$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa File: cdcc47d5-338b-4adc-9bc7-703261ddd214.roa (raw, json) Hash identifier: y4aJtWSL3bE5zvt4M8jbrb0QexXitb7ETDxCKONr4tQ= Subject key identifier: CB:D4:68:C2:FC:D1:9B:31:E2:8F:80:5B:E9:E5:E3:89:69:D6:36:F1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3229BF8FC848C3CC6437F2CB79385E2EA58B10AA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa Signing time: Fri 25 Apr 2025 17:50:42 +0000 ROA not before: Fri 25 Apr 2025 17:50:42 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:29:bf:8f:c8:48:c3:cc:64:37:f2:cb:79:38:5e:2e:a5:8b:10:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:42 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=2984b3f33268639ab6a62db2dfd460a7eec2e9712ebb23e296819b318c4b6914, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7d:e0:0d:71:d1:2e:62:80:00:34:0a:5a:29: 2e:4c:c6:f2:c4:4e:e6:7c:ec:66:d8:30:ca:fd:47: 8c:ca:d7:0d:b6:e9:c8:c3:5f:9c:02:a4:e4:e4:c1: 7b:84:63:45:90:5f:cf:fc:b5:1e:d1:25:91:3a:5b: 65:8a:df:e3:f7:63:39:98:bf:a5:70:e9:d1:ff:52: e1:a7:9e:0e:f6:ae:f3:55:21:7b:ea:b9:0e:df:d2: de:b9:51:82:b9:20:44:11:aa:16:8f:e9:12:93:dc: 6d:d9:6b:11:ec:25:56:38:85:29:17:e8:13:c6:3f: 21:f0:8d:c3:12:d0:6e:68:26:3e:77:e8:aa:a6:85: 56:1c:bb:5d:48:38:88:4d:f4:9c:a9:01:73:61:cd: 44:b5:bb:df:90:e0:2d:83:5b:dc:d9:39:ec:9e:cb: cb:3e:0b:6c:61:aa:33:d4:b6:c8:b7:b9:43:bd:e5: 85:41:95:73:d6:83:b6:c8:c7:fa:74:14:4d:ea:24: 94:53:73:fd:d7:21:ea:61:90:2f:10:ca:c4:60:c7: a1:32:90:12:2c:d8:0c:c2:b4:d3:85:24:5e:f1:13: 82:2b:fc:3d:1c:50:fe:a7:c5:50:72:6b:87:f3:b7: 1f:d1:bd:d2:53:48:98:fb:56:bb:b2:59:9a:e9:76: af:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D4:68:C2:FC:D1:9B:31:E2:8F:80:5B:E9:E5:E3:89:69:D6:36:F1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6000::/44 Signature Algorithm: sha256WithRSAEncryption 3b:ae:5d:11:d6:b1:bc:55:49:a8:d9:78:50:6a:4b:ae:21:13: cf:69:5c:9a:9d:9a:50:76:c2:1d:d9:66:81:a8:2d:e7:e8:e6: 6a:cf:25:a9:28:93:24:c5:21:cb:40:9c:8f:8b:95:4e:55:63: ac:ef:66:13:a0:f7:84:27:81:07:2e:09:55:a9:ed:11:15:13: 07:a5:45:34:5f:a5:9f:b1:bc:9c:7b:43:a6:0d:bb:a5:a6:55: 89:f9:ab:d0:1c:99:7e:94:87:f3:13:2c:fb:bd:2f:dd:fd:5b: 7b:23:9a:cd:3d:74:63:e1:0f:80:35:13:9b:d4:f1:4b:2a:a2: 69:b6:91:36:26:c4:5e:c5:e0:98:a1:48:bc:a4:ec:97:db:2b: 5f:cd:15:d9:af:14:28:46:38:0b:7c:f5:65:df:ad:85:8c:71: 1a:ed:24:26:3e:97:d6:1f:77:1a:84:59:8c:60:e2:ba:73:c8: 09:6d:f9:27:20:30:4d:b1:15:e8:57:93:1b:e8:92:e9:80:ec: e3:45:7a:41:3d:61:f1:f8:5b:24:fd:6f:63:f1:9d:40:2c:5e: c6:63:88:fa:7b:a8:3a:fc:6d:33:d8:fd:c9:06:e0:9c:8b:cd: cc:ee:4d:23:45:e4:77:94:87:6e:6b:72:3b:05:ee:cd:de:65: 56:74:b7:c8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMim/j8hIw8xkN/LLeTheLqWLEKowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDQyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTg0YjNmMzMyNjg2MzlhYjZhNjJkYjJkZmQ0NjBhN2Vl YzJlOTcxMmViYjIzZTI5NjgxOWIzMThjNGI2OTE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhfeANcdEuYoAANApaKS5MxvLETuZ87GbYMMr9R4zK1w22 6cjDX5wCpOTkwXuEY0WQX8/8tR7RJZE6W2WK3+P3YzmYv6Vw6dH/UuGnng72rvNV IXvquQ7f0t65UYK5IEQRqhaP6RKT3G3ZaxHsJVY4hSkX6BPGPyHwjcMS0G5oJj53 6KqmhVYcu11IOIhN9JypAXNhzUS1u9+Q4C2DW9zZOeyey8s+C2xhqjPUtsi3uUO9 5YVBlXPWg7bIx/p0FE3qJJRTc/3XIephkC8QysRgx6EykBIs2AzCtNOFJF7xE4Ir /D0cUP6nxVBya4fztx/RvdJTSJj7VruyWZrpdq+/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUy9RowvzRmzHij4Bb6eXjiWnWNvEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NkY2M0N2Q1LTMzOGItNGFkYy05YmM3LTcwMzI2MWRkZDIxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYAAwDQYJKoZIhvcNAQELBQADggEBADuuXRHWsbxVSajZeFBqS64h E89pXJqdmlB2wh3ZZoGoLefo5mrPJakokyTFIctAnI+LlU5VY6zvZhOg94QngQcu CVWp7REVEwelRTRfpZ+xvJx7Q6YNu6WmVYn5q9AcmX6Uh/MTLPu9L939W3sjms09 dGPhD4A1E5vU8Usqomm2kTYmxF7F4JihSLyk7JfbK1/NFdmvFChGOAt89WXfrYWM cRrtJCY+l9YfdxqEWYxg4rpzyAlt+ScgME2xFehXkxvokumA7ONFekE9YfH4WyT9 b2PxnUAsXsZjiPp7qDr8bTPY/ckG4JyLzczuTSNF5HeUh25rcjsF7s3eZVZ0t8g= -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:58 2025 by rpki-client