$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa File: ddabe105-17a8-4460-a8c9-18b7474ee13f.roa (raw, json) Hash identifier: cUYSC4Y3umjrJtivnK2+texwpDCPL7zEtIs2FMXeYgw= Subject key identifier: C1:12:FA:CB:70:67:AF:19:F1:EA:59:CF:66:DC:29:E0:52:91:08:3F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 554FF74FC35AC67894E7A6C50F044C0363FEA0B1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa Signing time: Fri 04 Apr 2025 00:20:30 +0000 ROA not before: Fri 04 Apr 2025 00:20:30 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:4f:f7:4f:c3:5a:c6:78:94:e7:a6:c5:0f:04:4c:03:63:fe:a0:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 4 00:20:30 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=aa7fcc81d73e6a5e1e046a1dbd8ef8e0d648dd278a0422d2b8052056e97757e2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:85:70:ea:d9:0a:6a:80:45:28:35:99:e4:f4: 59:f7:50:d6:8e:d6:5a:95:d1:42:c6:13:a1:0f:cc: 13:68:6b:00:ed:31:75:17:13:e3:c1:7f:f2:c5:66: da:f1:6e:a0:a3:b2:00:f8:e9:6b:98:b1:8d:09:4f: 01:4b:60:ba:f4:42:73:a3:a5:fe:f0:09:e6:ca:d4: be:b0:88:35:87:8a:0e:26:29:62:79:4e:00:a4:a5: d5:10:d0:ad:d9:30:10:12:c6:e9:22:b5:5d:bb:6f: 2c:4d:46:67:f1:c1:99:a1:1b:63:a6:b0:64:cc:f0: ed:1e:a3:37:2f:69:fe:5c:80:2d:ee:7f:9f:a3:e7: ea:06:de:45:38:d4:c3:27:44:a4:0c:b1:ef:d2:82: ff:e6:17:1f:cb:9e:9b:47:bf:b4:72:ed:26:b5:bc: 78:16:ff:c4:d1:f2:61:81:c0:50:af:90:0f:68:ed: b0:7d:51:ed:d9:74:1b:cc:44:9e:1a:f4:d1:af:48: 3c:58:28:29:a9:b5:b4:7d:06:5c:2c:16:23:2e:66: 84:68:a9:11:12:bd:a9:9f:69:43:9a:92:8f:6a:79: cd:e0:13:29:64:7c:41:a7:f7:db:f6:d9:e4:2e:8c: 47:2e:3f:99:18:d7:64:91:da:f0:2b:9d:6c:68:4e: 7a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:12:FA:CB:70:67:AF:19:F1:EA:59:CF:66:DC:29:E0:52:91:08:3F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/44 Signature Algorithm: sha256WithRSAEncryption 81:32:97:27:90:18:4d:48:c4:9f:13:92:e3:7b:8b:bc:b0:50: 69:ae:24:64:e5:22:5b:d0:14:de:3f:0e:97:c5:80:1f:05:23: 34:ec:a9:55:3d:36:83:85:1a:54:96:9f:1e:48:4d:28:4f:6e: f9:1d:7e:6f:e2:de:fb:06:27:db:37:20:79:7b:99:ff:b5:9f: 5a:5b:88:3f:60:b8:f8:c1:64:c8:64:69:28:61:2d:ba:e0:4a: 1a:da:7e:e1:20:72:a6:04:22:53:0e:8e:2b:0e:68:67:ca:47: f5:b6:87:bb:50:fa:3f:3f:49:fc:a6:d6:2c:fb:0e:c8:34:9b: c4:c7:97:57:17:cc:49:12:c6:c3:f8:ea:a3:83:06:b0:fe:9e: 45:89:ae:01:28:d5:cb:3b:5f:0f:0d:18:1b:a4:2e:bc:36:b7: 90:5b:38:fe:9e:ed:92:b6:3d:e6:b4:2c:d2:66:52:cd:69:06: 69:1d:85:fe:3c:c4:ab:66:a4:fc:84:e1:35:f8:11:22:51:3a: 43:3d:78:45:c4:12:5c:ef:db:b0:6f:14:1d:9c:d2:1c:11:dc: 0c:c5:f9:27:fc:de:f5:3b:e5:1e:37:87:5b:83:a0:6e:8b:f9: 0b:ec:c4:35:e6:f0:c9:90:a6:43:04:25:49:da:ef:64:0c:41: 86:3e:2a:95 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVU/3T8NaxniU56bFDwRMA2P+oLEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDA0MDAyMDMwWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTdmY2M4MWQ3M2U2YTVlMWUwNDZhMWRiZDhlZjhlMGQ2 NDhkZDI3OGEwNDIyZDJiODA1MjA1NmU5Nzc1N2UyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdhXDq2QpqgEUoNZnk9Fn3UNaO1lqV0ULGE6EPzBNoawDt MXUXE+PBf/LFZtrxbqCjsgD46WuYsY0JTwFLYLr0QnOjpf7wCebK1L6wiDWHig4m KWJ5TgCkpdUQ0K3ZMBASxukitV27byxNRmfxwZmhG2OmsGTM8O0eozcvaf5cgC3u f5+j5+oG3kU41MMnRKQMse/Sgv/mFx/LnptHv7Ry7Sa1vHgW/8TR8mGBwFCvkA9o 7bB9Ue3ZdBvMRJ4a9NGvSDxYKCmptbR9BlwsFiMuZoRoqRESvamfaUOako9qec3g EylkfEGn99v22eQujEcuP5kY12SR2vArnWxoTnqnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwRL6y3Bnrxnx6lnPZtwp4FKRCD8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RkYWJlMTA1LTE3YTgtNDQ2MC1hOGM5LTE4Yjc0NzRlZTEzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBAIEylyeQGE1IxJ8TkuN7i7yw UGmuJGTlIlvQFN4/DpfFgB8FIzTsqVU9NoOFGlSWnx5ITShPbvkdfm/i3vsGJ9s3 IHl7mf+1n1pbiD9guPjBZMhkaShhLbrgShrafuEgcqYEIlMOjisOaGfKR/W2h7tQ +j8/Sfym1iz7Dsg0m8THl1cXzEkSxsP46qODBrD+nkWJrgEo1cs7Xw8NGBukLrw2 t5BbOP6e7ZK2Pea0LNJmUs1pBmkdhf48xKtmpPyE4TX4ESJROkM9eEXEElzv27Bv FB2c0hwR3AzF+Sf83vU75R43h1uDoG6L+QvsxDXm8MmQpkMEJUna72QMQYY+KpU= -----END CERTIFICATE-----Generated at Sat Apr 26 20:24:23 2025 by rpki-client