$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa File: f6334ad8-04a1-4b1e-af68-368584971f2f.roa (raw, json) Hash identifier: BxE1NFjuofIxSCzmWb+1YC6Ygj4RaT5MCrxClQavuX8= Subject key identifier: 6F:4F:9A:38:EF:C5:A9:24:F4:6E:38:FB:1B:A7:9A:20:FC:AE:0A:A6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 626B4873C6F37A26AA6A59F447D9727A4D31593D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa Signing time: Fri 25 Apr 2025 18:01:33 +0000 ROA not before: Fri 25 Apr 2025 18:01:33 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:6b:48:73:c6:f3:7a:26:aa:6a:59:f4:47:d9:72:7a:4d:31:59:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:33 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=d143bf079842aca32abc335d3982a69bfc362258cd46d877de68cbeda499b011, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ae:3d:30:d9:3a:08:3c:1c:90:2d:d5:04:1b: 06:ce:29:56:66:09:0d:21:d1:99:57:b7:78:cb:fd: a8:6f:7f:07:6f:d9:8f:49:e4:4b:7a:98:83:ef:87: 53:ac:10:17:07:37:16:34:4b:7c:a4:af:1d:f7:f2: 07:0e:cb:fe:35:ce:e6:f6:56:72:ae:20:c3:50:2d: 19:39:54:7c:95:c6:b7:51:83:a2:c5:ce:0e:0a:95: 0d:f1:a1:2c:30:3d:64:c8:53:f0:5c:b5:53:fb:50: 3a:88:c8:fd:19:1a:7c:fd:ae:6e:34:0e:c6:b5:07: d1:21:8a:25:ab:7b:d9:70:29:93:d5:1b:da:d3:f4: 58:cf:65:9d:00:ab:3f:d6:6a:22:38:aa:8a:38:c6: 0a:ce:23:bc:5c:0a:aa:3c:f9:b8:03:3b:6f:35:5d: 73:e9:9c:ae:01:b5:4c:f7:06:98:ce:c2:f6:2d:fa: eb:9c:97:12:5b:c9:ca:0f:7d:28:6b:3a:2e:35:7b: bd:88:0c:53:b2:39:12:0f:67:9b:e7:82:11:aa:bf: 1b:e8:70:46:8c:de:24:9a:8a:e5:43:65:3a:1a:ba: 1e:f3:6b:9c:ef:23:c1:a7:29:98:85:bf:e9:b9:6f: 9c:2e:89:f0:61:21:fd:dc:11:1a:ef:74:32:0c:32: 51:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:4F:9A:38:EF:C5:A9:24:F4:6E:38:FB:1B:A7:9A:20:FC:AE:0A:A6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 1a:f8:27:b5:db:d7:84:c4:a4:44:de:81:5b:62:c6:6b:01:f2: 94:99:15:88:50:4b:aa:ee:c9:59:3f:2a:49:f9:92:ba:64:20: f4:ac:a9:52:4e:cb:8b:aa:fc:06:24:f4:77:24:f6:17:a8:b5: 5d:b5:49:22:c3:0a:45:dc:8b:0c:2c:8d:c6:e0:de:bc:83:ff: b4:c5:99:4e:f8:d3:77:ea:9c:bf:c6:1e:37:ba:29:a9:75:df: 3e:17:68:6b:5d:2f:1f:a4:74:db:43:a6:b6:84:04:12:2f:48: f5:ea:b1:39:07:1d:78:39:55:a3:5c:a1:57:19:1e:2f:33:88: 63:b8:f0:b4:4b:b1:d6:c4:5a:e9:54:3e:f6:d0:04:ab:ad:e1: 13:df:35:c0:3e:09:55:3c:35:6a:c5:6e:bd:95:33:77:64:72: 58:b3:12:39:96:a0:7f:fe:b5:34:5b:7e:47:b6:0c:c7:aa:78: c8:2e:c7:09:7d:c1:e3:b8:7d:c7:de:69:77:5a:5e:d4:c5:0e: 6a:bc:3d:f9:35:75:d5:75:01:c7:50:95:0e:a3:ef:38:43:8e: 9b:b4:6c:c7:53:16:dc:d6:ef:ea:c0:e0:fc:8a:00:b8:26:a1: d6:88:ed:e3:1c:74:28:c2:56:f0:fa:99:87:fc:5e:ae:36:05: 05:0e:ef:47 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYmtIc8bzeiaqaln0R9lyek0xWT0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTMzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTQzYmYwNzk4NDJhY2EzMmFiYzMzNWQzOTgyYTY5YmZj MzYyMjU4Y2Q0NmQ4NzdkZTY4Y2JlZGE0OTliMDExMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCirj0w2ToIPByQLdUEGwbOKVZmCQ0h0ZlXt3jL/ahvfwdv 2Y9J5Et6mIPvh1OsEBcHNxY0S3ykrx338gcOy/41zub2VnKuIMNQLRk5VHyVxrdR g6LFzg4KlQ3xoSwwPWTIU/BctVP7UDqIyP0ZGnz9rm40Dsa1B9EhiiWre9lwKZPV G9rT9FjPZZ0Aqz/WaiI4qoo4xgrOI7xcCqo8+bgDO281XXPpnK4BtUz3BpjOwvYt +uuclxJbycoPfShrOi41e72IDFOyORIPZ5vnghGqvxvocEaM3iSaiuVDZToauh7z a5zvI8GnKZiFv+m5b5wuifBhIf3cERrvdDIMMlHjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUb0+aOO/FqST0bjj7G6eaIPyuCqYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2MzM0YWQ4LTA0YTEtNGIxZS1hZjY4LTM2ODU4NDk3MWYyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEAGvgntdvXhMSkRN6BW2LGawHy lJkViFBLqu7JWT8qSfmSumQg9KypUk7Li6r8BiT0dyT2F6i1XbVJIsMKRdyLDCyN xuDevIP/tMWZTvjTd+qcv8YeN7opqXXfPhdoa10vH6R020OmtoQEEi9I9eqxOQcd eDlVo1yhVxkeLzOIY7jwtEux1sRa6VQ+9tAEq63hE981wD4JVTw1asVuvZUzd2Ry WLMSOZagf/61NFt+R7YMx6p4yC7HCX3B47h9x95pd1pe1MUOarw9+TV11XUBx1CV DqPvOEOOm7Rsx1MW3Nbv6sDg/IoAuCah1ojt4xx0KMJW8PqZh/xerjYFBQ7vRw== -----END CERTIFICATE-----Generated at Sat Apr 26 16:16:41 2025 by rpki-client