$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa File: 73712e14-51d5-41db-bcf2-73aa504e6eab.roa (raw, json) Hash identifier: /Z10ZlnHsrO0T1soZvGCAjLMgI+5a6QInZ5y65TNFIg= Subject key identifier: 86:F7:7D:F9:C1:50:B8:09:84:30:33:AA:FD:F0:29:DE:4F:AB:F5:61 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 51F657F64F2172CE713E72D3CEF0DA682BEEBABA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa Signing time: Fri 25 Apr 2025 17:50:15 +0000 ROA not before: Fri 25 Apr 2025 17:50:15 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:f6:57:f6:4f:21:72:ce:71:3e:72:d3:ce:f0:da:68:2b:ee:ba:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:15 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=74153b9e39f44fc82b42c1a7b0f804961f97247e03e3965be0d6342645db5165, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:56:d2:20:8c:e8:a1:4f:89:56:e4:2a:b5:90: fc:c1:89:ff:f1:b6:8f:5c:f3:6c:aa:30:53:90:13: 2b:8e:59:37:ba:c9:ea:3e:92:91:46:dc:68:b5:cc: 14:5f:ab:4b:4f:0a:f0:92:3d:50:28:f4:a0:60:d7: fb:7d:f0:df:0b:4f:50:e8:e2:5c:49:cd:e6:24:14: 0f:a1:73:53:f1:25:2e:f7:6c:ea:d6:45:98:70:fc: 49:e2:c0:93:9a:5d:e4:0b:76:86:01:00:7e:70:db: a9:ca:04:ff:df:57:f2:01:db:41:57:07:86:a7:2f: 6c:c6:e0:ad:11:bf:97:34:e6:64:0a:68:c1:9b:67: 86:8e:e5:6a:07:6d:ef:55:27:da:32:0a:7a:a0:c8: 22:5f:5e:d9:96:64:1d:e7:a6:88:a9:52:36:8d:6e: 27:bc:9a:66:6a:05:76:d1:c6:6a:3d:c3:d5:33:d4: 12:e4:12:46:92:ad:a5:2d:4c:21:75:47:0d:de:17: 64:43:2c:fa:06:68:f2:17:fc:f1:04:ee:4d:dc:98: 1b:40:f8:5f:a1:43:f7:a3:b1:ad:b2:96:86:d2:c4: ce:13:b7:25:d0:4a:f3:a6:9d:56:49:6d:0c:b6:c6: 47:53:54:83:4a:70:25:58:41:e2:32:b3:d2:e4:19: 14:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F7:7D:F9:C1:50:B8:09:84:30:33:AA:FD:F0:29:DE:4F:AB:F5:61 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 6d:63:bd:dd:16:94:7c:1f:04:10:c6:61:dd:3d:ca:bc:34:b2: e3:3e:d5:91:78:31:42:46:7c:da:ed:b6:0c:ed:55:23:b9:a9: 71:3d:4b:cb:6d:ed:57:21:32:4b:f3:9a:e2:3d:9d:59:8a:4a: a9:87:16:9b:04:d7:c9:77:dc:7a:3c:3e:d9:e5:94:09:a0:62: 42:90:e3:15:a8:35:60:05:f4:c6:e1:d0:66:f1:9a:3d:af:5a: e6:c1:4c:56:45:9c:24:17:50:b3:07:ca:88:3c:d1:08:0b:9d: d7:65:d5:06:40:bd:58:64:4d:9f:33:fe:5a:de:31:b7:17:77: ec:49:04:ba:12:32:10:3c:af:ae:ce:a6:6d:8f:ac:66:28:d3: 18:72:25:ca:72:49:44:f3:f4:d7:d3:0e:57:69:8f:30:a2:89: 5e:54:5f:59:da:de:44:f4:b0:2d:99:c6:dd:1f:0c:cd:f9:79: 85:4b:33:72:d3:32:c7:4a:3f:20:83:d6:73:1f:72:40:01:7b: bb:a0:b0:e5:5e:52:7a:94:73:49:8e:e4:d1:bc:9e:86:a8:32: 53:8f:c7:74:85:05:10:d9:48:46:75:25:c4:19:0f:df:4e:07: 4b:36:10:10:a5:9e:f0:59:d3:9a:89:34:d4:be:16:c5:f3:c8: 56:ad:6d:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUfZX9k8hcs5xPnLTzvDaaCvuurowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDE1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDE1M2I5ZTM5ZjQ0ZmM4MmI0MmMxYTdiMGY4MDQ5NjFm OTcyNDdlMDNlMzk2NWJlMGQ2MzQyNjQ1ZGI1MTY1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfVtIgjOihT4lW5Cq1kPzBif/xto9c82yqMFOQEyuOWTe6 yeo+kpFG3Gi1zBRfq0tPCvCSPVAo9KBg1/t98N8LT1Do4lxJzeYkFA+hc1PxJS73 bOrWRZhw/EniwJOaXeQLdoYBAH5w26nKBP/fV/IB20FXB4anL2zG4K0Rv5c05mQK aMGbZ4aO5WoHbe9VJ9oyCnqgyCJfXtmWZB3npoipUjaNbie8mmZqBXbRxmo9w9Uz 1BLkEkaSraUtTCF1Rw3eF2RDLPoGaPIX/PEE7k3cmBtA+F+hQ/ejsa2ylobSxM4T tyXQSvOmnVZJbQy2xkdTVINKcCVYQeIys9LkGRRTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhvd9+cFQuAmEMDOq/fAp3k+r9WEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzczNzEyZTE0LTUxZDUtNDFkYi1iY2YyLTczYWE1MDRlNmVhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAG1jvd0WlHwfBBDGYd09yrw0 suM+1ZF4MUJGfNrttgztVSO5qXE9S8tt7VchMkvzmuI9nVmKSqmHFpsE18l33Ho8 PtnllAmgYkKQ4xWoNWAF9Mbh0Gbxmj2vWubBTFZFnCQXULMHyog80QgLnddl1QZA vVhkTZ8z/lreMbcXd+xJBLoSMhA8r67Opm2PrGYo0xhyJcpySUTz9NfTDldpjzCi iV5UX1na3kT0sC2Zxt0fDM35eYVLM3LTMsdKPyCD1nMfckABe7ugsOVeUnqUc0mO 5NG8noaoMlOPx3SFBRDZSEZ1JcQZD99OB0s2EBClnvBZ05qJNNS+FsXzyFatbVQ= -----END CERTIFICATE-----Generated at Sat Apr 26 13:18:26 2025 by rpki-client