$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa File: 7ef9d80d-500c-4762-aefe-0aa07f82b263.roa (raw, json) Hash identifier: b2v2o0FVUI0gb1XNYqY4cGFCCDTWiAAkf64TAg86anw= Subject key identifier: BB:70:B7:4C:FF:FC:72:32:41:3B:DA:8B:28:CE:67:A2:C9:5F:AE:4F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 457F89C18F38D5A649341C7B21BB10C1A93D287A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa Signing time: Fri 25 Apr 2025 18:01:04 +0000 ROA not before: Fri 25 Apr 2025 18:01:04 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:7f:89:c1:8f:38:d5:a6:49:34:1c:7b:21:bb:10:c1:a9:3d:28:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:04 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=6237d836b736a49347c6e32392dfa61f0d75514253b0f9d5831e852eec351072, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:57:30:5a:15:e7:3d:7a:88:c9:9d:08:7f:83: cc:c9:e0:3b:1d:e4:cd:43:d4:f2:18:f8:63:97:f2: f4:8d:49:b9:c3:bf:5f:ef:97:33:b2:8d:09:6b:39: 63:f8:9f:ff:71:97:21:e1:83:bd:e8:e9:9c:c4:3e: dc:75:45:2a:4b:00:a2:b4:5e:e1:94:d5:a1:6b:e0: 43:2b:d7:33:28:4f:68:e5:ce:d6:3d:84:1c:b3:7a: f2:86:ae:fd:4a:0f:a6:8a:5c:96:8d:61:fc:58:d9: b3:8c:a6:1a:98:b6:12:99:d3:98:65:3d:f1:2a:fd: 81:d6:e2:04:69:78:a6:f2:19:e4:f1:3e:68:61:06: 8e:12:b0:2d:9c:c7:c3:63:0a:cb:af:7b:69:b0:62: 8b:97:5a:12:28:5a:79:87:a0:63:34:06:32:9d:39: 56:68:ff:91:56:10:97:4d:90:a5:49:26:76:15:3e: ed:88:94:9f:08:b9:6f:0e:16:24:a3:99:2c:ea:67: dd:1b:d3:25:3c:48:90:07:9e:6d:e7:73:d3:f7:bf: 77:c4:46:1f:88:1a:f0:09:70:36:83:be:bc:50:f6: 6d:41:ef:a6:ad:a8:35:f8:72:52:5e:2b:da:c1:e8: 0a:9c:31:d9:34:f2:91:f1:bf:8e:d7:e5:18:d5:98: 40:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:70:B7:4C:FF:FC:72:32:41:3B:DA:8B:28:CE:67:A2:C9:5F:AE:4F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/40 Signature Algorithm: sha256WithRSAEncryption 21:2f:7d:f1:31:18:da:1b:63:c3:8f:05:52:d6:a1:a2:12:a9: 73:23:88:e1:a8:3c:d9:af:5d:fa:60:fd:8e:f7:12:8c:29:b5: fa:f7:cd:fa:b9:3f:2d:9a:25:6e:6b:92:42:58:fe:90:d9:0a: 07:9a:2d:fe:a1:26:49:84:dc:a2:d0:69:20:48:7c:57:1b:d4: 66:02:1c:2d:7b:70:ea:d5:2e:51:06:92:e5:ed:b9:47:18:6b: 6e:d9:4e:36:1b:a3:48:e0:c5:3e:05:fd:4b:e4:ad:30:86:79: 4e:b1:1b:49:50:f9:c3:b3:fe:49:f8:84:13:99:64:ee:89:88: 10:43:bd:11:2c:5b:69:2f:0a:41:8b:39:67:c6:3f:ad:9c:44: a3:79:2b:1b:c0:44:92:b4:b8:ee:77:c1:81:f5:00:18:cf:66: 9f:85:a2:7e:49:f3:71:18:ed:dd:09:0c:70:c6:af:e2:69:f9: ec:77:4d:3a:e9:79:3f:f7:42:80:85:b7:ad:ae:f4:a3:8c:a0: 55:b7:d1:43:42:53:38:a0:8c:7b:98:79:a6:07:3e:84:23:df: 7e:42:a4:ba:c3:24:8b:c7:2b:62:4f:e0:57:fb:25:8b:8f:55: b7:3f:91:72:64:b6:bd:b7:3c:f2:c3:c5:56:58:c9:9a:00:41: cd:7c:13:b8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURX+JwY841aZJNBx7IbsQwak9KHowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTA0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjM3ZDgzNmI3MzZhNDkzNDdjNmUzMjM5MmRmYTYxZjBk NzU1MTQyNTNiMGY5ZDU4MzFlODUyZWVjMzUxMDcyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFVzBaFec9eojJnQh/g8zJ4Dsd5M1D1PIY+GOX8vSNSbnD v1/vlzOyjQlrOWP4n/9xlyHhg73o6ZzEPtx1RSpLAKK0XuGU1aFr4EMr1zMoT2jl ztY9hByzevKGrv1KD6aKXJaNYfxY2bOMphqYthKZ05hlPfEq/YHW4gRpeKbyGeTx PmhhBo4SsC2cx8NjCsuve2mwYouXWhIoWnmHoGM0BjKdOVZo/5FWEJdNkKVJJnYV Pu2IlJ8IuW8OFiSjmSzqZ90b0yU8SJAHnm3nc9P3v3fERh+IGvAJcDaDvrxQ9m1B 76atqDX4clJeK9rB6AqcMdk08pHxv47X5RjVmECBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUu3C3TP/8cjJBO9qLKM5noslfrk8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdlZjlkODBkLTUwMGMtNDc2Mi1hZWZlLTBhYTA3ZjgyYjI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75DANBgkqhkiG9w0BAQsFAAOCAQEAIS998TEY2htjw48FUtahohKp cyOI4ag82a9d+mD9jvcSjCm1+vfN+rk/LZolbmuSQlj+kNkKB5ot/qEmSYTcotBp IEh8VxvUZgIcLXtw6tUuUQaS5e25RxhrbtlONhujSODFPgX9S+StMIZ5TrEbSVD5 w7P+SfiEE5lk7omIEEO9ESxbaS8KQYs5Z8Y/rZxEo3krG8BEkrS47nfBgfUAGM9m n4WifknzcRjt3QkMcMav4mn57HdNOul5P/dCgIW3ra70o4ygVbfRQ0JTOKCMe5h5 pgc+hCPffkKkusMki8crYk/gV/sli49Vtz+RcmS2vbc88sPFVljJmgBBzXwTuA== -----END CERTIFICATE-----Generated at Sat Apr 26 15:00:29 2025 by rpki-client