$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa File: 976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa (raw, json) Hash identifier: XKLO2zs2Mk1YBiBE0rtt/r720iBQwHxHRMwehF6UuaM= Subject key identifier: 66:98:A5:64:93:36:9B:FD:E8:ED:4C:43:55:F9:CB:9D:1D:42:DB:7C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B41915570E3F47D5B576302C5E964C8FE53C89B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa Signing time: Fri 25 Apr 2025 17:51:18 +0000 ROA not before: Fri 25 Apr 2025 17:51:18 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:41:91:55:70:e3:f4:7d:5b:57:63:02:c5:e9:64:c8:fe:53:c8:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:18 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=53bc50db5209987a25c10ac821ebeed7cc6adf4503ec35573b62063c75c72c32, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:93:c8:fc:2b:55:e1:ab:3f:f8:11:92:58:b7: 07:76:91:92:d8:83:ec:4c:6e:2e:b4:95:fb:c7:d2: 7d:51:86:22:23:18:c5:20:eb:95:3f:9c:22:b9:95: 39:ba:fc:bb:d9:9a:bb:69:86:c1:04:14:a1:ef:36: 74:66:45:19:0f:7c:df:e0:10:bd:fb:18:20:53:12: f2:fa:ec:aa:7b:f6:82:1f:29:0b:7b:b7:3a:f5:83: 63:3f:7f:e4:ad:33:34:5a:3a:00:28:95:1d:92:3d: 8b:eb:bd:3d:95:5b:d7:3a:f3:17:86:f4:d0:06:2f: 66:b8:12:60:04:47:8d:7d:47:4e:a6:37:75:c5:de: 6d:0d:08:7a:49:d9:00:7f:82:e7:7f:3d:9d:67:70: 38:1c:b5:56:f9:38:0a:ce:17:55:d9:b5:d2:7b:3f: 3e:8c:1d:99:ce:9a:6f:9b:1a:64:ab:f1:3a:ce:d9: f9:76:d3:7f:d9:5e:04:14:0c:bc:d2:50:78:f0:41: 4e:72:f4:c1:79:92:00:a8:b4:3d:85:12:19:e8:ff: 91:d9:c3:84:45:86:d7:38:fd:8c:da:4a:77:61:af: ee:5b:39:85:a5:b5:c7:73:9b:48:38:41:07:80:18: 94:19:01:e8:bf:24:26:cf:b7:2d:14:34:bd:a7:f1: 0b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:98:A5:64:93:36:9B:FD:E8:ED:4C:43:55:F9:CB:9D:1D:42:DB:7C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:f00::/48 Signature Algorithm: sha256WithRSAEncryption 5b:d8:05:ba:52:07:b5:fb:ac:d0:89:96:b8:ca:88:74:92:24: 87:15:67:f3:91:ae:17:d0:4f:50:2f:bd:64:a8:91:ff:03:76: 16:59:ab:48:a6:2b:f5:db:0a:79:e5:4f:2b:e1:4c:3e:f1:ed: 1f:e6:c0:fe:5b:db:0e:b8:59:44:9f:bb:dc:23:3a:69:c2:6e: f9:d1:fe:55:44:8e:20:54:d5:bb:bd:a5:3d:de:c1:6e:ab:70: 18:21:d6:6b:b1:5e:c2:79:ad:a2:3d:90:15:ec:51:81:97:0b: 97:47:35:6b:79:0a:33:92:72:db:0d:02:d5:bb:6b:ca:0c:46: 38:3c:6f:4f:c2:a4:42:47:96:2f:7c:dd:f4:cf:db:04:72:95: 47:7a:e6:68:9f:25:1a:01:4f:fc:f1:b9:82:24:a6:6e:6f:6c: a6:9a:91:59:dd:d6:3c:77:93:06:4c:80:c2:4a:48:9d:e8:6f: 40:88:b3:01:10:bc:51:3c:7a:c8:7d:a0:82:10:53:69:42:8a: 57:de:13:df:74:25:7a:96:09:f6:ab:75:d5:32:11:78:82:b7: 2c:7b:c6:12:a7:13:3e:ef:82:b4:92:33:77:77:a4:e1:ad:ff: c6:6c:21:7d:b4:3c:c3:df:0a:6e:45:0c:56:97:73:ee:73:d2: c8:d5:8a:fc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO0GRVXDj9H1bV2MCxelkyP5TyJswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTE4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1M2JjNTBkYjUyMDk5ODdhMjVjMTBhYzgyMWViZWVkN2Nj NmFkZjQ1MDNlYzM1NTczYjYyMDYzYzc1YzcyYzMyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHk8j8K1Xhqz/4EZJYtwd2kZLYg+xMbi60lfvH0n1RhiIj GMUg65U/nCK5lTm6/LvZmrtphsEEFKHvNnRmRRkPfN/gEL37GCBTEvL67Kp79oIf KQt7tzr1g2M/f+StMzRaOgAolR2SPYvrvT2VW9c68xeG9NAGL2a4EmAER419R06m N3XF3m0NCHpJ2QB/gud/PZ1ncDgctVb5OArOF1XZtdJ7Pz6MHZnOmm+bGmSr8TrO 2fl203/ZXgQUDLzSUHjwQU5y9MF5kgCotD2FEhno/5HZw4RFhtc4/YzaSndhr+5b OYWltcdzm0g4QQeAGJQZAei/JCbPty0UNL2n8QtjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZpilZJM2m/3o7UxDVfnLnR1C23wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3NjYyM2FkLTBiNWEtNGE1Zi1iNGEzLTYwNjgxZDJlYWM3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDwAwDQYJKoZIhvcNAQELBQADggEBAFvYBbpSB7X7rNCJlrjKiHSS JIcVZ/ORrhfQT1AvvWSokf8DdhZZq0imK/XbCnnlTyvhTD7x7R/mwP5b2w64WUSf u9wjOmnCbvnR/lVEjiBU1bu9pT3ewW6rcBgh1muxXsJ5raI9kBXsUYGXC5dHNWt5 CjOSctsNAtW7a8oMRjg8b0/CpEJHli983fTP2wRylUd65mifJRoBT/zxuYIkpm5v bKaakVnd1jx3kwZMgMJKSJ3ob0CIswEQvFE8esh9oIIQU2lCilfeE990JXqWCfar ddUyEXiCtyx7xhKnEz7vgrSSM3d3pOGt/8ZsIX20PMPfCm5FDFaXc+5z0sjVivw= -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:06 2025 by rpki-client