$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa File: 514fa870-df33-4dfe-a228-5ea96e0f3560.roa (raw, json) Hash identifier: HRghPBybtBw618zgKGNLbCIE9MvYTGZ2kQs5X56Orro= Subject key identifier: 00:13:30:58:EB:2D:E4:C5:18:36:F3:0D:93:E0:70:E5:B7:27:90:BF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 63F538C9CB738EACE5E84166D8318E31FE7FD398 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa Signing time: Mon 07 Apr 2025 15:20:51 +0000 ROA not before: Mon 07 Apr 2025 15:20:51 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f5:38:c9:cb:73:8e:ac:e5:e8:41:66:d8:31:8e:31:fe:7f:d3:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 7 15:20:51 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=8f10cd7b87724c39f0403794298a44576ec81e2f2777d7c0b570af500d7174cc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:ee:eb:3a:b3:a8:ca:36:fa:bc:cb:b6:73:dc: 48:04:e5:4c:90:24:46:06:e8:32:44:95:61:a7:6a: b1:24:f1:c7:90:45:44:94:87:c5:be:af:db:f9:63: be:d2:91:a6:a4:88:36:0c:ab:24:86:6d:4b:3d:d8: db:0d:45:66:a4:e1:bc:a4:bb:bf:75:c4:6b:45:64: cb:94:57:8d:45:e8:55:f0:c2:06:7f:5f:d9:ea:94: 51:ab:ae:12:b8:6a:a5:b1:55:1e:63:2b:d8:20:5c: 23:ea:e0:7f:cd:84:56:97:27:1f:5b:1c:6e:ff:a6: ec:6d:e8:a8:27:da:d0:99:8f:cb:35:59:45:99:d2: 32:fd:73:94:f8:15:d2:cd:05:db:a5:99:e6:54:c7: 24:09:9d:73:63:2d:c4:3a:3a:3c:25:90:f8:df:12: 00:19:7e:be:d0:6f:f0:93:9c:b8:b9:1b:b7:fa:ae: bf:bc:ba:b7:79:8f:4c:0f:7b:52:1b:5b:f8:c1:87: ca:29:72:5c:75:94:b7:0e:ad:5f:a9:28:bc:94:3e: 9e:6c:5d:e8:08:ed:a6:ac:eb:a6:a8:13:13:28:3c: 4f:e9:16:1c:8e:0f:96:73:64:58:8f:1b:9c:ae:73: 3e:95:02:ef:df:97:3e:8b:c2:5e:5f:37:07:56:36: bc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:13:30:58:EB:2D:E4:C5:18:36:F3:0D:93:E0:70:E5:B7:27:90:BF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 8f:d4:fd:78:a9:5f:92:94:f0:fb:34:b3:12:eb:ce:d1:6d:7d: 47:c1:7e:e8:fd:64:4d:8b:71:05:ae:76:ad:94:c4:8a:bb:d1: 26:29:bb:05:e5:cc:05:40:91:3d:1b:43:89:92:d6:7b:c9:de: 67:1a:61:c9:91:c5:78:24:8e:9d:9e:7d:5e:ba:10:7b:34:9f: 70:65:bf:a4:e4:0e:b4:f4:a1:6d:79:5d:60:8d:24:20:62:7a: f3:0a:e5:c2:7b:ae:d4:3b:4c:b6:d7:aa:60:1a:18:eb:6e:c7: 99:60:b1:9b:e8:26:a3:91:2d:7e:36:bb:a3:4d:2e:2b:c8:b5: 39:4e:79:10:32:e7:db:58:ce:46:0e:54:0d:c6:4c:51:f9:9b: eb:69:c5:69:e7:0f:37:54:a8:d1:fb:15:d4:a1:d3:c5:b9:d4: 51:10:48:47:8b:43:f9:e9:24:6e:8f:83:9f:44:ae:3e:2e:45: 1a:2d:44:60:4b:e1:7a:ee:b1:c5:4a:cf:0e:e9:d9:94:42:6a: 74:6a:81:62:13:00:25:2a:3a:bd:b0:a2:46:f3:09:43:bb:65: 58:73:2d:85:9d:c8:22:b3:09:d4:b2:0d:d3:5a:57:00:42:4b: 53:3d:f8:9e:8a:b6:96:b4:66:42:0c:25:98:06:c8:76:83:e7: 17:5c:05:40 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUY/U4yctzjqzl6EFm2DGOMf5/05gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDA3MTUyMDUxWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjEwY2Q3Yjg3NzI0YzM5ZjA0MDM3OTQyOThhNDQ1NzZl YzgxZTJmMjc3N2Q3YzBiNTcwYWY1MDBkNzE3NGNjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCK7us6s6jKNvq8y7Zz3EgE5UyQJEYG6DJElWGnarEk8ceQ RUSUh8W+r9v5Y77SkaakiDYMqySGbUs92NsNRWak4byku791xGtFZMuUV41F6FXw wgZ/X9nqlFGrrhK4aqWxVR5jK9ggXCPq4H/NhFaXJx9bHG7/puxt6Kgn2tCZj8s1 WUWZ0jL9c5T4FdLNBdulmeZUxyQJnXNjLcQ6OjwlkPjfEgAZfr7Qb/CTnLi5G7f6 rr+8urd5j0wPe1IbW/jBh8opclx1lLcOrV+pKLyUPp5sXegI7aas66aoExMoPE/p FhyOD5ZzZFiPG5yucz6VAu/flz6Lwl5fNwdWNrzLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUABMwWOst5MUYNvMNk+Bw5bcnkL8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUxNGZhODcwLWRmMzMtNGRmZS1hMjI4LTVlYTk2ZTBmMzU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAI/U/XipX5KU8Ps0sxLrztFt fUfBfuj9ZE2LcQWudq2UxIq70SYpuwXlzAVAkT0bQ4mS1nvJ3mcaYcmRxXgkjp2e fV66EHs0n3Blv6TkDrT0oW15XWCNJCBievMK5cJ7rtQ7TLbXqmAaGOtux5lgsZvo JqORLX42u6NNLivItTlOeRAy59tYzkYOVA3GTFH5m+tpxWnnDzdUqNH7FdSh08W5 1FEQSEeLQ/npJG6Pg59Erj4uRRotRGBL4XruscVKzw7p2ZRCanRqgWITACUqOr2w okbzCUO7ZVhzLYWdyCKzCdSyDdNaVwBCS1M9+J6Ktpa0ZkIMJZgGyHaD5xdcBUA= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:19 2025 by rpki-client