$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa File: 475cc5b7-0cb2-405e-b609-203b983a6087.roa (raw, json) Hash identifier: GWt8WosiKvFxFXFB66NJWbeCp+7EWSKLW4DuvJKH51s= Subject key identifier: FF:85:A8:34:1E:2E:AE:03:63:59:19:51:D7:05:56:4D:13:AC:1D:E2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 74FEF1E5F924AE88878D8D09485807E4A27AD2B3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa Signing time: Fri 25 Apr 2025 18:00:10 +0000 ROA not before: Fri 25 Apr 2025 18:00:10 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ed00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:fe:f1:e5:f9:24:ae:88:87:8d:8d:09:48:58:07:e4:a2:7a:d2:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:10 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=1a28675c1466be04326562537c2b65b7c47c8905586b48b8f03b6c23b827aa3e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:6d:41:78:94:a1:66:27:f3:d4:ae:95:a1:32: 32:35:22:b8:15:e8:cd:a8:aa:89:5f:87:67:a0:c7: f5:90:de:10:ed:15:d4:45:69:6b:d5:4b:d7:91:aa: ed:74:f2:cd:8c:4f:25:f0:30:09:73:7b:21:a0:07: f2:d3:62:93:b5:35:5a:1f:c7:ff:b6:3d:21:94:d8: 77:a7:fb:dc:7e:48:e3:be:10:ab:48:a9:19:b8:11: 0c:c3:b9:9c:f6:3b:91:5a:51:fc:91:a1:a6:5e:78: 61:4e:38:cf:e5:d3:94:7b:ba:10:a8:38:72:de:2b: 60:91:a6:83:21:ba:13:f4:9d:1a:32:e8:2d:0d:8e: bb:22:29:c2:e7:34:9c:64:61:34:96:08:c6:8b:2b: 0b:8c:7e:11:f0:5f:c6:0b:b5:f2:41:26:de:da:65: 2d:a7:bf:46:a1:a2:cf:bf:f7:a3:0e:93:08:c2:7e: 90:30:fb:36:94:8c:f8:0c:75:0c:d7:99:c9:b9:ad: 94:17:83:7e:4c:b8:22:d9:20:f8:a8:3e:b6:11:49: 7e:b9:f1:00:90:57:05:92:72:c9:54:7b:e2:21:aa: 9d:36:10:bc:ff:2a:12:70:aa:f5:df:da:90:bf:38: fc:a7:30:e0:06:32:49:44:09:8a:46:77:92:9c:e7: 21:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:85:A8:34:1E:2E:AE:03:63:59:19:51:D7:05:56:4D:13:AC:1D:E2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ed00::/40 Signature Algorithm: sha256WithRSAEncryption 74:03:30:8e:85:c1:7e:4d:9e:41:13:be:97:f6:7f:53:66:14: cb:d2:47:12:62:41:d3:08:0c:9a:7a:52:c2:f0:8f:b3:83:0d: 48:0c:53:63:b3:1b:6d:e0:b3:38:d8:5e:c4:11:36:92:16:63: 16:4d:4c:e6:47:72:e1:51:9f:ca:f3:af:cc:1e:c3:20:9b:bb: fb:b4:80:7f:50:45:90:56:cb:97:3e:b7:6d:b7:d5:c0:05:9c: af:fd:0a:26:5c:03:2d:14:6a:3e:e7:bb:49:51:e7:0d:22:ad: 0e:7a:2e:99:5d:14:bf:2d:0e:e4:b0:d6:d0:1c:02:b5:32:96: 0c:dc:5e:6f:92:0c:fa:eb:25:63:bc:d6:c5:da:25:ad:7c:0a: 0f:1a:80:dd:b0:a1:8e:3d:07:d7:e2:48:30:a7:89:d4:bf:26: 77:08:5b:a8:ef:6e:c5:fc:20:aa:00:0a:29:e5:b2:2f:3b:8f: 49:5f:73:92:df:08:dc:2d:77:67:23:04:09:b8:83:76:f4:03: ba:9f:77:09:38:26:4c:0c:34:a3:cf:75:85:20:d2:88:0b:3a: 78:63:15:bd:cf:1c:1a:96:83:74:79:36:c1:af:89:71:b0:f4: be:8b:59:dc:38:fe:92:6c:4e:50:a0:ac:06:66:2d:91:a9:7d: e4:2c:f3:5d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdP7x5fkkroiHjY0JSFgH5KJ60rMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDEwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTI4Njc1YzE0NjZiZTA0MzI2NTYyNTM3YzJiNjViN2M0 N2M4OTA1NTg2YjQ4YjhmMDNiNmMyM2I4MjdhYTNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCCbUF4lKFmJ/PUrpWhMjI1IrgV6M2oqolfh2egx/WQ3hDt FdRFaWvVS9eRqu108s2MTyXwMAlzeyGgB/LTYpO1NVofx/+2PSGU2Hen+9x+SOO+ EKtIqRm4EQzDuZz2O5FaUfyRoaZeeGFOOM/l05R7uhCoOHLeK2CRpoMhuhP0nRoy 6C0NjrsiKcLnNJxkYTSWCMaLKwuMfhHwX8YLtfJBJt7aZS2nv0ahos+/96MOkwjC fpAw+zaUjPgMdQzXmcm5rZQXg35MuCLZIPioPrYRSX658QCQVwWScslUe+Ihqp02 ELz/KhJwqvXf2pC/OPynMOAGMklECYpGd5Kc5yFXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/4WoNB4urgNjWRlR1wVWTROsHeIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ3NWNjNWI3LTBjYjItNDA1ZS1iNjA5LTIwM2I5ODNhNjA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77TANBgkqhkiG9w0BAQsFAAOCAQEAdAMwjoXBfk2eQRO+l/Z/U2YU y9JHEmJB0wgMmnpSwvCPs4MNSAxTY7MbbeCzONhexBE2khZjFk1M5kdy4VGfyvOv zB7DIJu7+7SAf1BFkFbLlz63bbfVwAWcr/0KJlwDLRRqPue7SVHnDSKtDnoumV0U vy0O5LDW0BwCtTKWDNxeb5IM+uslY7zWxdolrXwKDxqA3bChjj0H1+JIMKeJ1L8m dwhbqO9uxfwgqgAKKeWyLzuPSV9zkt8I3C13ZyMECbiDdvQDup93CTgmTAw0o891 hSDSiAs6eGMVvc8cGpaDdHk2wa+JcbD0votZ3Dj+kmxOUKCsBmYtkal95CzzXQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:50 2025 by rpki-client