$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa File: ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa (raw, json) Hash identifier: wB27IwznI3QqAQyZyZYJJFWi5xsRd5Fs2UKbNUq1H0E= Subject key identifier: 1D:97:2E:E9:81:0A:DC:04:2D:87:FE:04:E6:1A:C6:A9:60:49:48:54 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2361CEE1FCA86F28648C09568471728264AC8835 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa Signing time: Fri 25 Apr 2025 18:01:37 +0000 ROA not before: Fri 25 Apr 2025 18:01:37 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:61:ce:e1:fc:a8:6f:28:64:8c:09:56:84:71:72:82:64:ac:88:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:37 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=6e3f2effd5274b0743d9d1d11b2f5cbf28ecf1a6130a919cc9e56893c35ab362, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9d:f4:87:58:9e:1e:fb:f9:83:8d:5a:dc:66: 37:0c:3a:dc:b5:59:50:d0:37:b4:73:2c:11:99:74: 54:da:54:b9:b4:d1:47:cd:3e:98:7c:d7:8d:b2:af: 80:97:33:d9:07:15:c5:e1:7b:e2:38:39:14:9a:bc: 17:7e:85:9b:95:68:d8:25:8f:de:d9:eb:9d:32:2d: 29:08:68:88:82:9a:21:30:b8:a8:13:74:1b:76:90: 7e:29:27:ea:31:27:86:5c:76:c8:84:9c:75:18:3d: 19:07:5a:3c:d7:9c:45:05:e1:0e:09:bd:35:09:3a: 9c:79:1f:70:d0:ca:c1:95:15:c8:7b:b6:ee:e5:2f: 5e:0b:0e:52:06:0b:cf:11:20:1e:2c:99:88:21:a1: 6e:a5:07:2e:9c:53:4d:ff:a4:62:54:0d:aa:de:6a: 51:cf:4e:8d:66:3d:f7:12:8d:38:2e:4d:69:38:83: ad:5b:6d:7f:27:2e:5e:59:39:3d:3f:2c:1c:1f:ed: 24:71:bd:83:f5:62:4c:15:b7:c9:a4:43:67:fb:27: f7:70:2b:48:c3:1c:c6:44:65:14:ce:7d:f6:92:40: 14:18:17:ae:af:b1:b3:48:c7:c3:93:d3:34:db:2c: ab:28:52:55:e1:71:81:64:89:77:4e:28:a1:52:e3: 22:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:97:2E:E9:81:0A:DC:04:2D:87:FE:04:E6:1A:C6:A9:60:49:48:54 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/40 Signature Algorithm: sha256WithRSAEncryption 68:25:ef:d8:c1:9c:23:2d:2d:13:f5:82:04:51:2e:46:8e:ac: 41:46:fc:9c:cf:f1:26:0d:41:ec:3a:76:45:fc:2d:2b:07:7c: bf:1a:3c:cc:71:4b:86:06:1f:b7:0f:1e:e0:fa:d3:9f:97:f6: 08:b4:9d:19:90:4d:e2:0e:49:e9:23:25:f1:41:d2:b4:de:ad: 58:5d:4e:59:60:2b:dd:75:c1:f6:9b:f7:9d:41:78:ee:3e:3b: 93:dd:d1:8f:97:81:64:02:2a:f8:1b:aa:51:d7:e0:48:32:4b: cb:fd:64:9c:a7:8d:3b:a4:bd:97:73:a8:f6:68:e7:8e:56:44: e6:c7:96:c5:29:de:61:84:07:f9:8a:a2:25:21:a6:74:92:36: 64:8d:74:fb:24:39:4c:ee:b9:d9:e9:b4:95:73:20:8d:fa:9b: be:1e:c3:37:59:81:09:64:57:b7:14:97:c2:9c:a9:41:25:8c: cb:50:53:0f:84:f8:6e:0e:34:66:c8:16:06:91:9b:3e:14:dc: b2:eb:8e:55:b9:17:94:16:56:d4:b5:7c:4a:c6:98:f0:1f:3f: 7c:24:e0:43:b6:77:a4:02:c8:33:8c:da:01:e7:1f:14:f1:0c: 8b:69:f3:c6:62:cf:8f:b9:47:52:fc:46:0f:60:dc:7f:cb:cc: 1b:e8:5c:34 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUI2HO4fyobyhkjAlWhHFygmSsiDUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTM3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTNmMmVmZmQ1Mjc0YjA3NDNkOWQxZDExYjJmNWNiZjI4 ZWNmMWE2MTMwYTkxOWNjOWU1Njg5M2MzNWFiMzYyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/nfSHWJ4e+/mDjVrcZjcMOty1WVDQN7RzLBGZdFTaVLm0 0UfNPph8142yr4CXM9kHFcXhe+I4ORSavBd+hZuVaNglj97Z650yLSkIaIiCmiEw uKgTdBt2kH4pJ+oxJ4ZcdsiEnHUYPRkHWjzXnEUF4Q4JvTUJOpx5H3DQysGVFch7 tu7lL14LDlIGC88RIB4smYghoW6lBy6cU03/pGJUDarealHPTo1mPfcSjTguTWk4 g61bbX8nLl5ZOT0/LBwf7SRxvYP1YkwVt8mkQ2f7J/dwK0jDHMZEZRTOffaSQBQY F66vsbNIx8OT0zTbLKsoUlXhcYFkiXdOKKFS4yI5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHZcu6YEK3AQth/4E5hrGqWBJSFQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiNGIwMTk5LTZhNjMtNDZlMi05ZWNmLTZjMGJiZWE1NDAzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75jANBgkqhkiG9w0BAQsFAAOCAQEAaCXv2MGcIy0tE/WCBFEuRo6s QUb8nM/xJg1B7Dp2RfwtKwd8vxo8zHFLhgYftw8e4PrTn5f2CLSdGZBN4g5J6SMl 8UHStN6tWF1OWWAr3XXB9pv3nUF47j47k93Rj5eBZAIq+BuqUdfgSDJLy/1knKeN O6S9l3Oo9mjnjlZE5seWxSneYYQH+YqiJSGmdJI2ZI10+yQ5TO652em0lXMgjfqb vh7DN1mBCWRXtxSXwpypQSWMy1BTD4T4bg40ZsgWBpGbPhTcsuuOVbkXlBZW1LV8 SsaY8B8/fCTgQ7Z3pALIM4zaAecfFPEMi2nzxmLPj7lHUvxGD2Dcf8vMG+hcNA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:32:25 2025 by rpki-client