$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa File: aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa (raw, json) Hash identifier: GdzuyiIeuC8A8W4l5wtLa3ZBELtsgv7MYKfnCYhbFHU= Subject key identifier: AF:C1:34:49:72:FA:76:58:B7:C3:CF:5A:1F:82:77:BC:87:BC:25:CF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2E1EC988004341418C96FAE747058389518BD72C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa Signing time: Fri 25 Apr 2025 18:01:00 +0000 ROA not before: Fri 25 Apr 2025 18:01:00 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:1e:c9:88:00:43:41:41:8c:96:fa:e7:47:05:83:89:51:8b:d7:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:00 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ff6fbb296ef92eed67b861315236018a75087bd761b606a77f7225e0cc999424, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:3e:2e:40:78:00:38:98:e4:cb:eb:3a:16:e6: 58:00:2b:15:9c:e2:a6:f3:1d:e2:d7:42:08:eb:26: 3c:1a:c8:3b:57:cc:d9:23:86:0a:df:29:e4:ef:07: eb:90:a6:15:9a:88:8e:1b:03:da:05:96:dc:45:d8: 73:ed:78:3e:52:36:ee:51:31:ff:02:4f:66:5d:0f: 32:50:6b:69:1d:af:c6:ff:f6:b1:8a:39:ab:33:72: 4f:5c:75:f6:ae:ef:39:41:e4:b5:9b:72:38:fd:f2: a9:5a:b5:52:f2:41:2c:15:7b:1d:f9:14:e0:f2:c1: af:43:11:39:0c:a7:74:12:b1:a7:82:25:f9:ac:64: 90:42:7c:80:a8:d3:be:ff:c8:4c:48:13:27:42:bb: fd:a2:d8:4d:4b:48:cf:e4:b4:85:dc:80:ac:a8:b9: 67:e7:21:d1:17:c5:32:bd:14:7b:be:d9:8a:f0:a3: b3:d2:2d:c3:33:95:46:45:59:63:f5:d3:42:9b:c8: 33:b9:1e:20:9a:81:f8:4e:d5:65:c3:01:43:64:f3: 0d:29:f0:1e:18:6a:f0:5e:1c:bd:16:ed:73:64:db: 0d:f1:68:d4:c3:6f:6c:ea:5b:c6:ff:97:bb:67:d7: 39:15:bd:85:e0:ee:7f:6b:eb:8c:43:b0:82:a4:ae: e4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:C1:34:49:72:FA:76:58:B7:C3:CF:5A:1F:82:77:BC:87:BC:25:CF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/42 Signature Algorithm: sha256WithRSAEncryption 5d:3f:5f:de:08:35:ff:cf:e6:41:dd:ea:39:bf:d1:c1:66:21: 3d:0e:5f:de:7c:a5:1f:42:ff:50:55:5a:d9:c0:7d:4f:4c:d2: b5:dd:93:c1:f5:fe:04:fb:98:46:d5:5b:98:51:36:e0:3d:4d: d7:71:e1:57:95:de:21:71:af:b4:a6:b7:bb:95:2b:a9:83:9f: c3:cc:39:f3:8c:36:df:45:9a:3e:1e:5c:e2:e1:1c:9f:36:8f: 45:1d:65:9e:48:f7:56:00:1d:2e:7c:0f:4f:27:ca:f2:04:b3: 3c:4c:a2:82:40:c6:b4:4d:be:9f:5d:e3:4f:d9:f0:65:b9:b5: 7e:3c:c3:0b:85:db:9a:72:4c:9b:4e:e6:69:b7:9a:9a:b0:04: 15:7b:81:ab:75:b1:aa:27:81:8c:53:a0:9e:33:e3:e0:9d:8d: b4:2f:8f:fb:03:a2:a9:51:a1:92:f6:3a:39:f7:00:eb:ca:89: fa:7a:4e:a0:00:0e:cf:e5:ed:b9:03:0a:dc:2e:62:50:16:d4: 94:6b:d8:0d:a0:1d:72:81:01:c3:7a:17:30:95:a1:10:a2:2e: 17:78:6f:89:c0:92:42:71:58:91:70:5a:7a:ef:44:9e:bb:1d: 87:e1:d1:59:75:4f:a7:e2:03:a8:54:cd:87:d1:6b:b2:f1:46: a2:41:20:68 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULh7JiABDQUGMlvrnRwWDiVGL1ywwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTAwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjZmYmIyOTZlZjkyZWVkNjdiODYxMzE1MjM2MDE4YTc1 MDg3YmQ3NjFiNjA2YTc3ZjcyMjVlMGNjOTk5NDI0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYPi5AeAA4mOTL6zoW5lgAKxWc4qbzHeLXQgjrJjwayDtX zNkjhgrfKeTvB+uQphWaiI4bA9oFltxF2HPteD5SNu5RMf8CT2ZdDzJQa2kdr8b/ 9rGKOaszck9cdfau7zlB5LWbcjj98qlatVLyQSwVex35FODywa9DETkMp3QSsaeC JfmsZJBCfICo077/yExIEydCu/2i2E1LSM/ktIXcgKyouWfnIdEXxTK9FHu+2Yrw o7PSLcMzlUZFWWP100KbyDO5HiCagfhO1WXDAUNk8w0p8B4YavBeHL0W7XNk2w3x aNTDb2zqW8b/l7tn1zkVvYXg7n9r64xDsIKkruSnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUr8E0SXL6dli3w89aH4J3vIe8Jc8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZjUxNDAyLWYxYmYtNGU3Yi1iN2MzLTY1ZDkzZGVmNmJkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74gAwDQYJKoZIhvcNAQELBQADggEBAF0/X94INf/P5kHd6jm/0cFm IT0OX958pR9C/1BVWtnAfU9M0rXdk8H1/gT7mEbVW5hRNuA9Tddx4VeV3iFxr7Sm t7uVK6mDn8PMOfOMNt9Fmj4eXOLhHJ82j0UdZZ5I91YAHS58D08nyvIEszxMooJA xrRNvp9d40/Z8GW5tX48wwuF25pyTJtO5mm3mpqwBBV7gat1saongYxToJ4z4+Cd jbQvj/sDoqlRoZL2Ojn3AOvKifp6TqAADs/l7bkDCtwuYlAW1JRr2A2gHXKBAcN6 FzCVoRCiLhd4b4nAkkJxWJFwWnrvRJ67HYfh0Vl1T6fiA6hUzYfRa7LxRqJBIGg= -----END CERTIFICATE-----Generated at Sat Apr 26 19:25:39 2025 by rpki-client