$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: xyHKNpe4UOfGNy/IRPEoTEKD+vQAE/AGRc36gR0pBWI= Subject key identifier: 59:E1:F1:78:EE:F2:78:D0:04:89:A3:E5:A2:93:FB:E6:B3:B3:68:DF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 75FFD98ACAA0883DABA87B0AE5923E0408C731 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Fri 04 Apr 2025 00:20:33 +0000 ROA not before: Fri 04 Apr 2025 00:20:33 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ff:d9:8a:ca:a0:88:3d:ab:a8:7b:0a:e5:92:3e:04:08:c7:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 4 00:20:33 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=8a9a56d64c410e75ff1a5632d824b9f42da5195c9cc564e588e9903d37c7403d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f1:bf:fb:57:8a:a5:d3:b6:50:d4:e0:47:8a: ad:67:4b:af:9c:bf:d2:13:4b:dd:cd:ef:0c:f8:2b: 7c:a6:80:14:6f:3b:cc:e5:53:12:66:1a:94:95:d3: 54:5e:42:bc:c3:79:d2:0f:40:7d:68:8e:f8:e7:34: 70:9e:e7:25:2f:65:83:5d:f8:f1:e8:eb:94:71:a4: 2a:97:05:4f:62:fb:2e:f1:03:4d:6f:c4:46:74:a3: 74:63:31:cd:d9:ab:e2:38:45:15:15:b1:93:87:9d: da:96:0d:c2:64:97:80:e2:fb:b2:5a:74:86:c6:c6: fb:c4:81:c8:09:05:47:df:d5:c9:7f:c4:31:3c:3d: d4:8b:4d:35:49:60:d9:1f:d8:08:17:6a:ba:14:5a: 9b:65:cf:81:b1:19:7a:12:5f:e7:8b:82:7e:9d:7e: f9:80:3f:f4:99:de:73:86:57:22:45:41:de:af:7e: 9a:9e:27:71:fd:80:fe:0b:08:34:8a:53:de:09:43: ba:98:f3:1e:a2:c2:54:96:12:3e:27:4b:82:2c:c3: af:72:51:2c:c5:da:9d:45:44:84:d8:56:1e:b8:47: ed:1b:84:99:d9:55:9d:49:70:28:00:bb:93:f1:42: 09:c8:95:4a:94:f4:8e:60:95:24:c4:ca:d4:a0:4d: 53:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E1:F1:78:EE:F2:78:D0:04:89:A3:E5:A2:93:FB:E6:B3:B3:68:DF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption a6:f0:c3:29:4d:cb:79:36:74:b7:b0:a4:68:67:9d:3d:07:93: 2d:68:55:02:e1:c2:b9:75:e1:09:8f:63:b7:cb:2b:9a:c7:8f: 04:c4:70:85:a8:60:8c:81:81:48:62:38:5a:01:5d:b7:06:1a: dc:af:7c:bb:ea:08:69:91:9d:d7:b4:14:58:13:87:7a:10:5a: cb:28:4d:6a:b1:4a:ba:9e:1e:7e:77:f0:e5:97:05:b6:71:73: b0:b0:2a:77:10:96:3a:8d:9c:e2:48:d2:a3:8e:25:a2:f3:bf: 08:66:ab:b2:8d:aa:2c:d6:d0:61:ff:f6:55:b3:9c:a5:d7:a3: 1d:fb:88:38:cf:88:55:e2:d0:f1:c5:0e:f7:92:bf:22:c4:53: 09:e5:d9:68:c5:c5:e6:70:92:3d:a3:a4:d3:13:b0:a9:5d:f7: ce:a0:d5:5b:ba:9c:a9:8a:ac:4f:f9:81:72:8f:d2:c4:b9:59: 1a:ef:19:9b:af:d0:b5:16:e9:9f:04:ac:9c:f6:00:ac:d6:a5: 36:7c:6a:73:b8:8a:86:43:87:af:fa:83:8f:84:c5:1a:1e:c9: e9:5b:ae:57:d7:76:82:ca:6a:61:ee:5b:af:89:ba:7f:12:89: c0:36:27:3a:2a:b0:a0:4f:04:35:63:c6:03:0e:c4:a2:c8:72: de:88:9f:4f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITdf/ZisqgiD2rqHsK5ZI+BAjHMTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yNTA0MDQwMDIwMzNaFw0yNTA1MDkyMzU5NTla MHoxSTBHBgNVBAUTQDhhOWE1NmQ2NGM0MTBlNzVmZjFhNTYzMmQ4MjRiOWY0MmRh NTE5NWM5Y2M1NjRlNTg4ZTk5MDNkMzdjNzQwM2QxLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALbxv/tXiqXTtlDU4EeKrWdLr5y/0hNL3c3vDPgrfKaAFG87 zOVTEmYalJXTVF5CvMN50g9AfWiO+Oc0cJ7nJS9lg1348ejrlHGkKpcFT2L7LvED TW/ERnSjdGMxzdmr4jhFFRWxk4ed2pYNwmSXgOL7slp0hsbG+8SByAkFR9/VyX/E MTw91ItNNUlg2R/YCBdquhRam2XPgbEZehJf54uCfp1++YA/9Jnec4ZXIkVB3q9+ mp4ncf2A/gsINIpT3glDupjzHqLCVJYSPidLgizDr3JRLMXanUVEhNhWHrhH7RuE mdlVnUlwKAC7k/FCCciVSpT0jmCVJMTK1KBNU4UCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBRZ4fF47vJ40ASJo+Wik/vms7No3zAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvNTQ0M2YyNmUtOTQ5YS00NjBhLWIxODctZTI2MjkwYmZjZjI0LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCYA8PBAADANBgkqhkiG9w0BAQsFAAOCAQEApvDDKU3LeTZ0t7CkaGedPQeT LWhVAuHCuXXhCY9jt8srmsePBMRwhahgjIGBSGI4WgFdtwYa3K98u+oIaZGd17QU WBOHehBayyhNarFKup4efnfw5ZcFtnFzsLAqdxCWOo2c4kjSo44lovO/CGarso2q LNbQYf/2VbOcpdejHfuIOM+IVeLQ8cUO95K/IsRTCeXZaMXF5nCSPaOk0xOwqV33 zqDVW7qcqYqsT/mBco/SxLlZGu8Zm6/QtRbpnwSsnPYArNalNnxqc7iKhkOHr/qD j4TFGh7J6VuuV9d2gspqYe5br4m6fxKJwDYnOiqwoE8ENWPGAw7Eoshy3oifTw== -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:37 2025 by rpki-client