$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: 5FnVXeg4FpTpREwcpQJS4RMP9D368jQcvOQsF0cNAc8= Subject key identifier: 82:13:67:E1:0E:9B:76:88:EF:FB:58:22:3E:C4:8E:42:A3:91:E1:37 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 21916B71EE5F1B1DFAB1315B5F0D063A3FF4EBA5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Tue 15 Apr 2025 00:50:06 +0000 ROA not before: Tue 15 Apr 2025 00:50:06 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:91:6b:71:ee:5f:1b:1d:fa:b1:31:5b:5f:0d:06:3a:3f:f4:eb:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 15 00:50:06 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=9dd5f0751fa92bdbb8bc2329e32548314711436e5a80f1e731615bdc0a83724b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b0:54:dc:5f:50:3d:24:e1:10:b0:a2:e3:c4: 53:c8:c7:0c:1e:30:a2:8f:12:c1:76:29:48:0a:a1: ba:4f:f1:2b:17:02:af:03:10:31:52:a6:72:b9:c1: a4:6a:9a:ef:e2:c4:37:23:f4:d2:a6:49:a1:3b:44: bc:3d:8a:8b:c2:df:37:83:08:5e:39:44:2c:3a:6b: 41:01:09:5c:6b:91:ec:3e:f1:cb:f9:4f:88:97:96: 63:bb:a6:0b:3f:f5:9b:00:a5:ed:30:2b:29:94:9b: a9:ed:93:e6:6e:a8:45:ee:f8:28:bb:a7:b6:f8:ad: 39:03:34:01:c3:0a:d0:13:11:b3:68:82:b0:91:1b: fa:2d:60:40:f3:b0:34:a1:9f:8f:ff:66:83:18:b4: b4:31:99:27:a7:04:84:19:59:16:11:31:f3:4d:41: 69:bd:a7:d5:e7:46:c8:9d:b4:b2:58:19:7f:a0:6d: 9a:5b:35:5a:fb:03:34:cf:3b:3a:e2:26:25:b7:38: 4a:7b:f3:e5:a4:ea:29:61:55:47:9b:b3:8d:02:c6: 3a:de:5d:ad:92:0c:25:bd:1e:ce:1f:44:af:97:83: d6:41:d2:71:aa:49:23:79:9c:23:0d:2e:5c:37:5f: c3:f3:35:f7:f3:96:d3:ea:29:f8:c3:69:87:cd:16: 14:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:13:67:E1:0E:9B:76:88:EF:FB:58:22:3E:C4:8E:42:A3:91:E1:37 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 19:0a:c7:90:b2:a6:df:46:47:4d:76:1b:60:a4:aa:a2:da:42: 19:ae:f8:df:7f:7c:e4:e9:e1:fe:e2:7f:50:c6:76:07:09:5e: 68:30:19:12:dc:e6:d5:d8:ed:6a:44:a7:94:00:64:25:33:e0: b5:8f:8d:a8:8e:ea:6d:3d:80:c0:57:79:a1:be:ac:ca:3e:ef: 16:25:7c:b0:05:33:b3:4d:50:c4:4c:0b:bd:67:f3:21:db:fd: 83:11:32:a2:6c:14:b3:9c:8e:40:d4:80:9a:21:8e:e6:a3:24: 86:1c:c7:d5:a5:fa:ad:e4:95:3b:bd:bd:cf:9e:06:4f:20:0d: 26:61:3b:a5:e7:c7:75:67:d2:92:f7:a3:0f:2a:f1:06:e7:10: 4f:64:76:b0:de:82:df:c6:11:80:2c:9a:ab:a0:fd:b3:43:e7: 98:05:32:6f:64:46:3d:23:35:77:18:e1:e3:6b:e0:72:13:21: b4:9d:11:0b:39:7e:f7:3a:5d:f6:3a:66:dd:93:e4:16:93:3b: 19:26:90:6f:39:96:30:62:7c:3e:15:12:6e:ef:dd:3b:70:20: 74:1e:ba:76:4f:84:16:20:47:ed:e1:3a:cb:df:02:76:d2:57: 83:d1:ae:aa:e7:08:78:7c:12:c7:b2:db:84:6a:3f:e6:f1:fd: 6f:e4:eb:4f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIZFrce5fGx36sTFbXw0GOj/066UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDE1MDA1MDA2WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGQ1ZjA3NTFmYTkyYmRiYjhiYzIzMjllMzI1NDgzMTQ3 MTE0MzZlNWE4MGYxZTczMTYxNWJkYzBhODM3MjRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpsFTcX1A9JOEQsKLjxFPIxwweMKKPEsF2KUgKobpP8SsX Aq8DEDFSpnK5waRqmu/ixDcj9NKmSaE7RLw9iovC3zeDCF45RCw6a0EBCVxrkew+ 8cv5T4iXlmO7pgs/9ZsApe0wKymUm6ntk+ZuqEXu+Ci7p7b4rTkDNAHDCtATEbNo grCRG/otYEDzsDShn4//ZoMYtLQxmSenBIQZWRYRMfNNQWm9p9XnRsidtLJYGX+g bZpbNVr7AzTPOzriJiW3OEp78+Wk6ilhVUebs40CxjreXa2SDCW9Hs4fRK+Xg9ZB 0nGqSSN5nCMNLlw3X8PzNffzltPqKfjDaYfNFhSPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUghNn4Q6bdojv+1giPsSOQqOR4TcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBABkKx5Cypt9GR012G2CkqqLa Qhmu+N9/fOTp4f7if1DGdgcJXmgwGRLc5tXY7WpEp5QAZCUz4LWPjaiO6m09gMBX eaG+rMo+7xYlfLAFM7NNUMRMC71n8yHb/YMRMqJsFLOcjkDUgJohjuajJIYcx9Wl +q3klTu9vc+eBk8gDSZhO6Xnx3Vn0pL3ow8q8QbnEE9kdrDegt/GEYAsmqug/bND 55gFMm9kRj0jNXcY4eNr4HITIbSdEQs5fvc6XfY6Zt2T5BaTOxkmkG85ljBifD4V Em7v3TtwIHQeunZPhBYgR+3hOsvfAnbSV4PRrqrnCHh8Esey24RqP+bx/W/k608= -----END CERTIFICATE-----Generated at Sat Apr 26 13:33:58 2025 by rpki-client