$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa File: 9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa (raw, json) Hash identifier: akVIPVTPBhJkCInmBJuLclOkL6BAvLDcnJI1XoxpRII= Subject key identifier: ED:4C:62:A5:B0:AD:41:A1:0B:74:CD:CB:07:6E:CC:A3:43:B4:38:E2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 46B5FB288CED14FB7952545F3AD2BC664B8182F3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa Signing time: Fri 11 Apr 2025 00:40:46 +0000 ROA not before: Fri 11 Apr 2025 00:40:46 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:b5:fb:28:8c:ed:14:fb:79:52:54:5f:3a:d2:bc:66:4b:81:82:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 11 00:40:46 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=c66b14187cab433495124b9a7d13b6fa6e5376389c962c0f9aa7b21657f3eba1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:75:a7:79:9c:eb:ff:b1:1c:7d:62:81:d9: fd:b2:5b:ce:76:5e:56:27:ba:45:46:79:99:19:d0: f7:dc:10:e0:80:13:bd:dc:05:36:50:c6:f4:dc:a4: 87:15:3f:09:d6:23:44:57:9b:ca:0d:75:00:08:65: f3:29:ad:95:2a:7a:23:f3:f0:e5:0f:3b:0b:ce:e7: c4:52:6b:01:39:a0:3f:26:ce:ae:0f:2a:27:5f:93: 76:9e:69:43:b7:83:0e:a0:19:cd:a0:60:3d:16:80: 05:7f:8a:0c:d1:da:f7:0d:30:a5:8c:26:07:99:ee: 3c:f7:90:73:86:3c:6e:a3:46:c6:11:3f:99:88:1d: 99:89:03:9f:35:60:54:c3:14:aa:53:3d:2a:02:42: 0c:2b:41:e6:e1:e9:c6:39:9c:40:9b:7d:b8:ef:9d: a2:c2:92:62:98:bc:cd:be:37:b5:8e:d6:07:23:1c: 0e:69:20:06:d3:c7:76:47:f3:fd:9c:4f:55:58:41: 07:38:f7:24:99:b2:08:45:a2:46:ff:bc:08:a5:91: 2c:1e:43:a1:1b:98:7d:c7:7d:51:97:57:d6:69:57: 8f:b4:33:bb:27:48:b5:36:24:53:4d:93:b9:69:47: 85:32:0f:39:71:7b:37:aa:6d:fb:bd:51:9b:a4:fb: f3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:4C:62:A5:B0:AD:41:A1:0B:74:CD:CB:07:6E:CC:A3:43:B4:38:E2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 17:50:02:28:39:79:52:7c:35:10:14:ae:6e:aa:a9:89:b0:81: e5:1a:9e:2f:a1:53:2d:3b:06:91:6f:60:ca:2c:ac:76:3d:31: 31:88:4a:70:e6:62:49:ba:f8:ec:da:0f:84:77:83:9e:c3:e4: a5:02:f1:ab:1f:ac:38:68:14:74:c0:31:8f:49:5b:94:e1:18: 1f:d5:36:e7:50:a8:24:88:26:46:42:47:4b:32:43:79:19:29: 37:fa:81:14:65:92:b0:8c:4e:e8:0c:b7:3e:b7:f3:43:99:ca: 5a:fb:b5:07:b0:98:ae:8b:4e:83:56:91:e8:16:2c:c0:85:d9: 2f:52:fa:7b:44:d8:e2:c0:89:94:a7:60:97:48:25:65:6e:46: 53:38:fe:1e:bf:b0:b2:04:df:21:43:0c:46:b6:10:82:42:18: 4d:9b:9b:c2:86:ff:7a:0f:a7:0b:8f:8b:b9:14:49:36:00:11: c3:d9:c6:58:56:fa:0c:53:a5:ac:9b:6e:ee:83:fd:f7:2c:30: d7:5c:66:1a:22:6c:b3:8c:d6:64:8f:b6:e7:57:c0:db:15:d6: c4:8c:6a:24:5a:50:31:cd:e5:8b:5c:87:37:6c:2f:d8:2a:a6: de:c5:8a:64:9e:77:e4:50:71:66:81:7a:6a:11:bc:1f:43:d8: 5b:3e:4a:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURrX7KIztFPt5UlRfOtK8ZkuBgvMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDExMDA0MDQ2WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjZiMTQxODdjYWI0MzM0OTUxMjRiOWE3ZDEzYjZmYTZl NTM3NjM4OWM5NjJjMGY5YWE3YjIxNjU3ZjNlYmExMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4n3WneZzr/7EcfWKB2f2yW852XlYnukVGeZkZ0PfcEOCA E73cBTZQxvTcpIcVPwnWI0RXm8oNdQAIZfMprZUqeiPz8OUPOwvO58RSawE5oD8m zq4PKidfk3aeaUO3gw6gGc2gYD0WgAV/igzR2vcNMKWMJgeZ7jz3kHOGPG6jRsYR P5mIHZmJA581YFTDFKpTPSoCQgwrQebh6cY5nECbfbjvnaLCkmKYvM2+N7WO1gcj HA5pIAbTx3ZH8/2cT1VYQQc49ySZsghFokb/vAilkSweQ6EbmH3HfVGXV9ZpV4+0 M7snSLU2JFNNk7lpR4UyDzlxezeqbfu9UZuk+/NbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7UxipbCtQaELdM3LB27Mo0O0OOIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3MzhiYjBkLTFhODQtNDYwMS1iYzZiLTI1YmE3ZjQ5YzcyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBABdQAig5eVJ8NRAUrm6qqYmw geUani+hUy07BpFvYMosrHY9MTGISnDmYkm6+OzaD4R3g57D5KUC8asfrDhoFHTA MY9JW5ThGB/VNudQqCSIJkZCR0syQ3kZKTf6gRRlkrCMTugMtz6380OZylr7tQew mK6LToNWkegWLMCF2S9S+ntE2OLAiZSnYJdIJWVuRlM4/h6/sLIE3yFDDEa2EIJC GE2bm8KG/3oPpwuPi7kUSTYAEcPZxlhW+gxTpaybbu6D/fcsMNdcZhoibLOM1mSP tudXwNsV1sSMaiRaUDHN5YtchzdsL9gqpt7FimSed+RQcWaBemoRvB9D2Fs+SuY= -----END CERTIFICATE-----Generated at Sat Apr 26 19:10:08 2025 by rpki-client