$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa File: a84b381b-bc70-4b19-91a5-fa66fa80011e.roa (raw, json) Hash identifier: GxRpvqCP2+DA8GC24aCuTApYGxd/SeVpXIlwQ1x859w= Subject key identifier: 6B:67:CF:B9:54:04:CF:5C:82:2C:7D:06:DA:4F:54:7E:F2:30:E3:CF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4124B6198F9F113953F2ABA44F3930D9FB3A4284 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa Signing time: Sat 24 May 2025 00:30:45 +0000 ROA not before: Sat 24 May 2025 00:30:45 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:24:b6:19:8f:9f:11:39:53:f2:ab:a4:4f:39:30:d9:fb:3a:42:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 24 00:30:45 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=2d28df555055f6a5ad45db21716e711b6f9230741dd72080eddfd7216d7e89f2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:27:56:26:74:69:fa:cd:e6:16:43:41:81:4e: 68:e9:68:e0:32:38:ad:a4:77:df:69:29:52:0e:c3: e3:36:92:12:67:f4:f0:d9:f4:cf:b0:03:ef:cd:0e: c3:07:6e:66:64:e7:04:63:23:45:1c:2d:60:9e:40: 03:19:7b:64:4a:28:e3:a1:a4:ab:f4:3a:37:91:2c: 77:90:69:3e:56:78:ce:c2:92:ca:43:98:aa:54:be: 30:a3:b5:b1:ba:17:3b:2c:40:70:47:84:bc:97:a3: b2:38:a3:3e:89:5e:ae:5d:93:5e:71:3e:54:ed:e0: 8d:f7:e7:54:f6:7a:5d:03:46:f7:a8:35:f1:9d:df: 6d:02:0f:dc:f1:63:1a:99:ec:c0:57:a2:67:0c:bc: 59:67:c3:a0:ad:d3:5f:3b:83:08:23:66:9e:b1:9b: 43:92:2e:89:8d:b9:c5:0f:cf:b0:3d:96:e9:5d:e4: 38:85:20:98:45:af:81:ee:47:14:e9:0b:64:7f:04: f0:ee:bb:5e:26:96:56:10:1c:ea:d0:aa:7d:4e:8d: 65:1a:a3:f6:95:22:bb:e7:4d:98:ba:e0:c7:df:82: cb:cc:03:05:ac:8c:2d:9b:f5:92:b0:16:cc:d8:6c: 3e:da:3c:c7:87:a4:04:1c:75:04:2e:54:52:85:b7: b9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:67:CF:B9:54:04:CF:5C:82:2C:7D:06:DA:4F:54:7E:F2:30:E3:CF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption 13:a6:8a:97:11:20:d2:87:06:7c:1f:06:0f:2a:37:0f:58:2d: 7d:01:dd:8b:5b:9e:23:2e:f8:01:93:f3:ae:8a:70:bd:7a:fd: 7e:34:8d:c3:cf:1f:c3:c7:59:60:e3:b8:95:fa:30:56:92:15: 89:76:84:ad:61:93:56:d3:b7:0f:0f:11:f9:9e:06:c4:93:dd: 2b:5c:8d:5f:74:a3:16:f4:12:0b:06:9e:21:d0:b0:65:37:53: de:15:72:81:df:b2:b1:32:08:94:fd:6e:d3:ea:27:59:d0:64: 6b:17:45:bd:57:51:fc:ab:0b:76:89:e1:81:96:08:11:db:f2: d9:54:34:e2:ec:1a:b6:2c:0b:83:9d:f8:fa:8e:92:03:f8:c7: 87:d4:c4:8d:70:a3:cb:6d:6b:84:86:18:30:39:d0:42:07:71: eb:e4:17:58:d6:88:3d:31:ce:88:fa:78:fc:d0:21:58:77:d5: 13:fd:60:00:0f:bf:57:5f:94:dc:6a:47:38:33:df:21:65:f9: e9:54:d1:7b:16:56:a3:c3:b9:ee:de:87:ce:e2:07:8d:53:02: df:41:78:c8:4d:5d:c7:02:40:a5:e4:34:10:1b:17:a2:12:e5: 35:a7:ca:ce:0e:00:7c:2c:58:e8:b2:c8:b8:b1:cb:24:50:9a: dc:e2:37:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQSS2GY+fETlT8qukTzkw2fs6QoQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI0MDAzMDQ1WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDI4ZGY1NTUwNTVmNmE1YWQ0NWRiMjE3MTZlNzExYjZm OTIzMDc0MWRkNzIwODBlZGRmZDcyMTZkN2U4OWYyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRJ1YmdGn6zeYWQ0GBTmjpaOAyOK2kd99pKVIOw+M2khJn 9PDZ9M+wA+/NDsMHbmZk5wRjI0UcLWCeQAMZe2RKKOOhpKv0OjeRLHeQaT5WeM7C kspDmKpUvjCjtbG6FzssQHBHhLyXo7I4oz6JXq5dk15xPlTt4I3351T2el0DRveo NfGd320CD9zxYxqZ7MBXomcMvFlnw6Ct0187gwgjZp6xm0OSLomNucUPz7A9luld 5DiFIJhFr4HuRxTpC2R/BPDuu14mllYQHOrQqn1OjWUao/aVIrvnTZi64MffgsvM AwWsjC2b9ZKwFszYbD7aPMeHpAQcdQQuVFKFt7mhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUa2fPuVQEz1yCLH0G2k9UfvIw488wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E4NGIzODFiLWJjNzAtNGIxOS05MWE1LWZhNjZmYTgwMDExZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBABOmipcRINKHBnwfBg8qNw9Y LX0B3YtbniMu+AGT866KcL16/X40jcPPH8PHWWDjuJX6MFaSFYl2hK1hk1bTtw8P EfmeBsST3StcjV90oxb0EgsGniHQsGU3U94VcoHfsrEyCJT9btPqJ1nQZGsXRb1X UfyrC3aJ4YGWCBHb8tlUNOLsGrYsC4Od+PqOkgP4x4fUxI1wo8tta4SGGDA50EIH cevkF1jWiD0xzoj6ePzQIVh31RP9YAAPv1dflNxqRzgz3yFl+elU0XsWVqPDue7e h87iB41TAt9BeMhNXccCQKXkNBAbF6IS5TWnys4OAHwsWOiyyLixyyRQmtziN28= -----END CERTIFICATE-----Generated at Fri Jun 6 17:51:47 2025 by rpki-client