$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa File: f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa (raw, json) Hash identifier: cwyVOQuQ9L2eDsYtdV9H1UBSxqc8WnxKhZPtuaBcz/I= Subject key identifier: 4C:20:32:61:7F:01:56:77:B6:47:AC:B0:63:D2:6B:97:30:B0:7A:5C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 58C50CD59D1271D8BEDFDC0E351942C49F4ECDF4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa Signing time: Fri 25 Apr 2025 17:50:50 +0000 ROA not before: Fri 25 Apr 2025 17:50:50 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:8000::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c5:0c:d5:9d:12:71:d8:be:df:dc:0e:35:19:42:c4:9f:4e:cd:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:50 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=a37f767c1dfe1a16ac8127f0db4e97a398f0dbdefc614f9d5e8bd5de0b789377, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3c:ea:d9:71:9e:82:ce:61:c6:c3:84:74:c9: f8:95:e3:3e:51:9e:7c:62:50:7f:c1:88:88:b1:0c: 82:47:a9:72:71:de:6b:71:27:ef:7c:a6:9f:ec:c6: de:c6:fa:cb:d4:6f:e0:c8:0a:ec:45:2d:5f:70:fb: 38:1e:f1:bb:b0:d5:5e:8b:f4:fc:cd:e7:b0:2c:3d: 00:fe:50:de:67:e6:1c:40:64:f6:cb:8d:1f:2c:76: 75:cf:5f:b4:ff:46:87:de:de:ae:9f:3f:de:62:4c: 3a:41:e7:e9:d1:74:a5:6d:08:43:c4:99:88:6f:cd: 36:b1:29:44:64:dc:39:61:51:b6:32:ae:e9:b1:97: da:55:76:07:52:a5:37:7e:73:3e:13:60:42:a0:f0: be:84:02:05:ae:d6:8e:61:94:05:7d:ce:51:eb:d1: 92:ee:33:6d:7a:4e:58:76:05:97:a4:8b:b6:5a:9d: fd:5f:8f:4e:01:56:ba:3a:c7:e9:5b:a8:73:69:2c: 9b:32:f0:47:79:9c:69:5e:f3:16:e6:41:0c:45:d0: cd:c4:ea:bd:ee:2e:cf:de:de:ac:be:4d:cf:bd:72: 4a:d3:d1:36:4f:75:7b:d3:91:4d:c3:66:ff:1d:ea: a4:37:a9:7b:88:c7:6b:72:8b:db:65:b0:54:3e:51: a8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:20:32:61:7F:01:56:77:B6:47:AC:B0:63:D2:6B:97:30:B0:7A:5C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:8000::/42 Signature Algorithm: sha256WithRSAEncryption a2:9a:73:38:23:00:0d:f7:a7:6e:63:4b:da:26:ce:ae:bb:cd: 87:c0:e6:8c:91:09:6d:ec:86:42:58:b8:94:98:16:cb:43:14: 13:f3:c1:10:69:b9:ed:07:60:a0:55:55:10:b4:4a:4a:93:03: c4:ed:65:84:2d:f4:32:57:df:17:d2:94:b2:34:4f:a9:49:68: da:d8:f4:3c:86:0d:9f:1a:4b:7c:6e:e8:14:e6:3f:40:56:00: 99:db:67:ed:34:6c:34:72:23:8d:53:aa:8a:3e:fb:35:18:0d: ff:21:6e:ad:36:6d:45:44:80:ae:44:06:20:5d:e9:ee:f2:0d: 7d:94:5d:bc:23:3d:10:53:da:d2:d4:9f:67:dd:9c:c8:1e:dd: 1f:94:f0:57:92:63:9c:97:1a:f8:0f:ed:2a:5a:0c:b1:be:ca: 06:85:46:a0:84:1a:d0:bf:fc:b9:e7:3f:c7:2e:b7:02:b0:7f: 91:36:bd:d1:1b:91:a4:ba:98:8e:7e:ce:fb:1b:7d:25:2c:c5: a6:47:35:ac:82:76:1a:38:07:ad:e0:6f:14:6e:b7:fe:47:79: 71:1e:81:fb:1c:90:51:25:da:b1:1a:2a:69:76:d5:58:3a:2b: c8:1f:c8:85:26:b7:13:c7:5c:81:6a:22:89:63:9b:c8:09:e2: fb:76:0f:7f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWMUM1Z0Scdi+39wONRlCxJ9OzfQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDUwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzdmNzY3YzFkZmUxYTE2YWM4MTI3ZjBkYjRlOTdhMzk4 ZjBkYmRlZmM2MTRmOWQ1ZThiZDVkZTBiNzg5Mzc3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLPOrZcZ6CzmHGw4R0yfiV4z5RnnxiUH/BiIixDIJHqXJx 3mtxJ+98pp/sxt7G+svUb+DICuxFLV9w+zge8buw1V6L9PzN57AsPQD+UN5n5hxA ZPbLjR8sdnXPX7T/Rofe3q6fP95iTDpB5+nRdKVtCEPEmYhvzTaxKURk3DlhUbYy rumxl9pVdgdSpTd+cz4TYEKg8L6EAgWu1o5hlAV9zlHr0ZLuM216Tlh2BZeki7Za nf1fj04BVro6x+lbqHNpLJsy8Ed5nGle8xbmQQxF0M3E6r3uLs/e3qy+Tc+9ckrT 0TZPdXvTkU3DZv8d6qQ3qXuIx2tyi9tlsFQ+UajzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTCAyYX8BVne2R6ywY9JrlzCwelwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YzN2M4NjMzLWFhZjMtNGE0OS1iZmE2LTc3NWFiNzcyNGQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD7gAAwDQYJKoZIhvcNAQELBQADggEBAKKaczgjAA33p25jS9omzq67 zYfA5oyRCW3shkJYuJSYFstDFBPzwRBpue0HYKBVVRC0SkqTA8TtZYQt9DJX3xfS lLI0T6lJaNrY9DyGDZ8aS3xu6BTmP0BWAJnbZ+00bDRyI41Tqoo++zUYDf8hbq02 bUVEgK5EBiBd6e7yDX2UXbwjPRBT2tLUn2fdnMge3R+U8FeSY5yXGvgP7SpaDLG+ ygaFRqCEGtC//LnnP8cutwKwf5E2vdEbkaS6mI5+zvsbfSUsxaZHNayCdho4B63g bxRut/5HeXEegfsckFEl2rEaKml21Vg6K8gfyIUmtxPHXIFqIoljm8gJ4vt2D38= -----END CERTIFICATE-----Generated at Sat Apr 26 16:35:41 2025 by rpki-client