$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa File: ef295804-89a7-4ec3-826e-73e32733dc02.roa (raw, json) Hash identifier: 1Se4LEdoeRJql+zigpnCL/XxU49KnxWTcFx7qwReJHg= Subject key identifier: F5:10:54:B2:FF:C4:40:93:C4:73:65:07:50:3E:1E:6C:3F:E3:C6:0C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2F0656EAB6E3D4D1FCD38F80863BA648B78E5B87 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa Signing time: Fri 25 Apr 2025 17:51:13 +0000 ROA not before: Fri 25 Apr 2025 17:51:13 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:06:56:ea:b6:e3:d4:d1:fc:d3:8f:80:86:3b:a6:48:b7:8e:5b:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:13 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=0282c6d0fe74ac8f0044394a8a060023c776be22fe8eb49ff730ce7317e2fce2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6b:e4:92:69:72:63:f2:b5:69:5d:ca:ac:cd: c9:3d:77:1c:54:22:0f:b8:57:12:db:ff:58:e6:8c: 06:86:11:6e:f2:ba:fb:fc:a4:a0:b1:66:6c:e1:11: 20:be:b2:dd:7c:39:03:d4:22:28:af:51:ba:ca:5a: 1d:89:f7:9c:71:61:c6:63:ce:9e:42:1a:ef:f5:08: cf:c8:26:76:d4:c5:4d:76:e7:97:8b:3f:6e:f5:96: da:15:82:21:0f:c5:ec:41:44:89:94:2e:98:df:3c: 57:fb:f2:ee:3e:4f:be:a5:a0:6b:6a:6f:e3:1b:81: f0:81:2f:9e:f9:27:47:3d:32:1a:8f:77:6e:89:c3: f5:6a:08:03:12:08:87:a0:f9:5a:ed:bb:1d:21:cf: 17:88:fc:a7:8e:00:ee:03:05:b9:3c:37:e6:86:e4: 69:7e:65:cb:09:19:16:52:ce:99:17:24:8f:e4:59: c6:77:59:1f:08:eb:0e:30:8d:87:31:49:c2:e2:4c: 75:12:b8:3f:13:eb:19:58:db:e9:87:41:51:77:ea: 3e:43:9f:39:4f:66:8e:ca:aa:65:2f:96:36:c6:72: 1a:f5:14:e4:ba:ea:41:71:19:4d:e4:bc:8a:e4:fb: b7:2c:9f:4a:42:ce:f2:d0:f0:96:3f:3c:66:08:ff: 9c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:10:54:B2:FF:C4:40:93:C4:73:65:07:50:3E:1E:6C:3F:E3:C6:0C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption a8:06:b5:4d:2c:e3:f2:d8:9f:a8:0a:4e:e8:fc:69:c2:83:b6: 48:89:55:ae:25:41:db:85:6d:20:99:c4:11:bd:9e:0c:fc:fb: 8e:29:a8:45:e2:4b:71:c1:88:4b:77:5b:76:4a:28:56:ec:99: 87:7f:64:b3:d7:5e:78:8f:9f:e2:87:14:b6:65:32:ef:85:ad: 8a:5f:96:a5:9c:8d:c5:85:b6:ed:95:15:5c:c9:78:51:b7:de: 50:9a:8a:f6:d0:51:d7:c4:8b:68:b2:72:64:26:c0:c4:80:99: cb:f4:d0:ab:df:bf:3c:b8:d5:89:2a:df:f0:03:c7:84:c7:d3: 4c:71:cb:58:c2:4a:2b:8a:f4:89:86:f9:7b:2c:e6:8b:92:48: 86:cb:92:fe:a6:24:57:94:3b:57:eb:c1:46:52:04:35:c5:3b: 6b:b1:be:cf:29:1a:ef:52:76:05:37:cf:9d:d0:27:fb:34:2e: b8:8f:e4:1f:25:c5:02:f4:57:c6:a4:e6:0a:22:7e:e9:e2:09: 4a:18:91:47:54:44:b3:20:7b:ed:d8:73:94:de:44:97:be:af: 7b:ed:96:f5:da:51:5d:fa:5c:02:09:99:c5:6d:7b:fb:dd:e6: 74:d2:42:48:3b:ed:e0:99:06:de:94:1f:b0:87:8a:53:b6:35: 44:f4:49:9b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULwZW6rbj1NH804+AhjumSLeOW4cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTEzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjgyYzZkMGZlNzRhYzhmMDA0NDM5NGE4YTA2MDAyM2M3 NzZiZTIyZmU4ZWI0OWZmNzMwY2U3MzE3ZTJmY2UyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDja+SSaXJj8rVpXcqszck9dxxUIg+4VxLb/1jmjAaGEW7y uvv8pKCxZmzhESC+st18OQPUIiivUbrKWh2J95xxYcZjzp5CGu/1CM/IJnbUxU12 55eLP271ltoVgiEPxexBRImULpjfPFf78u4+T76loGtqb+MbgfCBL575J0c9MhqP d26Jw/VqCAMSCIeg+Vrtux0hzxeI/KeOAO4DBbk8N+aG5Gl+ZcsJGRZSzpkXJI/k WcZ3WR8I6w4wjYcxScLiTHUSuD8T6xlY2+mHQVF36j5DnzlPZo7KqmUvljbGchr1 FOS66kFxGU3kvIrk+7csn0pCzvLQ8JY/PGYI/5w/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9RBUsv/EQJPEc2UHUD4ebD/jxgwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmMjk1ODA0LTg5YTctNGVjMy04MjZlLTczZTMyNzMzZGMwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAKgGtU0s4/LYn6gKTuj8acKD tkiJVa4lQduFbSCZxBG9ngz8+44pqEXiS3HBiEt3W3ZKKFbsmYd/ZLPXXniPn+KH FLZlMu+FrYpflqWcjcWFtu2VFVzJeFG33lCaivbQUdfEi2iycmQmwMSAmcv00Kvf vzy41Ykq3/ADx4TH00xxy1jCSiuK9ImG+Xss5ouSSIbLkv6mJFeUO1frwUZSBDXF O2uxvs8pGu9SdgU3z53QJ/s0LriP5B8lxQL0V8ak5goifuniCUoYkUdURLMge+3Y c5TeRJe+r3vtlvXaUV36XAIJmcVte/vd5nTSQkg77eCZBt6UH7CHilO2NUT0SZs= -----END CERTIFICATE-----Generated at Sat Apr 26 13:29:59 2025 by rpki-client