$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa File: 5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa (raw, json) Hash identifier: iEd9nasj0GTVhc0qXeMMI2sUehCOs9H14ALV4kADzbs= Subject key identifier: E0:9F:B8:D0:E1:13:E5:95:E0:12:D8:B5:66:63:10:19:96:06:BF:3E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0AD522E1EEA97E980CDB033EE609B882423F0856 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa Signing time: Fri 25 Apr 2025 18:01:29 +0000 ROA not before: Fri 25 Apr 2025 18:01:29 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:d5:22:e1:ee:a9:7e:98:0c:db:03:3e:e6:09:b8:82:42:3f:08:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:29 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=788776637fd280d7c6f80d5459ad2ffebb4263ebeeffedd090ab461cdffadbf8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:04:76:91:4a:20:9d:65:b7:43:67:50:8c:52: 41:17:8d:07:81:10:82:ba:93:b4:27:4d:ad:03:5e: d9:89:1c:24:2b:87:74:b9:23:ed:1e:bf:d6:36:95: ad:9b:57:ac:df:63:43:2f:b4:1a:12:92:4a:ee:41: 63:dd:30:14:13:80:a7:4a:64:c6:c0:0b:a0:4b:ae: ed:22:d2:12:8f:83:88:f3:0f:b8:51:0d:85:ad:ea: 32:e7:8d:de:ae:cf:da:16:0c:c2:db:b9:08:51:c8: 3f:86:77:3f:6b:00:bf:11:44:63:40:4d:5f:30:88: 97:ab:d2:5e:29:85:44:5e:aa:10:22:6b:4d:a1:1f: 79:35:1b:1c:93:4d:5a:c0:fd:e3:17:84:42:4a:df: c4:6c:56:89:59:06:af:64:31:95:31:f6:b0:de:0c: 5a:e0:56:7b:69:0c:cd:26:d4:03:e1:96:56:f6:a1: 4e:a6:c5:87:b6:94:73:28:3e:71:f1:7b:eb:f8:7b: 99:be:7d:f5:4c:7d:f0:13:1d:d4:49:17:d5:02:5e: c4:9d:16:13:ef:40:00:da:57:f3:f4:a1:d4:dd:a6: fd:96:05:18:17:de:bb:39:d5:3c:2a:4b:f6:db:d4: 21:34:33:bd:10:6b:9b:aa:15:5c:da:f0:53:1a:54: 14:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9F:B8:D0:E1:13:E5:95:E0:12:D8:B5:66:63:10:19:96:06:BF:3E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption 30:58:fb:61:3e:f8:af:8a:ea:ba:9f:ee:1d:c6:2c:88:0b:6a: b3:e3:6a:55:a6:c6:56:49:a5:48:72:6f:dc:f2:b7:5b:05:7f: ab:8d:a2:f1:70:98:bf:6c:9e:f1:84:66:59:ba:7e:a9:93:70: 1a:02:96:f6:4a:83:1f:c5:51:b0:92:79:a9:4f:cd:8a:ae:e9: 3c:d5:a3:fa:12:0e:79:d3:71:a4:6f:f9:64:1b:1f:1d:ce:8c: a8:b4:6a:fd:49:17:bb:c2:7f:20:14:f3:25:e1:b5:3e:b7:00: a7:24:65:c9:4c:57:1a:77:a4:d7:4e:ca:09:2f:1b:2b:c0:85: 88:87:f4:94:1c:8c:b6:a0:44:fb:69:10:c9:0a:26:f4:45:b6: fd:1d:15:a1:b6:ea:69:df:9a:08:4f:3c:fc:81:55:b6:95:ca: 2c:9a:c7:7f:f7:d0:ec:e1:97:31:c9:7d:84:3b:f9:b2:37:12: 49:79:8d:3c:0e:39:40:fe:89:07:cf:75:f1:14:3a:89:5b:f9: 9a:79:f4:6b:cb:f1:11:9e:2f:6b:c4:65:f4:37:ca:aa:91:3f: 04:fa:8e:eb:a2:16:0a:da:b4:97:ad:f9:aa:5a:62:c5:05:35: 4a:ba:50:8f:4d:b3:e4:f2:7e:eb:d3:ea:30:3f:24:55:aa:4a: 1e:ad:88:53 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCtUi4e6pfpgM2wM+5gm4gkI/CFYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTI5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODg3NzY2MzdmZDI4MGQ3YzZmODBkNTQ1OWFkMmZmZWJi NDI2M2ViZWVmZmVkZDA5MGFiNDYxY2RmZmFkYmY4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8BHaRSiCdZbdDZ1CMUkEXjQeBEIK6k7QnTa0DXtmJHCQr h3S5I+0ev9Y2la2bV6zfY0MvtBoSkkruQWPdMBQTgKdKZMbAC6BLru0i0hKPg4jz D7hRDYWt6jLnjd6uz9oWDMLbuQhRyD+Gdz9rAL8RRGNATV8wiJer0l4phUReqhAi a02hH3k1GxyTTVrA/eMXhEJK38RsVolZBq9kMZUx9rDeDFrgVntpDM0m1APhllb2 oU6mxYe2lHMoPnHxe+v4e5m+ffVMffATHdRJF9UCXsSdFhPvQADaV/P0odTdpv2W BRgX3rs51TwqS/bb1CE0M70Qa5uqFVza8FMaVBShAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU4J+40OET5ZXgEti1ZmMQGZYGvz4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUyMTFiYmZhLWMyNmMtNDRmOC05NmIyLWE5MjgyY2ZkNjFhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74TANBgkqhkiG9w0BAQsFAAOCAQEAMFj7YT74r4rqup/uHcYsiAtq s+NqVabGVkmlSHJv3PK3WwV/q42i8XCYv2ye8YRmWbp+qZNwGgKW9kqDH8VRsJJ5 qU/Niq7pPNWj+hIOedNxpG/5ZBsfHc6MqLRq/UkXu8J/IBTzJeG1PrcApyRlyUxX Gnek107KCS8bK8CFiIf0lByMtqBE+2kQyQom9EW2/R0Vobbqad+aCE88/IFVtpXK LJrHf/fQ7OGXMcl9hDv5sjcSSXmNPA45QP6JB8918RQ6iVv5mnn0a8vxEZ4va8Rl 9DfKqpE/BPqO66IWCtq0l635qlpixQU1SrpQj02z5PJ+69PqMD8kVapKHq2IUw== -----END CERTIFICATE-----Generated at Sat Apr 26 13:18:25 2025 by rpki-client