$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa File: c92a8c24-62b8-4009-a51c-8908d7373850.roa (raw, json) Hash identifier: A2UYBGNH6jQosguV52JMZjCZJduyT7Y+q3FWHvY7vGQ= Subject key identifier: 67:34:DF:A8:B2:42:BF:CB:78:80:43:84:B4:DF:EB:D7:DB:0E:27:EB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2731B9F71999A1486370031B851F16C835C00AB5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa Signing time: Fri 25 Apr 2025 18:01:27 +0000 ROA not before: Fri 25 Apr 2025 18:01:27 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e100::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:31:b9:f7:19:99:a1:48:63:70:03:1b:85:1f:16:c8:35:c0:0a:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:27 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=86ab8ae27f609e5efeff6276afccb9617eba5d1bd2dbf0d86a66caa0aa2b6f03, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:41:a5:ef:96:e3:11:75:7d:8a:1c:af:f2:74: df:9f:e7:4d:43:96:9d:b6:9c:e0:79:f0:7f:31:3f: 5f:e6:fc:ff:6c:4d:95:74:d4:35:1f:53:14:a6:22: 9d:3c:10:8a:2f:19:c8:c5:61:a0:ed:2a:de:cd:ff: 11:05:3b:9e:d8:51:5b:aa:a4:30:b7:42:dd:fb:78: 43:54:8b:58:8a:ff:9f:97:e6:f8:31:97:d5:3d:b7: 67:05:32:40:24:2a:e3:b4:9b:28:c9:05:a0:cc:b4: fa:57:b5:a3:d9:24:68:63:89:d6:da:da:79:67:5e: 61:52:5e:0d:a4:b5:38:23:8d:03:d4:c1:41:6a:d1: d2:59:23:88:d9:26:fb:63:1f:11:36:62:b5:2d:19: 37:ed:9e:20:4f:3f:67:41:87:ef:c1:43:cd:e1:1a: 7a:eb:ca:07:06:a2:fe:ee:82:4d:19:9d:25:fa:73: 49:17:d9:02:a6:c4:f9:32:cd:36:72:28:3f:21:37: 1b:dd:4a:d8:44:20:db:97:46:da:99:2c:80:af:b5: f4:e2:67:b7:9b:fc:92:b5:61:08:a1:ee:4e:7b:cd: 8f:01:60:26:00:1e:c5:e2:bb:53:5d:95:5b:a2:f7: 1c:c7:4a:a5:2c:c3:aa:11:af:da:f2:1c:e7:04:3d: 64:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:34:DF:A8:B2:42:BF:CB:78:80:43:84:B4:DF:EB:D7:DB:0E:27:EB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/42 Signature Algorithm: sha256WithRSAEncryption a6:c3:32:21:6a:79:6d:0f:b1:a8:d9:80:15:d4:03:82:1c:cc: fa:94:a0:97:9e:bb:a6:f1:b3:0b:cb:97:96:59:c3:41:c9:ca: c6:22:e9:73:34:96:5a:32:37:76:6b:63:64:57:f6:a5:10:8a: 92:e3:dd:11:1b:9e:27:b6:a0:75:46:8f:b1:0f:fb:ce:02:0b: b8:74:a9:0d:41:9d:5c:dd:ad:d4:58:68:91:1b:ed:47:5f:3a: 46:4e:15:73:f1:1e:48:07:a8:64:46:cc:94:df:c1:26:54:7e: e4:6c:75:9f:e2:1e:c1:de:ba:b2:2c:cd:5f:72:a5:a8:3d:10: c0:92:0b:96:aa:92:bf:b7:87:57:10:e7:61:b9:76:74:d1:52: a3:3f:fb:e0:4b:b4:ee:bf:dc:cc:a2:ac:6b:73:dd:ef:16:db: 77:e5:bd:f7:78:bc:81:79:82:6f:25:2a:02:6f:3c:ca:93:01: 0f:2e:de:fc:4c:42:f1:5c:47:26:d2:28:2c:b8:90:24:82:77: 95:0c:bc:18:be:c6:ef:a3:f9:65:ec:19:0e:b3:d5:f2:14:09: 67:23:ed:bd:d2:f7:51:ad:e2:57:6d:22:17:fb:5d:2a:71:f8: 1b:08:0b:28:46:3d:66:b9:35:dc:3c:a5:36:7c:40:d0:82:bf: d1:b8:fd:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJzG59xmZoUhjcAMbhR8WyDXACrUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTI3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmFiOGFlMjdmNjA5ZTVlZmVmZjYyNzZhZmNjYjk2MTdl YmE1ZDFiZDJkYmYwZDg2YTY2Y2FhMGFhMmI2ZjAzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNQaXvluMRdX2KHK/ydN+f501Dlp22nOB58H8xP1/m/P9s TZV01DUfUxSmIp08EIovGcjFYaDtKt7N/xEFO57YUVuqpDC3Qt37eENUi1iK/5+X 5vgxl9U9t2cFMkAkKuO0myjJBaDMtPpXtaPZJGhjidba2nlnXmFSXg2ktTgjjQPU wUFq0dJZI4jZJvtjHxE2YrUtGTftniBPP2dBh+/BQ83hGnrrygcGov7ugk0ZnSX6 c0kX2QKmxPkyzTZyKD8hNxvdSthEINuXRtqZLICvtfTiZ7eb/JK1YQih7k57zY8B YCYAHsXiu1NdlVui9xzHSqUsw6oRr9ryHOcEPWT9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZzTfqLJCv8t4gEOEtN/r19sOJ+swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MmE4YzI0LTYyYjgtNDAwOS1hNTFjLTg5MDhkNzM3Mzg1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74QAwDQYJKoZIhvcNAQELBQADggEBAKbDMiFqeW0PsajZgBXUA4Ic zPqUoJeeu6bxswvLl5ZZw0HJysYi6XM0lloyN3ZrY2RX9qUQipLj3REbnie2oHVG j7EP+84CC7h0qQ1BnVzdrdRYaJEb7UdfOkZOFXPxHkgHqGRGzJTfwSZUfuRsdZ/i HsHeurIszV9ypag9EMCSC5aqkr+3h1cQ52G5dnTRUqM/++BLtO6/3MyirGtz3e8W 23flvfd4vIF5gm8lKgJvPMqTAQ8u3vxMQvFcRybSKCy4kCSCd5UMvBi+xu+j+WXs GQ6z1fIUCWcj7b3S91Gt4ldtIhf7XSpx+BsICyhGPWa5Ndw8pTZ8QNCCv9G4/Ss= -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:15 2025 by rpki-client