$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa File: 0b0acdef-c848-447c-9624-6a4634464aaa.roa (raw, json) Hash identifier: Nxs9bAr4iTmRJTNu0ZizDxumIoOFPKji2cZKjr7s7VY= Subject key identifier: 0F:6D:5D:BE:47:C5:C2:31:CC:0F:E7:69:BE:36:FB:13:32:90:2C:FD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7CC935B6FEB38B6A662AF86749A3A2B159FEAAC5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa Signing time: Fri 25 Apr 2025 18:00:51 +0000 ROA not before: Fri 25 Apr 2025 18:00:51 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:c9:35:b6:fe:b3:8b:6a:66:2a:f8:67:49:a3:a2:b1:59:fe:aa:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:51 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=b61471aa29bab168d7e179cd78f9196d33e3a5bc224915d007de2b13bd9dba14, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:29:85:d4:83:64:6e:60:f9:16:b3:44:b7:89: ef:71:8b:22:62:3e:ce:f1:21:06:db:37:87:6c:ac: c8:52:f8:e9:ee:b8:ca:5d:5b:0c:9f:da:bb:c0:2d: 03:4f:62:e0:c3:b8:e1:9b:77:d5:ac:10:57:84:b8: cf:d1:3a:cd:12:cb:0a:1c:1f:ea:c1:ef:77:37:e7: f8:d0:c6:c8:6e:15:95:47:ac:c7:fd:77:76:e0:b5: 5b:7b:27:2d:d5:7d:50:d4:b7:e9:eb:1f:9e:be:c7: 39:b5:9e:d4:c1:e9:75:92:34:45:43:b5:6d:c1:ec: 3e:d6:c3:ed:34:4b:3b:f0:ad:b1:72:38:d4:83:4d: 3c:95:98:01:37:4e:79:21:66:ae:6e:ed:c5:79:a8: e1:f3:1a:a9:fd:8a:c4:37:85:8a:6d:13:b5:e9:95: 9d:aa:2d:47:e0:e5:00:19:b4:57:61:77:62:01:92: c9:2d:0f:65:fc:a5:59:a0:52:6a:7a:c4:6d:5b:4a: 1f:de:fa:33:9e:71:96:5c:66:64:ad:f7:bf:a3:0e: 42:d9:99:b9:70:49:07:01:4e:96:7e:13:e5:af:1a: fe:29:a3:ec:08:12:23:80:ec:34:ee:7c:97:03:56: 71:06:05:58:ef:56:b2:fa:43:47:bc:69:6d:b4:ec: 7a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6D:5D:BE:47:C5:C2:31:CC:0F:E7:69:BE:36:FB:13:32:90:2C:FD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption 01:b2:a7:4b:3c:52:02:dc:3a:89:09:93:70:d3:bc:2a:a9:a0: 56:12:75:a0:b4:8b:7a:e7:3c:9e:53:11:fa:86:81:6a:91:0f: e1:e5:ef:86:9e:63:9d:89:3a:63:e5:8d:b3:b6:79:47:36:ef: f7:74:69:5a:14:47:12:0a:30:7c:d3:4e:b1:a9:28:16:ea:0c: 93:0c:5d:a7:f9:f1:9a:78:b1:d8:96:ce:0d:b9:56:34:c4:50: a2:4a:00:b0:64:2e:fd:db:39:15:d4:49:c2:a7:5a:6d:a8:29: 84:33:32:04:c5:40:75:6e:c3:31:45:c0:c3:39:40:6d:3c:e2: bd:af:1a:08:78:29:d3:1b:30:d2:55:99:19:95:25:49:2f:01: bc:af:7c:68:c0:a7:0f:e3:42:1a:32:22:c6:61:66:e7:73:e0: 70:79:a8:f0:87:9e:cb:61:6e:92:5b:fc:48:43:51:5d:a8:5b: 67:9d:66:4c:7f:22:21:88:5e:04:e5:6d:bf:23:c1:13:2f:0e: 36:8e:09:30:0c:ed:a0:f1:5b:ad:b3:16:08:cf:67:8b:39:7b: 5f:f6:fe:43:98:cb:54:c9:d0:3a:6a:b5:03:95:a6:b9:fc:3d: 7f:39:a4:5b:7f:43:10:8c:24:8f:16:4a:9d:6c:bb:6d:d9:a1: 7a:c5:89:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfMk1tv6zi2pmKvhnSaOisVn+qsUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDUxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjE0NzFhYTI5YmFiMTY4ZDdlMTc5Y2Q3OGY5MTk2ZDMz ZTNhNWJjMjI0OTE1ZDAwN2RlMmIxM2JkOWRiYTE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaKYXUg2RuYPkWs0S3ie9xiyJiPs7xIQbbN4dsrMhS+Onu uMpdWwyf2rvALQNPYuDDuOGbd9WsEFeEuM/ROs0SywocH+rB73c35/jQxshuFZVH rMf9d3bgtVt7Jy3VfVDUt+nrH56+xzm1ntTB6XWSNEVDtW3B7D7Ww+00SzvwrbFy ONSDTTyVmAE3TnkhZq5u7cV5qOHzGqn9isQ3hYptE7XplZ2qLUfg5QAZtFdhd2IB ksktD2X8pVmgUmp6xG1bSh/e+jOecZZcZmSt97+jDkLZmblwSQcBTpZ+E+WvGv4p o+wIEiOA7DTufJcDVnEGBVjvVrL6Q0e8aW207HonAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUD21dvkfFwjHMD+dpvjb7EzKQLP0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiMGFjZGVmLWM4NDgtNDQ3Yy05NjI0LTZhNDYzNDQ2NGFhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBAAGyp0s8UgLcOokJk3DTvCqp oFYSdaC0i3rnPJ5TEfqGgWqRD+Hl74aeY52JOmPljbO2eUc27/d0aVoURxIKMHzT TrGpKBbqDJMMXaf58Zp4sdiWzg25VjTEUKJKALBkLv3bORXUScKnWm2oKYQzMgTF QHVuwzFFwMM5QG084r2vGgh4KdMbMNJVmRmVJUkvAbyvfGjApw/jQhoyIsZhZudz 4HB5qPCHnsthbpJb/EhDUV2oW2edZkx/IiGIXgTlbb8jwRMvDjaOCTAM7aDxW62z FgjPZ4s5e1/2/kOYy1TJ0DpqtQOVprn8PX85pFt/QxCMJI8WSp1su23ZoXrFiWE= -----END CERTIFICATE-----Generated at Sat Apr 26 13:15:31 2025 by rpki-client