$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa File: f1746927-d9c4-41c2-8abc-289ecb180bdc.roa (raw, json) Hash identifier: h6z05/5X4a3zcc44JMutwiO+L6FVXipnY4FGgIrCiKI= Subject key identifier: EB:3B:5F:10:E8:C9:24:9F:E0:CA:CA:0E:3F:68:52:60:87:11:BD:CF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 71B037C43E3622DDF3D890EDBA392DBDA199084E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa Signing time: Fri 25 Apr 2025 18:01:26 +0000 ROA not before: Fri 25 Apr 2025 18:01:26 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:b0:37:c4:3e:36:22:dd:f3:d8:90:ed:ba:39:2d:bd:a1:99:08:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:26 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=233289f03fb4d5548f01def4d3548e5344a96cbc10442fec4b0d866f9f599abe, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:bb:da:80:10:3b:43:6d:ee:3e:24:5f:c6:df: 87:96:79:85:ee:17:53:8d:6d:75:4e:64:82:30:c0: d5:9f:aa:1c:14:c7:86:4a:99:d4:94:d2:c0:65:5c: 3a:f8:85:fc:e0:4c:76:08:2c:27:f5:75:b3:e9:32: 08:dc:77:9a:ab:b2:8b:b2:f1:d7:63:c8:c9:e1:b1: a2:b1:b6:03:f7:54:d5:fa:1a:39:2b:ff:d0:4f:52: 92:61:ac:be:81:c7:d6:18:78:40:a3:64:42:e5:4c: 37:1c:46:38:95:5d:39:e8:f3:60:df:34:5d:4f:4b: a3:58:c3:a1:2a:d7:7f:a2:71:3d:87:60:0d:1a:dc: e0:60:3f:c1:88:5e:1d:77:f9:f0:1d:09:69:96:24: 01:90:ba:01:7b:44:b2:5a:35:bb:20:53:2e:2d:82: d1:3d:a6:a9:80:65:d8:c7:0c:d2:fe:b0:56:7a:fa: c2:d3:90:4c:42:5a:7b:c7:be:2c:6b:cc:ca:cc:a4: 22:ed:84:28:d7:fd:09:33:1d:98:41:33:dd:d4:df: 84:eb:eb:a5:e2:9c:d3:a9:16:c9:fe:30:48:74:59: 1f:20:1f:f6:6c:97:0b:76:2e:5a:6c:42:51:bd:f1: 7f:c0:75:99:92:71:2c:6b:fe:dc:57:d6:54:12:fa: 00:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:3B:5F:10:E8:C9:24:9F:E0:CA:CA:0E:3F:68:52:60:87:11:BD:CF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/40 Signature Algorithm: sha256WithRSAEncryption 55:0e:26:f8:9d:c1:49:75:07:08:15:c6:92:e9:a7:20:1c:a6: ed:5d:ca:73:d8:61:4a:43:0b:ea:30:96:01:af:78:e8:1e:95: 98:5b:9a:35:b6:3e:d7:fc:7e:29:a9:c7:90:2f:96:29:aa:20: 15:26:3c:de:cf:58:6c:87:90:98:3a:66:fa:05:2e:9d:22:26: 91:f5:81:9a:f5:3b:d5:19:60:31:2a:a3:20:38:b9:29:2e:bb: e8:4c:75:75:09:17:22:66:1f:96:23:90:91:a7:c7:d6:c9:cb: f5:90:c4:9f:0f:2d:ca:d8:8c:b6:f8:a9:b2:11:35:3f:1d:2f: 7e:d4:fb:39:a0:10:97:83:bf:25:16:5d:02:19:31:ac:8f:cf: 91:82:1c:7e:0e:c3:34:50:d2:d5:82:06:f5:66:70:00:3f:6a: 1e:ee:e0:6d:d8:a6:35:89:03:79:ad:c9:9e:76:2d:9f:cf:9e: d6:15:5b:b6:19:c5:71:3e:98:98:22:cf:b0:8b:f4:a1:66:52: 41:cf:c8:45:52:dc:2e:c8:27:9e:be:63:2e:bf:a4:1f:76:74: 4d:3a:c0:cc:b7:cf:7d:08:90:82:51:31:0b:ad:df:35:dd:7f: 09:68:2b:72:61:89:fd:92:44:a3:b0:0c:f8:33:6e:0c:48:c3: 37:a6:d4:83 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcbA3xD42It3z2JDtujktvaGZCE4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTI2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzMyODlmMDNmYjRkNTU0OGYwMWRlZjRkMzU0OGU1MzQ0 YTk2Y2JjMTA0NDJmZWM0YjBkODY2ZjlmNTk5YWJlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnu9qAEDtDbe4+JF/G34eWeYXuF1ONbXVOZIIwwNWfqhwU x4ZKmdSU0sBlXDr4hfzgTHYILCf1dbPpMgjcd5qrsouy8ddjyMnhsaKxtgP3VNX6 Gjkr/9BPUpJhrL6Bx9YYeECjZELlTDccRjiVXTno82DfNF1PS6NYw6Eq13+icT2H YA0a3OBgP8GIXh13+fAdCWmWJAGQugF7RLJaNbsgUy4tgtE9pqmAZdjHDNL+sFZ6 +sLTkExCWnvHvixrzMrMpCLthCjX/QkzHZhBM93U34Tr66XinNOpFsn+MEh0WR8g H/Zslwt2LlpsQlG98X/AdZmScSxr/txX1lQS+gDnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6ztfEOjJJJ/gysoOP2hSYIcRvc8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YxNzQ2OTI3LWQ5YzQtNDFjMi04YWJjLTI4OWVjYjE4MGJkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75TANBgkqhkiG9w0BAQsFAAOCAQEAVQ4m+J3BSXUHCBXGkumnIBym 7V3Kc9hhSkML6jCWAa946B6VmFuaNbY+1/x+KanHkC+WKaogFSY83s9YbIeQmDpm +gUunSImkfWBmvU71RlgMSqjIDi5KS676Ex1dQkXImYfliOQkafH1snL9ZDEnw8t ytiMtvipshE1Px0vftT7OaAQl4O/JRZdAhkxrI/PkYIcfg7DNFDS1YIG9WZwAD9q Hu7gbdimNYkDea3JnnYtn8+e1hVbthnFcT6YmCLPsIv0oWZSQc/IRVLcLsgnnr5j Lr+kH3Z0TTrAzLfPfQiQglExC63fNd1/CWgrcmGJ/ZJEo7AM+DNuDEjDN6bUgw== -----END CERTIFICATE-----Generated at Sat Apr 26 13:29:57 2025 by rpki-client