$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa File: 765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa (raw, json) Hash identifier: hZaSu0WwlVjAR93bjZfv2mWM3RXDg5gdCHQk+G3qdr0= Subject key identifier: D5:46:32:11:E1:99:47:0D:0D:AD:EC:9D:41:CF:62:F7:98:AA:61:97 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2D7DFD4233E4EC54A79D6BBCDBE074622ED1F2A5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa Signing time: Fri 25 Apr 2025 17:51:21 +0000 ROA not before: Fri 25 Apr 2025 17:51:21 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:7d:fd:42:33:e4:ec:54:a7:9d:6b:bc:db:e0:74:62:2e:d1:f2:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:21 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ac6a7e50502c718faf0a651ee5df84bd437d24f0add8ca2bbb74522716a4708e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:de:49:7a:7e:1c:f3:57:84:a3:44:f6:e7:dd: 00:a2:95:50:4b:2c:ad:79:27:24:f2:2c:18:c2:f7: 5b:2a:d3:b7:8f:60:64:00:4b:9b:46:dd:e9:6a:d1: c3:ed:6b:3b:1b:24:ed:d5:8c:2e:5a:14:0a:72:ed: fc:03:60:55:61:9b:35:0f:fc:67:89:ca:22:ff:85: be:be:b8:6a:41:83:d6:cf:cf:7d:16:62:29:66:d0: 18:be:6d:0c:93:0c:b0:ea:af:a1:51:61:e8:35:03: 3b:51:49:d9:38:58:0d:d5:72:3c:c3:ac:35:c1:7d: b6:ac:f6:30:91:40:33:86:fd:4e:12:45:92:1e:19: a9:d1:bc:b9:a2:ab:62:3c:ed:4f:85:ba:9a:d4:fa: 91:9f:d4:1c:54:c2:65:11:70:3e:a8:70:16:ba:f4: aa:c3:80:23:dc:80:50:7e:ca:f5:28:1f:1a:48:15: 1c:ae:38:cc:58:d1:7b:52:0a:78:73:98:b9:45:fa: 6d:93:15:2a:de:a9:a7:0e:ef:7f:d8:c3:d1:55:40: a0:b8:03:e7:a6:73:d9:fb:e6:34:20:0f:f7:ef:2e: f6:ae:bb:59:b2:26:d7:b9:b6:80:5b:9a:6f:44:15: 3a:c4:de:2d:1e:0b:4e:ca:05:e8:54:c1:3c:c6:ad: 59:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:46:32:11:E1:99:47:0D:0D:AD:EC:9D:41:CF:62:F7:98:AA:61:97 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:8::/48 Signature Algorithm: sha256WithRSAEncryption 0f:09:22:a7:53:fd:be:2e:e7:75:0c:d1:c2:16:b4:10:37:9a: 37:04:49:38:5d:ac:ea:11:4b:c7:d7:21:9a:43:cd:6e:6c:b8: 27:87:9e:72:c6:43:61:82:ec:dc:7e:2c:aa:27:0b:da:51:0e: c8:7a:ae:2a:11:66:96:51:b6:0e:64:ba:55:69:2a:aa:e1:a7: 1c:2f:de:30:e3:08:06:e3:8e:3c:6f:22:c2:ee:1c:41:a9:34: 4a:95:90:95:39:80:c5:ed:1b:fc:c2:e8:2b:6b:a3:76:65:3d: 1a:74:4e:1b:a2:f7:87:a0:3d:80:8e:87:c1:52:21:4a:4b:3d: 9e:2a:3a:a8:03:b1:8e:dc:b2:bc:39:2e:b1:cb:a1:c5:b5:b8: 77:26:97:30:b5:90:eb:71:93:7e:e9:2a:55:c4:36:ec:49:53: fc:1f:c9:2b:bf:08:96:23:09:c2:6e:33:c0:b7:5d:b0:e0:f3: 6c:66:95:4b:99:35:c1:e4:e9:f9:83:53:87:d2:d7:0b:69:55: 98:ca:90:50:2b:6f:7a:55:84:8b:f6:a3:7e:4b:f4:33:86:ad: dc:68:77:99:a5:f2:d2:55:60:5a:8b:0c:d3:e1:0f:cc:be:26: 90:08:28:61:d4:e7:7a:dc:d4:87:79:ee:55:23:94:ea:c6:f4: 4d:ca:1e:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULX39QjPk7FSnnWu82+B0Yi7R8qUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTIxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzZhN2U1MDUwMmM3MThmYWYwYTY1MWVlNWRmODRiZDQz N2QyNGYwYWRkOGNhMmJiYjc0NTIyNzE2YTQ3MDhlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy3kl6fhzzV4SjRPbn3QCilVBLLK15JyTyLBjC91sq07eP YGQAS5tG3elq0cPtazsbJO3VjC5aFApy7fwDYFVhmzUP/GeJyiL/hb6+uGpBg9bP z30WYilm0Bi+bQyTDLDqr6FRYeg1AztRSdk4WA3VcjzDrDXBfbas9jCRQDOG/U4S RZIeGanRvLmiq2I87U+FuprU+pGf1BxUwmURcD6ocBa69KrDgCPcgFB+yvUoHxpI FRyuOMxY0XtSCnhzmLlF+m2TFSreqacO73/Yw9FVQKC4A+emc9n75jQgD/fvLvau u1myJte5toBbmm9EFTrE3i0eC07KBehUwTzGrVlpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1UYyEeGZRw0NreydQc9i95iqYZcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc2NWRmYTZjLTM1ZDEtNDJjZi1iYTg5LWVhZjg4NTc3ZTRmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAgwDQYJKoZIhvcNAQELBQADggEBAA8JIqdT/b4u53UM0cIWtBA3 mjcESThdrOoRS8fXIZpDzW5suCeHnnLGQ2GC7Nx+LKonC9pRDsh6rioRZpZRtg5k ulVpKqrhpxwv3jDjCAbjjjxvIsLuHEGpNEqVkJU5gMXtG/zC6Ctro3ZlPRp0Thui 94egPYCOh8FSIUpLPZ4qOqgDsY7csrw5LrHLocW1uHcmlzC1kOtxk37pKlXENuxJ U/wfySu/CJYjCcJuM8C3XbDg82xmlUuZNcHk6fmDU4fS1wtpVZjKkFArb3pVhIv2 o35L9DOGrdxod5ml8tJVYFqLDNPhD8y+JpAIKGHU53rc1Id57lUjlOrG9E3KHmY= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:59 2025 by rpki-client