$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa File: a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa (raw, json) Hash identifier: 5TfGNnL4bw75s/dDV+eITeIC66Wa2AjhsevUy/ID8Sg= Subject key identifier: AF:B2:AF:23:F1:AA:2C:D1:B2:80:B8:F2:8A:EA:AE:26:A0:2E:87:A8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1663206C0EEE65A4B9A4564FF03E8DE43FAA676A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa Signing time: Fri 25 Apr 2025 18:00:21 +0000 ROA not before: Fri 25 Apr 2025 18:00:21 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e600::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:63:20:6c:0e:ee:65:a4:b9:a4:56:4f:f0:3e:8d:e4:3f:aa:67:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:21 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=5f97bd980a79887058d61cb9f5b5860b266a889e31e2a5e0a50d80a6baf4473f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:69:66:37:09:0d:23:e4:ee:91:26:3f:3a: 8e:af:7c:ca:f2:02:66:00:cc:87:3f:fd:f0:8d:67: 7a:dc:37:ac:6c:5a:3a:5a:92:06:a3:51:3e:86:ef: 6d:cc:07:c8:bc:de:63:95:62:a5:61:f9:90:be:8e: 73:6e:3c:4e:07:24:a8:33:24:18:52:8e:9a:5c:0c: 4e:bd:b4:4b:c3:80:e0:c2:a7:9a:e6:18:76:f2:1e: 9b:c9:cc:15:25:90:fb:f9:eb:59:2b:a5:bd:d9:af: 9e:7d:db:ce:1a:cd:45:3a:f5:b4:37:c5:53:27:eb: 57:4b:e6:ee:48:80:f3:31:f0:72:ba:5f:7a:da:ec: b9:04:7d:d9:84:06:b9:59:ee:c7:0f:ff:c4:67:00: 4e:f1:29:0d:7d:16:01:14:97:d0:da:81:c5:35:23: 15:a1:fd:9d:58:cc:8b:23:7a:5e:4e:27:a1:a0:d0: de:4a:20:39:47:a0:24:11:2f:41:3a:88:dd:8b:ce: 93:f2:68:54:8c:3a:78:51:f2:05:a4:fe:da:b5:35: 2f:09:4b:bd:5e:40:7c:f7:50:46:e1:f1:11:10:12: c5:5c:07:0c:f6:5c:a2:12:d0:1b:da:a4:7f:61:65: 6f:49:e3:f8:a1:57:90:8a:73:ef:e7:b4:ef:93:b0: 9d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B2:AF:23:F1:AA:2C:D1:B2:80:B8:F2:8A:EA:AE:26:A0:2E:87:A8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/42 Signature Algorithm: sha256WithRSAEncryption 85:ee:a7:75:11:31:7d:46:7d:90:26:a5:ed:17:7c:31:ab:30: 88:87:17:f0:11:ff:6e:c1:a4:8e:ff:52:62:13:ab:2a:74:28: f7:93:c2:ce:17:7a:5e:de:22:a5:b5:51:19:81:fe:4b:6f:a3: 15:2f:d3:1d:91:b3:31:ad:2c:30:e3:cb:f3:0b:54:4c:6d:7e: c0:2e:b0:c9:44:d8:d9:dc:ed:2e:31:b2:57:ed:c2:a9:0e:96: 29:56:45:0a:c6:a6:7c:51:f9:90:89:d5:ee:d8:af:2b:82:d2: d9:fb:96:1b:27:36:26:02:47:63:bc:2f:6c:ce:59:c6:ac:66: 60:56:bf:22:26:4b:93:f6:c8:91:6b:ed:32:20:ae:14:a5:b2: 0c:6b:05:a5:6f:3c:51:5b:ac:82:c0:e1:b5:3d:8c:06:16:19: 8f:f7:a6:7f:ee:89:55:db:fc:dc:de:57:d0:d0:e2:17:59:61: 5d:ab:e1:61:17:7e:f9:ef:55:a2:ea:6e:1b:44:5f:a9:2d:e8: d5:3a:d9:32:3d:78:0e:9f:b3:af:d7:f7:38:17:00:25:ec:e4: 91:bd:04:bb:07:c5:39:7d:da:ce:9e:83:da:91:23:a4:68:23: e3:0a:71:39:f8:96:df:2f:f5:45:01:79:e9:98:d1:76:e1:64: 61:c4:3a:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFmMgbA7uZaS5pFZP8D6N5D+qZ2owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDIxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Zjk3YmQ5ODBhNzk4ODcwNThkNjFjYjlmNWI1ODYwYjI2 NmE4ODllMzFlMmE1ZTBhNTBkODBhNmJhZjQ0NzNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPvmlmNwkNI+TukSY/Oo6vfMryAmYAzIc//fCNZ3rcN6xs WjpakgajUT6G723MB8i83mOVYqVh+ZC+jnNuPE4HJKgzJBhSjppcDE69tEvDgODC p5rmGHbyHpvJzBUlkPv561krpb3Zr559284azUU69bQ3xVMn61dL5u5IgPMx8HK6 X3ra7LkEfdmEBrlZ7scP/8RnAE7xKQ19FgEUl9DagcU1IxWh/Z1YzIsjel5OJ6Gg 0N5KIDlHoCQRL0E6iN2LzpPyaFSMOnhR8gWk/tq1NS8JS71eQHz3UEbh8REQEsVc Bwz2XKIS0BvapH9hZW9J4/ihV5CKc+/ntO+TsJ2FAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUr7KvI/GqLNGygLjyiuquJqAuh6gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzN2FmNmQ3LTBiMzEtNGE0Ni1iOGQ5LTA4ZWZjZjhmZWY1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75gAwDQYJKoZIhvcNAQELBQADggEBAIXup3URMX1GfZAmpe0XfDGr MIiHF/AR/27BpI7/UmITqyp0KPeTws4Xel7eIqW1URmB/ktvoxUv0x2RszGtLDDj y/MLVExtfsAusMlE2Nnc7S4xslftwqkOlilWRQrGpnxR+ZCJ1e7YryuC0tn7lhsn NiYCR2O8L2zOWcasZmBWvyImS5P2yJFr7TIgrhSlsgxrBaVvPFFbrILA4bU9jAYW GY/3pn/uiVXb/NzeV9DQ4hdZYV2r4WEXfvnvVaLqbhtEX6kt6NU62TI9eA6fs6/X 9zgXACXs5JG9BLsHxTl92s6eg9qRI6RoI+MKcTn4lt8v9UUBeemY0XbhZGHEOio= -----END CERTIFICATE-----Generated at Sat Apr 26 16:10:39 2025 by rpki-client