$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa File: bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa (raw, json) Hash identifier: jUa8yioW98hAWg6j2QMidJ68RPKTyZWlzYmhlRlNJUg= Subject key identifier: B2:12:B5:29:08:CB:49:82:90:63:7D:F6:EC:2E:55:F9:E1:B2:81:7E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 488C0504BC802700382429A0EB8710607615E52C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa Signing time: Fri 25 Apr 2025 17:51:20 +0000 ROA not before: Fri 25 Apr 2025 17:51:20 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5519::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:8c:05:04:bc:80:27:00:38:24:29:a0:eb:87:10:60:76:15:e5:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:20 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=a6fa1736b5f377971533c302dbe8652a2e339ddec824cdba06b191611d3b0a4b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9d:ff:e6:80:37:22:4e:3e:f6:7b:e2:ce:89: 0a:e3:a8:3a:ac:83:44:4c:ed:83:40:f2:77:ec:a5: a4:64:59:dc:55:83:8b:c0:55:41:c7:0b:43:10:20: 7f:81:59:ea:10:f9:4b:34:3d:dd:42:60:fb:f7:ae: 9d:03:98:ef:3f:a6:65:d5:74:3a:d2:05:de:be:2c: 5e:82:1f:7a:4d:0f:27:39:39:69:2e:6a:f4:e6:e0: e1:6f:f0:41:36:76:6f:81:69:f7:7c:ab:74:b9:5c: 9c:44:bc:19:5a:f3:48:0a:7c:13:c5:80:02:cb:01: 5e:1e:ca:ac:ab:2e:10:00:db:a0:51:21:10:6f:c4: 1a:3d:95:22:81:d4:52:7d:fe:24:6a:d2:07:92:2e: a4:3a:af:10:89:26:2a:45:b6:81:57:40:39:fb:f5: e4:da:d8:3b:aa:81:9b:37:85:2a:9e:7f:53:6c:24: 2c:22:c7:62:fe:d4:61:4e:b3:13:90:34:4d:a2:eb: eb:3a:03:d6:96:11:fe:3b:23:b5:cb:ae:f8:6b:44: 15:e9:c9:ce:ff:24:e8:4c:39:c8:ba:f3:f8:e6:cb: 47:a6:cb:8f:85:9f:eb:fc:08:c4:c7:7a:ea:d9:51: 19:08:58:0b:aa:d8:53:69:12:40:75:2b:74:8a:e6: 78:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:12:B5:29:08:CB:49:82:90:63:7D:F6:EC:2E:55:F9:E1:B2:81:7E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5519::/48 Signature Algorithm: sha256WithRSAEncryption 53:9f:be:18:a0:94:5e:2d:bc:b7:a5:93:af:d5:54:54:94:29: bc:46:40:ea:60:f2:4e:98:af:78:7a:98:b1:0d:44:59:7c:fc: c0:55:8b:fc:b4:32:ab:2b:c5:46:c9:4d:1e:d4:2f:ef:2e:b9: cd:e9:1c:8e:3a:fd:04:38:10:08:35:ef:01:91:ed:c3:12:39: 02:10:c3:7e:37:8c:9a:9b:24:42:19:b6:2a:6c:04:b1:25:5d: 77:81:13:bd:ea:2d:79:b5:c6:59:10:39:e4:11:71:81:27:ea: 6d:fb:4c:c0:ab:cf:91:4f:eb:df:c4:2c:74:c9:40:92:7e:51: 1b:07:40:d1:55:b5:55:b3:c2:2b:64:28:94:14:75:04:3f:c1: 50:bd:58:d2:d7:b4:d7:ba:08:c9:47:a3:58:17:27:56:2b:c6: fc:b1:1e:ac:1e:f4:f2:13:18:4e:98:b6:7b:fe:9c:38:bb:fb: cd:f5:63:e0:60:19:18:d5:80:7c:7a:9b:a0:d6:0e:3a:ff:12: bf:fa:be:c2:a9:95:92:be:19:df:8b:f9:31:74:f9:2e:68:2b: 1d:ad:e7:35:37:fe:f3:11:27:9f:10:0e:ed:85:77:2d:06:2f: 87:1e:e0:6e:bf:22:40:04:41:f9:45:3c:73:62:00:09:8f:4a: df:f7:d5:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSIwFBLyAJwA4JCmg64cQYHYV5SwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTIwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmZhMTczNmI1ZjM3Nzk3MTUzM2MzMDJkYmU4NjUyYTJl MzM5ZGRlYzgyNGNkYmEwNmIxOTE2MTFkM2IwYTRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOnf/mgDciTj72e+LOiQrjqDqsg0RM7YNA8nfspaRkWdxV g4vAVUHHC0MQIH+BWeoQ+Us0Pd1CYPv3rp0DmO8/pmXVdDrSBd6+LF6CH3pNDyc5 OWkuavTm4OFv8EE2dm+Bafd8q3S5XJxEvBla80gKfBPFgALLAV4eyqyrLhAA26BR IRBvxBo9lSKB1FJ9/iRq0geSLqQ6rxCJJipFtoFXQDn79eTa2DuqgZs3hSqef1Ns JCwix2L+1GFOsxOQNE2i6+s6A9aWEf47I7XLrvhrRBXpyc7/JOhMOci68/jmy0em y4+Fn+v8CMTHeurZURkIWAuq2FNpEkB1K3SK5nifAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUshK1KQjLSYKQY3327C5V+eGygX4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JkYTMzODAwLTEwOGQtNGViNy1iYmM4LWYxZjNhNWEwODhlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRkwDQYJKoZIhvcNAQELBQADggEBAFOfvhiglF4tvLelk6/VVFSU KbxGQOpg8k6Yr3h6mLENRFl8/MBVi/y0MqsrxUbJTR7UL+8uuc3pHI46/QQ4EAg1 7wGR7cMSOQIQw343jJqbJEIZtipsBLElXXeBE73qLXm1xlkQOeQRcYEn6m37TMCr z5FP69/ELHTJQJJ+URsHQNFVtVWzwitkKJQUdQQ/wVC9WNLXtNe6CMlHo1gXJ1Yr xvyxHqwe9PITGE6Ytnv+nDi7+831Y+BgGRjVgHx6m6DWDjr/Er/6vsKplZK+Gd+L +TF0+S5oKx2t5zU3/vMRJ58QDu2Fdy0GL4ce4G6/IkAEQflFPHNiAAmPSt/31XI= -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:07 2025 by rpki-client