$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa File: 8a8b863b-298e-48a9-bced-202e80d98f01.roa (raw, json) Hash identifier: FrAEmbWwfz59ezuejrXaM2VM/g+z/+/+eRttoSj3h3A= Subject key identifier: A1:BC:E5:04:CF:6E:40:50:26:A9:D9:64:E3:32:16:57:36:57:9B:10 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 64A9CEFF5CE47816BD70C6A987CB8367716B3A9A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa Signing time: Fri 25 Apr 2025 18:00:58 +0000 ROA not before: Fri 25 Apr 2025 18:00:58 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ee00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:a9:ce:ff:5c:e4:78:16:bd:70:c6:a9:87:cb:83:67:71:6b:3a:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:58 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=62f5d792cdb886ce17338f370b345d93db10f9fa0c1ecadf260b54d7f9d09da0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:40:ff:d3:87:55:5a:30:ea:f5:41:39:38:52: c4:f3:66:24:31:2e:d8:b6:48:8b:a0:a3:85:5b:c7: fa:43:d8:9c:16:a0:8e:71:12:8f:bc:06:b0:a6:b8: db:54:b0:26:e2:c5:2a:02:08:e1:c4:23:ca:d2:2e: ac:7c:33:c5:62:ac:e5:06:c5:c1:2c:f2:07:2a:36: fc:f0:24:8f:ea:92:de:5d:67:49:03:97:7c:6a:a8: fa:be:15:8b:dd:99:91:a3:ac:88:20:93:d8:31:10: 94:b5:b1:ea:4c:8a:b5:6c:be:83:09:48:97:f2:18: 6d:5d:76:b7:da:16:e5:29:de:c2:7f:f9:00:a2:4e: f9:88:b7:8a:52:23:bd:33:e0:72:67:85:23:06:98: 94:7d:07:5d:31:ad:5e:1e:fa:df:5f:86:5e:e8:3d: 5d:35:6d:e7:ca:3f:9e:67:8c:12:e1:07:13:ca:bc: f1:e4:14:d6:d4:bf:1a:27:4e:4d:15:01:a0:6c:78: 33:48:e8:60:a2:ba:99:4a:b3:81:e6:70:5c:94:5d: 51:64:53:b7:92:0a:22:a2:6e:06:53:06:6b:3f:0b: 1d:27:5c:9f:52:38:e5:93:d8:e6:3f:c7:5e:51:93: 39:8e:7f:6f:a8:10:11:cd:0a:b2:4c:f9:38:b6:05: 74:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BC:E5:04:CF:6E:40:50:26:A9:D9:64:E3:32:16:57:36:57:9B:10 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ee00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:1e:65:05:a8:da:31:25:2c:14:18:a2:0b:d6:f1:af:4b:1a: d5:a5:95:34:bb:fc:56:e3:3b:61:5e:c3:b3:df:0e:ba:87:58: 87:6d:5a:e8:ac:62:b0:b0:91:37:12:44:db:82:a0:6b:13:f5: e0:0b:68:73:6b:49:bc:c8:a5:8a:df:e5:47:09:fc:b4:03:8f: 44:05:a3:dc:a2:7e:6a:0e:b2:21:ea:30:4f:a2:e2:d7:85:43: 96:ce:16:ad:67:83:99:b3:ed:59:a4:b6:ad:cc:fd:e5:9d:98: 41:45:2d:29:75:90:91:bf:04:65:fc:a5:00:be:2f:bc:43:53: bf:e7:98:b3:43:42:3d:f0:80:f5:15:91:0d:52:e8:a4:51:cc: 7a:29:23:d8:b0:ec:e0:7f:1f:39:73:85:47:51:d0:03:8a:2e: 0b:a9:ed:9e:16:9b:cd:7c:4b:1c:6e:b8:bb:a6:3c:97:4a:ad: 29:12:0a:5f:69:93:16:ab:57:af:da:ee:f0:20:19:58:ba:c3: ae:8f:9f:d3:4f:7e:c5:85:8d:78:70:07:11:cd:77:84:b3:d7: b9:75:b0:48:42:91:d3:6d:2c:db:c4:e6:d7:f4:04:12:f7:21: 9c:c5:f3:ea:d1:78:c0:bc:a6:ac:89:0c:3d:55:7e:f4:e4:b0: 9d:e5:74:61 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZKnO/1zkeBa9cMaph8uDZ3FrOpowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDU4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmY1ZDc5MmNkYjg4NmNlMTczMzhmMzcwYjM0NWQ5M2Ri MTBmOWZhMGMxZWNhZGYyNjBiNTRkN2Y5ZDA5ZGEwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKQP/Th1VaMOr1QTk4UsTzZiQxLti2SIugo4Vbx/pD2JwW oI5xEo+8BrCmuNtUsCbixSoCCOHEI8rSLqx8M8VirOUGxcEs8gcqNvzwJI/qkt5d Z0kDl3xqqPq+FYvdmZGjrIggk9gxEJS1sepMirVsvoMJSJfyGG1ddrfaFuUp3sJ/ +QCiTvmIt4pSI70z4HJnhSMGmJR9B10xrV4e+t9fhl7oPV01befKP55njBLhBxPK vPHkFNbUvxonTk0VAaBseDNI6GCiuplKs4HmcFyUXVFkU7eSCiKibgZTBms/Cx0n XJ9SOOWT2OY/x15RkzmOf2+oEBHNCrJM+Ti2BXRZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUobzlBM9uQFAmqdlk4zIWVzZXmxAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhhOGI4NjNiLTI5OGUtNDhhOS1iY2VkLTIwMmU4MGQ5OGYwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77jANBgkqhkiG9w0BAQsFAAOCAQEAnh5lBajaMSUsFBiiC9bxr0sa 1aWVNLv8VuM7YV7Ds98OuodYh21a6KxisLCRNxJE24KgaxP14Atoc2tJvMilit/l Rwn8tAOPRAWj3KJ+ag6yIeowT6Li14VDls4WrWeDmbPtWaS2rcz95Z2YQUUtKXWQ kb8EZfylAL4vvENTv+eYs0NCPfCA9RWRDVLopFHMeikj2LDs4H8fOXOFR1HQA4ou C6ntnhabzXxLHG64u6Y8l0qtKRIKX2mTFqtXr9ru8CAZWLrDro+f009+xYWNeHAH Ec13hLPXuXWwSEKR020s28Tm1/QEEvchnMXz6tF4wLymrIkMPVV+9OSwneV0YQ== -----END CERTIFICATE-----Generated at Sat Apr 26 19:13:24 2025 by rpki-client