$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa File: a0024e00-f937-4b63-91df-d45ce0a6a27d.roa (raw, json) Hash identifier: KqYxwen1SR27F6fGSmQ+QDrwA48BfIbVNal7JU23zfI= Subject key identifier: AF:49:71:C1:4E:E2:FC:E7:34:BC:EC:47:EB:EF:46:4E:32:B4:33:75 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5F253CA9CC464524177C729510A9DCCE5880BCA4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa Signing time: Fri 25 Apr 2025 17:50:35 +0000 ROA not before: Fri 25 Apr 2025 17:50:35 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:25:3c:a9:cc:46:45:24:17:7c:72:95:10:a9:dc:ce:58:80:bc:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:35 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=b290fb828d2afc52aec080498f5e980b006cace687d74c96401ce7a4118c5bde, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d4:f8:db:3e:5c:be:00:d6:d9:ad:55:59:b2: 89:27:c8:8f:f8:06:e4:08:6c:bf:28:9e:ec:a6:d0: a2:4e:71:42:7e:ea:f6:4d:9f:9e:32:b2:fe:5e:a1: a6:eb:e4:4d:13:c1:98:3c:66:5d:49:cb:76:93:1a: de:3a:cd:c4:f5:40:f9:92:41:49:6d:2f:1e:91:ee: 13:7c:d5:c8:b0:ab:89:d6:dd:28:e0:e8:fe:1e:30: c5:46:3c:c1:77:50:e2:50:7e:25:44:09:80:97:86: 28:ad:7c:5a:49:4c:6b:d3:a8:54:66:a8:96:97:54: 42:1a:a9:23:62:85:22:07:5f:af:1f:6b:d4:2c:47: cd:2e:ff:f9:3e:e6:ca:ce:a8:6b:bb:1d:de:f6:4c: 28:95:e2:b7:2d:c3:6a:e8:d4:c8:12:be:cc:60:89: ac:8c:4c:a4:67:90:38:15:f3:b1:e4:7f:3e:77:48: 20:63:7f:d2:31:3f:e3:31:2d:cd:b5:a6:a1:10:2e: 06:e6:d7:de:73:4e:99:fb:63:e8:7a:90:33:99:20: f1:41:ec:bc:99:2f:c7:98:97:32:15:23:be:18:52: 36:b2:52:46:3f:85:d4:6a:df:dd:a8:69:90:54:18: 15:8a:66:8f:f0:cd:51:64:91:e5:fd:99:9c:ea:5b: b4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:49:71:C1:4E:E2:FC:E7:34:BC:EC:47:EB:EF:46:4E:32:B4:33:75 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6010::/44 Signature Algorithm: sha256WithRSAEncryption 3d:22:d9:8d:7d:ac:c5:73:af:a5:bd:af:1e:7c:49:1d:66:41: f5:ae:15:d1:dc:13:58:cb:de:19:ec:2f:d7:d1:ee:cb:4b:fb: 86:d1:e7:f8:9d:9b:79:c1:b7:72:ea:ae:4c:82:d5:3a:4b:4c: 47:a1:a2:98:19:aa:5e:ce:77:3e:16:4e:c3:a7:4f:5e:2b:9d: 56:c6:72:35:67:57:21:5f:1d:e1:60:31:f7:fa:b4:57:10:6d: 20:82:ab:c1:9b:a8:cc:9a:ef:6f:f3:cf:35:e6:13:20:90:fb: 34:e1:19:5e:4d:b7:bf:b7:dd:ae:89:2d:37:9e:47:00:99:0b: 86:65:77:14:5d:1a:97:ff:37:ca:82:23:0c:2d:ea:2d:8d:03: 85:4e:61:93:95:ca:cb:b4:6c:33:55:ff:13:d7:5a:0f:49:db: c0:f6:ca:54:b2:61:5a:5a:c3:d1:28:25:d5:0d:fd:18:4c:4d: 18:62:27:46:03:32:dd:f6:8a:8e:f9:9c:e0:6b:0a:ea:e1:03: 7e:69:63:17:de:0c:25:93:32:e1:e3:13:19:9f:79:a8:a8:aa: 80:8f:8f:96:4c:98:fd:b6:70:56:14:45:32:3b:ce:d1:82:2a: ad:02:d9:b4:21:7d:2a:da:a9:43:a4:be:df:d0:e8:34:de:50: 90:e1:f4:71 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXyU8qcxGRSQXfHKVEKnczliAvKQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDM1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjkwZmI4MjhkMmFmYzUyYWVjMDgwNDk4ZjVlOTgwYjAw NmNhY2U2ODdkNzRjOTY0MDFjZTdhNDExOGM1YmRlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj1PjbPly+ANbZrVVZsoknyI/4BuQIbL8onuym0KJOcUJ+ 6vZNn54ysv5eoabr5E0TwZg8Zl1Jy3aTGt46zcT1QPmSQUltLx6R7hN81ciwq4nW 3Sjg6P4eMMVGPMF3UOJQfiVECYCXhiitfFpJTGvTqFRmqJaXVEIaqSNihSIHX68f a9QsR80u//k+5srOqGu7Hd72TCiV4rctw2ro1MgSvsxgiayMTKRnkDgV87Hkfz53 SCBjf9IxP+MxLc21pqEQLgbm195zTpn7Y+h6kDOZIPFB7LyZL8eYlzIVI74YUjay UkY/hdRq392oaZBUGBWKZo/wzVFkkeX9mZzqW7TVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUr0lxwU7i/Oc0vOxH6+9GTjK0M3UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwMDI0ZTAwLWY5MzctNGI2My05MWRmLWQ0NWNlMGE2YTI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYBAwDQYJKoZIhvcNAQELBQADggEBAD0i2Y19rMVzr6W9rx58SR1m QfWuFdHcE1jL3hnsL9fR7stL+4bR5/idm3nBt3LqrkyC1TpLTEehopgZql7Odz4W TsOnT14rnVbGcjVnVyFfHeFgMff6tFcQbSCCq8GbqMya72/zzzXmEyCQ+zThGV5N t7+33a6JLTeeRwCZC4ZldxRdGpf/N8qCIwwt6i2NA4VOYZOVysu0bDNV/xPXWg9J 28D2ylSyYVpaw9EoJdUN/RhMTRhiJ0YDMt32io75nOBrCurhA35pYxfeDCWTMuHj ExmfeaioqoCPj5ZMmP22cFYURTI7ztGCKq0C2bQhfSraqUOkvt/Q6DTeUJDh9HE= -----END CERTIFICATE-----Generated at Sat Apr 26 13:21:05 2025 by rpki-client