$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa File: 06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa (raw, json) Hash identifier: FYSgBNWpZjCubLABReSbGDpMLo6kmtOShVkpq9ffTjE= Subject key identifier: 28:0B:4B:38:9D:B6:C7:8C:18:5D:5E:65:6F:06:B9:CC:6F:F7:81:59 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4C295383C13CE15DAADA50B3B0A2403DBC30D308 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa Signing time: Fri 25 Apr 2025 18:00:11 +0000 ROA not before: Fri 25 Apr 2025 18:00:11 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:29:53:83:c1:3c:e1:5d:aa:da:50:b3:b0:a2:40:3d:bc:30:d3:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:11 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=36fb2b2fa02c65606c2a39ed8ace0406c6ec4a89e9d398d49dda0cb9ea09580a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f0:24:81:0f:30:eb:48:b7:3e:c8:ac:6f:a0: b2:cd:62:34:07:57:a4:22:95:f2:52:99:6c:6e:55: 9e:a0:37:60:f7:47:c8:ca:0f:60:d3:bc:12:17:f3: 2f:ab:f4:97:a3:9d:f3:7b:a7:3f:a1:59:35:f5:7e: 8c:52:50:6e:94:33:63:9d:91:3b:00:9f:56:2d:33: cf:bc:2f:3c:d5:2f:a9:ea:d3:e3:51:7b:eb:7f:ba: 7e:f7:ba:3c:48:03:39:bc:ca:90:58:ab:25:89:54: 76:d8:ba:02:b0:75:a2:1c:ae:3a:d4:d6:b8:5c:b3: 23:b6:cc:d0:e0:c2:0e:b3:7b:bd:23:84:19:32:3a: 51:1c:bd:c1:fa:7c:f5:bd:37:48:b8:24:2b:92:18: 88:36:9f:b0:16:af:46:d1:c3:b8:6a:c9:8d:b2:14: 37:7c:27:87:86:31:97:08:55:a8:88:da:2d:38:bf: 44:e6:1e:3e:71:60:34:48:7f:6d:12:8f:b1:3d:3c: a3:f8:cf:94:ee:48:26:1f:14:0e:81:45:aa:2b:04: 8c:4e:c0:51:8a:53:99:ee:ea:be:37:9d:ad:82:b2: df:fc:92:94:f2:92:fd:a5:3c:be:55:70:34:2d:7a: 7a:fd:b8:6c:ad:31:6f:f2:4a:3c:79:ef:ba:b8:fb: 39:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0B:4B:38:9D:B6:C7:8C:18:5D:5E:65:6F:06:B9:CC:6F:F7:81:59 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 35:68:3d:e6:c5:3e:6f:67:c5:ba:37:ba:5f:97:2b:21:3d:6e: 88:83:f6:d8:b8:53:ed:26:1f:51:6a:07:8f:53:05:99:8d:9f: e8:25:21:36:8b:99:15:d0:cc:9f:a2:05:ac:d7:0c:e0:b4:bd: 1a:cc:e9:f5:dc:38:41:d2:87:3c:50:30:4c:a1:b7:7d:e1:70: 73:b8:06:0f:38:d5:1b:6f:7a:35:6a:54:7c:00:6d:eb:cc:e7: 3d:87:4d:b1:a0:0d:63:ed:5e:93:16:e1:6d:2a:e6:e3:49:eb: 21:de:1c:13:ea:15:e9:97:a3:47:12:aa:44:eb:e0:a0:2d:39: 5f:7f:9b:a6:1a:1b:1a:72:89:c9:4f:5c:58:ce:7d:93:04:07: 9c:c0:33:16:2a:6c:d6:57:8d:4c:91:22:e5:18:5e:2c:ab:b2: cf:25:b8:b2:ba:34:44:47:d7:39:b9:b8:e7:b2:cf:c1:ca:10: 9d:e1:c1:da:b7:c6:d8:07:0e:f7:ba:c0:dd:af:d8:2c:4c:da: 30:1d:55:9c:b5:1c:7e:32:16:90:d8:3f:59:27:13:71:19:d6: 81:c4:6c:a7:23:9a:35:26:1a:81:f6:93:f4:81:eb:0d:f5:f9: 7c:22:b6:ad:07:f3:5c:41:34:11:ec:35:4c:98:31:73:d5:62: a7:54:5e:b8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTClTg8E84V2q2lCzsKJAPbww0wgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDExWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmZiMmIyZmEwMmM2NTYwNmMyYTM5ZWQ4YWNlMDQwNmM2 ZWM0YTg5ZTlkMzk4ZDQ5ZGRhMGNiOWVhMDk1ODBhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP8CSBDzDrSLc+yKxvoLLNYjQHV6QilfJSmWxuVZ6gN2D3 R8jKD2DTvBIX8y+r9JejnfN7pz+hWTX1foxSUG6UM2OdkTsAn1YtM8+8LzzVL6nq 0+NRe+t/un73ujxIAzm8ypBYqyWJVHbYugKwdaIcrjrU1rhcsyO2zNDgwg6ze70j hBkyOlEcvcH6fPW9N0i4JCuSGIg2n7AWr0bRw7hqyY2yFDd8J4eGMZcIVaiI2i04 v0TmHj5xYDRIf20Sj7E9PKP4z5TuSCYfFA6BRaorBIxOwFGKU5nu6r43na2Cst/8 kpTykv2lPL5VcDQtenr9uGytMW/ySjx577q4+znTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKAtLOJ22x4wYXV5lbwa5zG/3gVkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2ZWEyYjRhLTZkZmMtNDg5ZC1iOGYxLWRjN2Y5M2NhYzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBADVoPebFPm9nxbo3ul+XKyE9 boiD9ti4U+0mH1FqB49TBZmNn+glITaLmRXQzJ+iBazXDOC0vRrM6fXcOEHShzxQ MEyht33hcHO4Bg841RtvejVqVHwAbevM5z2HTbGgDWPtXpMW4W0q5uNJ6yHeHBPq FemXo0cSqkTr4KAtOV9/m6YaGxpyiclPXFjOfZMEB5zAMxYqbNZXjUyRIuUYXiyr ss8luLK6NERH1zm5uOeyz8HKEJ3hwdq3xtgHDve6wN2v2CxM2jAdVZy1HH4yFpDY P1knE3EZ1oHEbKcjmjUmGoH2k/SB6w31+Xwitq0H81xBNBHsNUyYMXPVYqdUXrg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:18:26 2025 by rpki-client