$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa File: c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa (raw, json) Hash identifier: Mbtv+KXwC+iUUBbn/KeFuvzDL8QI5gx0eKc+5KLyQqA= Subject key identifier: 1F:10:95:EC:83:C0:F4:66:38:D7:CE:27:7A:F3:C4:D5:DF:36:CB:3C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 467CC327A3B64800298A524882810A8652A83D4A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa Signing time: Tue 20 May 2025 18:20:10 +0000 ROA not before: Tue 20 May 2025 18:20:10 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:7c:c3:27:a3:b6:48:00:29:8a:52:48:82:81:0a:86:52:a8:3d:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:20:10 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=313da4d1bba6a31ba1086f3cc96e299e2e81baa51849658afa65991a3b9e7ffa, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f9:ae:45:79:e6:f4:5c:47:f0:23:2c:c8:48: e3:bf:fb:03:6c:fb:59:5b:ff:50:ba:f2:89:28:c8: 8b:47:75:77:90:00:4f:90:4a:48:53:04:a3:d1:0f: d2:7c:d2:ee:09:c0:51:2a:43:16:d1:be:f5:d1:f0: d9:25:bb:8b:90:06:28:83:0f:ac:20:ab:49:e7:f8: 9f:72:86:8c:75:26:c9:df:e2:e0:d8:2c:bf:ad:fe: 1e:ff:b3:2e:2b:7f:99:1c:25:77:94:bb:eb:84:b4: 6a:9c:be:2b:c0:73:0c:8d:87:e6:d2:3f:68:97:e5: ec:89:c4:b3:ac:7b:0f:f6:80:e2:ad:08:16:13:cf: a1:10:f3:a4:8d:57:67:6e:83:7e:18:8c:70:70:0f: a5:7b:ce:3e:e0:fc:40:91:7f:c9:e7:a7:0d:a5:82: f3:5c:bb:22:b8:e5:d7:09:7d:38:ed:c3:24:a0:13: 72:7d:96:31:91:c9:b8:69:08:05:7d:de:b6:6b:49: 0d:e8:57:66:65:f1:85:57:e8:3e:2b:26:77:e9:7a: 99:0e:a1:6c:05:df:3d:6b:8d:bf:b4:32:e7:51:b1: a9:c3:9f:c0:fa:35:39:20:a7:f4:6a:61:05:5d:b1: b3:25:91:b2:cd:ef:c5:75:6e:d8:21:1c:45:4d:a8: 35:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:10:95:EC:83:C0:F4:66:38:D7:CE:27:7A:F3:C4:D5:DF:36:CB:3C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:100::/40 Signature Algorithm: sha256WithRSAEncryption 4a:0e:07:78:a1:9a:ea:8c:c4:17:6a:62:d7:89:51:3b:55:15: ca:2d:ad:46:08:16:94:d2:a3:c1:6b:8f:44:1b:6f:68:0a:54: 38:07:82:40:90:b3:cb:61:5a:57:d3:91:99:e6:6d:23:72:2f: ed:32:4c:a7:c5:0e:80:a0:3f:c2:b1:a7:2a:73:6a:47:4b:c5: 70:62:ab:5f:8c:0d:c6:45:af:8b:e1:6c:cb:cb:83:6b:3d:bd: 86:0c:f2:34:44:ef:ff:13:ec:94:78:12:45:39:4a:ab:f8:59: 06:4c:ce:62:4d:b8:1a:86:69:fb:b6:4c:30:92:fe:28:a5:41: e1:11:d6:48:05:14:ca:2f:6b:47:f0:2e:50:de:19:53:d3:f6: ef:6b:43:f9:74:ee:1e:f0:f8:6e:e5:0c:f3:27:f2:87:c9:37: cf:fa:fb:82:a4:26:15:7e:e8:41:9b:61:28:b2:2b:97:db:5a: ff:04:f8:41:6f:a7:76:dd:0e:8c:bb:4b:ce:57:67:3e:07:3f: ed:11:63:49:02:82:75:e1:35:78:92:c2:be:22:c4:96:6a:9d: 3b:43:63:e9:e2:04:2f:d0:3e:31:d5:32:75:d2:c4:69:3d:6f: 10:de:5e:98:5b:6d:c4:5c:c0:e0:86:78:45:4e:8d:71:c2:9c: 92:a8:af:67 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURnzDJ6O2SAApilJIgoEKhlKoPUowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgyMDEwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTNkYTRkMWJiYTZhMzFiYTEwODZmM2NjOTZlMjk5ZTJl ODFiYWE1MTg0OTY1OGFmYTY1OTkxYTNiOWU3ZmZhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb+a5Feeb0XEfwIyzISOO/+wNs+1lb/1C68okoyItHdXeQ AE+QSkhTBKPRD9J80u4JwFEqQxbRvvXR8Nklu4uQBiiDD6wgq0nn+J9yhox1Jsnf 4uDYLL+t/h7/sy4rf5kcJXeUu+uEtGqcvivAcwyNh+bSP2iX5eyJxLOsew/2gOKt CBYTz6EQ86SNV2dug34YjHBwD6V7zj7g/ECRf8nnpw2lgvNcuyK45dcJfTjtwySg E3J9ljGRybhpCAV93rZrSQ3oV2Zl8YVX6D4rJnfpepkOoWwF3z1rjb+0MudRsanD n8D6NTkgp/RqYQVdsbMlkbLN78V1btghHEVNqDW7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHxCV7IPA9GY4184nevPE1d82yzwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MWRjMTEwLWU0ZDYtNGE3OC05MGRjLTk0ZTRkMjA4M2M4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwATANBgkqhkiG9w0BAQsFAAOCAQEASg4HeKGa6ozEF2pi14lRO1UV yi2tRggWlNKjwWuPRBtvaApUOAeCQJCzy2FaV9ORmeZtI3Iv7TJMp8UOgKA/wrGn KnNqR0vFcGKrX4wNxkWvi+Fsy8uDaz29hgzyNETv/xPslHgSRTlKq/hZBkzOYk24 GoZp+7ZMMJL+KKVB4RHWSAUUyi9rR/AuUN4ZU9P272tD+XTuHvD4buUM8yfyh8k3 z/r7gqQmFX7oQZthKLIrl9ta/wT4QW+ndt0OjLtLzldnPgc/7RFjSQKCdeE1eJLC viLElmqdO0Nj6eIEL9A+MdUyddLEaT1vEN5emFttxFzA4IZ4RU6NccKckqivZw== -----END CERTIFICATE-----Generated at Fri Jun 6 17:44:21 2025 by rpki-client