$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa File: 8dc8b90b-7591-404d-b954-05b005230216.roa (raw, json) Hash identifier: zVVTVfmp4K58Lr/TWdys+pDeZwqgoAKrhVubphRujK8= Subject key identifier: 74:06:B1:8B:45:21:B5:C5:F6:91:A0:75:CC:EA:2C:6E:DE:F9:39:4D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0D779DD2866ACC371D26BBAEA41B9B2A807A9A4D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa Signing time: Fri 25 Apr 2025 18:10:11 +0000 ROA not before: Fri 25 Apr 2025 18:10:11 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:77:9d:d2:86:6a:cc:37:1d:26:bb:ae:a4:1b:9b:2a:80:7a:9a:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:10:11 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=f5d27c510220a45aae8a0e911a300562d69e946d0398411b9899c78ff23cf4b4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9f:a3:7f:35:ad:04:bb:e3:60:56:22:1b:d5: c6:86:6b:47:4b:10:ec:f0:0a:62:44:6a:85:b1:ce: 3e:cb:7a:55:89:68:b3:d3:dd:5e:83:3d:1a:31:58: 1b:ce:ce:f1:b9:ff:24:07:a3:9a:33:05:3a:55:4b: 54:d8:a5:32:a7:cd:92:ac:ab:c0:de:f5:37:af:45: 84:f5:19:26:44:cc:a3:bb:f1:51:dc:cb:6f:12:0f: 50:c1:67:aa:a0:e6:f2:a8:b6:75:2b:cc:54:48:06: 2e:62:70:0f:ad:57:52:62:10:ad:82:b9:c4:0d:bd: 65:36:f3:1e:c5:75:de:1c:6d:d1:cf:41:f5:e2:ef: 99:f6:78:f1:5f:b0:a0:20:67:6a:7c:df:8b:4e:7c: c2:c7:74:1d:ad:59:c4:36:46:48:7e:0b:ec:29:f9: 75:e6:41:c1:d4:29:74:01:8e:22:0b:ed:c6:32:d5: 2a:98:9c:df:c1:c6:da:6d:34:1d:ec:d3:65:42:f7: cb:75:09:d3:77:27:8b:26:8e:2d:74:70:79:ee:3a: 80:ad:df:6a:04:83:16:2e:08:50:4f:64:3e:bc:07: 16:7c:f4:04:02:fd:4a:58:00:3f:db:c2:1d:ce:23: 69:40:ed:94:2d:00:7d:c8:78:45:7e:85:50:7e:36: ee:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:06:B1:8B:45:21:B5:C5:F6:91:A0:75:CC:EA:2C:6E:DE:F9:39:4D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/39 Signature Algorithm: sha256WithRSAEncryption 28:5f:b3:d5:2f:47:c2:8d:58:2e:19:83:1b:c8:0c:97:d2:91: 9f:00:6c:bd:fb:fd:8f:91:56:dc:00:15:49:da:ec:89:ea:fb: ce:5d:59:a6:f9:bd:5d:2c:08:20:b4:76:6f:41:8f:60:03:3a: e6:bb:7c:ed:d1:10:67:5c:58:de:e0:95:4c:6d:89:f8:65:33: a8:17:28:b7:58:fe:c3:32:7d:1a:f9:6a:7c:35:b2:3c:46:a2: 07:15:00:9a:02:03:e7:37:03:07:66:12:d7:8b:5a:73:87:4c: 7d:12:29:1b:f0:c0:ce:ff:93:2b:ec:f8:9a:fd:1d:a7:6b:75: b3:2f:f0:2b:a7:70:58:ff:11:26:92:7e:12:77:94:03:9d:1b: 4f:e9:d7:25:d1:ef:0f:fd:7a:26:ed:a4:b5:2b:4e:30:e7:59: db:fa:41:04:a8:40:9c:ff:44:b2:87:91:67:16:b9:da:90:2b: d4:89:84:f0:75:da:49:54:c3:de:f8:e4:4a:b2:b8:77:19:00: 3c:ea:20:08:e3:f6:a6:fa:f5:12:70:06:1e:99:4f:c6:e4:a1: 3f:d5:26:c6:08:bb:6e:39:5e:69:f8:f4:cc:43:3a:5e:7b:fc: fe:0b:df:e8:11:e0:36:5c:67:94:fa:98:8d:0d:6d:fb:d8:44: 1c:81:87:4a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDXed0oZqzDcdJruupBubKoB6mk0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgxMDExWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNWQyN2M1MTAyMjBhNDVhYWU4YTBlOTExYTMwMDU2MmQ2 OWU5NDZkMDM5ODQxMWI5ODk5Yzc4ZmYyM2NmNGI0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyn6N/Na0Eu+NgViIb1caGa0dLEOzwCmJEaoWxzj7LelWJ aLPT3V6DPRoxWBvOzvG5/yQHo5ozBTpVS1TYpTKnzZKsq8De9TevRYT1GSZEzKO7 8VHcy28SD1DBZ6qg5vKotnUrzFRIBi5icA+tV1JiEK2CucQNvWU28x7Fdd4cbdHP QfXi75n2ePFfsKAgZ2p834tOfMLHdB2tWcQ2Rkh+C+wp+XXmQcHUKXQBjiIL7cYy 1SqYnN/BxtptNB3s02VC98t1CdN3J4smji10cHnuOoCt32oEgxYuCFBPZD68BxZ8 9AQC/UpYAD/bwh3OI2lA7ZQtAH3IeEV+hVB+Nu59AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUdAaxi0UhtcX2kaB1zOosbt75OU0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhkYzhiOTBiLTc1OTEtNDA0ZC1iOTU0LTA1YjAwNTIzMDIxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAADANBgkqhkiG9w0BAQsFAAOCAQEAKF+z1S9Hwo1YLhmDG8gMl9KR nwBsvfv9j5FW3AAVSdrsier7zl1Zpvm9XSwIILR2b0GPYAM65rt87dEQZ1xY3uCV TG2J+GUzqBcot1j+wzJ9GvlqfDWyPEaiBxUAmgID5zcDB2YS14tac4dMfRIpG/DA zv+TK+z4mv0dp2t1sy/wK6dwWP8RJpJ+EneUA50bT+nXJdHvD/16Ju2ktStOMOdZ 2/pBBKhAnP9EsoeRZxa52pAr1ImE8HXaSVTD3vjkSrK4dxkAPOogCOP2pvr1EnAG HplPxuShP9Umxgi7bjleafj0zEM6Xnv8/gvf6BHgNlxnlPqYjQ1t+9hEHIGHSg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:03:09 2025 by rpki-client