$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa File: ec42dc47-0cc9-474a-9470-19700f756d36.roa (raw, json) Hash identifier: yrjx0FcRg9PtZ91yC4UxgzHr/CjA5CxIWy5YZ5jTD4g= Subject key identifier: 33:BA:BD:FA:C7:62:B9:05:05:C6:54:39:F7:81:42:8A:C6:46:1D:03 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4B57A471C2DB370606968AFB53008445952DBBDF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa Signing time: Mon 31 Mar 2025 18:40:39 +0000 ROA not before: Mon 31 Mar 2025 18:40:39 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:57:a4:71:c2:db:37:06:06:96:8a:fb:53:00:84:45:95:2d:bb:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:40:39 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:5c:6a:ee:fd:f3:af:6e:b0:1f:14:76:a5: 50:4c:4d:d0:15:b8:6c:69:01:17:75:03:e3:11:43: 42:77:bf:38:30:5c:12:cc:d3:35:5b:91:74:3a:d2: 83:01:ff:2d:f4:0b:fe:50:19:2f:7f:87:91:fc:76: 7a:9b:da:a2:2b:9d:24:4e:81:53:55:ee:8b:8f:c0: 80:43:b3:ae:58:b2:e6:b3:0b:bb:44:85:2b:b1:41: 08:9f:1a:70:b8:90:ef:f3:06:6d:3f:fa:73:35:d1: de:db:52:8c:72:a3:f7:cc:3c:5c:1a:98:51:e6:4f: 36:ff:37:33:e2:73:de:2b:d3:9b:38:9e:57:2a:21: dd:12:c2:1b:ba:e7:af:8c:1e:e6:6b:4d:e1:3e:7e: e6:70:08:51:5a:3b:a4:96:36:e3:5d:3e:de:d3:65: 7c:88:6a:12:25:6d:a5:04:1e:7a:97:df:e8:4e:4c: 0b:05:14:dc:bc:00:da:97:7d:9d:39:f9:37:54:21: 13:50:e4:de:47:00:c3:f5:39:c5:37:52:35:6a:b1: ec:bf:b3:71:61:1e:21:a9:e2:fa:28:72:0e:31:da: 1c:f7:ba:4d:ce:21:58:e9:96:4c:f5:5c:4f:61:f5: dd:0c:7d:f9:77:ed:f1:5a:41:3b:d4:ab:f8:19:94: 07:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:BA:BD:FA:C7:62:B9:05:05:C6:54:39:F7:81:42:8A:C6:46:1D:03 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 29:31:c4:88:56:cc:7c:5f:40:f8:e8:5d:33:76:bb:dc:3a:0f: 56:5f:06:1f:50:09:48:9f:a8:fd:94:ba:32:3f:66:5a:86:5d: f8:56:78:77:29:d8:b3:38:61:e4:bb:53:d1:62:7e:bd:12:ef: 1b:1f:ee:c1:77:a8:ed:c8:dc:3b:1a:a9:62:d0:b0:33:28:47: 7b:39:49:a3:b7:17:6c:7c:07:87:ba:9a:68:89:e3:a9:b8:3d: b4:48:ff:fa:af:e2:fe:7d:43:d1:37:23:3c:8c:ea:5a:f3:26: eb:55:3b:09:2f:9f:ca:47:97:da:bc:02:2c:82:2b:75:72:e5: 90:f9:9a:db:e2:0e:22:39:79:75:ba:31:17:72:33:bd:ec:0d: 4a:2d:54:dc:ac:70:92:88:fe:4d:9f:c6:c2:5c:9a:4e:bf:a4: 6b:93:91:dc:e6:45:7c:68:68:b7:92:9e:6d:a2:15:21:88:96: 2d:46:3c:f6:55:19:00:93:c7:8a:d5:79:69:a1:91:dd:c2:f2: 56:70:f2:c5:78:82:f1:3a:1b:9e:6d:c0:b4:a1:ec:94:2e:14: 6a:7a:ab:cb:68:f1:f9:8c:a7:5c:c0:ce:e3:57:c3:52:08:60: 37:72:29:13:9a:76:4d:6d:d4:a5:e3:69:fc:ed:f6:9f:b8:db: d4:89:98:49 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS1ekccLbNwYGlor7UwCERZUtu98wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg0MDM5WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTllYjE3MmVhZWU5ZGExZGE4NGI2Yzg1ODhiMzlmZjI3 NWZhYWM1MTcyNGUxMmMzMjM0OGU3NDI3YjZmZjIyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAPFxq7v3zr26wHxR2pVBMTdAVuGxpARd1A+MRQ0J3vzgw XBLM0zVbkXQ60oMB/y30C/5QGS9/h5H8dnqb2qIrnSROgVNV7ouPwIBDs65Ysuaz C7tEhSuxQQifGnC4kO/zBm0/+nM10d7bUoxyo/fMPFwamFHmTzb/NzPic94r05s4 nlcqId0Swhu656+MHuZrTeE+fuZwCFFaO6SWNuNdPt7TZXyIahIlbaUEHnqX3+hO TAsFFNy8ANqXfZ05+TdUIRNQ5N5HAMP1OcU3UjVqsey/s3FhHiGp4voocg4x2hz3 uk3OIVjplkz1XE9h9d0Mffl37fFaQTvUq/gZlAeZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUM7q9+sdiuQUFxlQ594FCisZGHQMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjNDJkYzQ3LTBjYzktNDc0YS05NDcwLTE5NzAwZjc1NmQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBACkxxIhWzHxfQPjoXTN2u9w6 D1ZfBh9QCUifqP2UujI/ZlqGXfhWeHcp2LM4YeS7U9Fifr0S7xsf7sF3qO3I3Dsa qWLQsDMoR3s5SaO3F2x8B4e6mmiJ46m4PbRI//qv4v59Q9E3IzyM6lrzJutVOwkv n8pHl9q8AiyCK3Vy5ZD5mtviDiI5eXW6MRdyM73sDUotVNyscJKI/k2fxsJcmk6/ pGuTkdzmRXxoaLeSnm2iFSGIli1GPPZVGQCTx4rVeWmhkd3C8lZw8sV4gvE6G55t wLSh7JQuFGp6q8to8fmMp1zAzuNXw1IIYDdyKROadk1t1KXjafzt9p+429SJmEk= -----END CERTIFICATE-----Generated at Fri Apr 4 23:52:39 2025 by rpki-client