$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa File: 710c8ea0-f6b4-4fbe-9653-22174e063099.roa (raw, json) Hash identifier: 278g/Am3I21A1XGOwq9x28g6jcDQUUfPuxFlCdxQpvk= Subject key identifier: E6:42:9A:B9:E9:54:1E:85:51:14:7F:37:63:6E:11:67:28:A1:BA:18 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7A04F0E0170716239CE0A789D77B95E8A98B8182 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa Signing time: Tue 27 May 2025 00:20:16 +0000 ROA not before: Tue 27 May 2025 00:20:16 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:04:f0:e0:17:07:16:23:9c:e0:a7:89:d7:7b:95:e8:a9:8b:81:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 27 00:20:16 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=831af56c20a3a63bd158332665fed9816d5ee802398560a56f5c3845db92b8be, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b9:51:7e:8c:c2:c9:9c:8a:3a:d7:23:6f:be: d9:f8:42:28:35:88:8b:f7:4a:4d:9a:68:ba:57:af: d4:d3:e7:ba:ef:97:c3:78:8e:8f:8d:f4:c9:6e:1a: 65:3f:87:a0:2c:52:ef:30:aa:ee:64:06:b9:9b:5f: 2b:7b:5d:31:b6:e5:47:75:9a:b9:98:77:9c:e6:c6: c3:b7:5d:2b:85:b1:bb:89:20:04:cf:61:25:dd:ae: 31:32:31:33:a5:cb:ef:7b:11:4c:e6:22:17:ce:a1: e5:e0:bf:a7:b3:06:45:88:35:48:57:da:b6:c7:91: 76:c1:b0:3f:67:e4:26:24:60:91:e5:e2:ad:c9:d8: a9:c3:40:40:bd:2c:9a:03:89:83:22:05:ca:4b:2e: 01:e5:d3:36:ab:45:f2:ea:a3:12:cc:5c:a0:7a:41: f0:83:b5:e2:e2:0c:87:c2:37:c2:d5:52:1a:79:11: 8b:c7:e3:ee:0b:de:0d:99:8d:19:a9:01:e0:04:95: 87:f8:aa:48:1e:f8:dc:6f:be:83:9a:fd:69:2c:5d: 87:48:8f:14:ab:23:33:1f:d7:56:e2:71:6d:75:45: b9:5f:6a:7b:09:02:1d:88:c8:21:60:12:15:97:41: bc:75:d9:55:9a:4a:d2:98:b3:21:ce:bd:d8:af:d4: 34:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:42:9A:B9:E9:54:1E:85:51:14:7F:37:63:6E:11:67:28:A1:BA:18 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 87:b3:b3:d2:71:c0:94:92:cc:65:16:16:21:cf:46:7e:b5:7c: b0:44:8e:32:63:db:ef:e5:7a:ce:e6:41:71:4c:b8:ae:2f:40: 87:42:5b:4c:dc:80:0e:fd:c0:8a:44:92:8f:07:78:1b:75:13: e0:d9:ad:dd:b1:be:52:94:f1:0d:74:9e:28:af:c0:be:8d:90: 7d:44:4e:0e:60:57:35:ad:23:0b:41:32:ea:92:6b:d9:9b:ad: 90:90:4c:6c:60:2b:31:79:88:5c:87:46:29:7a:0e:3a:5f:17: 12:d8:a4:69:12:15:6c:d1:67:7a:37:70:a0:cd:10:6e:3a:a2: 52:75:61:a5:46:aa:2a:2f:78:65:f7:55:a0:6c:2f:7a:8b:75: 6f:1e:37:6d:fb:6f:d6:71:05:a6:f7:fe:c3:c4:76:2e:74:43: e3:40:3b:79:43:55:64:b8:57:da:6b:1d:85:cb:75:c9:10:28: 65:3f:a7:2a:75:89:38:da:b1:b9:01:10:aa:0d:b1:07:77:22: 49:f2:1c:d5:89:a6:40:52:6d:2b:45:99:61:bb:02:08:48:1e: bd:67:fc:55:91:e1:29:e7:5e:1f:93:4c:e4:de:23:db:2a:e4: 37:a5:18:56:c2:72:3b:02:d0:b6:ad:d9:e3:21:e3:be:e8:88: 9c:7a:af:a7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUegTw4BcHFiOc4KeJ13uV6KmLgYIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI3MDAyMDE2WhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzFhZjU2YzIwYTNhNjNiZDE1ODMzMjY2NWZlZDk4MTZk NWVlODAyMzk4NTYwYTU2ZjVjMzg0NWRiOTJiOGJlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuuVF+jMLJnIo61yNvvtn4Qig1iIv3Sk2aaLpXr9TT57rv l8N4jo+N9MluGmU/h6AsUu8wqu5kBrmbXyt7XTG25Ud1mrmYd5zmxsO3XSuFsbuJ IATPYSXdrjEyMTOly+97EUzmIhfOoeXgv6ezBkWINUhX2rbHkXbBsD9n5CYkYJHl 4q3J2KnDQEC9LJoDiYMiBcpLLgHl0zarRfLqoxLMXKB6QfCDteLiDIfCN8LVUhp5 EYvH4+4L3g2ZjRmpAeAElYf4qkge+NxvvoOa/WksXYdIjxSrIzMf11bicW11Rblf ansJAh2IyCFgEhWXQbx12VWaStKYsyHOvdiv1DQ5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5kKauelUHoVRFH83Y24RZyihuhgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxMGM4ZWEwLWY2YjQtNGZiZS05NjUzLTIyMTc0ZTA2MzA5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAIezs9JxwJSSzGUWFiHPRn61 fLBEjjJj2+/les7mQXFMuK4vQIdCW0zcgA79wIpEko8HeBt1E+DZrd2xvlKU8Q10 niivwL6NkH1ETg5gVzWtIwtBMuqSa9mbrZCQTGxgKzF5iFyHRil6DjpfFxLYpGkS FWzRZ3o3cKDNEG46olJ1YaVGqioveGX3VaBsL3qLdW8eN237b9ZxBab3/sPEdi50 Q+NAO3lDVWS4V9prHYXLdckQKGU/pyp1iTjasbkBEKoNsQd3IknyHNWJpkBSbStF mWG7AghIHr1n/FWR4SnnXh+TTOTeI9sq5DelGFbCcjsC0Lat2eMh477oiJx6r6c= -----END CERTIFICATE-----Generated at Wed Jun 4 11:25:10 2025 by rpki-client