$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa File: 71a2a2c0-b8db-4847-a756-b7515aa42b07.roa (raw, json) Hash identifier: qlobIv47HGP9IoFVDuwWlb7jqOGrC3hqDng5dV+k72c= Subject key identifier: 57:69:A7:48:30:34:3E:42:6D:80:7F:9A:DA:D9:1C:EC:F6:A3:E9:85 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1C34BFFDA2D4216CA7463EC680CA66F5EF6A688F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa Signing time: Fri 25 Apr 2025 17:51:15 +0000 ROA not before: Fri 25 Apr 2025 17:51:15 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5510::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:34:bf:fd:a2:d4:21:6c:a7:46:3e:c6:80:ca:66:f5:ef:6a:68:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:15 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=2bfe04574f9cbe200049ecc1a4cee876cbacfce8efd25fee61e54b2dd07b981f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:13:67:d4:00:28:fe:e8:3a:d0:4a:26:5d:ff: 4c:e4:62:1f:be:17:7d:e5:d2:42:b6:bc:09:7e:e6: cb:65:67:97:24:eb:90:a9:32:53:9f:54:5b:6c:3f: 26:41:6c:5a:e0:6b:d3:df:9d:bc:1b:2d:a3:15:5b: 9b:a2:0f:e6:b9:d3:1d:ad:d8:7f:75:fa:cd:96:98: d4:a1:7a:9c:dc:79:4b:e9:ac:b5:89:9b:ee:04:62: c9:9c:98:32:98:7a:b8:91:a0:52:31:98:97:18:8d: 62:37:e1:b7:21:9a:55:47:93:f0:ae:b8:6c:88:a7: 5a:de:1c:7a:40:9f:12:f9:82:c4:49:60:e2:25:f4: 9a:15:79:ab:da:20:cc:b5:af:aa:ef:b5:d4:18:a9: c7:1d:d8:d8:26:d0:8e:f2:96:0e:af:88:a6:b9:f8: 03:d9:76:19:9a:e4:d8:c7:09:af:30:ce:1f:81:ce: 5a:3f:44:33:d0:69:d7:0b:78:83:37:c0:e4:23:48: 13:d9:77:c1:66:9d:1a:00:5e:de:37:7b:dd:80:46: 47:2b:f6:a7:82:c4:e0:ae:9c:ac:52:b6:c3:1a:b0: 26:f7:9d:db:86:a1:0c:4c:aa:dd:51:d6:a4:12:d0: 74:22:39:de:ba:6b:ed:bd:92:96:cf:04:4f:4f:f1: 04:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:69:A7:48:30:34:3E:42:6D:80:7F:9A:DA:D9:1C:EC:F6:A3:E9:85 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5510::/44 Signature Algorithm: sha256WithRSAEncryption 7a:20:65:e1:76:89:fa:3f:9e:de:a3:04:7e:00:07:05:f6:ea: 6b:a3:7b:21:ff:29:9e:44:cd:30:04:89:b7:38:68:05:d1:5d: 59:3b:31:9b:5e:f0:06:b1:19:ca:46:f5:b2:00:96:7a:a0:ea: 58:16:c1:93:b2:a7:89:00:49:31:42:af:10:6f:c3:42:07:69: 97:19:cd:00:29:3f:c8:8d:de:8c:9f:79:bd:48:fd:c8:e5:ba: d9:c3:b4:c9:d8:2d:18:ca:34:18:f9:2d:c2:bd:fd:a4:00:0c: 9c:d8:47:c5:b7:7c:fc:ec:3a:c6:75:75:b2:76:2a:a8:15:eb: 4a:dc:78:ac:a8:16:5c:9b:e4:0c:76:e6:03:84:99:c9:8c:8f: 5f:9d:7b:72:9c:07:b0:de:ee:ad:9f:e0:a7:f1:97:0d:30:05: 1e:55:e9:b4:70:2c:63:88:df:93:ce:20:c1:51:05:f3:60:8c: 03:dc:7f:80:af:97:90:ba:36:4f:2d:f2:8c:c3:3f:4d:92:70: 18:1c:5c:b5:33:91:a2:96:19:9a:27:5e:51:d3:af:26:da:e3: ce:4f:0c:5a:a0:cf:ce:c8:28:59:17:c2:73:45:ef:53:17:a6: 03:6c:1d:31:67:da:09:a5:f4:e7:ce:7e:a3:2e:a0:b8:62:f2: 9b:4a:9e:da -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHDS//aLUIWynRj7GgMpm9e9qaI8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTE1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmZlMDQ1NzRmOWNiZTIwMDA0OWVjYzFhNGNlZTg3NmNi YWNmY2U4ZWZkMjVmZWU2MWU1NGIyZGQwN2I5ODFmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7E2fUACj+6DrQSiZd/0zkYh++F33l0kK2vAl+5stlZ5ck 65CpMlOfVFtsPyZBbFrga9PfnbwbLaMVW5uiD+a50x2t2H91+s2WmNShepzceUvp rLWJm+4EYsmcmDKYeriRoFIxmJcYjWI34bchmlVHk/CuuGyIp1reHHpAnxL5gsRJ YOIl9JoVeavaIMy1r6rvtdQYqccd2Ngm0I7ylg6viKa5+APZdhma5NjHCa8wzh+B zlo/RDPQadcLeIM3wOQjSBPZd8FmnRoAXt43e92ARkcr9qeCxOCunKxStsMasCb3 nduGoQxMqt1R1qQS0HQiOd66a+29kpbPBE9P8QRpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUV2mnSDA0PkJtgH+a2tkc7Paj6YUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxYTJhMmMwLWI4ZGItNDg0Ny1hNzU2LWI3NTE1YWE0MmIwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVRAwDQYJKoZIhvcNAQELBQADggEBAHogZeF2ifo/nt6jBH4ABwX2 6mujeyH/KZ5EzTAEibc4aAXRXVk7MZte8AaxGcpG9bIAlnqg6lgWwZOyp4kASTFC rxBvw0IHaZcZzQApP8iN3oyfeb1I/cjlutnDtMnYLRjKNBj5LcK9/aQADJzYR8W3 fPzsOsZ1dbJ2KqgV60rceKyoFlyb5Ax25gOEmcmMj1+de3KcB7De7q2f4Kfxlw0w BR5V6bRwLGOI35POIMFRBfNgjAPcf4Cvl5C6Nk8t8ozDP02ScBgcXLUzkaKWGZon XlHTryba485PDFqgz87IKFkXwnNF71MXpgNsHTFn2gml9OfOfqMuoLhi8ptKnto= -----END CERTIFICATE-----Generated at Sat Apr 26 21:45:57 2025 by rpki-client