$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa File: e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa (raw, json) Hash identifier: liiz0UDshVfAgRaOSPuZ9Uc+eJoaLYP5NeF4dXThrCg= Subject key identifier: B9:F9:8A:AD:1D:87:12:83:D8:21:FE:36:2E:C6:F1:03:10:8D:E2:39 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3FE1D67D896D65FAE051EA713388A191C68CD755 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa Signing time: Tue 15 Apr 2025 00:50:10 +0000 ROA not before: Tue 15 Apr 2025 00:50:10 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e1:d6:7d:89:6d:65:fa:e0:51:ea:71:33:88:a1:91:c6:8c:d7:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 15 00:50:10 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=20519f7c5135463c43c4f2ac95400d26015b15d63866d0cbc34a01d6dcec18cb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1e:07:cd:31:2e:42:b4:b0:00:64:34:7d:04: 3e:d5:09:6d:dd:c2:c6:ae:66:66:e2:68:93:5d:df: 92:0a:35:0e:a5:af:a8:7d:5a:11:64:55:57:dd:1b: 7d:bc:9e:49:6b:7b:a7:ae:40:d8:2f:dd:a8:37:1f: c8:26:03:3b:ad:82:1a:79:ac:bc:8d:85:ec:48:1b: 15:e4:75:64:f7:34:cf:67:8c:c9:a8:02:bc:f2:48: de:1c:02:89:e7:8c:e1:fe:29:9b:5f:62:2d:50:30: ac:46:64:95:05:f7:4d:fd:8c:1d:e0:3c:52:d3:40: c1:ae:97:57:46:38:79:a9:55:9d:ef:7a:67:1d:3d: dd:f3:a3:7d:5c:53:45:d6:ca:03:6d:af:a4:3e:4d: 25:f8:a6:b1:99:2f:68:d1:7e:18:80:9e:c2:bf:d4: 6b:8e:65:9a:97:2e:bf:08:6f:f6:1d:8c:12:87:dd: d4:95:ac:e3:09:c4:62:03:34:3e:74:17:7f:38:52: e7:1b:92:df:71:c5:b1:af:96:05:ed:ab:38:b1:1c: f3:d8:0b:00:50:05:75:08:8c:01:f9:46:36:3a:62: 91:b9:b3:7a:08:b0:5d:c4:18:6a:90:5b:56:d7:f9: 86:d9:e6:2e:c3:8b:00:f9:bd:34:6e:2c:e1:68:16: b3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F9:8A:AD:1D:87:12:83:D8:21:FE:36:2E:C6:F1:03:10:8D:E2:39 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5400::/40 Signature Algorithm: sha256WithRSAEncryption a1:ec:3c:07:ed:7c:99:f7:ee:cc:ad:12:9c:5c:36:fa:53:55: c5:07:ea:64:67:9b:91:84:8b:7a:e0:dd:1f:36:fe:b8:7b:c1: c9:94:ae:e1:21:89:9e:c3:50:0d:3e:1b:df:79:3c:80:23:88: d7:70:7d:92:ca:c0:63:b3:b5:a2:30:0a:ee:2d:38:26:d7:30: fb:ac:20:20:e4:30:95:3b:00:5a:2f:4d:f8:51:e3:02:83:55: af:80:f7:23:0d:8c:1f:a1:6c:4e:ea:97:28:47:03:32:21:fc: 25:29:da:06:7c:56:55:28:2f:35:8d:c5:56:7e:be:99:83:09: 57:de:b4:02:29:ea:87:e5:c6:e0:8c:21:32:3d:da:92:07:2c: 11:61:8f:59:f9:a5:be:6e:3d:56:c3:41:48:b5:c7:5d:68:7e: b5:bc:d9:28:0d:00:37:06:4d:e6:b4:fd:e8:42:f6:e9:a4:98: 53:fa:4d:9c:7b:d8:53:d2:22:3c:da:9b:45:9b:f6:ab:4a:bc: 1f:95:b2:78:34:2d:39:ea:4a:49:0d:be:b4:4f:c2:6b:b1:32: 68:c0:92:79:a2:eb:c5:25:a6:44:73:5a:c3:00:53:dc:68:d2: 18:d4:2f:03:84:6e:ab:92:5d:8f:09:d9:2b:7b:5f:98:5a:f3: 98:57:c2:7c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUP+HWfYltZfrgUepxM4ihkcaM11UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDE1MDA1MDEwWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDUxOWY3YzUxMzU0NjNjNDNjNGYyYWM5NTQwMGQyNjAx NWIxNWQ2Mzg2NmQwY2JjMzRhMDFkNmRjZWMxOGNiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcHgfNMS5CtLAAZDR9BD7VCW3dwsauZmbiaJNd35IKNQ6l r6h9WhFkVVfdG328nklre6euQNgv3ag3H8gmAzutghp5rLyNhexIGxXkdWT3NM9n jMmoArzySN4cAonnjOH+KZtfYi1QMKxGZJUF9039jB3gPFLTQMGul1dGOHmpVZ3v emcdPd3zo31cU0XWygNtr6Q+TSX4prGZL2jRfhiAnsK/1GuOZZqXLr8Ib/YdjBKH 3dSVrOMJxGIDND50F384Uucbkt9xxbGvlgXtqzixHPPYCwBQBXUIjAH5RjY6YpG5 s3oIsF3EGGqQW1bX+YbZ5i7DiwD5vTRuLOFoFrMBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUufmKrR2HEoPYIf42LsbxAxCN4jkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxYTQ0MWI5LTI0ZTUtNDFlOS05MWU4LTVlN2QxNGZiZGVmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwVDANBgkqhkiG9w0BAQsFAAOCAQEAoew8B+18mffuzK0SnFw2+lNV xQfqZGebkYSLeuDdHzb+uHvByZSu4SGJnsNQDT4b33k8gCOI13B9ksrAY7O1ojAK 7i04Jtcw+6wgIOQwlTsAWi9N+FHjAoNVr4D3Iw2MH6FsTuqXKEcDMiH8JSnaBnxW VSgvNY3FVn6+mYMJV960Ainqh+XG4IwhMj3akgcsEWGPWfmlvm49VsNBSLXHXWh+ tbzZKA0ANwZN5rT96EL26aSYU/pNnHvYU9IiPNqbRZv2q0q8H5WyeDQtOepKSQ2+ tE/Ca7EyaMCSeaLrxSWmRHNawwBT3GjSGNQvA4Ruq5JdjwnZK3tfmFrzmFfCfA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:47:53 2025 by rpki-client