$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa File: 789a1aef-77f7-4108-9d41-1a97c18e12cb.roa (raw, json) Hash identifier: vl0edc3+K7vInJvui4y9aHPFzF0765wDZS8SouYik2o= Subject key identifier: 18:3C:E6:1E:CF:6D:10:95:22:CE:1A:DC:08:67:1A:34:9D:55:F0:BF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25CB633B92895FB7D570DAB676D634D3905BA7A0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa Signing time: Tue 04 Mar 2025 23:50:43 +0000 ROA not before: Tue 04 Mar 2025 23:50:43 +0000 ROA not after: Tue 08 Apr 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f00c::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:cb:63:3b:92:89:5f:b7:d5:70:da:b6:76:d6:34:d3:90:5b:a7:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 4 23:50:43 2025 GMT Not After : Apr 8 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:80:b8:dc:6b:b2:c2:42:f2:71:51:57:8e:b7: 9a:dc:9f:b0:be:f8:bf:00:51:c3:36:48:55:e9:ec: 0d:a9:12:f1:84:ab:64:90:18:ea:0c:d1:25:d0:08: 1a:d3:d7:4c:67:ae:cd:8a:96:8c:76:1e:ab:26:f3: 88:05:76:0b:c6:01:7a:8c:f7:51:c7:b5:e2:6c:a9: 0c:f8:88:89:f5:7a:e7:f1:55:58:34:c9:31:9b:30: 50:07:7f:a3:b7:34:28:16:ba:10:bd:1c:a9:93:9a: 53:66:87:2a:59:4c:bb:61:1e:9f:38:1f:95:db:91: 86:3a:fb:e5:ba:9f:f6:8f:d8:62:4d:7b:58:0a:93: 85:ac:4c:04:b6:38:31:7e:da:8d:90:f2:a2:cc:4a: 1c:79:21:01:9b:28:1f:36:aa:29:6f:a1:cb:ee:a1: 3b:29:53:c4:cf:ef:a3:c6:58:72:7f:3f:b7:b4:7c: a1:2b:c9:6b:2c:65:91:8b:fa:3a:f6:6d:cc:e0:c1: 4d:9c:95:bf:cf:a4:1f:1e:c3:54:0b:5b:2b:4a:fe: dd:27:36:f4:24:4f:ab:89:0c:ef:28:05:14:e9:48: a3:41:b9:ca:76:da:d6:e0:ce:7a:b8:2f:af:de:2d: 86:a4:04:35:31:ee:b4:e1:b9:b9:d5:db:43:6d:ad: e3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3C:E6:1E:CF:6D:10:95:22:CE:1A:DC:08:67:1A:34:9D:55:F0:BF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00c::/39 Signature Algorithm: sha256WithRSAEncryption 58:c9:8b:5c:28:0f:dc:7f:91:10:dd:81:95:65:f2:cb:35:48: 30:fb:f2:f7:fb:97:9c:4d:d1:19:be:48:1d:fe:d9:3e:4d:50: 99:39:89:45:fc:ca:d8:37:d5:f0:0b:79:e6:67:ff:9e:ec:04: 92:0b:42:90:49:30:b1:a6:6f:e9:23:e4:3d:4e:ac:51:55:01: c3:25:a2:a5:8d:81:27:14:d5:df:d4:58:2a:54:cb:c4:69:8e: 6e:89:ab:99:42:cd:ef:25:a7:1c:93:16:65:67:01:5c:ea:d2: cf:d9:55:31:d1:fa:63:ef:bf:c6:30:cc:c6:bc:4d:fb:b9:42: 42:b5:42:86:ac:66:c1:04:bf:89:9d:4e:b9:14:46:15:b4:a4: a7:77:45:7f:e2:47:7b:e2:ad:74:23:b2:d0:b2:87:a3:d0:d8: 7a:0f:bf:8b:68:d2:39:32:35:f7:bd:42:fe:32:06:73:ea:e9: 77:ed:93:c6:43:c7:6c:49:ed:34:67:9b:f8:20:11:3f:8b:c5: 0b:95:97:9e:0a:e1:7e:c4:da:c8:1a:a1:8f:d6:7f:bb:59:cf: 18:cc:60:76:01:07:78:0f:d7:c9:21:58:21:44:34:c0:a0:1f: 9e:0e:13:42:7c:c0:e1:a5:ca:b6:a3:7b:6d:2d:ce:37:2b:00: 99:a4:dc:84 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJctjO5KJX7fVcNq2dtY005Bbp6AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzA0MjM1MDQzWhcNMjUwNDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzY0YjdkYzQ2NWYxNWEwMTA3ZGMzZTk4Mjk4MDIxZDE1 YWUzZWI5MmIzY2M2MzczZGVhZDIzYzgwMDVkODAxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQgLjca7LCQvJxUVeOt5rcn7C++L8AUcM2SFXp7A2pEvGE q2SQGOoM0SXQCBrT10xnrs2Klox2Hqsm84gFdgvGAXqM91HHteJsqQz4iIn1eufx VVg0yTGbMFAHf6O3NCgWuhC9HKmTmlNmhypZTLthHp84H5XbkYY6++W6n/aP2GJN e1gKk4WsTAS2ODF+2o2Q8qLMShx5IQGbKB82qilvocvuoTspU8TP76PGWHJ/P7e0 fKEryWssZZGL+jr2bczgwU2clb/PpB8ew1QLWytK/t0nNvQkT6uJDO8oBRTpSKNB ucp22tbgznq4L6/eLYakBDUx7rThubnV20NtreP7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUGDzmHs9tEJUizhrcCGcaNJ1V8L8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc4OWExYWVmLTc3ZjctNDEwOC05ZDQxLTFhOTdjMThlMTJjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAMADANBgkqhkiG9w0BAQsFAAOCAQEAWMmLXCgP3H+REN2BlWXyyzVI MPvy9/uXnE3RGb5IHf7ZPk1QmTmJRfzK2DfV8At55mf/nuwEkgtCkEkwsaZv6SPk PU6sUVUBwyWipY2BJxTV39RYKlTLxGmObomrmULN7yWnHJMWZWcBXOrSz9lVMdH6 Y++/xjDMxrxN+7lCQrVChqxmwQS/iZ1OuRRGFbSkp3dFf+JHe+KtdCOy0LKHo9DY eg+/i2jSOTI1971C/jIGc+rpd+2TxkPHbEntNGeb+CARP4vFC5WXngrhfsTayBqh j9Z/u1nPGMxgdgEHeA/XySFYIUQ0wKAfng4TQnzA4aXKtqN7bS3ONysAmaTchA== -----END CERTIFICATE-----Generated at Thu Mar 13 23:48:59 2025 by rpki-client