$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa File: ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa (raw, json) Hash identifier: Svom+8vBRCKv+/hr5nnsROXsO1vHPPy0YNwH4OlONjY= Subject key identifier: 0B:90:B0:BA:61:B3:F2:C7:8A:1C:EE:0B:D4:08:9D:7B:85:E3:72:D8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 33AA300A63734A64262C7567B2942477C2CDBA55 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa Signing time: Fri 25 Apr 2025 18:01:31 +0000 ROA not before: Fri 25 Apr 2025 18:01:31 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:aa:30:0a:63:73:4a:64:26:2c:75:67:b2:94:24:77:c2:cd:ba:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:31 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=c455665016b335a2cb5c557986904a8fe0ffb9f5a5e0a56678744a57cbe838ca, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ac:7a:6c:70:f6:de:34:98:37:64:20:95:c8: 1a:86:0d:cc:27:e5:1e:15:8f:a7:b0:0f:1c:0c:9b: a9:86:f8:71:02:fa:a8:69:fe:9c:4f:14:65:bc:07: 68:6f:d2:06:11:22:97:1c:cb:75:c2:d1:e4:ae:49: e6:91:25:f0:07:27:d3:12:c0:62:d3:0b:bc:ed:ae: 4c:08:83:b6:40:81:40:75:c1:c5:7d:1c:39:e0:3b: 91:2f:3a:52:84:35:09:a8:e1:e6:81:fc:34:76:98: 0e:42:4c:b1:a7:cc:a4:7b:72:86:dc:58:05:c0:54: 0f:ec:76:7b:dd:89:79:b3:ec:b6:0d:08:ff:90:50: 68:f4:da:c1:e6:4a:da:3a:11:3d:63:c8:96:0b:54: e5:71:89:59:09:4b:51:39:29:d0:97:dd:d7:6b:dd: d7:36:9b:a1:f4:aa:41:1b:bc:2e:86:79:48:9f:30: e7:43:53:36:f4:23:80:cb:5b:e8:3c:08:63:7c:01: 53:3e:77:6f:d7:95:27:6c:06:06:6c:fa:d4:20:a6: 00:e1:87:99:61:bb:db:63:9c:ad:f4:ff:e9:85:49: d0:a3:67:ce:dc:4d:04:1c:ae:93:1e:2c:63:51:12: be:67:34:6a:9b:17:6e:88:ec:6c:6b:00:a9:c1:56: bb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:90:B0:BA:61:B3:F2:C7:8A:1C:EE:0B:D4:08:9D:7B:85:E3:72:D8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 40:99:3c:b3:be:fe:f4:c2:e2:93:9d:2f:30:5d:62:b4:74:e7: 8d:ab:5e:6d:c2:9c:ca:cc:f0:ac:e9:42:20:1f:b6:a5:28:4a: fb:e8:71:dd:75:1b:64:70:e8:36:13:15:31:04:29:dd:c5:b8: 4b:65:cf:53:fa:2d:57:f1:c8:39:c4:8a:58:bd:55:04:76:7e: e2:b0:8a:fa:07:61:1a:3e:e6:c8:24:4f:5d:0f:4a:ec:5a:e1: 65:dc:c6:b9:55:b5:ca:5b:ec:49:0d:bb:f0:19:2f:f1:14:81: 10:a7:fb:bc:39:7c:61:bc:bd:f2:9a:c1:51:3b:4c:a0:e2:09: 2b:c0:2f:66:39:3c:81:60:a0:6b:cb:2a:f6:d2:7c:c5:6a:83: d1:c4:8a:6d:74:11:5f:dd:d4:71:f7:11:6e:11:48:aa:14:06: 8b:44:36:b7:46:e8:06:01:8a:f2:68:9a:98:97:76:a2:b8:87: 5b:4b:f0:ba:55:42:1e:2e:7a:a9:78:9d:2d:96:bd:db:b1:21: e2:71:1a:cc:27:1a:a6:90:c4:04:f1:4e:22:6e:68:cc:87:21: de:f2:bb:69:31:80:eb:f8:a0:ac:63:3f:21:e2:1f:88:78:e2: 5b:d4:78:97:b9:65:27:08:57:19:8e:4f:df:e0:f2:05:61:94: 20:0e:73:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUM6owCmNzSmQmLHVnspQkd8LNulUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTMxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDU1NjY1MDE2YjMzNWEyY2I1YzU1Nzk4NjkwNGE4ZmUw ZmZiOWY1YTVlMGE1NjY3ODc0NGE1N2NiZTgzOGNhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDorHpscPbeNJg3ZCCVyBqGDcwn5R4Vj6ewDxwMm6mG+HEC +qhp/pxPFGW8B2hv0gYRIpccy3XC0eSuSeaRJfAHJ9MSwGLTC7ztrkwIg7ZAgUB1 wcV9HDngO5EvOlKENQmo4eaB/DR2mA5CTLGnzKR7cobcWAXAVA/sdnvdiXmz7LYN CP+QUGj02sHmSto6ET1jyJYLVOVxiVkJS1E5KdCX3ddr3dc2m6H0qkEbvC6GeUif MOdDUzb0I4DLW+g8CGN8AVM+d2/XlSdsBgZs+tQgpgDhh5lhu9tjnK30/+mFSdCj Z87cTQQcrpMeLGNREr5nNGqbF26I7GxrAKnBVruRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUC5CwumGz8seKHO4L1Aide4XjctgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmNDkyNDdmLWUxYmItNGUwZS05ZGYwLTZlZGI5NzQwNGY5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBAECZPLO+/vTC4pOdLzBdYrR0 542rXm3CnMrM8KzpQiAftqUoSvvocd11G2Rw6DYTFTEEKd3FuEtlz1P6LVfxyDnE ili9VQR2fuKwivoHYRo+5sgkT10PSuxa4WXcxrlVtcpb7EkNu/AZL/EUgRCn+7w5 fGG8vfKawVE7TKDiCSvAL2Y5PIFgoGvLKvbSfMVqg9HEim10EV/d1HH3EW4RSKoU BotENrdG6AYBivJompiXdqK4h1tL8LpVQh4ueql4nS2WvduxIeJxGswnGqaQxATx TiJuaMyHId7yu2kxgOv4oKxjPyHiH4h44lvUeJe5ZScIVxmOT9/g8gVhlCAOc1Q= -----END CERTIFICATE-----Generated at Sun Apr 27 00:22:09 2025 by rpki-client