$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37cee73e-f60c-422c-8edf-fbb308bfb117.roa File: 37cee73e-f60c-422c-8edf-fbb308bfb117.roa (raw, json) Hash identifier: NQ5sx/3UtexAuF4YJGusGl2I/fKyJP8YmN9P2MsABpQ= Subject key identifier: 7A:32:2B:93:0A:D1:72:D7:A9:2B:8E:08:D5:EB:62:9A:87:2F:DC:20 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 444FCB9AF616073BB947B29E7454A56EEEADB79B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37cee73e-f60c-422c-8edf-fbb308bfb117.roa Signing time: Fri 25 Apr 2025 18:00:08 +0000 ROA not before: Fri 25 Apr 2025 18:00:08 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:4f:cb:9a:f6:16:07:3b:b9:47:b2:9e:74:54:a5:6e:ee:ad:b7:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:08 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=52e9c9ab28c04963ff54282f4bdba907897fe6909cff2577dee1bf8af3379d0a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4b:72:66:1c:9c:c9:90:42:d4:31:c8:b9:11: 85:6c:a5:8a:ff:30:4d:f6:e1:77:8f:2f:b6:69:d7: b7:07:ab:14:a7:cc:79:80:14:3e:53:8f:4c:70:32: 29:c6:0c:bf:54:84:c7:57:03:1a:61:dd:2d:37:a7: 44:ad:f5:ea:22:7e:cf:05:2e:71:be:b7:d5:3a:95: 69:f1:01:43:0b:30:65:1c:af:32:e0:26:87:25:63: 64:83:89:6b:89:25:66:1f:a9:3a:38:40:de:29:a7: c3:79:3b:3e:f5:c5:d7:41:0a:f3:e5:dc:b9:9f:dd: e2:b4:6c:a3:12:7f:0c:03:08:b6:b1:61:2b:09:79: e1:bf:7e:cb:68:53:f2:e0:e4:69:4f:0e:87:f1:42: 68:a4:87:a3:56:11:59:b6:f1:51:eb:ea:6a:47:a7: a8:c8:29:16:cf:78:90:5a:ab:f9:b0:d6:bc:f9:4c: bf:77:a4:89:e6:6d:9f:60:f5:89:26:97:04:ec:0f: 11:ed:ba:32:47:a0:c5:98:dd:fa:50:f8:4b:26:c2: c6:8a:3d:f0:91:c6:05:71:0e:ba:56:98:41:16:4b: 2f:c2:2e:52:3b:f5:f9:29:06:f9:51:c1:9e:fc:d5: c1:de:cf:e4:6e:36:4f:24:2a:5e:05:dd:a1:62:39: 89:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:32:2B:93:0A:D1:72:D7:A9:2B:8E:08:D5:EB:62:9A:87:2F:DC:20 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37cee73e-f60c-422c-8edf-fbb308bfb117.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/40 Signature Algorithm: sha256WithRSAEncryption 0b:3f:39:c5:7e:c5:a3:82:c1:8d:15:10:d9:19:1b:23:80:d9: bf:f3:42:a3:a3:d7:61:f9:ce:5f:fe:2e:9a:3b:b1:a8:dd:2f: d8:4b:83:50:e1:ff:62:04:c9:b3:ba:43:38:be:b9:46:42:07: 54:34:b2:8c:2b:dd:5e:5a:4a:b3:5a:4d:07:df:12:e8:13:97: 89:f8:7a:6f:a8:3c:03:d0:f8:1b:32:19:ff:4f:f6:37:1e:8a: 24:04:4c:97:97:d9:e0:04:09:34:c4:ae:79:45:f9:4e:73:ec: 8b:d2:3d:dd:08:75:2f:71:1b:0d:76:ae:69:e3:0f:47:ec:ca: 10:dc:11:d5:66:d9:ce:cb:8c:b9:80:51:a1:9b:2a:97:c4:3c: 27:27:ea:52:07:d0:a2:4a:ef:75:61:80:23:28:26:b4:98:b0: 0e:38:bd:cf:97:53:5d:59:69:91:56:46:55:db:ec:12:b7:fa: 72:93:28:1d:15:0d:6a:69:77:56:7e:cc:70:8d:c8:17:68:d5: dd:09:e3:76:15:60:c8:e6:bb:de:ba:ad:a7:42:69:e0:e8:52: de:d9:0c:2c:c2:da:5f:cf:5b:8e:29:47:4a:ea:6b:70:7c:a5: 13:f1:57:d8:8b:86:21:f6:c9:f4:82:aa:95:d8:77:a3:24:ac: a7:0a:c1:28 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURE/LmvYWBzu5R7KedFSlbu6tt5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDA4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmU5YzlhYjI4YzA0OTYzZmY1NDI4MmY0YmRiYTkwNzg5 N2ZlNjkwOWNmZjI1NzdkZWUxYmY4YWYzMzc5ZDBhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjS3JmHJzJkELUMci5EYVspYr/ME324XePL7Zp17cHqxSn zHmAFD5Tj0xwMinGDL9UhMdXAxph3S03p0St9eoifs8FLnG+t9U6lWnxAUMLMGUc rzLgJoclY2SDiWuJJWYfqTo4QN4pp8N5Oz71xddBCvPl3Lmf3eK0bKMSfwwDCLax YSsJeeG/fstoU/Lg5GlPDofxQmikh6NWEVm28VHr6mpHp6jIKRbPeJBaq/mw1rz5 TL93pInmbZ9g9YkmlwTsDxHtujJHoMWY3fpQ+EsmwsaKPfCRxgVxDrpWmEEWSy/C LlI79fkpBvlRwZ781cHez+RuNk8kKl4F3aFiOYlpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUejIrkwrRctepK44I1etimocv3CAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM3Y2VlNzNlLWY2MGMtNDIyYy04ZWRmLWZiYjMwOGJmYjExNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74DANBgkqhkiG9w0BAQsFAAOCAQEACz85xX7Fo4LBjRUQ2RkbI4DZ v/NCo6PXYfnOX/4umjuxqN0v2EuDUOH/YgTJs7pDOL65RkIHVDSyjCvdXlpKs1pN B98S6BOXifh6b6g8A9D4GzIZ/0/2Nx6KJARMl5fZ4AQJNMSueUX5TnPsi9I93Qh1 L3EbDXauaeMPR+zKENwR1WbZzsuMuYBRoZsql8Q8JyfqUgfQokrvdWGAIygmtJiw Dji9z5dTXVlpkVZGVdvsErf6cpMoHRUNaml3Vn7McI3IF2jV3QnjdhVgyOa73rqt p0Jp4OhS3tkMLMLaX89bjilHSuprcHylE/FX2IuGIfbJ9IKqldh3oySspwrBKA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:15:32 2025 by rpki-client