$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa File: e1f114b0-d940-4fa0-8376-bac93d2868fc.roa (raw, json) Hash identifier: NojkEw/Uamcs0v55TMDT6aXHA3Fhn5gTLMYf9pV4V8Q= Subject key identifier: 15:DF:88:3F:53:39:48:59:69:AB:FA:E6:0B:48:1D:26:D9:08:5B:DE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7D100C12C2DCAB09D807900145A6F918EE6F455D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa Signing time: Mon 21 Apr 2025 18:30:48 +0000 ROA not before: Mon 21 Apr 2025 18:30:48 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:10:0c:12:c2:dc:ab:09:d8:07:90:01:45:a6:f9:18:ee:6f:45:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 21 18:30:48 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=09f2becbb7949a9d5f6e1e3f6a520aad6074d3410cc112409bf288f9152b7b2f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cc:22:67:58:a1:e3:2e:d7:2c:0f:a4:7d:d1: 4a:59:ed:05:ba:e8:9c:c7:4f:3e:b7:93:f9:10:0f: 33:f2:a8:9c:40:6c:11:d7:2d:fe:a3:a0:ef:68:91: 84:89:a0:a9:b8:d2:4e:99:55:f2:07:51:1a:e9:2c: 68:24:e8:f2:36:a0:18:1d:cd:d1:6f:18:89:42:65: 24:ce:8f:f6:50:4f:9a:21:8d:d3:b5:03:ff:b2:f9: f4:93:2a:50:67:ef:31:ad:20:62:a5:30:81:23:b6: 27:1c:b0:15:cd:9e:2b:d3:b5:14:7c:bc:1b:c1:fd: a4:2a:1b:61:0e:d6:7a:57:1c:37:41:c7:03:d1:6a: 4b:f0:80:5b:b3:13:c9:bd:cd:1c:45:b2:58:c8:15: b8:ae:94:8f:4f:21:45:92:8d:b2:34:09:9c:e7:4b: 9f:fd:b1:58:11:c8:b6:e0:33:dd:cf:73:d0:54:c2: 82:d4:e9:17:0d:d3:d9:79:be:88:07:a7:00:d8:96: d2:3a:ae:8d:68:94:e2:51:88:f7:14:b8:5b:ca:62: de:7e:8f:77:28:41:d0:e2:09:fe:31:d7:51:be:d2: 9c:23:e9:d8:5f:fc:c7:26:14:1b:62:f6:08:a4:81: 07:d8:d5:96:e2:86:87:fa:c5:3b:f3:9e:13:03:b3: 07:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DF:88:3F:53:39:48:59:69:AB:FA:E6:0B:48:1D:26:D9:08:5B:DE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 56:19:84:a6:d2:d6:84:25:95:a2:40:34:d1:a5:33:7b:f0:48: 17:48:51:4e:c9:69:eb:e6:7a:03:24:71:72:9c:a7:d1:1a:47: a2:94:86:22:84:2b:ec:38:dd:84:16:60:29:a9:35:a5:a4:b7: 4d:6e:e0:8b:50:9b:a1:c0:a4:fc:61:f7:14:8e:66:cf:25:77: 7b:20:99:0b:5c:d3:ea:43:d0:6e:a6:a7:16:7a:85:35:51:68: f5:f2:85:b1:0f:1e:e4:9e:78:70:9c:ce:f5:8b:ad:b1:19:9a: c5:26:81:08:0b:7d:83:43:a7:ce:7e:ec:b5:c0:e5:a0:22:ff: dc:4d:03:33:21:7c:0a:a8:5e:36:cd:51:4e:66:99:0c:87:f2: e9:55:aa:aa:23:2f:1b:ee:22:04:19:33:80:a1:e1:a9:00:82: 27:f2:0e:99:c9:f5:0f:60:33:e2:b4:41:6f:0e:35:c2:97:3a: 35:04:97:86:54:b8:48:36:02:ea:c1:21:3f:e8:a2:6e:90:9c: c9:c4:67:3e:35:70:4a:c4:4c:90:a8:41:6e:97:dc:7f:50:6a: c2:de:cb:df:12:af:94:7d:18:f8:f9:b8:ae:be:01:67:b2:40: 99:e8:58:b7:9d:98:6b:f5:13:3f:72:ad:9c:2f:85:9c:17:b0: 26:6f:49:e6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfRAMEsLcqwnYB5ABRab5GO5vRV0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDIxMTgzMDQ4WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWYyYmVjYmI3OTQ5YTlkNWY2ZTFlM2Y2YTUyMGFhZDYw NzRkMzQxMGNjMTEyNDA5YmYyODhmOTE1MmI3YjJmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+zCJnWKHjLtcsD6R90UpZ7QW66JzHTz63k/kQDzPyqJxA bBHXLf6joO9okYSJoKm40k6ZVfIHURrpLGgk6PI2oBgdzdFvGIlCZSTOj/ZQT5oh jdO1A/+y+fSTKlBn7zGtIGKlMIEjticcsBXNnivTtRR8vBvB/aQqG2EO1npXHDdB xwPRakvwgFuzE8m9zRxFsljIFbiulI9PIUWSjbI0CZznS5/9sVgRyLbgM93Pc9BU woLU6RcN09l5vogHpwDYltI6ro1olOJRiPcUuFvKYt5+j3coQdDiCf4x11G+0pwj 6dhf/McmFBti9gikgQfY1Zbihof6xTvznhMDswfRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFd+IP1M5SFlpq/rmC0gdJtkIW94wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxZjExNGIwLWQ5NDAtNGZhMC04Mzc2LWJhYzkzZDI4NjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAVhmEptLWhCWVokA00aUze/BI F0hRTslp6+Z6AyRxcpyn0RpHopSGIoQr7DjdhBZgKak1paS3TW7gi1CbocCk/GH3 FI5mzyV3eyCZC1zT6kPQbqanFnqFNVFo9fKFsQ8e5J54cJzO9YutsRmaxSaBCAt9 g0Onzn7stcDloCL/3E0DMyF8CqheNs1RTmaZDIfy6VWqqiMvG+4iBBkzgKHhqQCC J/IOmcn1D2Az4rRBbw41wpc6NQSXhlS4SDYC6sEhP+iibpCcycRnPjVwSsRMkKhB bpfcf1Bqwt7L3xKvlH0Y+Pm4rr4BZ7JAmehYt52Ya/UTP3KtnC+FnBewJm9J5g== -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:02 2025 by rpki-client