$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa File: a1083a01-360a-4b23-a3a3-630df82536fc.roa (raw, json) Hash identifier: 5i+lEDUEHcnQ0fth+EXk2x9l1UGRyasL8pZ8yHEqRW8= Subject key identifier: 34:D9:69:9F:58:6E:AB:34:E0:DC:2A:EB:A4:A7:B5:59:32:95:A0:71 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 741F6D2C56A8FBC1B33D280192A501B15A2D0BAF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa Signing time: Fri 25 Apr 2025 17:50:17 +0000 ROA not before: Fri 25 Apr 2025 17:50:17 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:1f:6d:2c:56:a8:fb:c1:b3:3d:28:01:92:a5:01:b1:5a:2d:0b:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:17 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=810b0cfc07cf0be502a3c023521845a3ca7b193b8159b64056f3763dc064a3d6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:f5:fd:0f:a4:e5:da:6f:e4:d0:1b:ae:74:fc: f2:a6:07:87:65:c0:be:d3:35:4e:2c:86:6b:dc:a5: c0:0e:df:98:58:4d:b6:dd:50:b2:46:0c:6f:3f:fc: 9c:fc:d5:01:2b:9d:7a:74:4b:a5:8d:72:34:e9:80: 50:c3:2c:04:b7:8b:31:67:29:f8:0f:12:72:ca:6d: c0:28:a0:df:23:81:42:90:8b:1d:50:6d:29:ff:9c: ad:be:86:9d:5c:0f:f8:5c:33:01:18:72:81:d8:29: 9d:27:03:a5:b5:d3:c5:91:13:d2:55:26:3b:0c:e7: e8:d6:90:f4:3d:1d:c7:09:e8:b6:ee:90:56:46:1e: 6f:bf:9f:08:69:de:d8:d5:11:c0:e3:59:5d:c7:41: 47:12:d0:38:6e:89:0b:6f:fe:63:ce:d1:2e:fa:1a: f2:43:ba:0d:91:c9:ee:1d:cd:60:26:47:d5:5f:94: be:d0:2e:6e:3b:ed:a5:41:8d:75:94:01:23:30:40: 4e:ed:8a:9c:b2:97:f4:ab:d7:90:33:cb:00:92:3d: 39:7f:d7:53:7d:c1:09:8f:a8:5b:c0:84:d1:54:42: 76:67:fc:b8:bc:46:14:cf:b3:47:ca:a9:3f:71:ce: c4:f2:ce:60:57:79:1b:b3:b5:f0:00:b5:8f:e8:6e: 86:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:D9:69:9F:58:6E:AB:34:E0:DC:2A:EB:A4:A7:B5:59:32:95:A0:71 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 7f:aa:ef:f0:d1:12:c3:d3:ec:1a:e6:ab:ec:da:7d:19:70:97: 9b:31:ae:8e:5a:73:ab:a8:a0:7d:3a:e1:59:d1:d8:1e:1d:e4: 4f:1d:94:d0:57:10:7f:a2:be:6b:69:a3:b0:b0:b3:e4:8f:2a: c5:0c:6d:34:58:fd:cb:3a:68:44:8b:b5:5d:a8:e0:e1:79:be: 05:02:c5:4e:b4:32:82:3c:aa:81:30:69:45:db:a6:b0:0c:79: 1f:db:e0:b6:96:67:d4:1b:50:21:44:cf:0d:39:6d:77:f7:c2: 60:1b:29:b5:a8:cd:1d:21:9f:b1:d5:b8:54:93:b2:3a:03:b4: 04:1f:14:5b:db:39:9a:27:5d:52:1c:ef:53:02:9e:9f:73:70: 0a:6b:f2:83:f8:0d:bb:ba:8b:30:b6:ff:1c:47:dd:f3:ec:9b: 54:55:de:95:a2:1e:3b:69:f5:ff:d5:0e:c5:9d:a1:c2:d8:4c: 35:e2:6f:21:ec:db:e0:e8:d5:98:cb:6c:65:aa:20:aa:80:6e: 83:1e:d0:d4:52:07:e8:07:d4:d8:ec:9c:ee:ed:df:4a:c4:ff: d3:c1:e4:ae:8e:75:44:97:b2:61:94:33:12:0a:c7:9b:9a:90: f0:e8:85:35:1b:28:81:87:1f:3f:a2:43:5d:f5:37:0e:b2:96: 71:04:de:29 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdB9tLFao+8GzPSgBkqUBsVotC68wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDE3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTBiMGNmYzA3Y2YwYmU1MDJhM2MwMjM1MjE4NDVhM2Nh N2IxOTNiODE1OWI2NDA1NmYzNzYzZGMwNjRhM2Q2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCL9f0PpOXab+TQG650/PKmB4dlwL7TNU4shmvcpcAO35hY TbbdULJGDG8//Jz81QErnXp0S6WNcjTpgFDDLAS3izFnKfgPEnLKbcAooN8jgUKQ ix1QbSn/nK2+hp1cD/hcMwEYcoHYKZ0nA6W108WRE9JVJjsM5+jWkPQ9HccJ6Lbu kFZGHm+/nwhp3tjVEcDjWV3HQUcS0DhuiQtv/mPO0S76GvJDug2Rye4dzWAmR9Vf lL7QLm477aVBjXWUASMwQE7tipyyl/Sr15AzywCSPTl/11N9wQmPqFvAhNFUQnZn /Li8RhTPs0fKqT9xzsTyzmBXeRuztfAAtY/obob3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNNlpn1huqzTg3CrrpKe1WTKVoHEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExMDgzYTAxLTM2MGEtNGIyMy1hM2EzLTYzMGRmODI1MzZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAH+q7/DREsPT7Brmq+zafRlw l5sxro5ac6uooH064VnR2B4d5E8dlNBXEH+ivmtpo7Cws+SPKsUMbTRY/cs6aESL tV2o4OF5vgUCxU60MoI8qoEwaUXbprAMeR/b4LaWZ9QbUCFEzw05bXf3wmAbKbWo zR0hn7HVuFSTsjoDtAQfFFvbOZonXVIc71MCnp9zcApr8oP4Dbu6izC2/xxH3fPs m1RV3pWiHjtp9f/VDsWdocLYTDXibyHs2+Do1ZjLbGWqIKqAboMe0NRSB+gH1Njs nO7t30rE/9PB5K6OdUSXsmGUMxIKx5uakPDohTUbKIGHHz+iQ131Nw6ylnEE3ik= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:31 2025 by rpki-client