$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa File: 64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa (raw, json) Hash identifier: +Bo4XRO24PC6kXvbAUz12TZUVHatdmAODj6v+DL16Bw= Subject key identifier: 3B:66:D4:13:CB:CD:1C:55:49:E3:AE:B5:7A:F6:AA:01:6B:C9:2A:06 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7A41117C2F47CF5768A8C357B0E340040246357C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa Signing time: Fri 25 Apr 2025 18:01:30 +0000 ROA not before: Fri 25 Apr 2025 18:01:30 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:41:11:7c:2f:47:cf:57:68:a8:c3:57:b0:e3:40:04:02:46:35:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:30 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=f69d9386b5e63af0e2b51f16a17fbb137e17ebfff9a863b5da2ab67a676c2779, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fd:10:41:fd:28:fb:3f:74:95:0a:54:4f:f6: b5:f1:62:54:6c:00:bd:84:35:2e:5f:6c:96:9e:78: 49:85:28:3f:49:62:a0:ab:72:26:dc:f5:ac:24:94: fb:45:79:49:22:a3:a7:85:0c:00:ae:a6:4b:40:1f: ba:bf:17:3c:30:c5:ed:83:56:a7:d2:84:1b:e6:f2: c4:bc:57:88:ac:e8:4d:ee:84:72:7f:ff:0d:6d:8c: 13:cc:da:05:ca:c6:04:ca:69:d6:10:cd:de:0d:8b: 40:f5:ad:50:e8:e8:c6:b2:a4:8b:e4:8f:c6:ff:7e: 82:e6:c4:72:97:e1:65:8e:c4:37:cc:5d:e6:ea:e5: 63:76:83:ac:6c:05:ec:b6:f4:ab:8f:6f:9a:9b:0e: 09:77:dd:cd:7d:38:e3:41:74:07:06:be:c2:6c:c3: 6e:19:c8:a6:1a:04:6d:d0:d9:4b:32:c5:58:82:7d: 63:8e:4b:6d:dd:81:ab:70:21:77:ef:af:18:e1:ba: 7d:62:3d:75:07:58:48:a3:7b:f9:35:9c:5e:46:3e: 71:97:02:a1:d2:7d:7c:fe:7f:41:10:26:9e:7c:19: 53:5d:6d:f8:78:2e:6e:f8:5b:00:5c:40:14:25:94: f8:8b:28:aa:9a:f8:d7:40:50:2f:56:7b:9d:97:c9: 91:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:66:D4:13:CB:CD:1C:55:49:E3:AE:B5:7A:F6:AA:01:6B:C9:2A:06 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 54:9a:c4:7e:f6:ae:e1:e6:46:c1:7b:51:31:38:a9:34:77:00: c4:69:f3:4b:e1:ed:d4:f4:b8:fa:6f:bf:9d:e1:e2:8d:ab:a6: a9:04:11:b5:b0:3f:f5:d8:32:c3:fd:e4:c0:bc:22:87:e6:64: be:2f:99:4e:b7:05:20:0a:86:aa:94:0e:44:59:7c:b6:aa:c6: f6:9b:14:bd:d8:f1:86:89:2b:cd:02:01:e6:7c:26:5f:71:6e: 63:e6:2e:72:d6:9f:04:35:f9:ab:06:9c:51:d8:84:26:6f:ba: a0:b0:f6:c6:d9:17:c5:bf:30:88:4f:57:53:68:bc:5f:17:24: 86:5d:d1:55:4e:6d:ea:05:84:53:d8:11:f1:50:93:d9:68:33: 8a:da:20:66:62:80:4e:c5:92:c3:14:cb:b6:fe:5c:45:c9:c4: 60:37:70:f1:7c:a0:ca:19:49:4e:19:95:4a:0e:34:2d:a7:db: e5:29:22:b4:d8:0e:f1:41:c3:ae:a9:73:57:fc:13:50:8d:8d: e5:bf:93:55:cc:03:9b:cb:9d:fd:27:48:e6:a1:a9:28:ec:8c: 7a:05:96:19:15:3e:1c:b4:9b:c0:fb:ce:2d:8d:30:27:83:a1: 91:f8:fb:11:5c:00:52:c6:ca:74:cf:2c:da:05:98:34:96:44: 14:c7:2e:77 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUekERfC9Hz1doqMNXsONABAJGNXwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTMwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjlkOTM4NmI1ZTYzYWYwZTJiNTFmMTZhMTdmYmIxMzdl MTdlYmZmZjlhODYzYjVkYTJhYjY3YTY3NmMyNzc5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf/RBB/Sj7P3SVClRP9rXxYlRsAL2ENS5fbJaeeEmFKD9J YqCrcibc9awklPtFeUkio6eFDACupktAH7q/Fzwwxe2DVqfShBvm8sS8V4is6E3u hHJ//w1tjBPM2gXKxgTKadYQzd4Ni0D1rVDo6MaypIvkj8b/foLmxHKX4WWOxDfM Xebq5WN2g6xsBey29KuPb5qbDgl33c19OONBdAcGvsJsw24ZyKYaBG3Q2UsyxViC fWOOS23dgatwIXfvrxjhun1iPXUHWEije/k1nF5GPnGXAqHSfXz+f0EQJp58GVNd bfh4Lm74WwBcQBQllPiLKKqa+NdAUC9We52XyZF/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUO2bUE8vNHFVJ4661evaqAWvJKgYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0ZGNlMzcxLTM3YjItNGZhYi05ZDg1LTA1ZWE3ZjJjMWFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBAFSaxH72ruHmRsF7UTE4qTR3 AMRp80vh7dT0uPpvv53h4o2rpqkEEbWwP/XYMsP95MC8IofmZL4vmU63BSAKhqqU DkRZfLaqxvabFL3Y8YaJK80CAeZ8Jl9xbmPmLnLWnwQ1+asGnFHYhCZvuqCw9sbZ F8W/MIhPV1NovF8XJIZd0VVObeoFhFPYEfFQk9loM4raIGZigE7FksMUy7b+XEXJ xGA3cPF8oMoZSU4ZlUoONC2n2+UpIrTYDvFBw66pc1f8E1CNjeW/k1XMA5vLnf0n SOahqSjsjHoFlhkVPhy0m8D7zi2NMCeDoZH4+xFcAFLGynTPLNoFmDSWRBTHLnc= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:14 2025 by rpki-client