$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa File: 710c8ea0-f6b4-4fbe-9653-22174e063099.roa (raw, json) Hash identifier: BZyDI+G5jMjGxfXa+LJOd9pw28ly4KTGYyl30C21jKM= Subject key identifier: F5:A7:57:80:AD:5A:E3:9D:1D:6C:6F:6B:5C:1D:69:81:1E:55:D0:25 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1DFF08C97492591144D76DEFCEA0DB1D43A9CB38 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa Signing time: Mon 07 Apr 2025 15:20:52 +0000 ROA not before: Mon 07 Apr 2025 15:20:52 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ff:08:c9:74:92:59:11:44:d7:6d:ef:ce:a0:db:1d:43:a9:cb:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 7 15:20:52 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=c462d30501539357fd66a95f8c8baba14cecf4434715543bb90879feb0254e64, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:30:01:1d:c0:77:9b:8c:58:bb:8d:78:45:39: 23:41:6e:3d:8b:68:f9:9c:fd:10:b6:0c:15:e3:3e: f7:0f:30:8f:ad:f4:11:f8:a4:ad:7c:a6:7d:54:1f: bf:78:76:75:9e:6f:aa:a9:3e:12:64:28:c4:fe:1b: 82:e0:8c:1d:55:88:99:e3:7d:12:0c:a4:81:1b:1e: 52:29:d0:e7:7c:d0:8d:a0:ca:3f:fd:f0:38:98:f0: a8:68:a0:cb:a6:e1:b0:ea:49:40:44:23:06:19:46: 0a:c8:c9:29:e2:c6:3e:f8:07:2c:4d:03:2e:84:42: b6:d9:81:39:63:91:06:b7:11:08:39:94:c9:fe:f1: 2f:a8:7d:69:50:99:ed:45:c0:8f:94:a6:3b:99:10: 97:b4:03:b1:7b:b1:75:bc:94:34:27:27:d5:47:43: 65:b3:b4:9c:10:d7:5b:d4:21:49:4a:34:7f:64:f6: 75:da:5f:2e:8d:87:96:e9:5a:8d:55:19:8a:61:17: ee:b3:ae:6d:5e:71:b3:da:16:de:18:59:cd:10:b2: 64:e6:62:30:a4:c1:b7:15:83:b4:73:c0:8f:8e:7f: 8b:26:5b:56:96:e7:2e:66:25:bb:85:fc:ed:5c:4d: 15:7d:6d:48:41:c1:a1:09:08:31:99:bb:2d:6d:81: f5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A7:57:80:AD:5A:E3:9D:1D:6C:6F:6B:5C:1D:69:81:1E:55:D0:25 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption a5:1a:7b:5b:df:4c:04:0f:8c:a4:fe:60:59:63:b0:a0:5f:fe: 35:64:09:14:76:84:f0:c9:78:bb:43:0b:33:f8:05:f4:80:72: ca:88:b3:31:71:29:0c:15:13:95:37:59:33:e4:a4:50:3f:c6: 15:9c:ba:23:b2:a4:69:66:99:1a:d5:20:ab:ba:28:f8:18:2f: cb:96:25:21:2e:48:43:95:9f:7a:ad:3f:10:8f:b3:31:74:c2: bb:59:90:c6:d9:b5:c9:91:66:d9:cc:e6:8c:63:d6:98:83:5b: 6a:ee:23:16:c8:29:d3:34:2a:cd:1e:3c:e6:7e:0f:84:fc:04: 8f:2d:3b:27:a0:b7:13:f2:84:6c:d3:dd:e2:e3:03:53:59:f5: da:40:df:68:ae:a7:d2:78:1b:24:f9:c5:84:9a:6b:b5:75:ff: 30:7d:c4:e7:c8:eb:58:22:e6:d2:fd:1f:ea:fa:c6:18:ed:53: 66:2c:d9:e4:1c:ef:f4:1f:ff:86:4b:69:d4:9e:0c:7c:d1:8c: e5:6b:ec:38:56:f4:ab:9f:62:9d:52:b3:52:80:28:63:54:c7: b6:04:18:19:8b:1f:7a:b2:9e:e0:dd:81:8a:84:29:0d:fc:34: 4d:05:32:9a:96:87:fd:60:58:7c:e6:d2:36:2a:5b:16:4d:8f: 75:ea:93:6c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHf8IyXSSWRFE123vzqDbHUOpyzgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDA3MTUyMDUyWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDYyZDMwNTAxNTM5MzU3ZmQ2NmE5NWY4YzhiYWJhMTRj ZWNmNDQzNDcxNTU0M2JiOTA4NzlmZWIwMjU0ZTY0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsMAEdwHebjFi7jXhFOSNBbj2LaPmc/RC2DBXjPvcPMI+t 9BH4pK18pn1UH794dnWeb6qpPhJkKMT+G4LgjB1ViJnjfRIMpIEbHlIp0Od80I2g yj/98DiY8KhooMum4bDqSUBEIwYZRgrIySnixj74ByxNAy6EQrbZgTljkQa3EQg5 lMn+8S+ofWlQme1FwI+UpjuZEJe0A7F7sXW8lDQnJ9VHQ2WztJwQ11vUIUlKNH9k 9nXaXy6Nh5bpWo1VGYphF+6zrm1ecbPaFt4YWc0QsmTmYjCkwbcVg7RzwI+Of4sm W1aW5y5mJbuF/O1cTRV9bUhBwaEJCDGZuy1tgfV3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9adXgK1a450dbG9rXB1pgR5V0CUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxMGM4ZWEwLWY2YjQtNGZiZS05NjUzLTIyMTc0ZTA2MzA5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAKUae1vfTAQPjKT+YFljsKBf /jVkCRR2hPDJeLtDCzP4BfSAcsqIszFxKQwVE5U3WTPkpFA/xhWcuiOypGlmmRrV IKu6KPgYL8uWJSEuSEOVn3qtPxCPszF0wrtZkMbZtcmRZtnM5oxj1piDW2ruIxbI KdM0Ks0ePOZ+D4T8BI8tOyegtxPyhGzT3eLjA1NZ9dpA32iup9J4GyT5xYSaa7V1 /zB9xOfI61gi5tL9H+r6xhjtU2Ys2eQc7/Qf/4ZLadSeDHzRjOVr7DhW9KufYp1S s1KAKGNUx7YEGBmLH3qynuDdgYqEKQ38NE0FMpqWh/1gWHzm0jYqWxZNj3Xqk2w= -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:53 2025 by rpki-client