:51:dd:75: a0:2b:97:dd:13:58:c5:4a:c7:0c:4c:17:5e:68:36:87:b6:dd: ce:be:b9:80:b2:5b:5b:05:5f:2d:05:45:fd:5e:43:02:e8:30: eb:33:2e:3a:51:bf:39:37:29:fd:bc:3f:43:b1:6a:df:36:f3: 72:0f:48:81:2e:d0:3b:c2:a4:3d:22:c9:b7:2b:14:4d:5f:81: 79:74:6c:d5:25:36:f0:59:d9:58:bd:ff:be:82:48:bd:c8:27: c2:ee:dc:15:17:e5:a6:ca:0e:ca:17:6d:bb:44:74:e3:93:69: 45:4b:d8:b6:bd:10:46:eb:9e:3b:38:f2:6f:97:76:e1:8e:d7: 3f:0e:a6:bf:f5:8e:d4:ab:36:d6:ae:d0:71:df:d9:af:95:45: 04:97:c6:9d:ba:58:9b:2a:64:65:9e:f0:c7:df:a6:a5:de:ee: 1d:19:e6:3c:6c:7a:d6:4d:2e:05:50:ab:47:62:38:0c:f1:a0: 18:73:68:86 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUawFZD393NYvKkvSSnT40Gl74msgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDA4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTFmMWIyNjVkZmZmOGJhYzk5MjMxODc1M2YwMjA3ZGUz ODRkYmIyYjA2YmE5OTY5MmY3ZWYyM2JkOTRiNDEzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvUOaI5t/f1NsJH6pZMaMEco2JINNMFSsBfyHYpJ8P2NLT aBkeM4AeFScHBqbOE2attfUs16NiC+Vo0AG5nHEaAs/RoE1KHlKqzt29K0aSWI4/ 4MMtH1JoyaUGP/jUDqogFZTEynUq+Cug43wrYC0jmfcBo5yD0mm1BnEUI/epOrZd MFoLURSTHY0BlMRbGvIKEHIq/ZBwDeT2y+fWKZ7NKketsq6w3/NGfXxsIneEn4U3 nd8rejscqklhT72N33rckQibF6am8R2mx5zlNo+wvun1aFqkogp7gvE1ri79vVzm ZM/mOQAoG3wjaimrJj6VfhPuPMwFyQXOwJVBnIGlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbjVxzVHvyAzxb52BfCXYoT7dB8cwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIyMjkwNmQyLWE2YTAtNDBhZC05ZTQxLWVhYjJkN2ZmMzVhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAEAwDQYJKoZIhvcNAQELBQADggEBABidHzQP+2F3yKYsSwMge1QD YqHpsKXpaVYrcO7C3AROGkDtLd9MKouYRklhbJyExk4IFrASRoKu6N8yaxi8wO44 lxhqRlHddaArl90TWMVKxwxMF15oNoe23c6+uYCyW1sFXy0FRf1eQwLoMOszLjpR vzk3Kf28P0Oxat8283IPSIEu0DvCpD0iybcrFE1fgXl0bNUlNvBZ2Vi9/76CSL3I J8Lu3BUX5abKDsoXbbtEdOOTaUVL2La9EEbrnjs48m+XduGO1z8Opr/1jtSrNtau 0HHf2a+VRQSXxp26WJsqZGWe8MffpqXe7h0Z5jxsetZNLgVQq0diOAzxoBhzaIY= -----END CERTIFICATE-----Generated at Fri May 9 13:13:18 2025 by rpki-client