$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa File: 39b45593-f3f3-4a2e-aa3a-895815db366a.roa (raw, json) Hash identifier: UDCaJ6pp/U0CJrahIhp5kjUBGhI5NrRAEsM81YTX28Y= Subject key identifier: EE:A9:26:EE:92:FB:A0:E9:33:FF:75:3B:E7:51:87:99:20:FB:5C:0F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4D79CFD7A8AAF89ACEC5B47B1E9C5DE6A7FDA4F0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa Signing time: Fri 25 Apr 2025 18:10:09 +0000 ROA not before: Fri 25 Apr 2025 18:10:09 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:79:cf:d7:a8:aa:f8:9a:ce:c5:b4:7b:1e:9c:5d:e6:a7:fd:a4:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:10:09 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=26d66fc359b29184efb1df7f55d4aefd9abe65efae443fa2618c8654b3c26056, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:aa:7b:2b:d9:ac:ed:2c:8a:b1:90:44:18:c3: 55:bb:79:dc:d7:cd:aa:e2:fe:42:e4:6d:f0:fc:78: 8b:3c:dc:15:0e:74:77:25:96:65:f0:f8:5b:f8:52: 70:e6:bb:26:be:5e:9c:64:3c:ca:93:98:7a:b0:2f: f9:90:25:31:99:28:4d:71:bf:4d:6a:5e:29:41:31: cc:02:eb:6d:d3:82:3c:46:ed:60:de:b5:35:7f:e4: 52:78:65:81:5d:96:6d:f8:50:c1:17:ff:32:35:03: 95:f3:3e:12:78:39:a9:f7:5e:bc:e6:52:64:0d:09: 75:2f:12:22:31:c3:a5:45:ff:a9:16:8b:66:a9:7f: bb:90:05:10:54:1b:0a:5c:84:ff:21:16:d5:03:6f: 68:33:46:5e:e5:0f:e7:16:7d:58:6d:8f:57:1e:1f: 5f:9d:99:66:b7:ff:24:cd:dc:94:95:9a:ea:31:ac: 30:32:43:7c:15:c9:97:57:36:7e:9c:c7:b0:e9:c0: 01:47:84:b3:c3:40:ad:ec:72:ac:4b:8c:5a:b9:7e: ef:de:f6:ca:30:22:7c:a1:c6:1e:08:35:81:5e:6e: 29:6f:a0:f3:28:9a:7a:76:77:e8:e6:dc:62:4f:6a: 8f:8f:bf:e3:bd:d1:64:76:cb:b7:69:20:63:48:74: 6e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A9:26:EE:92:FB:A0:E9:33:FF:75:3B:E7:51:87:99:20:FB:5C:0F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/39 Signature Algorithm: sha256WithRSAEncryption a7:34:ad:36:b5:8d:46:3d:7a:cd:2c:91:f9:5a:23:37:68:5d: a0:75:ed:f6:35:f8:c2:99:f2:d8:8c:34:aa:3c:ec:58:71:0d: 15:d7:7c:01:65:a9:2e:5c:42:ba:44:1b:11:40:77:88:e7:cf: dc:b0:79:59:a1:fb:ef:b6:43:dd:25:07:8c:8c:21:25:9d:f7: 63:0d:6f:0a:dd:22:c7:d8:c9:9d:f3:b6:a9:3b:e8:07:df:5e: 67:5c:c2:d5:ec:03:4c:0e:fd:ed:ac:8c:56:40:6b:61:d9:a8: a6:a3:15:ce:75:bd:ca:a6:56:c5:b1:34:c8:30:04:d5:4f:b0: 9a:79:86:e2:10:d5:58:a9:a2:56:10:91:f4:fb:6d:de:a5:44: db:8d:ca:81:48:e4:e0:8c:0d:50:fb:e7:7b:bf:42:b3:ad:04: 64:69:b1:d0:17:1b:3b:61:2a:8f:88:dd:1c:3e:58:83:df:ab: c6:a5:35:6e:72:ff:c1:89:43:7a:5f:94:29:a6:be:06:b9:09: 87:24:bc:41:99:8f:ce:f5:46:e2:0d:75:93:b8:c8:44:52:79: a9:a8:ab:b7:44:a9:a8:3b:b1:73:79:ba:43:e5:78:66:f8:30: 72:da:f3:ed:ac:8d:8d:c3:4f:53:c3:26:5c:fd:e4:ca:fa:df: db:f1:e0:dc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTXnP16iq+JrOxbR7Hpxd5qf9pPAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgxMDA5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNmQ2NmZjMzU5YjI5MTg0ZWZiMWRmN2Y1NWQ0YWVmZDlh YmU2NWVmYWU0NDNmYTI2MThjODY1NGIzYzI2MDU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuqnsr2aztLIqxkEQYw1W7edzXzari/kLkbfD8eIs83BUO dHcllmXw+Fv4UnDmuya+XpxkPMqTmHqwL/mQJTGZKE1xv01qXilBMcwC623TgjxG 7WDetTV/5FJ4ZYFdlm34UMEX/zI1A5XzPhJ4Oan3XrzmUmQNCXUvEiIxw6VF/6kW i2apf7uQBRBUGwpchP8hFtUDb2gzRl7lD+cWfVhtj1ceH1+dmWa3/yTN3JSVmuox rDAyQ3wVyZdXNn6cx7DpwAFHhLPDQK3scqxLjFq5fu/e9sowInyhxh4INYFebilv oPMomnp2d+jm3GJPao+Pv+O90WR2y7dpIGNIdG5XAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU7qkm7pL7oOkz/3U751GHmSD7XA8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM5YjQ1NTkzLWYzZjMtNGEyZS1hYTNhLTg5NTgxNWRiMzY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAADANBgkqhkiG9w0BAQsFAAOCAQEApzStNrWNRj16zSyR+VojN2hd oHXt9jX4wpny2Iw0qjzsWHENFdd8AWWpLlxCukQbEUB3iOfP3LB5WaH777ZD3SUH jIwhJZ33Yw1vCt0ix9jJnfO2qTvoB99eZ1zC1ewDTA797ayMVkBrYdmopqMVznW9 yqZWxbE0yDAE1U+wmnmG4hDVWKmiVhCR9Ptt3qVE243KgUjk4IwNUPvne79Cs60E ZGmx0BcbO2Eqj4jdHD5Yg9+rxqU1bnL/wYlDel+UKaa+BrkJhyS8QZmPzvVG4g11 k7jIRFJ5qairt0SpqDuxc3m6Q+V4Zvgwctrz7ayNjcNPU8MmXP3kyvrf2/Hg3A== -----END CERTIFICATE-----Generated at Sat Apr 26 13:23:52 2025 by rpki-client