$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa File: 0b456d9a-b78d-45ba-9949-b00a9581f118.roa (raw, json) Hash identifier: 2iKIo55UYepsrJH+NCFOvimXpGYVmvFl5oVFN0dFMuw= Subject key identifier: AC:3A:A7:B8:48:23:93:F9:9C:3B:E0:7A:6B:5E:C4:2B:02:5A:DE:A4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2D06874E9A93C9962D42CB4AFCF1C4FB20601B7B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa Signing time: Fri 25 Apr 2025 18:01:06 +0000 ROA not before: Fri 25 Apr 2025 18:01:06 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:06:87:4e:9a:93:c9:96:2d:42:cb:4a:fc:f1:c4:fb:20:60:1b:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:06 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ef39b0d226794ef326647ff50b94ee0243ebc64f2ccde5cefb492b12f5a1c412, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a1:0d:f9:fc:a9:72:3d:68:bb:f0:29:1e:4a: ea:a3:6d:d4:7a:ba:d0:f4:f8:22:fd:6b:b0:c5:3d: 39:c2:ba:a7:96:41:78:fe:0d:bb:72:0b:ae:c2:b8: 12:47:0f:29:30:55:27:f0:28:77:f8:ba:ed:ae:6a: 95:14:ef:65:a6:7c:e5:bb:cb:87:45:f9:d6:a4:b3: 38:6f:9a:cd:7d:ff:46:57:aa:8c:f0:be:da:85:dc: 71:f5:62:2b:7e:4b:3f:7c:00:b3:3b:51:97:e7:aa: 6d:f0:b7:af:cd:59:8f:21:2e:e6:95:c9:b7:f3:1d: d6:da:62:2a:a6:3a:43:4f:70:be:fc:f4:27:d1:a9: 9e:dc:ed:d0:94:33:99:a4:4e:b4:d6:1c:3a:35:4e: 9e:d7:1b:a8:86:49:eb:08:fd:17:09:e1:72:c2:a8: 4f:14:df:30:0e:5f:74:3d:14:cc:d2:35:fe:14:20: 4a:8a:47:05:28:41:2c:23:05:c4:1f:dc:be:d1:69: 68:e9:ad:e7:83:f1:eb:ed:26:cb:5e:47:c3:2c:1d: fa:b8:71:76:ca:b9:a9:0d:b6:bd:fd:3a:ef:2f:72: bd:c8:1e:5f:60:73:03:29:13:58:1e:55:26:64:76: 13:ff:ba:75:25:59:23:da:94:9b:59:01:55:35:78: 1a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3A:A7:B8:48:23:93:F9:9C:3B:E0:7A:6B:5E:C4:2B:02:5A:DE:A4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/42 Signature Algorithm: sha256WithRSAEncryption 24:41:79:6f:5b:3a:54:b3:b8:fd:1a:19:30:2e:9e:d3:69:ec: 4a:b5:95:45:65:91:c2:c1:81:d5:de:b8:ae:d4:12:c4:b3:2d: 21:6d:a5:d4:e6:91:d2:af:3b:f6:46:5a:fc:b5:6e:7b:a1:7c: 39:a9:90:62:d7:93:25:0a:67:5a:17:10:8d:80:a1:9f:11:a9: 61:eb:5e:6f:e7:12:cd:e6:81:1d:e2:33:e4:7d:d0:17:8f:13: 9f:0c:0c:60:78:f6:c5:44:5c:de:e7:26:db:3d:16:40:bd:65: a9:1b:df:1a:e0:bb:a6:b4:89:7f:bd:81:7e:11:26:36:85:09: db:c9:15:8c:1e:49:33:5b:e7:4d:b2:21:e6:af:a7:9e:32:c4: 2c:fb:db:8c:e3:13:73:92:56:a8:01:d3:cb:89:72:8d:a7:7d: 4d:73:cd:7e:73:92:dc:18:dd:d9:fc:98:b0:ca:bc:3d:31:36: d3:3b:cc:ae:df:34:45:d8:e8:e0:70:ce:b3:fd:cf:79:63:eb: 4d:81:bf:6a:a5:7d:1d:65:29:9a:48:fb:0b:29:b1:4a:d9:ec: 83:59:0d:14:68:cc:ba:28:e7:1d:7e:96:50:cd:a1:a3:43:19: a8:96:ac:6c:2b:df:c0:f7:77:26:cb:90:ca:64:a3:55:d5:d8: a3:b7:0d:db -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULQaHTpqTyZYtQstK/PHE+yBgG3swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTA2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjM5YjBkMjI2Nzk0ZWYzMjY2NDdmZjUwYjk0ZWUwMjQz ZWJjNjRmMmNjZGU1Y2VmYjQ5MmIxMmY1YTFjNDEyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgoQ35/KlyPWi78CkeSuqjbdR6utD0+CL9a7DFPTnCuqeW QXj+DbtyC67CuBJHDykwVSfwKHf4uu2uapUU72WmfOW7y4dF+dakszhvms19/0ZX qozwvtqF3HH1Yit+Sz98ALM7UZfnqm3wt6/NWY8hLuaVybfzHdbaYiqmOkNPcL78 9CfRqZ7c7dCUM5mkTrTWHDo1Tp7XG6iGSesI/RcJ4XLCqE8U3zAOX3Q9FMzSNf4U IEqKRwUoQSwjBcQf3L7RaWjpreeD8evtJsteR8MsHfq4cXbKuakNtr39Ou8vcr3I Hl9gcwMpE1geVSZkdhP/unUlWSPalJtZAVU1eBoNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrDqnuEgjk/mcO+B6a17EKwJa3qQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiNDU2ZDlhLWI3OGQtNDViYS05OTQ5LWIwMGE5NTgxZjExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77AAwDQYJKoZIhvcNAQELBQADggEBACRBeW9bOlSzuP0aGTAuntNp 7Eq1lUVlkcLBgdXeuK7UEsSzLSFtpdTmkdKvO/ZGWvy1bnuhfDmpkGLXkyUKZ1oX EI2AoZ8RqWHrXm/nEs3mgR3iM+R90BePE58MDGB49sVEXN7nJts9FkC9Zakb3xrg u6a0iX+9gX4RJjaFCdvJFYweSTNb502yIeavp54yxCz724zjE3OSVqgB08uJco2n fU1zzX5zktwY3dn8mLDKvD0xNtM7zK7fNEXY6OBwzrP9z3lj602Bv2qlfR1lKZpI +wspsUrZ7INZDRRozLoo5x1+llDNoaNDGaiWrGwr38D3dybLkMpko1XV2KO3Dds= -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:34 2025 by rpki-client