$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa File: 0668f39a-0950-45e9-b174-8f7a83ff26e9.roa (raw, json) Hash identifier: /UxEyDqOrZ/T1IMK/3f2DlNnp++Jq+4aG4H52YZqE8Y= Subject key identifier: 1A:88:87:90:EB:22:55:F2:F7:61:56:EE:5A:E8:65:98:35:4B:A9:ED Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 133C4FA049DD03DDEB14826F47F44FF9E3082D24 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa Signing time: Fri 25 Apr 2025 17:51:03 +0000 ROA not before: Fri 25 Apr 2025 17:51:03 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:3c:4f:a0:49:dd:03:dd:eb:14:82:6f:47:f4:4f:f9:e3:08:2d:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:03 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=8fe51f1375f18c8daedac0cfe71f139cb49974e26a98166aa3eb2f38e9477d51, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b0:02:6f:56:7b:e0:e8:cf:ea:2b:14:7c:ed: 40:d7:56:6c:de:0b:3d:67:7a:2a:41:72:3b:51:9e: 9d:de:32:f2:f2:92:aa:f8:e9:98:78:85:af:1a:f9: 7d:1b:cb:68:a5:74:fb:77:2b:7c:f0:c3:eb:ee:81: 0d:7d:76:2d:d6:84:4e:19:96:9e:10:13:68:15:23: 3f:c3:56:77:7a:d1:78:9f:e8:2b:dc:1f:20:cf:1d: 7e:83:67:28:17:2b:3d:b2:c6:a6:b1:da:e4:30:98: c3:1e:8b:e1:45:9c:2e:bf:c9:fc:78:88:96:af:33: 28:64:b6:cd:02:63:90:eb:53:8f:55:c4:b3:65:f5: c8:64:ef:8f:5f:d3:20:e1:4f:98:a9:d7:55:2d:64: a9:21:cc:9b:da:7f:75:0b:df:ad:50:d4:09:04:ee: 1c:cb:0a:4b:76:35:bd:5b:14:5b:62:72:d6:12:29: 80:6a:8c:dc:c2:aa:c3:1c:64:c3:a1:89:47:15:4c: 8c:43:d2:0a:72:3c:76:3a:ff:3d:60:42:a7:47:81: c9:ad:89:86:ad:b6:42:9f:b9:70:c4:91:b1:07:3d: 07:0d:7c:d0:4d:d6:c1:da:72:d7:52:d0:07:1b:98: a5:91:42:ab:98:d1:46:f4:86:55:2f:bc:94:a8:a1: cc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:88:87:90:EB:22:55:F2:F7:61:56:EE:5A:E8:65:98:35:4B:A9:ED X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 1e:77:d4:00:72:22:e4:41:0f:8e:e2:65:8b:0a:d2:27:fa:92: 82:38:ce:ae:02:8e:9d:21:93:bd:b5:1a:e2:8e:19:c0:c9:5b: 2a:27:fb:3e:16:5f:12:d3:38:c1:e0:db:31:67:a5:fc:7c:d6: 5c:ec:d2:23:02:6e:c7:d3:0b:a3:84:04:a7:d8:74:1f:8a:40: a3:3f:2a:10:15:30:c4:59:33:14:7e:b9:d2:0a:9a:0d:55:b5: a0:47:b4:9b:bf:21:df:e4:6b:ad:b1:34:85:95:df:86:4d:b9: d4:ee:e0:11:aa:2d:cc:57:db:53:e0:93:8b:63:c3:78:2d:d6: 1f:c6:da:31:09:65:75:ed:e0:d3:f0:03:b6:21:71:0b:98:d4: 67:48:dc:4f:15:82:b0:26:cf:b0:fe:5d:7c:76:51:95:ac:3f: b1:40:df:03:8e:ab:07:dc:88:85:31:c7:c6:7d:00:b4:95:1a: 39:ed:cf:88:cf:b4:4c:71:65:60:7a:c9:82:a9:7e:58:89:7b: 9f:0c:43:2c:4d:84:17:80:63:d3:76:aa:18:e9:e5:39:74:80: e0:22:7e:56:5e:1f:e8:17:99:27:0d:10:40:9a:b7:0b:30:72: 51:77:42:4e:8d:ad:9a:e4:09:c8:ec:5d:3f:fc:c9:78:c5:de: 98:a7:6e:57 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEzxPoEndA93rFIJvR/RP+eMILSQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTAzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmU1MWYxMzc1ZjE4YzhkYWVkYWMwY2ZlNzFmMTM5Y2I0 OTk3NGUyNmE5ODE2NmFhM2ViMmYzOGU5NDc3ZDUxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGsAJvVnvg6M/qKxR87UDXVmzeCz1neipBcjtRnp3eMvLy kqr46Zh4ha8a+X0by2ildPt3K3zww+vugQ19di3WhE4Zlp4QE2gVIz/DVnd60Xif 6CvcHyDPHX6DZygXKz2yxqax2uQwmMMei+FFnC6/yfx4iJavMyhkts0CY5DrU49V xLNl9chk749f0yDhT5ip11UtZKkhzJvaf3UL361Q1AkE7hzLCkt2Nb1bFFtictYS KYBqjNzCqsMcZMOhiUcVTIxD0gpyPHY6/z1gQqdHgcmtiYattkKfuXDEkbEHPQcN fNBN1sHactdS0AcbmKWRQquY0Ub0hlUvvJSoocw9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGoiHkOsiVfL3YVbuWuhlmDVLqe0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2NjhmMzlhLTA5NTAtNDVlOS1iMTc0LThmN2E4M2ZmMjZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAB531AByIuRBD47iZYsK0if6 koI4zq4Cjp0hk721GuKOGcDJWyon+z4WXxLTOMHg2zFnpfx81lzs0iMCbsfTC6OE BKfYdB+KQKM/KhAVMMRZMxR+udIKmg1VtaBHtJu/Id/ka62xNIWV34ZNudTu4BGq LcxX21Pgk4tjw3gt1h/G2jEJZXXt4NPwA7YhcQuY1GdI3E8VgrAmz7D+XXx2UZWs P7FA3wOOqwfciIUxx8Z9ALSVGjntz4jPtExxZWB6yYKpfliJe58MQyxNhBeAY9N2 qhjp5Tl0gOAiflZeH+gXmScNEECatwswclF3Qk6NrZrkCcjsXT/8yXjF3pinblc= -----END CERTIFICATE-----Generated at Sat Apr 26 13:34:09 2025 by rpki-client