$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa File: 644f882a-d42c-4c76-bb70-882838f6e3e0.roa (raw, json) Hash identifier: 4ZQrsTjrX+mZ5UvZc7+L1WzoLax/qyHwvm0c9Y8im/w= Subject key identifier: 4D:B2:74:EB:00:34:77:ED:D4:40:61:8B:12:B9:1A:C3:11:92:25:96 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 752BDFC64FDCC6E5F4CEDD7814E786799F91E200 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa Signing time: Fri 25 Apr 2025 18:01:37 +0000 ROA not before: Fri 25 Apr 2025 18:01:37 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:2b:df:c6:4f:dc:c6:e5:f4:ce:dd:78:14:e7:86:79:9f:91:e2:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:37 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=4e8bb9124b90214f2d1c0ff428380085afd801d6a27e83ec1b98af041e2c42e0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:04:64:d9:74:07:51:61:13:d0:aa:82:7f:1a: bd:c0:3f:dd:db:89:7b:1c:6f:51:71:5a:b3:68:63: bd:18:42:2d:f4:3e:96:3d:e8:3c:12:18:06:a5:ab: 6f:28:ea:fe:65:63:39:bc:5f:56:f0:3b:be:4c:b3: c0:f9:7c:e7:f8:74:b9:62:b7:90:45:d8:16:6f:cf: bf:e4:14:4f:b2:9b:a9:e6:9e:43:d1:ce:d2:f1:1e: ee:ec:7d:eb:52:4e:d9:36:70:30:5a:2e:b7:7d:18: 62:13:2e:56:7e:a6:7b:28:89:fd:e8:aa:8f:2e:45: 79:08:ef:aa:33:4f:09:ae:eb:2e:d3:90:9c:37:d1: a5:4f:f3:4a:35:2c:08:8e:3c:1c:70:da:36:cb:e3: e2:1e:a6:11:c2:c1:70:83:a1:d8:17:a3:35:c0:66: c0:14:db:05:86:08:29:8e:f3:45:c8:b4:df:d0:85: 03:a2:f6:9e:71:41:c5:d8:83:16:f8:22:2e:8f:67: 51:e5:f9:6b:8c:b6:ef:ae:42:da:d7:57:a0:45:bb: 45:60:10:d6:1e:ee:27:2f:fb:27:1c:38:63:27:58: d4:f6:07:e8:55:f8:f9:f9:e8:3c:01:79:59:6f:b3: b5:27:14:67:92:f3:a9:19:bc:e8:e4:b0:7f:15:b1: 4f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B2:74:EB:00:34:77:ED:D4:40:61:8B:12:B9:1A:C3:11:92:25:96 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/40 Signature Algorithm: sha256WithRSAEncryption 96:a6:73:67:01:c3:d8:d3:62:41:43:80:8d:c9:57:d0:1d:a7: 5e:ef:df:81:c7:fd:3e:77:8a:b4:13:0b:0f:03:38:d9:66:bf: 39:30:d0:df:ff:c7:ec:44:03:1f:1d:94:80:25:f9:2e:ff:4b: 08:9c:67:92:da:0b:db:ae:12:81:fe:ee:71:12:4f:76:6d:cf: 52:7e:e9:88:d5:91:66:7a:98:3a:76:eb:fd:43:be:64:05:1a: 48:92:af:c8:d5:04:02:3a:ff:89:65:1c:b2:2a:8b:92:ef:8f: c5:55:f2:a5:16:2f:64:92:d1:41:47:94:db:e5:1d:97:54:89: ff:81:5b:f3:c0:d7:f9:1f:4b:7a:86:d1:22:a7:23:67:ea:7c: 00:a3:41:d4:71:f6:7f:f4:9c:c4:49:6c:e0:96:43:d1:ee:6a: 10:01:4a:96:39:fc:46:f1:1d:a8:1b:d9:e9:56:55:18:a4:25: 4c:02:e9:0b:08:5a:71:88:d3:75:fd:08:0a:38:06:7e:ec:7c: 88:dd:1a:8c:42:84:92:f8:88:48:41:17:c2:c9:41:bb:84:e9: 2b:f7:89:4e:29:89:ed:e2:6e:91:c8:b4:6a:32:aa:60:e0:8e: ff:39:b6:62:ae:9c:b6:6d:b1:89:4f:9a:fd:67:b9:29:b1:d8: 18:92:e7:d3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdSvfxk/cxuX0zt14FOeGeZ+R4gAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTM3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZThiYjkxMjRiOTAyMTRmMmQxYzBmZjQyODM4MDA4NWFm ZDgwMWQ2YTI3ZTgzZWMxYjk4YWYwNDFlMmM0MmUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOBGTZdAdRYRPQqoJ/Gr3AP93biXscb1FxWrNoY70YQi30 PpY96DwSGAalq28o6v5lYzm8X1bwO75Ms8D5fOf4dLlit5BF2BZvz7/kFE+ym6nm nkPRztLxHu7sfetSTtk2cDBaLrd9GGITLlZ+pnsoif3oqo8uRXkI76ozTwmu6y7T kJw30aVP80o1LAiOPBxw2jbL4+IephHCwXCDodgXozXAZsAU2wWGCCmO80XItN/Q hQOi9p5xQcXYgxb4Ii6PZ1Hl+WuMtu+uQtrXV6BFu0VgENYe7icv+yccOGMnWNT2 B+hV+Pn56DwBeVlvs7UnFGeS86kZvOjksH8VsU/zAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUTbJ06wA0d+3UQGGLErkawxGSJZYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0NGY4ODJhLWQ0MmMtNGM3Ni1iYjcwLTg4MjgzOGY2ZTNlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75jANBgkqhkiG9w0BAQsFAAOCAQEAlqZzZwHD2NNiQUOAjclX0B2n Xu/fgcf9PneKtBMLDwM42Wa/OTDQ3//H7EQDHx2UgCX5Lv9LCJxnktoL264Sgf7u cRJPdm3PUn7piNWRZnqYOnbr/UO+ZAUaSJKvyNUEAjr/iWUcsiqLku+PxVXypRYv ZJLRQUeU2+Udl1SJ/4Fb88DX+R9LeobRIqcjZ+p8AKNB1HH2f/ScxEls4JZD0e5q EAFKljn8RvEdqBvZ6VZVGKQlTALpCwhacYjTdf0ICjgGfux8iN0ajEKEkviISEEX wslBu4TpK/eJTimJ7eJukci0ajKqYOCO/zm2Yq6ctm2xiU+a/We5KbHYGJLn0w== -----END CERTIFICATE-----Generated at Sat Apr 26 13:23:54 2025 by rpki-client