$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa File: 1ad26571-c674-4a73-b205-77cb32fe83bd.roa (raw, json) Hash identifier: w9QMOWPNEh2/SqF7G7uHr/4rzcS+EMS3QitQVUKsoIs= Subject key identifier: E6:78:FB:79:75:64:43:6E:0E:50:6C:0C:9C:B5:F0:4D:38:ED:AB:AC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 56F74C390AACA00E4F473BFA2C884A9242C45366 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa Signing time: Fri 25 Apr 2025 17:51:18 +0000 ROA not before: Fri 25 Apr 2025 17:51:18 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f7:4c:39:0a:ac:a0:0e:4f:47:3b:fa:2c:88:4a:92:42:c4:53:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:18 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=71f3448aca6d5b17c3fef76509209fcb203d0e64a584da015b5b92f2a3798589, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:18:d2:d7:6d:98:e8:fd:01:a1:8e:4f:3a:7b: 71:81:1b:d4:f6:28:ae:ed:cb:11:ca:4b:12:b8:0c: ab:ed:7d:6f:8b:2a:36:a1:cd:a1:7c:02:72:b8:3e: 22:85:73:05:ec:ad:3a:09:d5:65:78:2b:25:d2:e1: e5:69:15:3c:71:e9:29:f3:f8:b8:7e:e8:07:cf:17: d6:cd:d5:6b:08:45:6c:83:e2:4b:a9:39:09:2c:0e: 76:f8:ca:b9:0f:d6:7e:cf:19:46:09:a5:ed:44:09: db:e0:40:6a:bc:11:99:17:68:32:51:9b:0a:a9:1d: 29:e1:78:cb:2d:29:d1:70:e4:9e:16:45:58:f3:ca: 62:35:3d:ec:b6:d0:13:02:2c:15:b9:41:b8:10:4b: 95:49:cf:ab:4c:11:54:28:cc:b0:62:d9:54:9c:f0: d4:69:27:15:26:0e:b4:ce:90:03:35:92:be:fe:1f: 4b:5d:e5:cd:7d:73:a3:55:1f:91:6e:d1:12:24:4f: 17:5e:60:84:7e:68:04:d5:df:04:46:66:72:55:9d: f4:ea:8b:61:54:5d:a2:3b:07:87:a5:24:ce:0a:15: 67:a1:42:0f:66:af:92:b0:4d:71:83:3d:9a:85:78: 9d:fa:24:e9:01:c2:9d:e6:85:c6:b0:00:80:82:9c: 5e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:78:FB:79:75:64:43:6E:0E:50:6C:0C:9C:B5:F0:4D:38:ED:AB:AC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10::/48 Signature Algorithm: sha256WithRSAEncryption 6d:2d:fd:08:20:95:01:60:15:7b:4c:d6:43:6a:c0:4e:83:45: 64:94:d1:86:9e:5f:5e:24:5a:e9:08:98:b2:e2:7f:5e:ed:25: 97:42:ac:79:97:0e:ba:58:5d:f5:d2:90:a1:11:c9:d9:77:71: 6e:90:9b:6b:6a:96:84:57:c4:d4:6e:06:61:62:36:12:6b:e8: 5e:6c:da:55:4c:88:7b:34:87:a1:c8:b4:da:28:dd:83:42:5c: 9d:6d:89:61:55:6b:96:c2:68:a1:80:ea:54:a8:d8:04:15:bd: c9:c5:24:d5:4d:1b:f7:0d:eb:9b:2a:a6:8e:20:28:ba:31:8d: dd:14:4c:34:86:e1:4e:a2:7e:19:c9:c4:bb:ff:42:1c:cc:c0: d1:1a:00:70:37:77:5f:12:a7:18:6c:96:ff:aa:47:a4:01:4b: f6:11:f4:9c:b9:a4:b9:f3:b1:13:a9:ad:cc:a4:d9:1b:0a:33: 44:2a:19:dc:1b:d1:ae:a0:a0:5e:57:9e:af:ad:e1:8d:80:51: 6d:d1:f6:5c:4a:5f:b0:5b:a5:f8:39:fc:12:c4:36:50:08:86: 09:4f:e9:21:a4:38:37:15:45:b4:91:0f:9a:9a:a6:ae:6d:71: c1:d2:e3:89:59:50:e4:fd:68:57:e7:b2:fa:3d:b5:3c:98:75: de:3f:c3:34 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVvdMOQqsoA5PRzv6LIhKkkLEU2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTE4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWYzNDQ4YWNhNmQ1YjE3YzNmZWY3NjUwOTIwOWZjYjIw M2QwZTY0YTU4NGRhMDE1YjViOTJmMmEzNzk4NTg5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOGNLXbZjo/QGhjk86e3GBG9T2KK7tyxHKSxK4DKvtfW+L KjahzaF8AnK4PiKFcwXsrToJ1WV4KyXS4eVpFTxx6Snz+Lh+6AfPF9bN1WsIRWyD 4kupOQksDnb4yrkP1n7PGUYJpe1ECdvgQGq8EZkXaDJRmwqpHSnheMstKdFw5J4W RVjzymI1Pey20BMCLBW5QbgQS5VJz6tMEVQozLBi2VSc8NRpJxUmDrTOkAM1kr7+ H0td5c19c6NVH5Fu0RIkTxdeYIR+aATV3wRGZnJVnfTqi2FUXaI7B4elJM4KFWeh Qg9mr5KwTXGDPZqFeJ36JOkBwp3mhcawAICCnF7xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5nj7eXVkQ24OUGwMnLXwTTjtq6wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhZDI2NTcxLWM2NzQtNGE3My1iMjA1LTc3Y2IzMmZlODNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABAwDQYJKoZIhvcNAQELBQADggEBAG0t/QgglQFgFXtM1kNqwE6D RWSU0YaeX14kWukImLLif17tJZdCrHmXDrpYXfXSkKERydl3cW6Qm2tqloRXxNRu BmFiNhJr6F5s2lVMiHs0h6HItNoo3YNCXJ1tiWFVa5bCaKGA6lSo2AQVvcnFJNVN G/cN65sqpo4gKLoxjd0UTDSG4U6ifhnJxLv/QhzMwNEaAHA3d18Spxhslv+qR6QB S/YR9Jy5pLnzsROprcyk2RsKM0QqGdwb0a6goF5Xnq+t4Y2AUW3R9lxKX7Bbpfg5 /BLENlAIhglP6SGkODcVRbSRD5qapq5tccHS44lZUOT9aFfnsvo9tTyYdd4/wzQ= -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:19 2025 by rpki-client