$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/529e132d-0c8c-4ca3-bafc-0927932483fd.roa File: 529e132d-0c8c-4ca3-bafc-0927932483fd.roa (raw, json) Hash identifier: Xql/+0PQ0cKUVVRgMjGg6XrJxEcTnFotWgO56481PEI= Subject key identifier: 14:C3:B9:32:46:20:3E:0B:BA:08:47:6F:BD:B5:35:D0:57:7B:15:24 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 17F985A6D4AFC230976B53321D7086F90FAC15ED Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/529e132d-0c8c-4ca3-bafc-0927932483fd.roa Signing time: Fri 25 Apr 2025 18:01:25 +0000 ROA not before: Fri 25 Apr 2025 18:01:25 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:f9:85:a6:d4:af:c2:30:97:6b:53:32:1d:70:86:f9:0f:ac:15:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:25 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=97b76fa8407110e8eea8868e861884a3050a5a642d06016f1259bc8db4bc0fcf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a5:3b:4a:f1:91:3e:ae:2c:33:91:60:17:84: f5:6e:00:ed:45:4d:82:07:7c:0c:0e:95:c5:95:ae: 04:b6:30:81:4a:47:76:1e:aa:c4:49:27:4a:3d:d1: 3a:39:72:b9:3b:d6:35:d9:9c:c2:18:0d:9f:f4:2e: ac:7d:be:0d:12:81:44:41:57:c2:35:48:48:af:bc: 57:ea:35:66:81:bb:36:ef:fb:85:ec:0e:1e:ee:f7: 53:eb:e5:92:39:48:4c:99:31:3c:3e:f0:3b:9a:f0: 92:d7:f6:85:bb:3b:d0:74:72:da:a7:70:35:49:f3: b9:78:40:d0:95:f9:36:27:02:0c:c8:22:61:6b:76: 49:58:86:c6:c4:1b:3c:df:8a:7e:21:67:3d:64:07: 81:61:22:c7:1d:ce:cb:e8:4b:7f:df:e8:57:0f:ce: da:97:a7:fb:8b:ee:bf:7e:81:a6:e9:ea:ca:26:e3: e2:4d:c3:f3:17:7b:ae:fe:79:b2:ff:59:36:ac:7b: dd:90:f8:b3:5c:4f:54:14:82:64:33:5a:5b:ec:95: b4:a6:38:a2:21:01:0c:e9:9f:ec:8e:0a:6e:24:26: b2:d3:78:be:95:7a:9f:c4:79:46:5e:e2:88:ec:b9: 7b:3c:84:8a:fe:60:7a:7d:46:68:67:02:b3:19:67: 17:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C3:B9:32:46:20:3E:0B:BA:08:47:6F:BD:B5:35:D0:57:7B:15:24 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/529e132d-0c8c-4ca3-bafc-0927932483fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/36 Signature Algorithm: sha256WithRSAEncryption 2f:0b:11:f5:52:34:b4:ab:96:f3:70:39:b9:c0:4f:2c:69:35: 82:b2:0d:1d:fc:bc:6f:05:2e:89:33:b6:38:e1:fb:ba:27:44: c1:80:00:28:17:60:34:8d:30:f6:71:43:d1:2a:ff:fc:51:d1: 72:8c:72:0d:0c:29:33:b6:66:70:82:8f:f2:9b:a7:6a:38:d0: 7a:12:92:6f:92:5a:39:8e:08:66:6c:fb:95:84:c7:c4:31:55: 24:a6:e0:a4:be:87:94:d9:2f:ff:d9:6d:7b:73:95:11:81:e5: 0f:fc:33:30:41:66:59:e4:41:28:bc:38:0f:11:3f:ac:45:c6: 20:69:a5:d1:a4:28:6e:20:27:f6:ef:5b:e5:74:94:0a:79:98: 55:42:8a:1a:fc:1c:c7:6b:a0:75:6f:19:bb:f4:9e:ab:70:ca: 12:5c:73:8f:f0:a3:de:de:62:28:82:9a:52:be:f0:c6:9b:4d: a9:f9:56:0e:2d:88:15:91:a5:1a:3c:b9:1e:cd:87:13:cd:b2: 89:7a:ef:62:88:4e:ad:3d:a9:25:b9:64:61:bd:f4:cc:c3:a3: 0d:87:50:f9:0e:33:91:7b:17:18:ad:be:67:71:22:50:0b:14: 7d:95:b5:5b:6a:2e:69:ef:fe:cf:35:54:1a:27:ce:c3:6d:5a: bf:f6:ea:3e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUF/mFptSvwjCXa1MyHXCG+Q+sFe0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTI1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2I3NmZhODQwNzExMGU4ZWVhODg2OGU4NjE4ODRhMzA1 MGE1YTY0MmQwNjAxNmYxMjU5YmM4ZGI0YmMwZmNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzpTtK8ZE+riwzkWAXhPVuAO1FTYIHfAwOlcWVrgS2MIFK R3YeqsRJJ0o90To5crk71jXZnMIYDZ/0Lqx9vg0SgURBV8I1SEivvFfqNWaBuzbv +4XsDh7u91Pr5ZI5SEyZMTw+8Dua8JLX9oW7O9B0ctqncDVJ87l4QNCV+TYnAgzI ImFrdklYhsbEGzzfin4hZz1kB4FhIscdzsvoS3/f6FcPztqXp/uL7r9+gabp6som 4+JNw/MXe67+ebL/WTase92Q+LNcT1QUgmQzWlvslbSmOKIhAQzpn+yOCm4kJrLT eL6Vep/EeUZe4ojsuXs8hIr+YHp9RmhnArMZZxelAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFMO5MkYgPgu6CEdvvbU10Fd7FSQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUyOWUxMzJkLTBjOGMtNGNhMy1iYWZjLTA5Mjc5MzI0ODNmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAPD74DANBgkqhkiG9w0BAQsFAAOCAQEALwsR9VI0tKuW83A5ucBPLGk1 grINHfy8bwUuiTO2OOH7uidEwYAAKBdgNI0w9nFD0Sr//FHRcoxyDQwpM7ZmcIKP 8punajjQehKSb5JaOY4IZmz7lYTHxDFVJKbgpL6HlNkv/9lte3OVEYHlD/wzMEFm WeRBKLw4DxE/rEXGIGml0aQobiAn9u9b5XSUCnmYVUKKGvwcx2ugdW8Zu/Seq3DK Elxzj/Cj3t5iKIKaUr7wxptNqflWDi2IFZGlGjy5Hs2HE82yiXrvYohOrT2pJblk Yb30zMOjDYdQ+Q4zkXsXGK2+Z3EiUAsUfZW1W2ouae/+zzVUGifOw21av/bqPg== -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:28 2025 by rpki-client