$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f504ccce-2eee-4202-842d-dad59cabe141.roa File: f504ccce-2eee-4202-842d-dad59cabe141.roa (raw, json) Hash identifier: MdxefD02kkjeie6pFc7CgmsYiPGOBYIokqKlmYghmuU= Subject key identifier: 91:D6:CE:87:C1:25:3B:56:05:1E:6C:0B:7B:76:C1:56:DB:F9:DC:ED Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2858E08D724611EC72CF444B6CA3C4DE9B7C79ED Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f504ccce-2eee-4202-842d-dad59cabe141.roa Signing time: Fri 25 Apr 2025 17:50:52 +0000 ROA not before: Fri 25 Apr 2025 17:50:52 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:58:e0:8d:72:46:11:ec:72:cf:44:4b:6c:a3:c4:de:9b:7c:79:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:50:52 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=f725b3ab90a1b910e01afa3f5a908914d722d7bbb70bc550441cf1a58ef7a196, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:07:3b:6a:1d:f1:41:61:66:d2:75:d4:42:d8: 2c:ef:f7:42:49:ca:f7:02:50:ea:69:b6:53:44:77: 12:78:a5:23:57:27:28:b7:75:20:4a:5a:87:75:ee: 07:a9:d6:e2:ef:fc:07:e7:8b:12:f7:bc:7c:f1:2d: 7b:84:9d:04:a7:55:14:ac:0e:02:26:82:7c:34:d5: 0b:2d:08:23:d3:e6:5a:1c:2b:c4:ca:e4:5f:bc:3f: fb:86:24:aa:ef:d6:c7:f4:b8:b2:a0:ff:af:41:64: 30:bc:45:41:5e:b5:cc:cc:08:62:00:b8:8a:6a:0a: 3d:d0:dd:dc:0b:52:01:1a:66:52:cd:54:ed:eb:5f: 00:e1:92:50:7b:4d:a3:33:69:ed:be:01:b6:45:99: 6a:b6:00:f0:56:90:21:1a:75:23:6c:d1:ba:20:59: 07:80:f4:a7:31:f0:39:fa:92:bb:8f:bb:16:39:86: b1:94:74:22:9c:b4:18:49:f6:ec:fb:02:b3:cc:10: 13:35:e8:ff:45:61:6c:8a:c1:3c:1e:1e:26:85:45: 49:dc:cb:7b:47:7e:94:c9:a2:f1:fb:46:e6:c2:49: 8b:07:b9:e2:1d:e1:b7:10:21:7b:f3:6c:30:00:22: 11:5d:53:48:1a:91:5d:14:2b:6b:34:7e:8a:7d:dc: 0d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D6:CE:87:C1:25:3B:56:05:1E:6C:0B:7B:76:C1:56:DB:F9:DC:ED X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f504ccce-2eee-4202-842d-dad59cabe141.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:8000::/40 Signature Algorithm: sha256WithRSAEncryption 9d:af:14:27:e2:dd:c9:65:4e:67:57:0e:ad:c8:31:87:06:f7: 85:6e:00:8e:a8:df:89:2d:ad:07:2c:0e:27:49:04:c2:1e:1d: 88:53:a2:09:c8:0a:4d:2b:00:6a:23:fb:ad:f5:e3:2e:40:60: 82:0f:28:17:8e:ee:0a:50:b2:70:4c:1f:af:80:c3:61:50:65: ce:96:4e:4a:76:84:eb:cb:9b:56:a5:6b:58:65:42:e1:85:28: 05:94:6c:91:45:5e:43:93:19:cb:91:b9:1c:91:1f:9e:ad:f3: f0:ac:df:9e:59:b9:0c:4b:88:22:eb:10:5c:37:58:6f:e1:66: 63:1c:79:a1:d7:91:b4:0e:00:64:2d:2b:aa:fe:bc:07:18:86: 03:d8:4a:01:f6:c3:c7:64:f6:dd:23:78:c0:13:0f:89:59:6c: 1e:b0:a3:f4:62:3d:b2:4d:57:56:b0:37:f7:c7:8d:0c:22:0d: 3d:15:8e:93:22:87:09:7b:b8:16:5d:89:5b:05:cc:33:b6:89: 6d:f0:fb:ee:0f:82:61:de:1a:a0:4b:7b:65:29:d0:be:32:e2: fc:79:73:b3:08:3b:e3:7e:a3:7f:28:4d:59:a0:e7:39:a1:f8: 0e:68:b8:82:60:0d:30:82:67:8a:fb:7c:3c:21:0f:af:9b:8d: 95:0c:3f:f6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKFjgjXJGEexyz0RLbKPE3pt8ee0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MDUyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzI1YjNhYjkwYTFiOTEwZTAxYWZhM2Y1YTkwODkxNGQ3 MjJkN2JiYjcwYmM1NTA0NDFjZjFhNThlZjdhMTk2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqBztqHfFBYWbSddRC2Czv90JJyvcCUOpptlNEdxJ4pSNX Jyi3dSBKWod17gep1uLv/AfnixL3vHzxLXuEnQSnVRSsDgImgnw01QstCCPT5loc K8TK5F+8P/uGJKrv1sf0uLKg/69BZDC8RUFetczMCGIAuIpqCj3Q3dwLUgEaZlLN VO3rXwDhklB7TaMzae2+AbZFmWq2APBWkCEadSNs0bogWQeA9Kcx8Dn6kruPuxY5 hrGUdCKctBhJ9uz7ArPMEBM16P9FYWyKwTweHiaFRUncy3tHfpTJovH7RubCSYsH ueId4bcQIXvzbDAAIhFdU0gakV0UK2s0fop93A19AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkdbOh8ElO1YFHmwLe3bBVtv53O0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y1MDRjY2NlLTJlZWUtNDIwMi04NDJkLWRhZDU5Y2FiZTE0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD7gDANBgkqhkiG9w0BAQsFAAOCAQEAna8UJ+LdyWVOZ1cOrcgxhwb3 hW4AjqjfiS2tBywOJ0kEwh4diFOiCcgKTSsAaiP7rfXjLkBggg8oF47uClCycEwf r4DDYVBlzpZOSnaE68ubVqVrWGVC4YUoBZRskUVeQ5MZy5G5HJEfnq3z8Kzfnlm5 DEuIIusQXDdYb+FmYxx5odeRtA4AZC0rqv68BxiGA9hKAfbDx2T23SN4wBMPiVls HrCj9GI9sk1XVrA398eNDCINPRWOkyKHCXu4Fl2JWwXMM7aJbfD77g+CYd4aoEt7 ZSnQvjLi/Hlzswg7436jfyhNWaDnOaH4Dmi4gmANMIJnivt8PCEPr5uNlQw/9g== -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:33 2025 by rpki-client