$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa File: b711b513-e0f0-4a59-a188-036dda4ade5a.roa (raw, json) Hash identifier: c3PCv6/6gCEfEmXz9LkEv/hssNtXGbAERIoady0nLRQ= Subject key identifier: 82:60:15:1A:AF:5F:DA:B6:93:08:45:C1:B6:8A:15:6A:01:58:F5:AD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 20120B40BBDD9AF0B8F3B27876B7C50EF2E5F0CD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa Signing time: Fri 25 Apr 2025 18:00:59 +0000 ROA not before: Fri 25 Apr 2025 18:00:59 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ef00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:12:0b:40:bb:dd:9a:f0:b8:f3:b2:78:76:b7:c5:0e:f2:e5:f0:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:59 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=8e1462875eefb635d510d649a8ef7bea4c63a1e00b7bd77cceffdec476223eea, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:58:a7:bb:9a:5e:cc:c3:f2:b5:3d:29:d5:27: 15:7c:4f:3c:a1:f4:59:b7:8d:e0:ff:08:ee:00:f8: 09:53:18:98:74:5b:39:d7:4f:f4:bd:4e:cc:53:7d: f6:3f:59:f4:80:09:e1:58:ff:ff:f9:e1:a0:29:87: df:3b:ec:37:02:5d:55:52:c8:b1:4e:38:b2:80:e0: 9c:ac:42:ae:47:63:20:7d:bd:ba:a8:b1:04:80:a5: fd:39:37:72:e2:a7:5e:9d:72:22:94:bb:c0:bd:ab: 78:cc:d8:52:90:d9:c7:31:f8:51:05:b5:0f:18:e8: 1d:7d:04:8f:78:7e:06:64:58:7d:e3:95:fe:c5:37: 93:00:07:3f:1b:44:3a:3f:03:e4:f4:c1:c4:d6:12: 19:44:01:06:84:ce:ec:21:e1:52:98:17:0f:37:e3: 1d:7a:d0:a3:34:a5:da:70:43:83:9f:05:5c:c5:ef: 1d:8c:b5:b7:5a:79:c5:84:3d:06:3f:fc:1f:35:69: 27:9a:16:2c:8a:28:d0:96:e6:1c:21:cd:18:a4:c7: 89:e7:a8:4e:d6:48:fc:64:ad:5a:77:66:db:2f:39: d1:27:d3:14:57:95:59:bf:55:7b:04:ac:b4:83:f9: 6b:d5:f1:24:35:52:20:33:0f:03:8d:f1:af:7a:45: 9c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:60:15:1A:AF:5F:DA:B6:93:08:45:C1:B6:8A:15:6A:01:58:F5:AD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ef00::/40 Signature Algorithm: sha256WithRSAEncryption 70:1f:4b:8d:2c:32:75:8a:8b:90:32:af:8e:0a:10:69:db:91: ac:0b:e4:79:19:2d:86:3b:cf:94:99:3f:38:c0:e5:65:13:77: ed:c6:47:d0:b0:e9:c7:8a:66:72:a1:dc:93:ab:15:e9:aa:ad: 40:b1:41:8c:8b:78:7b:10:3f:ab:2f:b8:d6:c6:b1:9d:a7:e7: a8:de:8d:e9:c5:62:83:70:c3:8e:fc:9b:09:35:62:cf:0c:4e: 89:e8:2c:f6:ef:62:2f:b4:91:9f:b6:19:0a:95:01:37:62:8c: 99:fd:d2:fb:60:5e:c2:6c:f3:d5:ed:7f:d9:56:8b:0c:90:56: 03:4e:a4:c9:19:30:44:97:86:02:02:8f:1a:c5:3b:83:6d:6c: f9:17:8f:18:1e:36:5c:3e:47:c9:97:de:6e:d0:6d:b4:be:80: e2:9c:7a:b1:fe:22:67:e6:a8:08:dd:78:dd:e4:b0:95:a6:66: 4c:65:9b:9a:af:c9:48:85:b4:84:d7:c1:53:da:5a:13:08:77: 2a:91:c2:dd:cb:db:32:4a:f4:a4:c8:5c:66:1d:83:5b:63:5a: 1e:83:a0:80:0b:e0:77:91:05:60:a6:f1:8c:b8:ed:a9:ed:ba: 5d:18:80:cb:88:55:0c:57:c9:8e:3f:68:66:62:89:b9:ae:9f: 52:fe:b7:65 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIBILQLvdmvC487J4drfFDvLl8M0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDU5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTE0NjI4NzVlZWZiNjM1ZDUxMGQ2NDlhOGVmN2JlYTRj NjNhMWUwMGI3YmQ3N2NjZWZmZGVjNDc2MjIzZWVhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnWKe7ml7Mw/K1PSnVJxV8Tzyh9Fm3jeD/CO4A+AlTGJh0 WznXT/S9TsxTffY/WfSACeFY///54aAph9877DcCXVVSyLFOOLKA4JysQq5HYyB9 vbqosQSApf05N3Lip16dciKUu8C9q3jM2FKQ2ccx+FEFtQ8Y6B19BI94fgZkWH3j lf7FN5MABz8bRDo/A+T0wcTWEhlEAQaEzuwh4VKYFw834x160KM0pdpwQ4OfBVzF 7x2MtbdaecWEPQY//B81aSeaFiyKKNCW5hwhzRikx4nnqE7WSPxkrVp3ZtsvOdEn 0xRXlVm/VXsErLSD+WvV8SQ1UiAzDwON8a96RZwZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUgmAVGq9f2raTCEXBtooVagFY9a0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3MTFiNTEzLWUwZjAtNGE1OS1hMTg4LTAzNmRkYTRhZGU1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77zANBgkqhkiG9w0BAQsFAAOCAQEAcB9LjSwydYqLkDKvjgoQaduR rAvkeRkthjvPlJk/OMDlZRN37cZH0LDpx4pmcqHck6sV6aqtQLFBjIt4exA/qy+4 1saxnafnqN6N6cVig3DDjvybCTVizwxOiegs9u9iL7SRn7YZCpUBN2KMmf3S+2Be wmzz1e1/2VaLDJBWA06kyRkwRJeGAgKPGsU7g21s+RePGB42XD5HyZfebtBttL6A 4px6sf4iZ+aoCN143eSwlaZmTGWbmq/JSIW0hNfBU9paEwh3KpHC3cvbMkr0pMhc Zh2DW2NaHoOggAvgd5EFYKbxjLjtqe26XRiAy4hVDFfJjj9oZmKJua6fUv63ZQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:37 2025 by rpki-client