$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13d95532-571e-4655-86b3-383b815023ba.roa File: 13d95532-571e-4655-86b3-383b815023ba.roa (raw, json) Hash identifier: xxJterNXnQbAk+yEn/5a7Dr8KuM7pYdHfkXskLZ09jQ= Subject key identifier: 0F:55:24:32:2A:87:1C:12:0F:8F:DE:E2:7D:25:60:7D:D7:09:86:6D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2AA1A2AA34EEAE40673A7D0DF93CCB8849EA9845 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13d95532-571e-4655-86b3-383b815023ba.roa Signing time: Fri 25 Apr 2025 18:00:13 +0000 ROA not before: Fri 25 Apr 2025 18:00:13 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:a1:a2:aa:34:ee:ae:40:67:3a:7d:0d:f9:3c:cb:88:49:ea:98:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:13 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=6e43c6ea2d97fcd14554d448675ce2ccd9dbca4de915e0ac0c746d56452cb338, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:42:87:15:d2:42:f0:8e:5e:dd:e9:fe:c2:2d: 5e:67:c8:51:c3:bd:80:a4:56:c0:56:86:39:19:66: 68:1b:64:1e:f2:77:72:05:a9:ee:52:a9:6c:1a:f7: 65:d4:3f:91:13:57:48:4d:e4:a9:1f:f6:42:80:21: 76:ee:ad:ef:b6:63:07:10:87:ca:3b:4b:ec:b5:d3: 0a:f3:88:3e:f9:1f:7a:2d:50:de:29:38:0b:62:71: 7c:27:1b:00:d1:5c:43:00:e2:80:4e:7d:54:97:5a: 4b:95:55:1b:31:2f:d7:1d:c3:9f:be:b4:f1:c2:35: a2:87:46:a7:c7:ea:d9:9f:a0:ef:e1:66:55:7c:2d: 1f:4a:6b:27:10:19:dd:6a:29:9a:c4:d5:68:48:ed: 08:27:b5:f5:63:79:03:b8:71:0f:0c:2b:40:63:78: af:1d:c7:13:6e:43:67:79:92:f4:95:6f:c8:e6:53: 88:47:ab:3c:8a:73:b9:1e:a8:fb:aa:3c:cb:8e:fd: bd:18:a2:3f:c0:69:72:16:99:a2:d8:65:9c:fa:bd: 25:f1:fc:8d:8b:b2:ef:21:32:47:e9:7b:d0:8c:5e: f8:40:63:7b:38:48:6e:c2:be:3a:95:0a:1e:ba:23: 5a:ad:83:ad:d0:47:e5:f7:47:06:c2:d6:1f:92:97: 5a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:55:24:32:2A:87:1C:12:0F:8F:DE:E2:7D:25:60:7D:D7:09:86:6D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13d95532-571e-4655-86b3-383b815023ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/40 Signature Algorithm: sha256WithRSAEncryption 2a:32:11:27:87:70:e9:16:3e:1c:8a:c7:90:d7:f4:8b:60:f0: 97:4a:b8:c6:c8:a4:cf:9c:03:b3:85:ab:fd:8a:3f:75:7f:ec: 94:bb:82:41:88:6a:65:b9:7b:d6:5b:3f:51:9e:9f:7a:c0:72: ed:93:bc:8c:08:97:5e:17:e3:0f:85:0a:de:f8:59:1c:53:b0: 07:e8:58:59:69:58:c4:66:76:7b:d9:85:f9:70:f9:71:ed:e0: 0b:21:17:1e:0a:36:65:64:11:bf:2c:e6:2f:7c:e3:02:eb:9b: 9f:d7:90:db:75:f6:85:99:bc:d2:28:10:2f:85:04:d1:03:18: b6:7e:43:90:0c:53:64:4b:de:04:40:6c:2d:eb:7a:93:0a:92: 6e:5e:d2:29:db:36:2b:fa:87:67:6e:31:4b:ef:ce:b7:ed:c2: a8:57:52:7f:c7:f4:a2:fe:39:04:f0:ee:6e:21:0d:cf:49:af: 4e:5e:a5:9c:e6:4e:54:6b:b9:f0:5c:90:aa:73:28:35:5f:d6: 11:a9:51:ce:ae:6f:f9:67:3e:4e:9d:7e:03:e4:10:45:2f:40: 24:86:dc:ef:ec:c6:2a:ca:eb:5c:28:ab:b0:35:d6:a2:a5:c4: 8e:20:9f:51:42:cd:b4:0f:d6:2e:09:4b:a4:32:fa:00:7f:36: fa:53:d7:bd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKqGiqjTurkBnOn0N+TzLiEnqmEUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDEzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTQzYzZlYTJkOTdmY2QxNDU1NGQ0NDg2NzVjZTJjY2Q5 ZGJjYTRkZTkxNWUwYWMwYzc0NmQ1NjQ1MmNiMzM4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjQocV0kLwjl7d6f7CLV5nyFHDvYCkVsBWhjkZZmgbZB7y d3IFqe5SqWwa92XUP5ETV0hN5Kkf9kKAIXbure+2YwcQh8o7S+y10wrziD75H3ot UN4pOAticXwnGwDRXEMA4oBOfVSXWkuVVRsxL9cdw5++tPHCNaKHRqfH6tmfoO/h ZlV8LR9KaycQGd1qKZrE1WhI7QgntfVjeQO4cQ8MK0BjeK8dxxNuQ2d5kvSVb8jm U4hHqzyKc7keqPuqPMuO/b0Yoj/AaXIWmaLYZZz6vSXx/I2Lsu8hMkfpe9CMXvhA Y3s4SG7CvjqVCh66I1qtg63QR+X3RwbC1h+Sl1qLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUD1UkMiqHHBIPj97ifSVgfdcJhm0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzEzZDk1NTMyLTU3MWUtNDY1NS04NmIzLTM4M2I4MTUwMjNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76TANBgkqhkiG9w0BAQsFAAOCAQEAKjIRJ4dw6RY+HIrHkNf0i2Dw l0q4xsikz5wDs4Wr/Yo/dX/slLuCQYhqZbl71ls/UZ6fesBy7ZO8jAiXXhfjD4UK 3vhZHFOwB+hYWWlYxGZ2e9mF+XD5ce3gCyEXHgo2ZWQRvyzmL3zjAuubn9eQ23X2 hZm80igQL4UE0QMYtn5DkAxTZEveBEBsLet6kwqSbl7SKds2K/qHZ24xS+/Ot+3C qFdSf8f0ov45BPDubiENz0mvTl6lnOZOVGu58FyQqnMoNV/WEalRzq5v+Wc+Tp1+ A+QQRS9AJIbc7+zGKsrrXCirsDXWoqXEjiCfUULNtA/WLglLpDL6AH82+lPXvQ== -----END CERTIFICATE-----Generated at Sat Apr 26 13:34:15 2025 by rpki-client