$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa File: 9a96c02c-ad61-40ce-b5aa-def693953ba1.roa (raw, json) Hash identifier: tgCOvWmSo9l8NMIyUsHnt4vJUKNTZJqhCsc/TyOXLas= Subject key identifier: 39:BA:4E:01:71:10:DF:02:EF:64:93:36:15:3D:6D:F7:6F:6B:FD:E6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 727FA741D5FA67EF1EFFC023CD9C126464904090 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa Signing time: Fri 04 Apr 2025 00:20:25 +0000 ROA not before: Fri 04 Apr 2025 00:20:25 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:7f:a7:41:d5:fa:67:ef:1e:ff:c0:23:cd:9c:12:64:64:90:40:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 4 00:20:25 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=0811a2410393373d443eaae4f60f043912e04292871ad80fced4ab4652837527, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fc:ce:1d:97:ec:05:6c:29:65:e5:01:8e:76: 21:84:e6:15:ad:88:7c:13:c2:2d:f7:34:31:ba:f2: 1d:db:aa:b7:2e:b9:7c:c4:47:63:f7:b5:06:0b:90: ca:54:a6:8a:28:93:13:40:ed:cf:41:66:64:cd:16: 97:a1:2a:57:f0:1a:5c:8c:11:f9:1b:3f:cc:6e:1c: 2f:63:8a:15:2d:dc:e8:ab:42:8d:9b:0e:01:45:31: 69:e5:2c:71:0c:a3:63:dc:63:da:c8:c7:34:eb:cf: 83:3d:36:9e:a1:0d:ac:9d:f8:a0:bf:eb:7c:b4:d4: 06:4e:76:c6:72:95:92:f9:cf:7a:a7:12:fb:a0:d0: f8:94:0f:be:b6:ad:d6:c7:70:db:20:f9:81:e0:8a: 08:2c:f5:b7:60:b8:34:0f:69:c9:e0:9c:9b:2c:7f: 78:f9:fe:ad:96:86:bd:ed:2c:c5:12:a9:bf:70:e8: 75:b2:72:46:be:94:41:ee:40:50:f0:32:a2:7c:02: b4:03:a8:a6:dc:3f:d8:29:d9:e8:a5:a0:6b:91:99: f6:b7:cc:3e:27:af:19:fc:52:fb:c0:94:56:27:60: d8:99:56:8d:75:e6:35:1b:df:21:ba:3e:68:5e:4f: 86:49:39:70:95:79:60:e1:3b:c5:1e:2e:48:db:db: ea:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BA:4E:01:71:10:DF:02:EF:64:93:36:15:3D:6D:F7:6F:6B:FD:E6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 02:d7:78:3d:49:1a:2a:37:58:ef:df:96:6d:5e:bb:9d:38:31: 7f:b7:ee:37:86:3d:0e:8a:d5:69:8d:37:61:75:a5:d2:38:d0: f0:d8:49:2a:38:41:5e:21:de:0a:9b:28:54:00:6c:b4:3f:8c: e2:e2:05:e3:50:7a:f3:21:71:1a:de:ad:c9:b6:60:1a:40:58: 53:4a:2e:30:cd:26:df:54:76:bc:32:f0:73:fb:6a:14:69:57: 8d:77:c2:fc:84:d0:96:2b:b4:af:41:c6:23:22:08:78:4b:ef: 41:22:b7:87:d8:07:c9:45:26:b6:ec:db:ee:61:f2:fb:df:bf: f7:cc:55:59:21:29:3f:9a:bc:03:d2:6d:54:1a:55:55:86:a3: 29:20:05:6b:c9:19:a8:b8:b5:76:e6:00:5e:7f:f8:e4:a7:d2: 65:97:c8:75:18:3b:a5:be:57:16:67:1a:ba:13:ff:07:c1:6a: cb:cf:c2:78:cf:d3:f5:25:75:2d:57:ea:4f:9c:65:e0:d2:01: f0:cc:43:93:af:83:53:cb:93:a2:c0:76:fc:1c:3a:20:86:2b: a3:c7:db:f2:62:ff:e8:c2:e2:73:ae:a1:b4:67:7e:47:df:66: 6c:bc:9a:b9:c0:ac:73:32:c0:3d:6b:b5:ff:0c:46:bd:8e:06: ca:eb:de:ad -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcn+nQdX6Z+8e/8AjzZwSZGSQQJAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDA0MDAyMDI1WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwODExYTI0MTAzOTMzNzNkNDQzZWFhZTRmNjBmMDQzOTEy ZTA0MjkyODcxYWQ4MGZjZWQ0YWI0NjUyODM3NTI3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3/M4dl+wFbCll5QGOdiGE5hWtiHwTwi33NDG68h3bqrcu uXzER2P3tQYLkMpUpoookxNA7c9BZmTNFpehKlfwGlyMEfkbP8xuHC9jihUt3Oir Qo2bDgFFMWnlLHEMo2PcY9rIxzTrz4M9Np6hDayd+KC/63y01AZOdsZylZL5z3qn Evug0PiUD762rdbHcNsg+YHgiggs9bdguDQPacngnJssf3j5/q2Whr3tLMUSqb9w 6HWycka+lEHuQFDwMqJ8ArQDqKbcP9gp2eiloGuRmfa3zD4nrxn8UvvAlFYnYNiZ Vo115jUb3yG6PmheT4ZJOXCVeWDhO8UeLkjb2+o9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUObpOAXEQ3wLvZJM2FT1t929r/eYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlhOTZjMDJjLWFkNjEtNDBjZS1iNWFhLWRlZjY5Mzk1M2JhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAALXeD1JGio3WO/flm1eu504 MX+37jeGPQ6K1WmNN2F1pdI40PDYSSo4QV4h3gqbKFQAbLQ/jOLiBeNQevMhcRre rcm2YBpAWFNKLjDNJt9Udrwy8HP7ahRpV413wvyE0JYrtK9BxiMiCHhL70Eit4fY B8lFJrbs2+5h8vvfv/fMVVkhKT+avAPSbVQaVVWGoykgBWvJGai4tXbmAF5/+OSn 0mWXyHUYO6W+VxZnGroT/wfBasvPwnjP0/UldS1X6k+cZeDSAfDMQ5Ovg1PLk6LA dvwcOiCGK6PH2/Ji/+jC4nOuobRnfkffZmy8mrnArHMywD1rtf8MRr2OBsrr3q0= -----END CERTIFICATE-----Generated at Sat Apr 26 16:30:13 2025 by rpki-client