$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa File: 72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa (raw, json) Hash identifier: PIVwaeTIccagCu/6kFLPW3Y+YMnpkNgmCR8mOmb2Ris= Subject key identifier: 8C:0B:B4:25:8D:AC:09:4E:FC:00:CB:1C:B9:19:D3:AF:A4:BF:E9:BA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 570910C4C3A140ACDF7A0316C1BA40C3F6638C33 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa Signing time: Fri 25 Apr 2025 18:00:57 +0000 ROA not before: Fri 25 Apr 2025 18:00:57 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ee00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:09:10:c4:c3:a1:40:ac:df:7a:03:16:c1:ba:40:c3:f6:63:8c:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:57 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=a3e216f4afb0389205f4f9d1d9db431fcf02ed854b6a563fbcc14f747a3793d9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:19:b1:6a:cb:23:b4:7c:d6:3c:fd:b5:09:5e: dd:be:cd:10:54:00:ae:b5:52:e8:47:59:60:32:a1: 6a:0a:fd:5e:6b:03:f9:fa:c0:47:ea:d1:0c:1f:62: 70:fb:1c:7c:31:61:27:97:47:35:4d:19:75:a7:8b: 79:50:8f:f0:69:b1:2f:dd:17:76:da:d3:4d:78:80: 99:18:92:fb:be:8b:7b:bb:ed:49:56:6c:86:03:3f: 96:ba:35:8e:e3:b7:cb:87:81:ad:81:68:51:fc:1c: 1e:ee:01:79:f7:82:14:5f:4f:11:b5:4b:bb:86:d9: 48:a0:d8:09:c0:75:b2:be:ed:da:7b:9b:5e:7f:1a: 81:4e:29:5a:1a:12:e2:17:fb:46:d7:12:37:4d:ab: 39:cd:5e:33:93:25:59:33:2e:62:71:0c:a6:be:e4: 1b:aa:22:26:f2:65:d0:5b:c1:1b:c9:d8:40:29:30: ee:29:9d:94:ae:9f:cc:12:6b:9d:f4:b6:5a:cb:db: ea:f1:d6:b6:11:fe:cc:40:bf:ce:23:68:63:bf:cf: fb:3f:14:0f:0b:80:9c:1e:83:c0:2d:16:b9:f9:f5: b5:ee:5d:bd:3f:0b:1f:60:72:f9:c5:e8:19:d3:99: 10:7b:61:57:19:99:af:a8:61:f3:0c:26:3c:9b:b5: 70:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0B:B4:25:8D:AC:09:4E:FC:00:CB:1C:B9:19:D3:AF:A4:BF:E9:BA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ee00::/42 Signature Algorithm: sha256WithRSAEncryption 6f:96:af:4f:5a:d6:55:7e:01:b2:d9:05:23:62:d9:b9:98:ad: b0:01:92:64:91:7a:ee:c4:6a:d9:fe:81:b6:8e:c8:fd:88:33: 02:e4:7d:b7:1b:c6:bb:4f:25:bb:47:f6:da:e1:fe:6b:d0:db: 77:24:71:e4:81:78:ab:ff:8f:94:a2:d9:6e:f1:b5:e8:a4:44: cd:85:96:cd:bf:cf:63:28:25:2e:23:88:97:d9:52:4b:58:0b: 42:36:3c:da:2a:eb:56:21:83:cf:91:b8:bf:2f:44:d8:40:f2: 24:93:46:db:36:3b:29:dd:0c:ed:4b:d4:59:01:e8:dc:05:0a: 47:4f:bc:6b:e6:f6:95:f6:b3:88:7b:c4:23:68:6d:82:f4:39: b4:10:fc:a2:80:65:02:d3:15:5c:eb:b1:50:8c:ca:d7:a4:7c: 8c:e5:78:26:0a:0b:c7:65:73:58:a4:22:6a:ec:75:3a:7c:25: cb:f6:4a:04:7b:af:f6:ce:14:74:cf:75:d4:72:e5:3f:bd:a8: 72:5d:1d:45:b5:7d:f4:7f:88:f8:a4:85:54:f2:98:eb:8d:40: 3c:ce:d0:39:63:d9:01:94:64:73:a2:36:c9:85:77:da:f2:de: 30:0e:c1:c6:a9:6b:f8:ea:9f:2b:15:22:37:98:05:48:1d:46: db:c3:f2:f7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVwkQxMOhQKzfegMWwbpAw/ZjjDMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDU3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhM2UyMTZmNGFmYjAzODkyMDVmNGY5ZDFkOWRiNDMxZmNm MDJlZDg1NGI2YTU2M2ZiY2MxNGY3NDdhMzc5M2Q5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoGbFqyyO0fNY8/bUJXt2+zRBUAK61UuhHWWAyoWoK/V5r A/n6wEfq0QwfYnD7HHwxYSeXRzVNGXWni3lQj/BpsS/dF3ba0014gJkYkvu+i3u7 7UlWbIYDP5a6NY7jt8uHga2BaFH8HB7uAXn3ghRfTxG1S7uG2Uig2AnAdbK+7dp7 m15/GoFOKVoaEuIX+0bXEjdNqznNXjOTJVkzLmJxDKa+5BuqIibyZdBbwRvJ2EAp MO4pnZSun8wSa530tlrL2+rx1rYR/sxAv84jaGO/z/s/FA8LgJweg8AtFrn59bXu Xb0/Cx9gcvnF6BnTmRB7YVcZma+oYfMMJjybtXBrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjAu0JY2sCU78AMscuRnTr6S/6bowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMjQxZGM2LTU2YWUtNDMzNy1iYjRiLWI4NGZiZGFlNTFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77gAwDQYJKoZIhvcNAQELBQADggEBAG+Wr09a1lV+AbLZBSNi2bmY rbABkmSReu7Eatn+gbaOyP2IMwLkfbcbxrtPJbtH9trh/mvQ23ckceSBeKv/j5Si 2W7xteikRM2Fls2/z2MoJS4jiJfZUktYC0I2PNoq61Yhg8+RuL8vRNhA8iSTRts2 OyndDO1L1FkB6NwFCkdPvGvm9pX2s4h7xCNobYL0ObQQ/KKAZQLTFVzrsVCMytek fIzleCYKC8dlc1ikImrsdTp8Jcv2SgR7r/bOFHTPddRy5T+9qHJdHUW1ffR/iPik hVTymOuNQDzO0Dlj2QGUZHOiNsmFd9ry3jAOwcapa/jqnysVIjeYBUgdRtvD8vc= -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:48 2025 by rpki-client