$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa File: c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa (raw, json) Hash identifier: m/NsU9JBWXn6hX/DaLQ/ZE4D1hKTdR8JaBiGYZEyQRc= Subject key identifier: BC:20:9F:88:AF:AD:2A:BF:7A:0C:5E:5B:68:CF:F4:E2:FC:CC:6D:47 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B0DD037A2CA922BB679675CFF767E44901513C8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa Signing time: Fri 25 Apr 2025 17:50:46 +0000 ROA not before: Fri 25 Apr 2025 17:50:46 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:300::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:0d:d0:37:a2:ca:92:2b:b6:79:67:5c:ff:76:7e:44:90:15:13:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:46 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=97c0d16eaf9d26d27aab28e6bd120794d1de980057f58fd2877cabe13dbf68f0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ff:af:b4:15:bb:39:de:c0:67:66:71:29:cb: 06:9f:23:0c:f7:07:7f:4d:1e:63:6e:24:2d:8a:43: eb:2e:d5:32:27:f8:b0:b5:50:9a:a1:23:65:10:fb: 86:53:78:35:f4:38:93:9d:9b:99:78:79:11:90:b5: 5a:bf:f7:6d:e3:30:db:0b:63:d0:b5:c3:64:33:d8: be:f7:20:3c:0e:ab:f9:d9:73:2c:be:4b:20:41:64: b8:b9:50:ee:15:5a:87:3b:8e:98:d3:97:2f:9e:4c: ad:d3:a6:0c:6b:85:36:5a:34:e0:7c:03:c4:8c:8e: b8:27:87:4c:f9:c7:ce:6b:fe:2d:7f:ec:02:7f:50: d6:99:05:91:5e:06:5f:6a:5e:56:c5:c7:22:b5:01: b2:83:4f:e3:be:ca:56:28:2c:99:8b:93:72:f6:1c: dd:dd:5d:15:ee:e1:25:ab:87:bb:8a:cf:d1:61:59: f3:6b:e9:8c:d8:d3:4f:c6:b7:03:71:28:5d:2f:f3: c5:ca:dd:9e:6e:50:f3:d4:36:37:93:1b:64:7e:ce: 1d:40:35:1d:ec:61:09:dc:18:e8:59:3d:3d:01:78: 9e:04:91:f5:92:02:5e:26:ed:04:4c:96:18:8a:fb: ff:0f:7d:20:f6:c1:ca:09:ac:76:e1:15:c1:75:65: 85:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:20:9F:88:AF:AD:2A:BF:7A:0C:5E:5B:68:CF:F4:E2:FC:CC:6D:47 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:300::/44 Signature Algorithm: sha256WithRSAEncryption 6a:26:89:d7:e4:6c:15:6a:65:0d:2d:5c:92:bd:d1:d3:6f:50: e3:4d:b3:06:89:aa:26:cc:0f:47:7e:f8:f4:44:66:36:76:ba: ad:fc:72:0d:ff:2b:d8:43:b5:9a:30:59:e1:54:6a:1c:67:73: 20:4c:f9:4c:0f:2f:83:0f:31:35:d7:c9:22:49:ee:f0:06:3c: 9d:74:b2:69:f2:3e:ba:27:a7:40:bc:c3:e5:c1:85:57:27:e5: bd:91:07:bb:ab:f6:39:09:29:ad:67:84:5b:9f:f8:e7:27:15: eb:d9:97:04:6a:91:7b:bf:c7:80:99:e7:50:9f:f4:10:22:3a: 48:5f:e2:56:c8:10:d2:a9:90:31:76:31:2c:4f:4d:11:f5:da: 34:0a:f3:05:09:cf:57:e5:23:c2:29:dc:8a:0b:97:74:b0:5d: 0a:76:a1:c5:e5:bc:5e:ac:fd:d3:47:3e:a5:94:2b:bb:26:9a: 7b:9e:4a:39:54:fe:c9:a0:b5:79:e9:46:ec:5e:2e:90:3b:01: 2d:83:d4:85:14:2c:95:c7:3f:1f:aa:f3:96:c9:44:a2:fb:00: f2:f4:96:eb:89:37:d3:fb:ff:94:0c:57:ea:8b:28:51:b9:63: d0:c8:57:6f:29:0f:09:56:be:fa:45:64:f5:34:fd:c4:da:3b: 66:aa:0c:27 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOw3QN6LKkiu2eWdc/3Z+RJAVE8gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDQ2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2MwZDE2ZWFmOWQyNmQyN2FhYjI4ZTZiZDEyMDc5NGQx ZGU5ODAwNTdmNThmZDI4NzdjYWJlMTNkYmY2OGYwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw/6+0Fbs53sBnZnEpywafIwz3B39NHmNuJC2KQ+su1TIn +LC1UJqhI2UQ+4ZTeDX0OJOdm5l4eRGQtVq/923jMNsLY9C1w2Qz2L73IDwOq/nZ cyy+SyBBZLi5UO4VWoc7jpjTly+eTK3TpgxrhTZaNOB8A8SMjrgnh0z5x85r/i1/ 7AJ/UNaZBZFeBl9qXlbFxyK1AbKDT+O+ylYoLJmLk3L2HN3dXRXu4SWrh7uKz9Fh WfNr6YzY00/GtwNxKF0v88XK3Z5uUPPUNjeTG2R+zh1ANR3sYQncGOhZPT0BeJ4E kfWSAl4m7QRMlhiK+/8PfSD2wcoJrHbhFcF1ZYVtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvCCfiK+tKr96DF5baM/04vzMbUcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5YTdiZDIwLTQ4YmQtNGYwYS05MzdlLTJjY2M3MzAwOGY3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAwAwDQYJKoZIhvcNAQELBQADggEBAGomidfkbBVqZQ0tXJK90dNv UONNswaJqibMD0d++PREZjZ2uq38cg3/K9hDtZowWeFUahxncyBM+UwPL4MPMTXX ySJJ7vAGPJ10smnyPronp0C8w+XBhVcn5b2RB7ur9jkJKa1nhFuf+OcnFevZlwRq kXu/x4CZ51Cf9BAiOkhf4lbIENKpkDF2MSxPTRH12jQK8wUJz1flI8Ip3IoLl3Sw XQp2ocXlvF6s/dNHPqWUK7smmnueSjlU/smgtXnpRuxeLpA7AS2D1IUULJXHPx+q 85bJRKL7APL0luuJN9P7/5QMV+qLKFG5Y9DIV28pDwlWvvpFZPU0/cTaO2aqDCc= -----END CERTIFICATE-----Generated at Sat Apr 26 16:17:51 2025 by rpki-client