$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa File: f6cf58cb-08de-4e22-be98-43e3537a793b.roa (raw, json) Hash identifier: dPdQHr3xalqOKKrEQjKjPD2RQNFTUoaibuVluQwMtKI= Subject key identifier: ED:2D:3D:BD:8D:8E:74:8A:B3:54:BD:78:9B:D2:FF:4B:45:4C:4F:66 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7C04A3E39BC6FEA304087F13A1C4C3975BFE8038 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa Signing time: Fri 25 Apr 2025 18:01:30 +0000 ROA not before: Fri 25 Apr 2025 18:01:30 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:04:a3:e3:9b:c6:fe:a3:04:08:7f:13:a1:c4:c3:97:5b:fe:80:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 18:01:30 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=4ecfaf4795ba4604dde4f0111e6d009b6b290a736bda544348e8ab13b34f9e4b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:40:0b:a3:27:6a:5a:62:86:ba:eb:f5:8f:3b: 75:43:81:b5:33:b0:2e:f0:05:46:c4:e6:89:4b:b4: 47:f7:ef:8a:c2:4a:65:d2:6b:5a:be:1e:21:c5:5d: 86:dc:bc:68:a6:7a:86:89:f7:75:58:d7:3b:5e:5c: 70:07:0f:2a:4d:81:11:bb:e4:07:59:35:55:e7:4c: 62:2f:26:37:18:36:dd:0a:0f:00:4d:e9:9f:60:81: 84:08:26:69:fc:80:99:73:19:ce:bf:8b:64:9b:d7: 01:fd:d3:c5:a9:69:36:50:68:2d:11:c7:2d:0d:1b: 95:b2:e0:1d:8c:f6:8f:53:f4:b5:2a:da:d9:a3:2f: c2:8d:57:0e:2c:74:26:be:d2:c9:0c:57:4b:55:4c: 15:28:6c:09:44:b0:f2:91:0d:0f:d8:f7:b8:b5:5a: 06:a1:31:8b:69:21:e9:58:99:48:be:62:2e:dc:dc: 42:8a:e6:57:88:96:c1:80:0f:c5:1e:67:6e:62:22: 64:f9:d9:88:85:8b:78:24:19:31:46:4b:24:71:7c: 94:7f:ec:dd:4c:2f:69:ca:17:64:f2:d1:8e:a4:b3: b3:76:2a:ef:ad:a2:4c:d3:97:cb:29:f0:b9:bf:ba: 48:ec:e6:2f:ce:50:df:ad:af:aa:be:99:4a:1a:60: 32:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2D:3D:BD:8D:8E:74:8A:B3:54:BD:78:9B:D2:FF:4B:45:4C:4F:66 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption 59:b3:85:e3:07:8b:8e:df:a8:a7:be:69:2a:71:0e:c9:4b:2e: ab:65:0e:3f:ac:3e:fb:84:3b:5c:ea:49:cb:d5:eb:f6:2f:ee: 54:ea:22:68:e2:a3:6c:d8:4d:21:15:fa:39:2a:06:99:c5:0c: 7e:90:d0:be:5f:72:58:9f:a7:bf:75:1f:88:3d:00:7a:a5:37: dd:2f:cc:e5:00:fa:8e:bc:66:18:05:60:80:48:a0:93:e4:ad: e8:03:eb:8c:89:3f:31:e5:b8:a4:97:47:c3:07:52:5c:e5:6d: b7:da:3c:41:85:43:07:0f:b1:44:fd:7d:85:ea:13:70:03:56: f1:e4:bf:ff:55:a2:6b:db:b3:4b:15:c2:c5:9f:81:8d:94:69: 57:15:e2:05:22:77:54:e5:ad:8e:57:ce:2c:03:5f:3d:69:de: 99:4e:13:54:82:71:01:15:c3:31:f5:4d:a9:8b:92:12:20:bb: f2:af:af:98:3d:b0:9d:cf:b6:36:23:5a:0b:b8:52:d6:f3:9d: 76:ff:da:cc:d9:fe:dd:0b:82:5a:f3:fb:6c:1d:ed:33:39:a6: ac:d5:88:4d:22:e8:3f:73:01:37:40:21:a0:13:84:b5:47:d2: 21:21:eb:db:f2:d8:f7:b0:c1:e4:ce:f5:9c:d6:f9:e4:60:84: 66:b3:3c:35 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfASj45vG/qMECH8TocTDl1v+gDgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTgwMTMwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZWNmYWY0Nzk1YmE0NjA0ZGRlNGYwMTExZTZkMDA5YjZi MjkwYTczNmJkYTU0NDM0OGU4YWIxM2IzNGY5ZTRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtQAujJ2paYoa66/WPO3VDgbUzsC7wBUbE5olLtEf374rC SmXSa1q+HiHFXYbcvGimeoaJ93VY1zteXHAHDypNgRG75AdZNVXnTGIvJjcYNt0K DwBN6Z9ggYQIJmn8gJlzGc6/i2Sb1wH908WpaTZQaC0Rxy0NG5Wy4B2M9o9T9LUq 2tmjL8KNVw4sdCa+0skMV0tVTBUobAlEsPKRDQ/Y97i1WgahMYtpIelYmUi+Yi7c 3EKK5leIlsGAD8UeZ25iImT52YiFi3gkGTFGSyRxfJR/7N1ML2nKF2Ty0Y6ks7N2 Ku+tokzTl8sp8Lm/ukjs5i/OUN+tr6q+mUoaYDLfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU7S09vY2OdIqzVL14m9L/S0VMT2YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2Y2Y1OGNiLTA4ZGUtNGUyMi1iZTk4LTQzZTM1MzdhNzkzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74TANBgkqhkiG9w0BAQsFAAOCAQEAWbOF4weLjt+op75pKnEOyUsu q2UOP6w++4Q7XOpJy9Xr9i/uVOoiaOKjbNhNIRX6OSoGmcUMfpDQvl9yWJ+nv3Uf iD0AeqU33S/M5QD6jrxmGAVggEigk+St6APrjIk/MeW4pJdHwwdSXOVtt9o8QYVD Bw+xRP19heoTcANW8eS//1Wia9uzSxXCxZ+BjZRpVxXiBSJ3VOWtjlfOLANfPWne mU4TVIJxARXDMfVNqYuSEiC78q+vmD2wnc+2NiNaC7hS1vOddv/azNn+3QuCWvP7 bB3tMzmmrNWITSLoP3MBN0AhoBOEtUfSISHr2/LY97DB5M71nNb55GCEZrM8NQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:21 2025 by rpki-client