$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e601690-d98c-4d0d-8f50-2f457decb102.roa File: 1e601690-d98c-4d0d-8f50-2f457decb102.roa (raw, json) Hash identifier: P8w3ePSSs7SH5v0ZN2ZbB7QlwzYv71cNOtqkTA9BH9Q= Subject key identifier: ED:64:D8:FD:42:38:41:3F:2B:BF:40:E3:5A:F9:99:FB:B1:9D:F9:D7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 73FEEC5E5E69DF100044BE84BC74826FA73C4761 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e601690-d98c-4d0d-8f50-2f457decb102.roa Signing time: Fri 25 Apr 2025 17:51:05 +0000 ROA not before: Fri 25 Apr 2025 17:51:05 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:fe:ec:5e:5e:69:df:10:00:44:be:84:bc:74:82:6f:a7:3c:47:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:05 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=0d8ed9743f324800c1c6a015a7e773bc6dad023f3992600400e508b43e28222d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5f:49:38:de:99:c7:a2:73:73:7c:fd:78:24: 04:51:9f:48:57:5d:d0:71:7b:27:eb:0c:c4:41:b5: ff:19:76:c5:3a:f0:c5:86:f4:db:de:af:3f:f4:c2: 50:2c:d9:09:67:87:df:b9:ef:53:19:67:d0:82:79: 2a:f5:6e:2f:9f:38:4c:c9:94:d8:61:04:1d:f0:00: ed:33:bf:9e:35:df:13:c4:bd:e7:62:b2:8c:9f:54: 10:c3:0d:b0:0d:cd:d9:02:76:66:96:dc:ff:0c:7b: c9:08:fe:8c:54:e3:82:77:ce:c2:21:e1:49:76:90: d2:0b:df:02:10:1f:87:8e:77:4f:7e:f0:17:cf:7e: 6f:0c:40:03:6a:07:9d:2a:0b:98:60:6c:c6:5f:c9: 71:c9:78:1d:3f:73:3e:87:dc:88:56:c1:03:3c:fa: 04:8d:d7:33:49:34:f1:89:4c:b1:a2:74:69:0e:0f: bd:e2:d6:df:4f:4d:20:5f:65:f2:ac:01:83:ea:51: 8a:24:16:d6:b5:20:c2:54:9f:04:c8:76:83:de:97: 94:e9:bc:98:b4:86:7d:de:5e:23:d6:48:e9:b8:f9: ce:73:af:b8:71:f0:20:a0:8f:b5:de:ac:14:69:8b: ad:c9:1a:77:2b:49:00:65:05:c7:66:77:c0:85:bd: 31:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:64:D8:FD:42:38:41:3F:2B:BF:40:E3:5A:F9:99:FB:B1:9D:F9:D7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e601690-d98c-4d0d-8f50-2f457decb102.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 54:65:d1:76:7d:9d:cf:7b:ec:9e:6f:80:7c:cb:6b:43:49:38: b1:75:c5:c4:70:11:fa:6f:cb:fb:64:fc:80:4d:cd:a4:67:1b: 15:14:56:bf:66:a6:8c:28:19:51:8e:5e:f5:b0:ae:60:95:76: 3e:c6:ee:69:74:c2:13:cb:79:59:01:3b:66:d7:0f:9b:c2:b0: 66:34:b3:96:e2:10:e6:7f:a9:b3:50:91:a3:9c:65:df:cc:2c: b0:76:43:33:d1:04:8d:f2:88:28:d6:9d:2a:41:4f:59:b6:c7: df:51:5e:a4:56:1e:29:a7:54:a2:11:e0:d1:96:29:03:0e:bf: 08:56:dc:2d:6f:df:5a:08:3d:6a:49:03:a8:80:bf:35:13:1a: f3:7f:a4:08:ce:de:d1:53:eb:70:07:5b:94:48:3c:3e:34:e0: 8a:d7:54:d2:d4:ae:14:32:d1:b6:bc:44:3e:69:84:bd:47:8c: bb:d8:35:c5:08:84:f1:46:a1:7e:57:c7:18:fc:0a:cb:d7:57: 71:54:06:fc:08:04:b2:6d:75:5e:a9:c0:ec:ad:7e:55:87:6d: d4:a2:87:48:12:97:2b:00:35:33:94:fe:20:7e:85:c0:3b:c3: e3:11:71:f1:84:ce:13:98:bb:29:62:e3:e4:09:25:25:31:61: 35:4c:7e:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUc/7sXl5p3xAARL6EvHSCb6c8R2EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTA1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDhlZDk3NDNmMzI0ODAwYzFjNmEwMTVhN2U3NzNiYzZk YWQwMjNmMzk5MjYwMDQwMGU1MDhiNDNlMjgyMjJkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOX0k43pnHonNzfP14JARRn0hXXdBxeyfrDMRBtf8ZdsU6 8MWG9Nverz/0wlAs2Qlnh9+571MZZ9CCeSr1bi+fOEzJlNhhBB3wAO0zv5413xPE vedisoyfVBDDDbANzdkCdmaW3P8Me8kI/oxU44J3zsIh4Ul2kNIL3wIQH4eOd09+ 8BfPfm8MQANqB50qC5hgbMZfyXHJeB0/cz6H3IhWwQM8+gSN1zNJNPGJTLGidGkO D73i1t9PTSBfZfKsAYPqUYokFta1IMJUnwTIdoPel5TpvJi0hn3eXiPWSOm4+c5z r7hx8CCgj7XerBRpi63JGncrSQBlBcdmd8CFvTFlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7WTY/UI4QT8rv0DjWvmZ+7Gd+dcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFlNjAxNjkwLWQ5OGMtNGQwZC04ZjUwLTJmNDU3ZGVjYjEwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAFRl0XZ9nc977J5vgHzLa0NJ OLF1xcRwEfpvy/tk/IBNzaRnGxUUVr9mpowoGVGOXvWwrmCVdj7G7ml0whPLeVkB O2bXD5vCsGY0s5biEOZ/qbNQkaOcZd/MLLB2QzPRBI3yiCjWnSpBT1m2x99RXqRW HimnVKIR4NGWKQMOvwhW3C1v31oIPWpJA6iAvzUTGvN/pAjO3tFT63AHW5RIPD40 4IrXVNLUrhQy0ba8RD5phL1HjLvYNcUIhPFGoX5Xxxj8CsvXV3FUBvwIBLJtdV6p wOytflWHbdSih0gSlysANTOU/iB+hcA7w+MRcfGEzhOYuyli4+QJJSUxYTVMftY= -----END CERTIFICATE-----Generated at Sat Apr 26 19:12:34 2025 by rpki-client