$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa File: 4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa (raw, json) Hash identifier: 5N5J4cqcon2CH1uVA/JWpGzTZMHEeMnW0O3QBsyMawc= Subject key identifier: B2:BE:AE:4A:A9:8F:86:D6:2F:64:FC:1A:32:78:AB:AC:6B:CC:5D:10 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 54C35652F659C317AF8F7C8B3521CAD2179A602A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa Signing time: Tue 20 May 2025 18:00:56 +0000 ROA not before: Tue 20 May 2025 18:00:56 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:c3:56:52:f6:59:c3:17:af:8f:7c:8b:35:21:ca:d2:17:9a:60:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:56 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=136753d4a3813265b2afb8508fba406c950424fc75d130da59579595bf677449, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d9:02:da:12:48:8b:56:4f:6b:29:d6:99:60: 9a:41:aa:1a:4a:69:22:51:9f:5e:b1:4c:db:2b:26: 41:16:9b:f4:d6:2b:d5:fb:55:e7:37:35:6f:71:ae: 7a:5b:8d:d3:f5:d5:b0:75:dd:c6:a7:df:05:cb:85: 3b:b5:20:12:32:8a:2c:c1:33:7d:0c:5a:a1:9d:83: da:9b:23:f0:20:5f:c2:4e:ac:d0:a8:fc:65:9e:78: 31:16:76:43:76:44:17:95:ed:4c:1f:36:ce:a1:2b: 67:08:18:02:98:82:e5:0b:0a:fc:c0:c0:c8:6e:92: 85:8b:51:b8:26:bb:87:d6:b6:94:76:ad:5e:a3:c8: 05:1d:a5:0e:68:50:58:13:f0:9f:46:d3:b5:c1:8a: 46:31:4d:dc:d4:cf:9b:ca:3d:52:53:ce:d9:ce:d0: 47:71:88:af:ac:e2:e3:90:78:bf:af:18:64:e0:54: 54:d2:bd:38:54:cf:5e:46:a3:2d:73:be:96:17:c8: e2:50:18:04:dc:86:9a:80:61:7d:7f:49:be:e5:0e: 65:a2:52:04:52:bb:7f:34:c8:62:38:8b:6e:7e:5d: 07:4c:65:34:0f:ff:ab:ae:82:2c:9e:61:1f:64:be: 0a:fc:37:fc:b8:81:5a:58:3d:3f:35:cd:94:47:b9: 62:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:BE:AE:4A:A9:8F:86:D6:2F:64:FC:1A:32:78:AB:AC:6B:CC:5D:10 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a0::/48 Signature Algorithm: sha256WithRSAEncryption 71:ab:dc:62:90:5c:63:a3:dd:d0:4e:cb:6d:c1:97:2f:0e:52: 0e:0e:37:60:4a:fd:b2:df:a3:a4:8d:99:eb:8a:0c:6b:b6:e0: 13:af:e7:c7:e2:a0:f0:50:7b:72:55:23:83:92:ae:90:27:12: f4:6f:88:d8:77:6c:25:bd:55:8a:2c:24:e5:0c:33:f7:ce:58: 35:2d:b4:84:1d:a9:2f:ab:64:d9:a0:e2:05:15:dc:2d:d1:e1: e2:94:b9:6c:87:07:aa:5a:f6:7d:92:8f:27:70:bd:35:82:2f: d7:d1:b7:fd:99:23:81:eb:41:b3:a2:15:51:9f:27:aa:e9:e0: 84:ec:8b:b2:82:d7:8f:15:32:9b:62:de:44:96:99:9e:7c:f3: 1b:f7:42:0f:74:e7:97:78:77:b6:69:47:1d:4c:f6:30:59:3c: cc:66:d9:cb:8e:d6:9e:2b:5a:e1:df:e7:71:8e:67:b5:ee:78: 0c:43:0a:44:52:3e:df:73:33:de:4b:41:44:ad:4b:ad:5e:db: e0:c2:0d:bc:7d:49:5f:a6:c1:30:1a:75:49:8c:2b:3e:2b:07: 47:5b:d6:b8:15:40:4f:29:5c:1b:00:f0:0b:71:47:b3:57:e6: cb:62:5f:60:d2:9a:e9:69:e7:cf:e7:37:94:f8:6f:cc:22:11: f6:40:a7:ea -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVMNWUvZZwxevj3yLNSHK0heaYCowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDU2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzY3NTNkNGEzODEzMjY1YjJhZmI4NTA4ZmJhNDA2Yzk1 MDQyNGZjNzVkMTMwZGE1OTU3OTU5NWJmNjc3NDQ5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDi2QLaEkiLVk9rKdaZYJpBqhpKaSJRn16xTNsrJkEWm/TW K9X7Vec3NW9xrnpbjdP11bB13can3wXLhTu1IBIyiizBM30MWqGdg9qbI/AgX8JO rNCo/GWeeDEWdkN2RBeV7UwfNs6hK2cIGAKYguULCvzAwMhukoWLUbgmu4fWtpR2 rV6jyAUdpQ5oUFgT8J9G07XBikYxTdzUz5vKPVJTztnO0EdxiK+s4uOQeL+vGGTg VFTSvThUz15Goy1zvpYXyOJQGATchpqAYX1/Sb7lDmWiUgRSu380yGI4i25+XQdM ZTQP/6uugiyeYR9kvgr8N/y4gVpYPT81zZRHuWJ7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsr6uSqmPhtYvZPwaMnirrGvMXRAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRhODYyM2M0LTEwYTAtNDZiNi1hNWY1LWM5NGU4NGM1Njg2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAKAwDQYJKoZIhvcNAQELBQADggEBAHGr3GKQXGOj3dBOy23Bly8O Ug4ON2BK/bLfo6SNmeuKDGu24BOv58fioPBQe3JVI4OSrpAnEvRviNh3bCW9VYos JOUMM/fOWDUttIQdqS+rZNmg4gUV3C3R4eKUuWyHB6pa9n2SjydwvTWCL9fRt/2Z I4HrQbOiFVGfJ6rp4ITsi7KC148VMpti3kSWmZ588xv3Qg9055d4d7ZpRx1M9jBZ PMxm2cuO1p4rWuHf53GOZ7XueAxDCkRSPt9zM95LQUStS61e2+DCDbx9SV+mwTAa dUmMKz4rB0db1rgVQE8pXBsA8AtxR7NX5stiX2DSmulp58/nN5T4b8wiEfZAp+o= -----END CERTIFICATE-----Generated at Fri Jun 6 17:47:12 2025 by rpki-client