$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa File: a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa (raw, json) Hash identifier: m4UZdAzhxLcYaKtCp1Sc2hCBtXWUl5QaJZTJfIy02Dk= Subject key identifier: B0:D0:B7:C1:36:9F:64:CE:5A:23:C2:03:45:6C:6C:E7:00:D6:82:02 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 13B5E457A8B5C0342298CD599E7BDACC33C98665 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa Signing time: Fri 25 Apr 2025 18:00:16 +0000 ROA not before: Fri 25 Apr 2025 18:00:16 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:eb00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:b5:e4:57:a8:b5:c0:34:22:98:cd:59:9e:7b:da:cc:33:c9:86:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:16 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=6768e8d0a7c77d297176cc8b96086581814ea404e76eb401252a45598999bfc5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f8:7a:94:0f:0c:a1:ee:37:00:1c:05:20:c1: cd:83:82:a2:6e:5c:e7:b9:1a:c2:c1:43:8d:c3:df: 18:5b:71:27:00:96:c8:cf:c9:32:43:50:08:e7:60: e1:5f:8d:49:2b:dc:27:ce:79:e2:a3:77:01:6a:53: 56:fd:83:f5:3f:42:c6:0d:03:8b:ed:41:c4:3a:ac: e9:8c:e3:95:c7:a5:2b:91:29:b6:81:96:a3:b2:e3: 0c:36:14:42:5f:49:92:3c:6f:d5:da:55:64:f5:9e: 4a:c4:c9:62:d0:0b:b2:8e:77:79:54:f9:67:39:2e: 3a:68:83:35:9b:e6:5b:bd:2f:b8:01:5b:c0:b4:40: 30:8f:e7:64:08:44:5f:26:31:d4:84:81:cf:af:a8: 27:ec:db:59:31:ed:99:83:8e:3b:f9:78:d7:85:36: cd:27:3b:2e:94:c0:f2:cb:7d:a4:34:41:a8:60:e6: 05:d4:d3:aa:7d:1d:30:03:dc:1a:90:fc:78:7a:c8: de:cc:7d:37:1c:a4:7a:27:12:9f:36:d6:e8:42:1e: 25:7b:f7:71:c2:cc:4d:6c:97:49:93:33:5b:02:68: a2:a9:24:b7:42:5a:75:2e:d5:50:cf:68:d8:a9:81: 19:33:20:1b:8b:57:83:ba:f9:b7:40:72:4c:42:0d: bf:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D0:B7:C1:36:9F:64:CE:5A:23:C2:03:45:6C:6C:E7:00:D6:82:02 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/42 Signature Algorithm: sha256WithRSAEncryption 6d:09:8e:75:e2:d7:fd:63:2e:b6:26:31:ba:22:4c:e7:71:ea: 2d:20:fa:64:51:8c:2c:f8:09:fa:9e:77:da:c2:b9:e3:d5:1b: 3c:af:25:93:e7:ad:6c:e5:d7:b1:6d:b3:bd:94:dd:e0:2b:03: 5e:91:f3:e0:b8:31:e8:fb:81:5f:11:a5:49:59:f2:29:75:4c: 83:0b:88:00:31:9b:50:87:ab:c0:8c:b5:a4:8e:61:37:b4:a5: 37:bf:05:81:c8:b0:8f:08:b9:74:48:56:d3:1b:77:89:b0:7d: 8a:2b:32:b5:68:b7:02:13:12:85:eb:64:a6:91:99:e7:cb:2c: 05:45:38:3a:11:cb:e3:fc:67:04:79:19:cc:60:4f:c0:7e:3f: d0:7e:46:76:fb:5b:94:88:19:39:22:2a:ed:6d:1f:f5:b9:e3: 0f:e7:f6:24:70:4a:2a:6a:cc:57:0a:4d:9d:84:b1:38:2a:52: 22:26:36:fb:b4:c8:2f:d5:73:c8:8b:ab:c7:75:ed:84:90:1f: 25:56:6d:8c:b5:1e:fc:99:6f:9a:84:51:8f:bd:0d:c6:3f:61: 12:75:88:62:06:04:d2:19:57:97:31:bf:e1:cb:c3:96:59:50: c5:fd:91:75:f9:dd:b7:a0:44:e0:5a:e7:bc:41:02:c9:0e:99: 54:09:53:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE7XkV6i1wDQimM1ZnnvazDPJhmUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDE2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzY4ZThkMGE3Yzc3ZDI5NzE3NmNjOGI5NjA4NjU4MTgx NGVhNDA0ZTc2ZWI0MDEyNTJhNDU1OTg5OTliZmM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh+HqUDwyh7jcAHAUgwc2DgqJuXOe5GsLBQ43D3xhbcScA lsjPyTJDUAjnYOFfjUkr3CfOeeKjdwFqU1b9g/U/QsYNA4vtQcQ6rOmM45XHpSuR KbaBlqOy4ww2FEJfSZI8b9XaVWT1nkrEyWLQC7KOd3lU+Wc5LjpogzWb5lu9L7gB W8C0QDCP52QIRF8mMdSEgc+vqCfs21kx7ZmDjjv5eNeFNs0nOy6UwPLLfaQ0Qahg 5gXU06p9HTAD3BqQ/Hh6yN7MfTccpHonEp821uhCHiV793HCzE1sl0mTM1sCaKKp JLdCWnUu1VDPaNipgRkzIBuLV4O6+bdAckxCDb+BAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsNC3wTafZM5aI8IDRWxs5wDWggIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2Yzk2YzQyLTQzNDQtNDRjOC1hMTk0LTRjODdmMGFkZTNjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76wAwDQYJKoZIhvcNAQELBQADggEBAG0JjnXi1/1jLrYmMboiTOdx 6i0g+mRRjCz4Cfqed9rCuePVGzyvJZPnrWzl17Fts72U3eArA16R8+C4Mej7gV8R pUlZ8il1TIMLiAAxm1CHq8CMtaSOYTe0pTe/BYHIsI8IuXRIVtMbd4mwfYorMrVo twITEoXrZKaRmefLLAVFODoRy+P8ZwR5GcxgT8B+P9B+Rnb7W5SIGTkiKu1tH/W5 4w/n9iRwSipqzFcKTZ2EsTgqUiImNvu0yC/Vc8iLq8d17YSQHyVWbYy1HvyZb5qE UY+9DcY/YRJ1iGIGBNIZV5cxv+HLw5ZZUMX9kXX53begROBa57xBAskOmVQJU9E= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:29 2025 by rpki-client