$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa File: 7fef00dc-1a9a-497c-b857-792da38e532f.roa (raw, json) Hash identifier: fw+0leRQKbYh/NKw61Wc5qBfISQIS76CCKcM9F4InrE= Subject key identifier: D1:72:F0:63:74:C2:52:54:66:9C:70:5E:4E:D0:A9:6F:AE:65:BA:8C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 396CF3515F014B7A7262A0295129E72D74165C37 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa Signing time: Fri 04 Apr 2025 00:20:23 +0000 ROA not before: Fri 04 Apr 2025 00:20:23 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:6c:f3:51:5f:01:4b:7a:72:62:a0:29:51:29:e7:2d:74:16:5c:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 4 00:20:23 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=d0a58c533edaa3ff93dc3c0740e07e87c992467bd8f1e228cebc66563530e7b0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8a:04:b2:f5:57:22:3d:77:53:b1:63:ae:d4: 8e:3c:1c:f5:b6:ef:42:9f:c7:9d:ae:18:f6:2a:33: 9f:ec:35:fe:5f:50:89:1c:7f:1c:2f:3e:de:c7:bc: 75:41:c3:bc:19:88:88:88:4a:76:d4:1d:dc:e4:c6: 2a:47:9e:fd:1f:06:5a:76:89:23:cc:65:89:4f:e6: b1:1f:17:00:98:b7:a9:a9:21:a6:d5:f5:48:d1:c8: cd:27:4e:1e:e1:55:cf:25:1d:6a:37:36:f6:2f:86: 5b:a2:d1:7b:fd:1b:81:05:b2:b9:4c:d7:19:bf:6a: ea:3a:d2:d5:5b:1e:1b:48:f7:ad:d8:b2:8c:e4:92: ef:ca:ed:68:1c:0f:20:f6:83:f2:02:3b:14:8b:75: f4:34:5e:3d:9b:37:b8:c8:d6:87:bf:6a:5e:aa:89: 29:93:a8:57:a0:34:ba:22:60:9e:4d:5d:5d:fa:5b: d5:c5:2f:4c:31:e4:29:2a:70:e3:81:15:9b:2f:72: 71:d0:9c:ee:91:c4:43:15:2c:75:6f:ef:ae:de:27: b9:1d:81:c1:1d:89:67:49:7e:9f:f1:bb:32:36:be: 56:94:65:f8:f0:cf:19:c3:33:12:1a:1b:9e:69:6b: a9:2a:87:e1:e2:cf:e3:f1:e4:cd:5e:19:e2:f3:4a: 50:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:72:F0:63:74:C2:52:54:66:9C:70:5E:4E:D0:A9:6F:AE:65:BA:8C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5500::/48 Signature Algorithm: sha256WithRSAEncryption 3a:5b:ad:6c:06:68:4f:01:74:34:73:98:62:cb:20:e4:1c:10: 3d:0a:b9:f1:17:4b:d0:a6:f3:52:31:09:73:fa:06:ff:47:cd: 0a:c6:63:ea:b1:ce:d1:75:aa:0a:83:33:5b:f2:4e:9c:3a:fc: c5:ec:5e:c7:40:69:be:ed:e7:84:68:b2:ca:d4:a4:1c:8f:92: f7:dd:c9:b5:04:26:f3:63:ed:d3:d9:29:b6:02:4b:c7:2f:31: c1:f4:4c:c4:4d:14:7f:6c:2e:5f:48:56:79:69:ef:85:03:36: 53:f2:5e:83:50:22:92:7f:3c:0f:f4:07:ba:44:ab:c3:cf:f7: fc:8a:76:8b:b2:5e:60:f4:a0:83:41:a9:63:34:b4:55:28:f3: ad:78:7b:ac:9d:fd:c7:1a:20:9b:eb:ea:fa:b2:74:f6:e8:89: de:38:93:16:85:5c:01:2f:16:5a:d1:b8:7d:f1:3b:a7:85:38: 68:57:60:de:a6:aa:06:19:de:8b:fa:79:3e:1e:62:a1:19:71: f3:eb:55:f2:7b:00:ea:ef:6c:c6:29:66:a9:9c:cb:57:7b:63: 43:87:34:15:b3:ea:db:99:db:c4:cd:e3:8d:49:39:99:60:d4: ea:e0:9c:4b:9d:16:56:87:ac:2b:49:f0:b5:d7:69:12:a2:df: b3:a3:25:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOWzzUV8BS3pyYqApUSnnLXQWXDcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDA0MDAyMDIzWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMGE1OGM1MzNlZGFhM2ZmOTNkYzNjMDc0MGUwN2U4N2M5 OTI0NjdiZDhmMWUyMjhjZWJjNjY1NjM1MzBlN2IwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkigSy9VciPXdTsWOu1I48HPW270Kfx52uGPYqM5/sNf5f UIkcfxwvPt7HvHVBw7wZiIiISnbUHdzkxipHnv0fBlp2iSPMZYlP5rEfFwCYt6mp IabV9UjRyM0nTh7hVc8lHWo3NvYvhlui0Xv9G4EFsrlM1xm/auo60tVbHhtI963Y sozkku/K7WgcDyD2g/ICOxSLdfQ0Xj2bN7jI1oe/al6qiSmTqFegNLoiYJ5NXV36 W9XFL0wx5CkqcOOBFZsvcnHQnO6RxEMVLHVv767eJ7kdgcEdiWdJfp/xuzI2vlaU ZfjwzxnDMxIaG55pa6kqh+Hiz+Px5M1eGeLzSlB3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0XLwY3TCUlRmnHBeTtCpb65luowwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdmZWYwMGRjLTFhOWEtNDk3Yy1iODU3LTc5MmRhMzhlNTMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQAwDQYJKoZIhvcNAQELBQADggEBADpbrWwGaE8BdDRzmGLLIOQc ED0KufEXS9Cm81IxCXP6Bv9HzQrGY+qxztF1qgqDM1vyTpw6/MXsXsdAab7t54Ro ssrUpByPkvfdybUEJvNj7dPZKbYCS8cvMcH0TMRNFH9sLl9IVnlp74UDNlPyXoNQ IpJ/PA/0B7pEq8PP9/yKdouyXmD0oINBqWM0tFUo8614e6yd/ccaIJvr6vqydPbo id44kxaFXAEvFlrRuH3xO6eFOGhXYN6mqgYZ3ov6eT4eYqEZcfPrVfJ7AOrvbMYp Zqmcy1d7Y0OHNBWz6tuZ28TN441JOZlg1OrgnEudFlaHrCtJ8LXXaRKi37OjJVo= -----END CERTIFICATE-----Generated at Sun Apr 27 01:32:14 2025 by rpki-client