$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa File: dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa (raw, json) Hash identifier: eHGqR5IemSphvbEBo14AjxVUHKkF08A28k7wFSry39I= Subject key identifier: 91:7D:2B:F9:5E:18:58:44:83:FC:79:0C:0C:6D:DA:80:3C:53:E3:5B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 31ECAC83754BDA2280E29FB335C74C084D0F5062 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa Signing time: Fri 25 Apr 2025 18:00:08 +0000 ROA not before: Fri 25 Apr 2025 18:00:08 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ec:ac:83:75:4b:da:22:80:e2:9f:b3:35:c7:4c:08:4d:0f:50:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:00:08 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=36bb07d6a1aff64c95e9c79f6fb1f9f113bc2845cbde3e231c45377e3c47d6ee, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:97:77:02:d2:85:be:bd:34:66:a9:70:c3:88: 96:57:27:c0:0a:d0:df:39:82:31:cc:a0:4c:2d:3f: ae:fc:80:5a:d5:0b:76:8f:5f:0c:80:d5:f1:69:9f: 5c:0c:4d:ed:43:01:46:a4:43:56:c0:6f:d0:da:ed: 06:2c:fc:87:a1:ed:45:f4:d0:e2:3f:31:46:dd:e4: 86:07:ce:f3:b0:d6:85:ba:a7:42:2d:d8:62:c6:01: d0:c5:39:e5:04:8c:8d:be:59:95:e1:36:30:38:15: 2a:da:9d:be:d0:42:23:89:9d:3c:9f:ff:4c:28:b7: 74:7a:4f:cc:1f:23:03:62:68:8f:c4:c2:85:75:d0: 60:0f:aa:12:2e:ef:f2:6c:4d:ef:02:1c:3a:e5:6f: a6:a5:93:63:68:49:e3:a7:e1:97:83:14:07:73:d8: de:71:31:d1:00:6b:cf:d9:50:32:a0:14:65:ce:ef: 23:32:47:9e:f8:79:ad:60:ce:51:fa:6e:ab:4e:b5: 33:50:97:1c:b9:34:b0:77:84:a9:03:e8:8e:1a:06: 06:b3:ac:cd:4a:1d:d8:c0:44:a6:ae:8c:63:d3:b7: 9e:92:66:f6:4e:d5:21:0d:e0:37:af:79:8d:b8:4a: ae:65:8f:8a:ed:c5:ea:eb:44:f2:8b:b5:08:6f:f9: 50:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:7D:2B:F9:5E:18:58:44:83:FC:79:0C:0C:6D:DA:80:3C:53:E3:5B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/40 Signature Algorithm: sha256WithRSAEncryption 99:67:1b:c9:74:74:9d:17:03:1b:7d:aa:64:e3:68:ed:ba:d6: 41:83:26:03:29:a4:12:06:e6:a1:fe:fb:68:a8:00:0c:77:cf: 2a:94:0b:5c:1a:50:f8:d8:a1:cc:aa:f8:55:17:c9:5e:10:8f: 3d:6f:90:77:ca:45:43:86:23:02:5b:37:b5:42:48:ab:e1:45: 67:e1:d9:32:eb:8d:d3:a4:63:91:e6:35:b5:1a:70:43:df:cc: f2:e2:10:60:8e:66:fe:c2:02:f4:61:c3:9e:e0:87:b2:06:57: c8:22:c8:93:cf:22:c0:b8:96:80:8d:74:79:92:3f:3e:d6:97: bd:a3:0b:57:31:d0:24:f4:03:67:c9:ee:0f:4a:31:b6:66:2e: cd:d9:7e:68:61:7e:3f:fb:04:f6:9b:6f:5e:80:4f:a8:40:5c: e1:99:a3:a4:27:b3:0a:8c:01:02:ad:f2:a4:0c:7b:bd:6f:e0: a8:c5:7e:17:b3:9b:e1:06:2e:e3:a4:02:45:1c:63:47:c0:eb: d2:cd:a7:d0:cd:71:ad:b7:78:41:e4:33:0c:c4:ad:41:85:11: 14:d1:4a:74:2b:ab:dd:f5:60:f3:65:97:04:3b:a5:6a:28:8a: a9:34:93:89:74:e9:10:de:ea:80:02:73:64:9a:a8:49:84:a7: c9:3d:13:66 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMeysg3VL2iKA4p+zNcdMCE0PUGIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMDA4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmJiMDdkNmExYWZmNjRjOTVlOWM3OWY2ZmIxZjlmMTEz YmMyODQ1Y2JkZTNlMjMxYzQ1Mzc3ZTNjNDdkNmVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2l3cC0oW+vTRmqXDDiJZXJ8AK0N85gjHMoEwtP678gFrV C3aPXwyA1fFpn1wMTe1DAUakQ1bAb9Da7QYs/Ieh7UX00OI/MUbd5IYHzvOw1oW6 p0It2GLGAdDFOeUEjI2+WZXhNjA4FSranb7QQiOJnTyf/0wot3R6T8wfIwNiaI/E woV10GAPqhIu7/JsTe8CHDrlb6alk2NoSeOn4ZeDFAdz2N5xMdEAa8/ZUDKgFGXO 7yMyR574ea1gzlH6bqtOtTNQlxy5NLB3hKkD6I4aBgazrM1KHdjARKaujGPTt56S ZvZO1SEN4DeveY24Sq5lj4rtxerrRPKLtQhv+VDjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkX0r+V4YWESD/HkMDG3agDxT41swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RjMGUwZTczLWJiYmUtNDE3MC1iNzMzLTQ5MDRlY2MyN2Y5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74DANBgkqhkiG9w0BAQsFAAOCAQEAmWcbyXR0nRcDG32qZONo7brW QYMmAymkEgbmof77aKgADHfPKpQLXBpQ+NihzKr4VRfJXhCPPW+Qd8pFQ4YjAls3 tUJIq+FFZ+HZMuuN06RjkeY1tRpwQ9/M8uIQYI5m/sIC9GHDnuCHsgZXyCLIk88i wLiWgI10eZI/PtaXvaMLVzHQJPQDZ8nuD0oxtmYuzdl+aGF+P/sE9ptvXoBPqEBc 4ZmjpCezCowBAq3ypAx7vW/gqMV+F7Ob4QYu46QCRRxjR8Dr0s2n0M1xrbd4QeQz DMStQYURFNFKdCur3fVg82WXBDulaiiKqTSTiXTpEN7qgAJzZJqoSYSnyT0TZg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:57 2025 by rpki-client