$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b11f31cd-336e-4434-8174-6a90ba67bb58.roa File: b11f31cd-336e-4434-8174-6a90ba67bb58.roa (raw, json) Hash identifier: O6JBYsEcF4WRs2BSOUkl9qqLeQoGFXOUbYsuS9JX9jg= Subject key identifier: B0:BB:EC:8F:D6:E6:E8:61:30:08:8A:F1:02:FA:CC:EE:00:E8:C9:46 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4F29B7D4E313763D9F2703D5E7533B3B7548223A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b11f31cd-336e-4434-8174-6a90ba67bb58.roa Signing time: Tue 04 Mar 2025 23:20:27 +0000 ROA not before: Tue 04 Mar 2025 23:20:27 +0000 ROA not after: Tue 08 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5519::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:29:b7:d4:e3:13:76:3d:9f:27:03:d5:e7:53:3b:3b:75:48:22:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 4 23:20:27 2025 GMT Not After : Apr 8 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fa:e9:ae:e0:d7:a9:5a:48:66:ce:4d:36:8d: d5:6b:5a:a8:37:6b:be:7b:da:de:6a:a0:e8:23:81: 1b:93:ec:0c:02:8d:95:4b:f5:93:20:17:8d:ce:8c: 6d:d6:dd:01:cb:20:84:6b:a8:27:b2:d7:3e:f8:ad: 94:12:ce:d5:38:3b:b2:63:dc:ef:3c:b0:32:82:38: 61:fc:de:71:72:bf:05:90:30:9c:38:3b:91:e2:b3: 07:99:7a:ff:bc:94:1f:58:a9:44:45:b9:f0:da:00: a4:a6:e9:85:b9:13:f8:2e:8c:fd:e2:0f:c9:45:ba: 4d:6f:b7:79:c3:d3:0c:2d:2d:16:47:81:51:79:33: 66:71:6e:a8:5c:f0:c5:e2:17:e0:4f:0e:7f:b0:ac: ab:72:44:a4:be:09:ac:ea:09:22:ce:e2:ac:c5:bf: 55:ed:c9:22:b1:8e:c0:ca:68:c8:79:45:dc:4b:5a: 04:8a:fd:05:8e:9c:ac:c6:be:c7:72:3d:a3:3d:e5: b3:7c:4a:49:b1:fc:a0:f6:87:d3:24:01:35:00:c5: 4e:e2:ce:93:b0:6a:86:7a:e5:fe:05:9a:9e:4d:97: 77:ca:61:10:9e:76:49:e9:dc:2b:79:de:63:4f:f9: df:32:be:2c:4b:c1:ef:b4:04:1b:f8:31:4b:44:90: 23:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:BB:EC:8F:D6:E6:E8:61:30:08:8A:F1:02:FA:CC:EE:00:E8:C9:46 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b11f31cd-336e-4434-8174-6a90ba67bb58.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5519::/48 Signature Algorithm: sha256WithRSAEncryption 28:f5:52:b3:66:74:9d:f9:ca:c4:92:c9:4f:31:87:b1:44:25: 52:30:82:29:9f:38:91:2f:1d:0c:8a:af:4e:5f:e2:06:a1:0d: 27:e7:fa:c7:3c:15:ae:49:e6:26:cf:31:48:53:e2:3b:a8:7b: ea:01:7c:c3:d6:46:a6:56:c0:a5:10:cd:b5:46:8b:89:2c:f8: c2:fe:55:d8:e7:63:5f:77:53:0a:9b:27:f7:45:2b:13:ed:63: 14:d7:f1:e2:7c:70:d7:69:35:f2:c9:7c:9d:f8:2e:ec:67:12: a4:a0:b2:aa:db:4d:88:15:f6:88:2e:65:c1:70:8d:38:4f:f3: ca:c9:da:da:ed:c4:86:fa:c3:71:5d:8b:a2:66:2c:14:1c:96: f3:0b:50:b3:07:b7:de:41:8e:1c:c8:ce:a9:1e:8a:bd:2a:36: fa:e6:fa:ca:11:ad:0a:20:2c:05:40:0b:cd:69:70:3e:6e:43: ed:cc:37:3c:7d:86:46:5f:fd:59:70:eb:0d:43:9b:a3:45:be: e4:5f:ba:62:ff:e0:ae:b5:12:50:00:6b:0c:1c:b4:68:1d:ad: c0:3a:99:63:77:7d:88:83:f4:ac:f7:a9:c3:6a:9d:6d:67:36: 11:db:4a:fc:22:ad:15:34:b5:39:f4:5b:f4:7a:71:4f:1b:bb: da:e3:8d:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTym31OMTdj2fJwPV51M7O3VIIjowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzA0MjMyMDI3WhcNMjUwNDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWZkYmM4Yjc0YmVkOTE1OWY4OTQ0ZTQwYzFlYjFiZDU3 NDE5NDVjNzY0MDc2MGEyODE2YjdmYzVkNDQ1YjdmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu+umu4NepWkhmzk02jdVrWqg3a7572t5qoOgjgRuT7AwC jZVL9ZMgF43OjG3W3QHLIIRrqCey1z74rZQSztU4O7Jj3O88sDKCOGH83nFyvwWQ MJw4O5HisweZev+8lB9YqURFufDaAKSm6YW5E/gujP3iD8lFuk1vt3nD0wwtLRZH gVF5M2Zxbqhc8MXiF+BPDn+wrKtyRKS+CazqCSLO4qzFv1XtySKxjsDKaMh5RdxL WgSK/QWOnKzGvsdyPaM95bN8Skmx/KD2h9MkATUAxU7izpOwaoZ65f4Fmp5Nl3fK YRCedknp3Ct53mNP+d8yvixLwe+0BBv4MUtEkCNFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsLvsj9bm6GEwCIrxAvrM7gDoyUYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IxMWYzMWNkLTMzNmUtNDQzNC04MTc0LTZhOTBiYTY3YmI1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRkwDQYJKoZIhvcNAQELBQADggEBACj1UrNmdJ35ysSSyU8xh7FE JVIwgimfOJEvHQyKr05f4gahDSfn+sc8Fa5J5ibPMUhT4juoe+oBfMPWRqZWwKUQ zbVGi4ks+ML+VdjnY193UwqbJ/dFKxPtYxTX8eJ8cNdpNfLJfJ34LuxnEqSgsqrb TYgV9oguZcFwjThP88rJ2trtxIb6w3Fdi6JmLBQclvMLULMHt95BjhzIzqkeir0q Nvrm+soRrQogLAVAC81pcD5uQ+3MNzx9hkZf/Vlw6w1Dm6NFvuRfumL/4K61ElAA awwctGgdrcA6mWN3fYiD9Kz3qcNqnW1nNhHbSvwirRU0tTn0W/R6cU8bu9rjjZI= -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:36 2025 by rpki-client