$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa File: 321028ee-2e2d-410c-8bdc-39a00f2044f0.roa (raw, json) Hash identifier: OrFXdSjIlqBlbMcn3VmY125k7E/C8vxTLcMImeBQm2c= Subject key identifier: E5:79:48:3E:9F:A4:DE:5E:22:D6:5A:4C:8F:44:96:94:1F:70:48:3A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 08C93B5029BC78CBA53F3EF8A58863C5DD31451B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa Signing time: Fri 25 Apr 2025 17:51:09 +0000 ROA not before: Fri 25 Apr 2025 17:51:09 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c9:3b:50:29:bc:78:cb:a5:3f:3e:f8:a5:88:63:c5:dd:31:45:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:09 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=36aea95c6ecf8e826ef733105596655c2fad9c847c5ea2a5831df7b8e88119f5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d9:14:3f:d2:f5:1b:a8:39:f7:e8:13:62:4e: e5:6a:cf:cf:da:4a:94:67:14:13:8f:29:42:0e:3f: 7b:01:d9:04:6d:a5:15:85:3c:a0:f1:66:70:dc:45: 6a:6d:49:83:f8:9c:fe:7e:ef:10:a2:dd:18:0a:06: c8:96:c5:25:30:f6:c9:3d:a7:84:35:57:60:8f:bb: a8:64:b1:58:5a:f6:f2:2e:c2:45:79:2a:6c:73:f1: 96:dd:ce:e7:90:74:d3:bc:f4:38:da:5c:40:e5:e9: 7f:e7:9a:3d:a1:81:3a:26:fb:80:d8:8d:5d:1b:34: 98:cb:b0:2a:b5:73:c2:fc:ff:ef:04:2c:e3:b2:a2: 56:02:01:1b:93:01:cf:8b:a6:e2:b4:ea:36:7e:1c: 24:ea:52:31:cb:49:58:22:33:3e:7f:17:d4:30:cc: 78:f0:1c:d2:a9:50:16:87:8e:7b:8e:43:30:e7:7f: e1:f0:14:93:1c:43:de:6e:f8:33:9f:2d:4d:71:f7: 04:10:de:ea:06:f0:68:70:40:fc:91:18:bb:10:8e: 18:65:ee:33:d5:b5:65:10:22:42:e4:36:e5:8e:41: 77:af:55:46:ed:56:40:b0:04:3d:89:ea:6e:80:ba: 9c:5c:27:82:30:16:82:d2:24:3f:39:be:eb:bb:78: 0e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:79:48:3E:9F:A4:DE:5E:22:D6:5A:4C:8F:44:96:94:1F:70:48:3A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 3c:db:f0:fe:b2:1f:73:28:22:c5:bd:77:9f:9a:3e:7b:2a:da: 6e:1a:99:dc:77:32:1e:3a:1c:53:77:dc:f9:65:bc:67:e1:99: 5a:20:8e:2f:f8:db:36:39:25:7f:30:5d:94:cc:b2:a2:d0:15: c4:05:f8:63:b4:71:cc:bc:45:96:40:f1:f4:38:22:c1:35:91: 5c:15:32:c5:b0:13:03:69:e7:3d:d5:f3:2f:31:4c:38:19:fd: dc:b1:c9:4b:37:38:7e:16:ac:05:0f:43:0a:7c:f9:99:8c:0b: 10:b8:c5:c2:f3:67:00:ef:dd:9e:95:a6:46:48:9a:ff:e3:c8: 91:35:9d:38:39:93:4a:53:32:87:b9:39:16:a8:55:6c:43:e3: a0:17:0f:b0:2e:1e:b6:34:56:30:dc:78:3b:8a:06:17:fc:11: b1:34:0c:f5:79:d5:c5:ee:5e:b0:63:3b:97:55:00:b5:a6:5e: 06:8e:87:ca:fe:78:64:a5:83:47:af:f1:be:a4:65:07:74:d9: 40:22:96:91:76:65:07:9a:ef:a1:39:1f:06:68:33:d3:06:f9: c9:a9:05:d3:c5:b9:48:77:28:c4:9c:ed:a1:57:8f:6f:d1:b3: a0:76:b4:6c:32:87:87:eb:03:64:6d:ce:7b:29:72:39:19:45: 27:97:29:60 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCMk7UCm8eMulPz74pYhjxd0xRRswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTA5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmFlYTk1YzZlY2Y4ZTgyNmVmNzMzMTA1NTk2NjU1YzJm YWQ5Yzg0N2M1ZWEyYTU4MzFkZjdiOGU4ODExOWY1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC52RQ/0vUbqDn36BNiTuVqz8/aSpRnFBOPKUIOP3sB2QRt pRWFPKDxZnDcRWptSYP4nP5+7xCi3RgKBsiWxSUw9sk9p4Q1V2CPu6hksVha9vIu wkV5Kmxz8ZbdzueQdNO89DjaXEDl6X/nmj2hgTom+4DYjV0bNJjLsCq1c8L8/+8E LOOyolYCARuTAc+LpuK06jZ+HCTqUjHLSVgiMz5/F9QwzHjwHNKpUBaHjnuOQzDn f+HwFJMcQ95u+DOfLU1x9wQQ3uoG8GhwQPyRGLsQjhhl7jPVtWUQIkLkNuWOQXev VUbtVkCwBD2J6m6AupxcJ4IwFoLSJD85vuu7eA7bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5XlIPp+k3l4i1lpMj0SWlB9wSDowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzMyMTAyOGVlLTJlMmQtNDEwYy04YmRjLTM5YTAwZjIwNDRmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBADzb8P6yH3MoIsW9d5+aPnsq 2m4amdx3Mh46HFN33PllvGfhmVogji/42zY5JX8wXZTMsqLQFcQF+GO0ccy8RZZA 8fQ4IsE1kVwVMsWwEwNp5z3V8y8xTDgZ/dyxyUs3OH4WrAUPQwp8+ZmMCxC4xcLz ZwDv3Z6VpkZImv/jyJE1nTg5k0pTMoe5ORaoVWxD46AXD7AuHrY0VjDceDuKBhf8 EbE0DPV51cXuXrBjO5dVALWmXgaOh8r+eGSlg0ev8b6kZQd02UAilpF2ZQea76E5 HwZoM9MG+cmpBdPFuUh3KMSc7aFXj2/Rs6B2tGwyh4frA2RtznspcjkZRSeXKWA= -----END CERTIFICATE-----Generated at Sat Apr 26 13:24:24 2025 by rpki-client