$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa File: 455cc001-6d98-49b1-ab73-9a1e06726f9f.roa (raw, json) Hash identifier: hKsNMrQ5FjU8ivmv3fFIa/Bb6l0EEfWE36Rcul4vWwM= Subject key identifier: 19:CC:37:0A:08:6B:27:D1:F3:71:7A:34:2C:D2:70:F4:DE:9D:80:27 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 756723313F34575E050167141E127C94A275EEFA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa Signing time: Tue 15 Apr 2025 00:50:07 +0000 ROA not before: Tue 15 Apr 2025 00:50:07 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:67:23:31:3f:34:57:5e:05:01:67:14:1e:12:7c:94:a2:75:ee:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 15 00:50:07 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=c6c46e56de32330e77ffba8c7a95c091a44464df5d5e0b5d134e655f2d5429dd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:23:0f:9b:c2:32:db:bd:f8:96:52:3d:fe: ff:eb:18:f7:75:9a:1c:50:46:31:c7:4d:ba:ac:7a: e8:66:80:72:ca:81:31:f8:25:e1:3e:b0:6b:74:cc: 49:59:43:5d:f1:29:59:f1:08:03:b4:d7:af:1b:96: b2:32:18:d2:d8:fa:1b:1a:0f:44:ca:32:9b:21:01: c0:54:b9:8e:47:72:b5:f9:ad:15:45:a2:7c:9e:1a: ec:62:08:9d:89:5d:d9:99:09:dc:40:3f:70:8f:dd: bb:80:7b:12:54:57:d8:f6:d1:7b:f9:56:ec:2d:5a: e1:bf:a4:92:46:d7:6e:b1:be:6f:11:23:9c:a3:46: 97:01:0f:4d:a7:e4:11:bf:4b:2f:6a:7f:58:32:20: 6b:18:fd:60:a0:79:94:9e:03:0d:d0:66:aa:52:15: c1:4b:d2:a8:2e:8e:e1:5f:a6:c5:93:35:e8:7a:b0: 50:64:0e:10:b6:0a:a5:15:10:00:53:c7:72:11:cb: 8b:ec:0b:42:3c:59:bd:1d:2e:60:49:64:d7:c3:cc: ce:37:81:7b:5a:3e:2b:23:8d:7e:0a:d1:59:9b:bb: 0e:04:a1:68:48:d7:f4:35:ed:75:ab:92:b7:35:4f: b7:17:e7:4a:8f:1f:7b:c7:c8:2a:e2:16:a1:fc:1d: f8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:CC:37:0A:08:6B:27:D1:F3:71:7A:34:2C:D2:70:F4:DE:9D:80:27 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption a3:21:11:90:c2:07:ee:0b:f0:9f:43:5f:89:11:8f:7d:81:70: e4:ea:57:3c:07:20:a9:86:76:b9:14:db:68:cf:0d:e1:4f:8b: 76:cc:fb:99:00:8a:3f:e1:0d:d8:94:94:12:05:89:c8:4a:a6: 8d:ce:07:36:82:86:46:62:cb:3a:9b:22:e0:1f:6d:4f:a4:69: 64:54:a1:78:15:25:e1:e5:c5:2f:73:f0:04:95:8c:62:24:36: ef:12:d0:a1:2a:28:30:2c:d1:49:d8:99:a9:36:fa:d7:d8:93: 68:ee:48:d3:f4:7d:82:c0:a7:cf:8d:ed:d0:e7:59:c7:af:eb: 1c:57:a6:60:fc:f1:53:a0:6d:f2:f4:08:7f:f3:d0:79:eb:0a: 80:7f:62:3d:28:ec:c4:e6:d4:a3:7e:76:25:eb:75:8d:7d:55: d8:a4:24:6b:81:76:7a:d8:6f:e0:1c:c6:08:90:d7:88:a3:23: 78:ab:a2:ec:ad:79:93:d6:3d:9e:3c:3e:fe:0a:da:fb:47:c4: 4d:5c:ad:c3:ed:d1:30:7d:fd:41:77:60:f5:bc:6b:d8:47:23: 59:81:65:48:ff:43:ed:3e:29:38:24:66:29:bd:72:c9:42:b1: e6:b0:f6:00:a7:8e:47:d8:6d:ba:f1:41:fd:20:39:9c:07:7f: 10:b1:e3:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdWcjMT80V14FAWcUHhJ8lKJ17vowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDE1MDA1MDA3WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmM0NmU1NmRlMzIzMzBlNzdmZmJhOGM3YTk1YzA5MWE0 NDQ2NGRmNWQ1ZTBiNWQxMzRlNjU1ZjJkNTQyOWRkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzTiMPm8Iy2734llI9/v/rGPd1mhxQRjHHTbqseuhmgHLK gTH4JeE+sGt0zElZQ13xKVnxCAO0168blrIyGNLY+hsaD0TKMpshAcBUuY5HcrX5 rRVFonyeGuxiCJ2JXdmZCdxAP3CP3buAexJUV9j20Xv5VuwtWuG/pJJG126xvm8R I5yjRpcBD02n5BG/Sy9qf1gyIGsY/WCgeZSeAw3QZqpSFcFL0qgujuFfpsWTNeh6 sFBkDhC2CqUVEABTx3IRy4vsC0I8Wb0dLmBJZNfDzM43gXtaPisjjX4K0Vmbuw4E oWhI1/Q17XWrkrc1T7cX50qPH3vHyCriFqH8HfhzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGcw3CghrJ9HzcXo0LNJw9N6dgCcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NWNjMDAxLTZkOTgtNDliMS1hYjczLTlhMWUwNjcyNmY5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAKMhEZDCB+4L8J9DX4kRj32B cOTqVzwHIKmGdrkU22jPDeFPi3bM+5kAij/hDdiUlBIFichKpo3OBzaChkZiyzqb IuAfbU+kaWRUoXgVJeHlxS9z8ASVjGIkNu8S0KEqKDAs0UnYmak2+tfYk2juSNP0 fYLAp8+N7dDnWcev6xxXpmD88VOgbfL0CH/z0HnrCoB/Yj0o7MTm1KN+diXrdY19 VdikJGuBdnrYb+AcxgiQ14ijI3irouyteZPWPZ48Pv4K2vtHxE1crcPt0TB9/UF3 YPW8a9hHI1mBZUj/Q+0+KTgkZim9cslCseaw9gCnjkfYbbrxQf0gOZwHfxCx4y8= -----END CERTIFICATE-----Generated at Sat Apr 26 18:12:45 2025 by rpki-client