$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa File: da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa (raw, json) Hash identifier: I3OT0C4oKz/jYEmmM6Xd31BADBMu7IJG49dqzJEMwUs= Subject key identifier: 64:33:B5:98:9E:3A:CC:02:AB:29:BF:61:81:87:56:2A:D3:E2:41:ED Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 500485896B8E93990B6B8CCABD9A2A9E9CB6BB37 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa Signing time: Fri 25 Apr 2025 17:51:10 +0000 ROA not before: Fri 25 Apr 2025 17:51:10 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:04:85:89:6b:8e:93:99:0b:6b:8c:ca:bd:9a:2a:9e:9c:b6:bb:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:10 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=238805d05ad6581f6029d0fb0af2cfa825fd65b3e391e52f68a36538fc60da9b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:48:53:9b:f8:87:50:d3:1a:03:f2:be:3b:33: d5:fe:f1:15:c7:44:a0:79:a9:f8:1a:98:59:4c:52: 96:50:74:ed:d8:a9:3d:3a:90:f4:80:2c:d7:32:1f: ab:ba:a4:42:e3:53:69:90:91:34:c1:67:d6:fa:24: 84:5a:d1:f3:f3:9b:14:47:26:e5:5d:05:c1:72:f2: 0f:95:f2:56:69:32:69:5c:43:5e:b2:8b:09:f2:d1: 48:db:ed:54:df:97:9f:5c:d1:83:bc:05:1d:9b:b4: 9d:ae:38:80:4c:14:7c:b2:f7:03:48:ff:73:8e:cc: cf:3f:7e:13:7a:4a:6d:81:c2:ad:b0:85:22:97:17: bb:ce:44:94:3f:37:20:57:37:6f:91:ca:bf:30:6e: b9:3c:63:60:76:fb:2e:77:1d:f6:c1:11:c3:5b:01: a7:a5:fd:26:c8:f3:44:d5:d0:68:1b:93:24:c7:0a: 73:87:c0:96:e8:a6:62:7d:5b:0e:a9:0d:9d:54:41: 66:74:90:a2:b6:3a:70:b0:d5:15:c9:e7:ae:a8:fb: 0e:d2:5b:d2:d5:aa:66:64:8c:7a:2b:a8:f3:ef:3e: 6c:8c:10:b5:42:02:7a:4a:c2:d5:ae:17:f6:f1:fc: 98:3b:09:78:e9:eb:8c:d6:84:55:49:a4:da:a0:e0: 52:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:33:B5:98:9E:3A:CC:02:AB:29:BF:61:81:87:56:2A:D3:E2:41:ED X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 1e:e1:5a:72:37:e5:b2:f8:f8:5c:3c:fc:31:b4:90:e9:4c:d1: 1c:d2:3d:fb:50:bf:7b:c3:c7:2f:b0:05:95:63:77:2a:bc:6f: 86:08:b0:e5:34:04:54:5f:f7:91:a8:32:5c:b8:f8:a2:16:58: 55:ac:b7:e9:a2:f2:9a:5e:18:eb:98:2f:39:fd:a8:c9:1d:70: 74:de:e8:04:1f:84:1c:02:87:df:1e:f2:bd:7e:70:5a:14:5c: 71:f0:31:b7:16:b9:4d:c7:d5:2f:fa:ee:30:95:46:45:3c:34: 1b:1a:70:ee:8c:38:1c:ab:5b:27:d9:98:70:4d:60:69:6f:e2: 27:ae:11:7a:dc:fa:40:ba:4b:c8:b6:2f:d1:41:69:1c:23:54: 69:2e:35:4e:ec:c5:a8:ea:25:6f:e9:3e:0b:96:66:d0:41:65: b6:38:61:9b:c2:6f:84:3c:07:a0:2e:42:4a:27:6a:35:25:e9: 81:95:66:7a:6d:fe:ab:dc:6f:9b:ad:95:59:32:d7:43:9b:c8: 39:f7:c7:82:14:5b:b1:44:a0:53:aa:42:06:6f:11:91:cc:2b: fe:b1:fc:c4:21:4e:fc:ad:7f:6e:18:13:ba:c0:6c:be:e5:4a: 35:0f:c9:9b:85:75:f1:03:c1:bd:62:7c:d0:70:1a:41:13:36: 4a:24:96:e8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUASFiWuOk5kLa4zKvZoqnpy2uzcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTEwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzg4MDVkMDVhZDY1ODFmNjAyOWQwZmIwYWYyY2ZhODI1 ZmQ2NWIzZTM5MWU1MmY2OGEzNjUzOGZjNjBkYTliMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnSFOb+IdQ0xoD8r47M9X+8RXHRKB5qfgamFlMUpZQdO3Y qT06kPSALNcyH6u6pELjU2mQkTTBZ9b6JIRa0fPzmxRHJuVdBcFy8g+V8lZpMmlc Q16yiwny0Ujb7VTfl59c0YO8BR2btJ2uOIBMFHyy9wNI/3OOzM8/fhN6Sm2Bwq2w hSKXF7vORJQ/NyBXN2+Ryr8wbrk8Y2B2+y53HfbBEcNbAael/SbI80TV0GgbkyTH CnOHwJbopmJ9Ww6pDZ1UQWZ0kKK2OnCw1RXJ566o+w7SW9LVqmZkjHorqPPvPmyM ELVCAnpKwtWuF/bx/Jg7CXjp64zWhFVJpNqg4FIDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZDO1mJ46zAKrKb9hgYdWKtPiQe0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMGQwZjFmLWY4MmQtNDdiYi05YWM3LWVlMDlhNTFiM2YyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAB7hWnI35bL4+Fw8/DG0kOlM 0RzSPftQv3vDxy+wBZVjdyq8b4YIsOU0BFRf95GoMly4+KIWWFWst+mi8ppeGOuY Lzn9qMkdcHTe6AQfhBwCh98e8r1+cFoUXHHwMbcWuU3H1S/67jCVRkU8NBsacO6M OByrWyfZmHBNYGlv4ieuEXrc+kC6S8i2L9FBaRwjVGkuNU7sxajqJW/pPguWZtBB ZbY4YZvCb4Q8B6AuQkonajUl6YGVZnpt/qvcb5utlVky10ObyDn3x4IUW7FEoFOq QgZvEZHMK/6x/MQhTvytf24YE7rAbL7lSjUPyZuFdfEDwb1ifNBwGkETNkoklug= -----END CERTIFICATE-----Generated at Sat Apr 26 14:51:02 2025 by rpki-client