$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa File: 03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa (raw, json) Hash identifier: Ur5nXxm9btGJelDIUAJYw/3hGjP2Cfg5B+PKz4aXg3U= Subject key identifier: 53:18:8C:82:5E:7C:2E:A9:4D:20:92:12:18:B7:F8:04:D4:3C:6B:64 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 341AEE4E08D04C9D355B7184A7F126A75202F6F0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa Signing time: Fri 25 Apr 2025 17:51:14 +0000 ROA not before: Fri 25 Apr 2025 17:51:14 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:1a:ee:4e:08:d0:4c:9d:35:5b:71:84:a7:f1:26:a7:52:02:f6:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:14 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=54d156d3a0dcfc8ed4d64e7bb3839fb7bd1b62ce4e2d32b6fdc60cc51805a3c9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:18:4d:4f:e1:90:21:12:ab:27:34:3a:db:5e: 13:45:99:36:13:2c:bf:d1:7c:4e:9e:31:4a:12:e1: 26:82:8f:73:4c:18:74:59:3c:be:7c:30:d7:0a:9c: 0f:c2:b7:cd:c3:02:dc:6a:01:4c:e3:7b:cd:a1:3a: 2a:a4:ee:31:5f:cd:48:54:41:4d:6f:fa:d1:a1:2e: 23:84:94:15:0b:4f:ca:e0:40:25:af:47:40:4d:7f: ef:c6:dd:ee:b8:ef:ae:6c:eb:f2:d5:22:84:f7:d6: 2e:64:c4:6d:a9:6d:53:d0:5e:21:eb:8e:f2:ea:a2: e9:d8:08:08:98:9f:3d:01:c6:32:b4:50:a3:20:f4: 16:34:21:6d:05:e6:cb:72:d7:5c:4c:5e:88:2a:c8: b8:55:ac:8d:1e:e2:e7:a3:65:10:de:26:cf:fc:d3: 53:d0:1d:84:39:89:a6:43:11:9d:fe:a5:49:03:3a: ea:a5:db:d6:8d:f8:a1:c1:a7:1e:36:1b:bb:67:18: 81:b1:68:56:d0:e4:99:dd:5c:76:bd:91:ad:89:f2: 63:48:32:d0:50:7f:27:e5:9d:4e:90:97:8e:14:1a: 76:98:1b:6c:4e:3f:e7:3b:3a:1d:c4:be:66:9e:51: d1:6c:a8:51:18:01:35:55:86:a2:ec:11:f4:df:50: 48:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:18:8C:82:5E:7C:2E:A9:4D:20:92:12:18:B7:F8:04:D4:3C:6B:64 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 98:79:d6:21:08:22:b2:c8:11:a0:a8:8f:35:bb:eb:bf:48:ae: 46:0f:2d:96:2a:f3:a7:90:e5:48:f3:48:63:9c:eb:4c:71:4e: af:74:bb:ab:c5:73:2a:8f:ab:bb:cc:9d:c0:7e:e2:d7:fe:e7: 97:b3:63:63:59:14:0e:de:f3:7a:b0:05:d3:cd:90:71:3b:97: fc:2d:f4:14:ff:e9:06:ed:b7:a3:6c:0c:32:e6:dd:9e:4b:fe: 20:76:a1:4c:3b:f9:52:63:24:aa:d9:94:d2:2a:b6:a6:a2:05: 63:3a:65:dd:05:df:75:fe:c3:f8:93:3d:8c:a3:3e:53:2e:10: d0:60:2f:0c:fe:14:e9:8c:d7:a9:fb:e8:72:ab:76:83:46:5e: 84:a5:34:38:41:ff:40:58:ce:79:ec:9f:4b:fa:55:79:6a:e4: 49:03:7e:40:08:6c:e8:11:4d:e1:a1:71:51:42:b9:73:f8:51: 57:c2:50:43:37:66:d8:44:06:4b:f1:58:35:0f:b0:11:5e:4a: 3d:7b:fc:66:56:8a:ff:e9:d4:13:4d:06:ba:61:96:ed:a4:a0: 56:4d:1c:12:20:a8:96:48:10:c9:d4:22:53:c7:3f:fc:11:35: 3c:f3:cf:ad:5c:87:69:77:cf:c8:95:18:52:3f:6d:3a:2b:98: d8:37:62:76 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNBruTgjQTJ01W3GEp/Emp1IC9vAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTE0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGQxNTZkM2EwZGNmYzhlZDRkNjRlN2JiMzgzOWZiN2Jk MWI2MmNlNGUyZDMyYjZmZGM2MGNjNTE4MDVhM2M5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkGE1P4ZAhEqsnNDrbXhNFmTYTLL/RfE6eMUoS4SaCj3NM GHRZPL58MNcKnA/Ct83DAtxqAUzje82hOiqk7jFfzUhUQU1v+tGhLiOElBULT8rg QCWvR0BNf+/G3e64765s6/LVIoT31i5kxG2pbVPQXiHrjvLqounYCAiYnz0BxjK0 UKMg9BY0IW0F5sty11xMXogqyLhVrI0e4uejZRDeJs/801PQHYQ5iaZDEZ3+pUkD Ouql29aN+KHBpx42G7tnGIGxaFbQ5JndXHa9ka2J8mNIMtBQfyflnU6Ql44UGnaY G2xOP+c7Oh3EvmaeUdFsqFEYATVVhqLsEfTfUEivAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUxiMgl58LqlNIJISGLf4BNQ8a2QwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzYjU5YTFlLTYyNjgtNDYwNy1hNmMxLTY5ZTZkZTgwY2Y0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAJh51iEIIrLIEaCojzW7679I rkYPLZYq86eQ5UjzSGOc60xxTq90u6vFcyqPq7vMncB+4tf+55ezY2NZFA7e83qw BdPNkHE7l/wt9BT/6Qbtt6NsDDLm3Z5L/iB2oUw7+VJjJKrZlNIqtqaiBWM6Zd0F 33X+w/iTPYyjPlMuENBgLwz+FOmM16n76HKrdoNGXoSlNDhB/0BYznnsn0v6VXlq 5EkDfkAIbOgRTeGhcVFCuXP4UVfCUEM3ZthEBkvxWDUPsBFeSj17/GZWiv/p1BNN Brphlu2koFZNHBIgqJZIEMnUIlPHP/wRNTzzz61ch2l3z8iVGFI/bTormNg3YnY= -----END CERTIFICATE-----Generated at Sat Apr 26 16:02:06 2025 by rpki-client