$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c4e52abf-4d7e-4707-bd4e-1ceba64e18cd.roa File: c4e52abf-4d7e-4707-bd4e-1ceba64e18cd.roa (raw, json) Hash identifier: Ky7UIAm5dW4B84Cn4jW9WTLgoqCrRzPwiG9mgLFkM3Q= Subject key identifier: 3A:C6:5B:69:24:08:47:AC:1A:54:1A:71:C0:73:19:EB:AD:33:62:FA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4BD35F5CFF3D62CEDBFA814CEE50077A343425 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c4e52abf-4d7e-4707-bd4e-1ceba64e18cd.roa Signing time: Fri 25 Apr 2025 18:00:20 +0000 ROA not before: Fri 25 Apr 2025 18:00:20 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e600::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d3:5f:5c:ff:3d:62:ce:db:fa:81:4c:ee:50:07:7a:34:34:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:20 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=f80e506ffc3c9554a789239bb0e46b825517861318465aed72b4876493405911, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:94:bb:2c:27:43:1d:9c:88:b2:21:36:65:12: 37:32:4b:82:42:ed:f8:9a:9c:89:ab:18:b9:6f:a1: 8a:1e:de:d9:e1:b5:9b:f3:62:d9:2c:b0:24:e8:b4: be:14:5a:1c:8d:27:55:f6:17:bf:7b:a9:bb:06:3c: ab:df:ce:24:23:e3:25:4e:ae:19:ac:d9:41:11:e6: ab:57:bf:77:fe:f9:8d:c4:83:b7:95:73:9b:d9:d2: 07:22:0c:16:f8:d8:ed:a0:b0:20:4a:19:6c:36:07: 07:22:32:3c:2c:1e:e3:10:98:05:77:90:eb:a8:c8: 58:1c:da:23:c6:e8:10:1d:f5:d5:32:34:8c:e5:c4: 7c:6f:aa:03:cb:ed:23:ae:bc:0f:92:c4:10:63:37: 8d:af:d0:f8:15:84:2a:d6:12:9a:bc:0b:48:b9:40: cc:f8:5f:b2:ce:8a:f9:f1:4a:c9:c1:d9:63:e8:9a: 05:2b:10:64:d6:8d:bf:aa:78:52:a8:1b:32:f8:b0: b7:ce:17:58:46:a7:da:9f:b1:f4:bb:d0:85:23:3f: 8d:04:93:6c:af:05:93:ce:1b:96:05:78:8f:df:08: 48:28:95:a5:1f:d1:3c:26:57:25:d9:fc:63:de:77: 07:8b:bc:2f:20:b5:32:cc:c0:53:9e:94:0c:8a:44: 21:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C6:5B:69:24:08:47:AC:1A:54:1A:71:C0:73:19:EB:AD:33:62:FA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c4e52abf-4d7e-4707-bd4e-1ceba64e18cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/42 Signature Algorithm: sha256WithRSAEncryption 71:9f:1e:b1:2e:68:d7:53:1b:40:38:61:50:08:09:0d:77:b9: 57:c2:9c:82:2d:26:9e:30:20:46:55:2b:08:41:cf:1b:f3:82: 52:65:8c:ad:e7:72:fd:4d:a4:e5:b9:e2:d3:fc:09:a9:c7:70: 57:af:65:d0:07:ce:ac:d5:c8:c7:02:e2:40:5b:14:3d:48:4f: d8:11:29:c6:41:89:17:b4:17:00:a3:f8:d9:27:29:3f:5d:4c: 3c:b8:3e:c2:d1:98:47:f8:d5:7a:c2:74:bf:0a:51:69:7b:9e: 2f:81:3e:94:67:88:d5:5a:46:e7:3c:ff:81:be:b3:33:0f:90: 28:99:99:6a:68:35:99:d6:a4:19:f2:53:0a:6a:c2:a6:76:95: 68:ad:5e:bf:0f:fe:d9:57:4f:a5:25:21:d0:99:92:f4:69:e2: 21:1c:27:45:28:98:30:c5:9b:20:d0:da:b4:04:9a:52:54:15: e8:0f:d6:6e:71:f2:e3:f2:35:a0:33:49:23:09:91:69:6e:a2: b8:ce:ca:a3:b2:72:1a:10:28:2a:b6:25:2d:95:d8:92:08:ba: 5a:05:43:d3:45:74:c9:dd:1c:74:70:54:18:dc:de:1e:6a:ee: c4:ae:6b:7d:db:a8:de:a1:d3:f8:94:61:0f:3b:f5:0b:0a:d3: ab:fe:12:d3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITS9NfXP89Ys7b+oFM7lAHejQ0JTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yNTA0MjUxODAwMjBaFw0yNTA1MzAyMzU5NTla MHoxSTBHBgNVBAUTQGY4MGU1MDZmZmMzYzk1NTRhNzg5MjM5YmIwZTQ2YjgyNTUx Nzg2MTMxODQ2NWFlZDcyYjQ4NzY0OTM0MDU5MTExLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANmUuywnQx2ciLIhNmUSNzJLgkLt+JqciasYuW+hih7e2eG1 m/Ni2SywJOi0vhRaHI0nVfYXv3upuwY8q9/OJCPjJU6uGazZQRHmq1e/d/75jcSD t5Vzm9nSByIMFvjY7aCwIEoZbDYHByIyPCwe4xCYBXeQ66jIWBzaI8boEB311TI0 jOXEfG+qA8vtI668D5LEEGM3ja/Q+BWEKtYSmrwLSLlAzPhfss6K+fFKycHZY+ia BSsQZNaNv6p4UqgbMviwt84XWEan2p+x9LvQhSM/jQSTbK8Fk84blgV4j98ISCiV pR/RPCZXJdn8Y953B4u8LyC1MszAU56UDIpEIWMCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBQ6xltpJAhHrBpUGnHAcxnrrTNi+jAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvYzRlNTJhYmYtNGQ3ZS00NzA3LWJkNGUtMWNlYmE2NGUxOGNkLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBiYA8PvmADANBgkqhkiG9w0BAQsFAAOCAQEAcZ8esS5o11MbQDhhUAgJDXe5 V8Kcgi0mnjAgRlUrCEHPG/OCUmWMredy/U2k5bni0/wJqcdwV69l0AfOrNXIxwLi QFsUPUhP2BEpxkGJF7QXAKP42ScpP11MPLg+wtGYR/jVesJ0vwpRaXueL4E+lGeI 1VpG5zz/gb6zMw+QKJmZamg1mdakGfJTCmrCpnaVaK1evw/+2VdPpSUh0JmS9Gni IRwnRSiYMMWbINDatASaUlQV6A/WbnHy4/I1oDNJIwmRaW6iuM7Ko7JyGhAoKrYl LZXYkgi6WgVD00V0yd0cdHBUGNzeHmruxK5rfduo3qHT+JRhDzv1CwrTq/4S0w== -----END CERTIFICATE-----Generated at Sat Apr 26 13:18:00 2025 by rpki-client