$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa File: aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa (raw, json) Hash identifier: wBRJTnE7DpHlkKuLsJ4y+RZnWby25GCIpDfd0dtYN24= Subject key identifier: 8F:B2:68:70:4B:2E:92:F1:9F:C7:F4:5A:A8:0D:9A:E1:D2:E9:8C:D2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2ABC1984D4922FCF9657CD6EFC8C8B6BC12C721B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa Signing time: Tue 18 Feb 2025 16:40:08 +0000 ROA not before: Tue 18 Feb 2025 16:40:08 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5502::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:bc:19:84:d4:92:2f:cf:96:57:cd:6e:fc:8c:8b:6b:c1:2c:72:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 18 16:40:08 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:f9:3d:fe:a6:94:c5:59:60:b1:60:40:ab:36: a0:46:cc:b8:9b:50:fa:d3:57:d3:bc:8b:3f:96:16: 16:d3:33:4d:c0:ae:72:68:b8:c9:7e:eb:9d:aa:38: 1e:8e:99:35:14:51:c6:6f:39:6b:3b:85:77:59:07: c1:19:4a:e6:a7:3d:85:7d:b8:01:35:2c:7c:6c:cf: eb:00:f0:bc:44:de:9d:61:03:05:9f:41:66:1b:85: f3:49:48:86:89:d5:fc:69:27:37:77:22:f4:62:19: 0b:e1:03:e2:04:1f:44:d4:28:92:72:87:b4:cf:89: 74:da:d9:f3:8c:6f:88:29:8f:f8:9a:a2:51:5b:b5: 82:9d:70:1c:8c:91:33:b4:10:e4:ac:81:84:5d:c0: d0:5f:96:d2:05:ee:ca:bf:fc:53:15:5a:6a:97:f4: 4e:52:ce:8b:74:f3:bc:78:ff:4a:6f:44:64:0c:d7: 97:be:60:78:70:af:c0:6e:f7:d2:aa:6e:40:b3:5b: 39:21:dd:62:0d:95:47:44:37:ad:06:13:f4:f3:aa: 2a:c4:ee:40:11:72:47:15:75:b7:65:fb:88:2a:3c: 80:46:1a:09:a7:61:06:f9:bb:54:42:8e:29:cc:e2: d7:d5:82:8f:02:07:0b:84:73:70:ad:6e:ee:23:d9: 31:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B2:68:70:4B:2E:92:F1:9F:C7:F4:5A:A8:0D:9A:E1:D2:E9:8C:D2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5502::/48 Signature Algorithm: sha256WithRSAEncryption a0:8d:0c:2a:38:39:a5:68:a4:72:fa:75:ea:b1:6e:98:03:e2: fe:7b:c1:e2:67:b3:e9:f3:f6:b3:e0:6f:9e:3a:c2:d5:11:5a: 97:3c:5d:0c:c0:8d:f9:3c:a6:75:1e:a4:0e:6d:4f:a9:7f:21: 86:17:de:25:36:95:1b:6f:8b:42:22:af:6a:50:63:c8:b1:17: d5:c5:7c:69:79:15:bf:d5:96:22:8e:f8:2d:47:ff:37:9b:0f: de:d5:b7:76:cc:23:ae:c5:60:2c:54:3c:25:f1:53:af:59:9f: 4c:a3:89:e3:53:0c:b0:a9:65:39:43:41:0c:03:4e:f9:a7:05: fc:e2:83:9e:63:1e:a1:82:76:e9:fd:51:de:9c:a3:db:15:56: 9d:fb:2b:b3:6d:58:32:99:b6:c0:1f:16:22:53:49:e9:f4:da: a1:05:6e:23:4e:91:7c:2e:dd:6c:80:d4:a1:2e:81:b8:d9:3c: a2:4c:d3:1f:e6:3d:24:08:57:7c:e0:6c:8d:61:e0:c3:4d:58: eb:96:da:49:14:32:67:8d:49:9e:ca:22:39:bf:1d:df:c3:6d: 2c:a1:50:d2:d3:e3:08:7a:cf:ec:77:77:4c:4d:bd:06:cc:82: 19:7a:1e:1f:16:be:dd:84:d9:ec:66:55:dd:be:bc:6b:f1:ff: de:e3:22:fd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKrwZhNSSL8+WV81u/IyLa8EschswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMjE4MTY0MDA4WhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGQ1OTBiMjQ0Nzg5ZjRkNDhkZmY5MDM1MmY3ODlhZmYx ZWU2YWIwNjllOTBmYmM4NjM1MzAwM2UyOTJkOGYyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCN+T3+ppTFWWCxYECrNqBGzLibUPrTV9O8iz+WFhbTM03A rnJouMl+652qOB6OmTUUUcZvOWs7hXdZB8EZSuanPYV9uAE1LHxsz+sA8LxE3p1h AwWfQWYbhfNJSIaJ1fxpJzd3IvRiGQvhA+IEH0TUKJJyh7TPiXTa2fOMb4gpj/ia olFbtYKdcByMkTO0EOSsgYRdwNBfltIF7sq//FMVWmqX9E5Szot087x4/0pvRGQM 15e+YHhwr8Bu99KqbkCzWzkh3WINlUdEN60GE/TzqirE7kARckcVdbdl+4gqPIBG GgmnYQb5u1RCjinM4tfVgo8CBwuEc3Ctbu4j2TH/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUj7JocEsukvGfx/RaqA2a4dLpjNIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZDI0YTJlLWY2MWItNDJiNC05NTA5LTllMDZhMTM2ZWIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQIwDQYJKoZIhvcNAQELBQADggEBAKCNDCo4OaVopHL6deqxbpgD 4v57weJns+nz9rPgb546wtURWpc8XQzAjfk8pnUepA5tT6l/IYYX3iU2lRtvi0Ii r2pQY8ixF9XFfGl5Fb/VliKO+C1H/zebD97Vt3bMI67FYCxUPCXxU69Zn0yjieNT DLCpZTlDQQwDTvmnBfzig55jHqGCdun9Ud6co9sVVp37K7NtWDKZtsAfFiJTSen0 2qEFbiNOkXwu3WyA1KEugbjZPKJM0x/mPSQIV3zgbI1h4MNNWOuW2kkUMmeNSZ7K Ijm/Hd/DbSyhUNLT4wh6z+x3d0xNvQbMghl6Hh8Wvt2E2exmVd2+vGvx/97jIv0= -----END CERTIFICATE-----Generated at Thu Mar 13 23:47:55 2025 by rpki-client