$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a243183f-74f0-4016-b61d-47b029a3c4e1.roa File: a243183f-74f0-4016-b61d-47b029a3c4e1.roa (raw, json) Hash identifier: gO6p+K7KgVe1ujpkfYdhhMdfZTLSjbbbmJoiUEyJL3I= Subject key identifier: 88:5E:B8:AC:BD:93:FA:40:36:D6:B4:5F:98:99:7A:22:7B:CF:3B:CE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 067F0D52E26ED68BBB1346283570902CC258ADCD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a243183f-74f0-4016-b61d-47b029a3c4e1.roa Signing time: Fri 25 Apr 2025 18:01:28 +0000 ROA not before: Fri 25 Apr 2025 18:01:28 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e100::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:7f:0d:52:e2:6e:d6:8b:bb:13:46:28:35:70:90:2c:c2:58:ad:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:28 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=c7efbeec73f0bfb54a82f3e48f635854141dcc800cfe10dbe16619d4f18434b5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:44:06:c5:27:eb:3c:1c:b4:d4:0a:ae:97:81: 42:0d:2d:ba:17:89:35:48:ad:2f:b9:d7:13:57:1e: 98:d5:51:b6:56:93:b2:34:20:ca:52:c8:ad:fc:2f: 7e:32:c5:17:97:54:2e:74:d4:71:04:e1:31:ec:3c: 83:c7:ff:70:68:f1:5e:36:75:15:88:c3:10:a6:4c: f7:3d:f2:d8:a0:54:a9:00:6e:6c:e9:4a:d4:27:e5: e2:cf:51:ef:b6:96:c8:71:9f:16:35:6f:40:9f:e3: a4:57:bb:06:60:44:e1:e9:a2:00:a3:c5:61:45:8e: d1:22:c0:f4:e1:b2:09:1b:86:a4:ee:cf:56:72:4c: 05:90:db:16:10:5b:57:5e:1f:1f:8d:f2:04:03:7a: af:7c:0a:8c:b2:42:93:46:8d:7f:2b:13:01:62:88: 5c:58:10:10:e7:ba:13:96:c8:ae:7d:69:af:f2:23: 77:4b:f1:3f:0a:04:02:52:e8:38:19:ac:d5:5b:8a: 1f:5d:a2:de:70:9c:8e:7a:cb:c6:8a:ad:00:c5:ff: 81:08:d7:b3:0b:2e:00:db:60:ba:19:93:f3:e0:ff: 35:d7:eb:f6:9c:26:d6:cc:79:21:91:c9:6d:6e:bc: cb:de:b6:6d:c7:f7:66:f0:d1:c2:e9:2c:7c:af:29: 3d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5E:B8:AC:BD:93:FA:40:36:D6:B4:5F:98:99:7A:22:7B:CF:3B:CE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a243183f-74f0-4016-b61d-47b029a3c4e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/42 Signature Algorithm: sha256WithRSAEncryption 42:d1:26:aa:07:39:b7:7e:dd:b9:85:9b:07:eb:7a:5a:a4:ce: d2:54:5b:fc:d4:2e:f9:c5:a7:84:02:69:2b:72:a0:96:ea:bf: 39:87:8d:e3:40:77:95:5e:01:ee:c3:f3:01:62:dd:5e:b1:48: a5:5c:dc:9f:8a:59:ce:2d:e2:4a:3e:8f:e3:34:bc:80:a4:b0: 35:f7:ad:b1:6a:d5:b0:5d:14:a0:78:c0:45:67:0e:c5:3b:b8: e4:58:a7:b1:b2:19:f9:fd:42:0f:4b:cf:0c:27:33:eb:8e:a8: 65:89:45:23:0c:93:25:bd:d7:f0:2c:ef:b4:bb:1b:72:01:fd: 4f:ec:91:0d:cb:21:fa:73:17:6e:5c:f2:4a:78:b4:8f:22:d5: 60:b8:12:61:ae:14:a6:92:f0:0e:16:06:23:be:86:f0:96:70: 5b:6a:c4:d2:7b:29:30:cd:80:8b:cc:c8:91:63:78:8d:9d:12: 1e:dc:d3:5b:8e:3d:32:b9:79:5f:d8:ea:44:d6:00:3f:a4:62: 5f:19:92:b0:8f:76:7e:f4:0d:0c:82:c7:32:26:02:12:28:84: 25:5f:9e:ef:26:d5:11:6f:84:50:3d:80:da:4a:16:90:ad:5e: a3:74:7d:66:95:0f:fc:9c:08:bf:c0:ad:b2:ce:df:1c:ac:2f: d0:50:17:3a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBn8NUuJu1ou7E0YoNXCQLMJYrc0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTI4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2VmYmVlYzczZjBiZmI1NGE4MmYzZTQ4ZjYzNTg1NDE0 MWRjYzgwMGNmZTEwZGJlMTY2MTlkNGYxODQzNGI1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTRAbFJ+s8HLTUCq6XgUINLboXiTVIrS+51xNXHpjVUbZW k7I0IMpSyK38L34yxReXVC501HEE4THsPIPH/3Bo8V42dRWIwxCmTPc98tigVKkA bmzpStQn5eLPUe+2lshxnxY1b0Cf46RXuwZgROHpogCjxWFFjtEiwPThsgkbhqTu z1ZyTAWQ2xYQW1deHx+N8gQDeq98CoyyQpNGjX8rEwFiiFxYEBDnuhOWyK59aa/y I3dL8T8KBAJS6DgZrNVbih9dot5wnI56y8aKrQDF/4EI17MLLgDbYLoZk/Pg/zXX 6/acJtbMeSGRyW1uvMvetm3H92bw0cLpLHyvKT3LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiF64rL2T+kA21rRfmJl6InvPO84wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EyNDMxODNmLTc0ZjAtNDAxNi1iNjFkLTQ3YjAyOWEzYzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74QAwDQYJKoZIhvcNAQELBQADggEBAELRJqoHObd+3bmFmwfrelqk ztJUW/zULvnFp4QCaStyoJbqvzmHjeNAd5VeAe7D8wFi3V6xSKVc3J+KWc4t4ko+ j+M0vICksDX3rbFq1bBdFKB4wEVnDsU7uORYp7GyGfn9Qg9LzwwnM+uOqGWJRSMM kyW91/As77S7G3IB/U/skQ3LIfpzF25c8kp4tI8i1WC4EmGuFKaS8A4WBiO+hvCW cFtqxNJ7KTDNgIvMyJFjeI2dEh7c01uOPTK5eV/Y6kTWAD+kYl8ZkrCPdn70DQyC xzImAhIohCVfnu8m1RFvhFA9gNpKFpCtXqN0fWaVD/ycCL/ArbLO3xysL9BQFzo= -----END CERTIFICATE-----Generated at Sat Apr 26 16:32:42 2025 by rpki-client