$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa File: af93e150-9469-47eb-8185-3ff03d87db06.roa (raw, json) Hash identifier: k2DZLc9S7e+u1uSqPi9tCBaYAFG7uqAUuW5ndEt26dA= Subject key identifier: D8:B2:CC:71:79:88:1F:15:B2:38:0D:59:9A:7C:54:62:BF:1E:4B:AF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2943B12D8D10DB4E2BB8DAF33C02E02B4B6040E0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa Signing time: Sat 05 Apr 2025 00:10:11 +0000 ROA not before: Sat 05 Apr 2025 00:10:11 +0000 ROA not after: Sat 10 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:43:b1:2d:8d:10:db:4e:2b:b8:da:f3:3c:02:e0:2b:4b:60:40:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 5 00:10:11 2025 GMT Not After : May 10 23:59:59 2025 GMT Subject: serialNumber=4fdf0b119b6d192da3447990b125edf92a26c19d7a551be92d4a758624eda757, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:47:19:94:7d:05:1f:b5:54:a1:0a:11:61: 0d:e4:1d:fd:07:92:fb:48:f8:fd:af:fb:32:6f:f5: 2d:68:4a:71:9e:9d:00:45:15:01:ea:c8:bb:8d:b2: e5:d5:c4:99:49:49:87:ca:1d:d0:60:55:9d:cd:3f: f7:a2:05:ca:b9:7b:10:2a:68:a4:cf:61:09:84:ff: 42:52:22:1b:6f:ee:5f:46:2e:f1:19:9f:e3:35:9c: 16:b2:90:64:01:44:ec:5f:4f:25:10:7b:9e:7e:59: 45:68:41:7f:69:40:5c:5e:a7:fb:cd:1a:05:cd:37: d5:f3:80:77:a0:a7:ef:b6:a8:83:d8:f3:2e:d4:38: 95:46:cc:9f:fd:c6:65:b4:3c:3a:c4:ae:a6:32:53: f0:8e:2a:23:35:5a:01:ea:5b:69:03:cc:99:ad:3d: b6:24:ec:1b:ca:d4:c1:87:95:67:11:16:b9:59:70: 71:75:47:73:4e:4b:8a:e3:70:36:5d:f9:44:dd:33: ee:1b:9e:f3:da:cb:9e:83:ee:68:a6:81:0f:c6:65: 24:d3:23:10:66:cd:df:d3:64:02:0a:13:4a:c1:28: ce:d7:ab:4b:80:d4:8a:74:21:c2:38:7e:52:68:fa: a4:36:95:72:b7:c7:17:a6:f1:af:3c:e2:b8:7d:41: dd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B2:CC:71:79:88:1F:15:B2:38:0D:59:9A:7C:54:62:BF:1E:4B:AF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 4a:43:5d:5d:9f:4f:15:e1:a5:01:2d:a4:d3:b9:54:4e:f1:b1: b6:b9:83:a6:5d:57:dd:c6:36:ea:69:08:fd:d9:a3:1c:53:af: 98:98:a6:3b:80:45:80:b2:24:c6:4c:55:b9:a0:c6:9b:a2:73: 43:f7:1c:35:67:82:c6:c2:b8:08:d9:fc:0c:31:19:b5:d9:e9: 89:b5:15:a0:23:0e:3d:44:65:50:b1:89:45:25:b1:64:b0:5b: 7b:d0:87:97:ca:4f:14:9e:15:35:18:b7:c7:8c:f6:8a:98:d9: c9:4d:b5:86:dd:1f:bf:6a:1f:9c:21:3a:e6:66:5e:04:7e:3b: 67:47:41:40:75:ec:92:b5:5e:1f:23:3d:2e:39:b6:d4:0a:11: 6b:68:6b:a6:ab:71:7e:9b:23:a9:48:e7:e0:00:99:9a:46:40: 22:9a:56:5e:a4:f9:0e:19:7c:42:ba:cc:62:af:d0:d6:e5:3e: 0a:97:e1:aa:52:d4:2b:2c:0c:47:80:5a:8b:1a:a0:c2:b9:b4: ec:d6:cb:b2:c4:25:95:ba:2e:df:dd:05:32:d3:8b:3e:35:6a: 01:5d:2f:0a:43:5a:20:02:e0:04:5b:aa:6d:08:77:83:3c:9f: be:a3:cd:46:2a:81:60:c9:e2:bb:fa:34:74:b2:06:0f:a3:89: 6a:a2:03:26 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKUOxLY0Q204ruNrzPALgK0tgQOAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDA1MDAxMDExWhcNMjUwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZmRmMGIxMTliNmQxOTJkYTM0NDc5OTBiMTI1ZWRmOTJh MjZjMTlkN2E1NTFiZTkyZDRhNzU4NjI0ZWRhNzU3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIt0cZlH0FH7VUoQoRYQ3kHf0HkvtI+P2v+zJv9S1oSnGe nQBFFQHqyLuNsuXVxJlJSYfKHdBgVZ3NP/eiBcq5exAqaKTPYQmE/0JSIhtv7l9G LvEZn+M1nBaykGQBROxfTyUQe55+WUVoQX9pQFxep/vNGgXNN9XzgHegp++2qIPY 8y7UOJVGzJ/9xmW0PDrErqYyU/COKiM1WgHqW2kDzJmtPbYk7BvK1MGHlWcRFrlZ cHF1R3NOS4rjcDZd+UTdM+4bnvPay56D7mimgQ/GZSTTIxBmzd/TZAIKE0rBKM7X q0uA1Ip0IcI4flJo+qQ2lXK3xxem8a884rh9Qd3/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2LLMcXmIHxWyOA1ZmnxUYr8eS68wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmOTNlMTUwLTk0NjktNDdlYi04MTg1LTNmZjAzZDg3ZGIwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBAEpDXV2fTxXhpQEtpNO5VE7x sba5g6ZdV93GNuppCP3ZoxxTr5iYpjuARYCyJMZMVbmgxpuic0P3HDVngsbCuAjZ /AwxGbXZ6Ym1FaAjDj1EZVCxiUUlsWSwW3vQh5fKTxSeFTUYt8eM9oqY2clNtYbd H79qH5whOuZmXgR+O2dHQUB17JK1Xh8jPS45ttQKEWtoa6arcX6bI6lI5+AAmZpG QCKaVl6k+Q4ZfEK6zGKv0NblPgqX4apS1CssDEeAWosaoMK5tOzWy7LEJZW6Lt/d BTLTiz41agFdLwpDWiAC4ARbqm0Id4M8n76jzUYqgWDJ4rv6NHSyBg+jiWqiAyY= -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:58 2025 by rpki-client