$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa File: f30a276d-715e-46ee-8158-fd4576a10978.roa (raw, json) Hash identifier: iOE9jncXjfZlfUgMaq7oieAsnSdfxd7NE5Fq0jCss4A= Subject key identifier: DF:A0:E3:C7:AB:3D:96:CA:1E:0C:B8:7E:29:24:9C:90:6F:1D:49:B5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 05F6D788CAD4DC496DF592DEFC670AB88F307143 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa Signing time: Fri 25 Apr 2025 18:01:07 +0000 ROA not before: Fri 25 Apr 2025 18:01:07 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:f6:d7:88:ca:d4:dc:49:6d:f5:92:de:fc:67:0a:b8:8f:30:71:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:07 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=f9e4975f2cfe41c15d09199e3384e9a417f3312f79e91cdd67dbd9b09d5ece4d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a2:a1:89:ad:2c:51:d5:6d:f0:d3:be:36:cb: fa:4e:5f:30:a0:67:39:9a:aa:a5:42:9a:72:9c:be: 56:dd:45:f5:af:f5:54:a4:c9:23:d4:45:bc:6e:b8: ac:bd:fc:9b:df:53:6a:2d:69:f7:a6:d0:9f:ff:e1: 08:26:7c:5d:40:31:b4:5f:f9:e3:06:42:f8:da:1e: 07:26:7f:71:ea:04:da:04:f0:9b:9c:69:95:23:5a: 9f:eb:e7:e1:9d:49:20:1b:b4:f0:e0:7b:11:69:22: e0:c2:08:0a:b3:d3:ae:43:49:89:90:d6:99:18:22: 94:76:5c:8d:e2:36:16:9e:22:9c:06:3b:b6:7b:85: 86:88:50:14:2f:a5:e4:02:4d:a9:86:e8:00:1d:10: 71:b1:d7:ca:f1:89:ce:1a:dd:91:88:27:b2:cb:38: 2a:f0:ef:9a:98:7f:59:6c:4a:26:cc:0e:e6:6f:6f: 08:7d:31:ba:05:bc:a1:f1:90:13:b6:1c:ca:7b:9c: 14:51:6a:9e:96:ab:2f:00:90:63:e6:5f:70:93:5e: e3:03:70:a7:8f:45:a4:50:52:35:36:6f:1f:95:94: 11:07:98:56:ba:7a:03:a3:18:81:30:5a:32:e9:d0: fd:d5:4d:ad:6e:5b:ca:8c:60:a6:68:5d:77:64:dd: 44:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A0:E3:C7:AB:3D:96:CA:1E:0C:B8:7E:29:24:9C:90:6F:1D:49:B5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 58:68:b9:e9:2d:62:41:cb:e3:00:1b:ba:7a:99:0e:cb:19:e6: 37:54:5d:c5:37:06:09:20:0e:2d:90:be:47:64:10:fd:94:0f: 42:cc:9e:77:10:1e:b5:3e:9a:42:c1:61:25:9b:c1:9d:64:28: 84:c3:c9:46:4a:92:7d:da:25:2d:31:9a:05:21:60:06:fc:33: bd:96:78:e5:9c:40:d7:96:9e:6a:71:6a:89:08:fd:dc:cf:d0: 82:dc:f6:21:2d:5f:2f:3a:cd:ce:7b:38:f5:d2:9f:72:79:57: 6b:80:c9:e3:d5:84:3d:44:09:4b:0a:7f:b4:5b:d9:cf:8e:a7: ea:97:6c:f5:9a:46:4f:8e:b1:b3:16:ec:3e:f2:e4:4a:49:cf: 22:f6:9a:b6:8d:c0:e8:67:6e:cb:e1:fc:fc:97:54:cd:05:77: ec:0d:03:b6:80:6f:6a:e4:6b:34:47:80:0d:4d:8f:71:56:01: 1f:a0:87:5f:c4:43:18:ea:70:1a:aa:cd:23:d8:0a:38:dd:c9: 39:e2:49:e0:15:62:20:37:04:26:9f:ef:ff:5e:b5:93:12:0d: f1:58:40:2a:65:7a:f0:88:67:ce:1f:a1:db:50:b9:92:af:51: 32:69:0f:c1:19:a0:e4:d2:b8:c8:79:d8:84:8f:00:3b:e4:77: 7e:c9:6f:d1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBfbXiMrU3Elt9ZLe/GcKuI8wcUMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTA3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWU0OTc1ZjJjZmU0MWMxNWQwOTE5OWUzMzg0ZTlhNDE3 ZjMzMTJmNzllOTFjZGQ2N2RiZDliMDlkNWVjZTRkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0oqGJrSxR1W3w0742y/pOXzCgZzmaqqVCmnKcvlbdRfWv 9VSkySPURbxuuKy9/JvfU2otafem0J//4QgmfF1AMbRf+eMGQvjaHgcmf3HqBNoE 8JucaZUjWp/r5+GdSSAbtPDgexFpIuDCCAqz065DSYmQ1pkYIpR2XI3iNhaeIpwG O7Z7hYaIUBQvpeQCTamG6AAdEHGx18rxic4a3ZGIJ7LLOCrw75qYf1lsSibMDuZv bwh9MboFvKHxkBO2HMp7nBRRap6Wqy8AkGPmX3CTXuMDcKePRaRQUjU2bx+VlBEH mFa6egOjGIEwWjLp0P3VTa1uW8qMYKZoXXdk3UQzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU36Djx6s9lsoeDLh+KSSckG8dSbUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YzMGEyNzZkLTcxNWUtNDZlZS04MTU4LWZkNDU3NmExMDk3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEAWGi56S1iQcvjABu6epkOyxnm N1RdxTcGCSAOLZC+R2QQ/ZQPQsyedxAetT6aQsFhJZvBnWQohMPJRkqSfdolLTGa BSFgBvwzvZZ45ZxA15aeanFqiQj93M/Qgtz2IS1fLzrNzns49dKfcnlXa4DJ49WE PUQJSwp/tFvZz46n6pds9ZpGT46xsxbsPvLkSknPIvaato3A6Gduy+H8/JdUzQV3 7A0DtoBvauRrNEeADU2PcVYBH6CHX8RDGOpwGqrNI9gKON3JOeJJ4BViIDcEJp/v /161kxIN8VhAKmV68Ihnzh+h21C5kq9RMmkPwRmg5NK4yHnYhI8AO+R3fslv0Q== -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:43 2025 by rpki-client