$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/058b2723-0749-41cb-992b-215b81ddf36a.roa File: 058b2723-0749-41cb-992b-215b81ddf36a.roa (raw, json) Hash identifier: /Gsy3WiWPVBLe+0IUE7L1m9iigp3i9Hqv1XSMSui75o= Subject key identifier: 78:DE:36:1F:D0:94:72:04:A6:A9:16:DD:E3:AF:9E:4B:01:E4:FA:61 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 178585FFC33E6C169D1FE1342B8F415AB28F5C23 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/058b2723-0749-41cb-992b-215b81ddf36a.roa Signing time: Tue 29 Apr 2025 00:30:18 +0000 ROA not before: Tue 29 Apr 2025 00:30:18 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:85:85:ff:c3:3e:6c:16:9d:1f:e1:34:2b:8f:41:5a:b2:8f:5c:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:30:18 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=b4f5000eec13b232a5e1623be2a63a9fefc23bb85b3f8e42441ac4371cf4f32b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:fc:5f:1b:50:3d:4a:d2:89:46:35:ba:8f: 45:d9:55:b3:bc:b0:5a:4a:92:33:5b:02:ce:b1:f5: 98:b7:6b:af:23:c9:2e:dd:ad:53:cb:24:6a:8e:6c: 43:3b:e3:77:32:9a:32:ad:e8:d8:11:13:c9:d0:32: d0:7e:03:30:78:b1:33:b4:01:62:f9:4e:0b:e2:b2: d2:bc:66:2a:fa:50:b0:25:d6:bb:42:6e:40:11:c1: 35:44:5c:d9:73:31:a7:18:b0:68:49:f5:fc:a2:a0: 0e:c1:6d:5c:7f:ad:7f:74:2f:9f:72:d3:d0:f7:82: 54:e0:8f:50:19:ab:ec:53:63:02:af:c6:6b:10:60: 05:e8:44:eb:59:f1:b2:79:a8:78:a4:b0:a0:2c:45: fe:ac:16:c3:de:50:dd:b7:3a:9c:e3:0b:af:d7:13: 81:3b:7a:23:48:4e:9d:01:47:4c:7c:43:62:cf:92: ea:46:d9:8f:fe:b0:41:c1:e2:7d:0e:51:ff:d4:6b: 63:68:bf:e3:39:14:1a:c1:2e:fa:6d:64:92:87:46: 5c:2b:9b:62:75:75:53:c5:2c:9f:b0:8a:5d:1f:c6: b1:bf:8d:94:50:1a:12:e1:a2:b5:cb:ea:28:66:1f: 8b:ba:47:18:97:2f:78:93:26:b9:49:2b:fc:8c:08: 21:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:DE:36:1F:D0:94:72:04:A6:A9:16:DD:E3:AF:9E:4B:01:E4:FA:61 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/058b2723-0749-41cb-992b-215b81ddf36a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption 16:33:3b:b7:10:9b:ad:b5:6e:8e:55:4b:b9:b2:1f:0f:34:ab: ee:9d:49:2b:cb:0a:4d:68:ad:e8:4c:bd:94:cb:95:fd:00:db: 01:9f:32:9d:f1:89:b0:c6:1a:26:50:e9:ac:0d:4a:0d:e0:3f: 6d:55:8e:97:24:53:df:c0:89:7b:05:d5:af:14:c9:21:26:f0: 7f:15:f8:94:cb:ef:f9:ec:31:aa:5f:66:75:71:63:e6:34:4d: ed:a9:11:a0:81:9b:8b:97:5b:57:dc:0c:04:56:7b:40:47:df: b1:79:a5:49:86:bb:b1:44:5b:73:f1:1c:57:ea:4a:14:4a:9a: 2b:d5:30:48:c5:88:34:9f:08:d6:6c:2c:7a:ea:d7:e2:bc:36: d9:89:22:6b:26:b3:ec:61:d9:5c:ab:7e:ca:1b:dc:94:41:c7: b0:e2:b2:e3:e0:30:80:56:97:63:2a:b0:f8:3d:53:a7:37:2e: b9:f7:57:7a:12:bc:9a:eb:55:da:a6:40:7e:b3:80:0a:33:f5: d2:88:c2:a5:76:2c:b0:49:8f:4a:75:88:f4:a1:68:cd:a5:22: ac:52:0e:6e:f7:73:6c:01:19:a6:3f:aa:df:d9:d5:6b:29:7f: 3e:11:17:83:06:5a:09:25:38:42:e4:c1:9c:2b:ba:bc:1d:2c: 4b:f1:8b:08 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF4WF/8M+bBadH+E0K49BWrKPXCMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI5MDAzMDE4WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGY1MDAwZWVjMTNiMjMyYTVlMTYyM2JlMmE2M2E5ZmVm YzIzYmI4NWIzZjhlNDI0NDFhYzQzNzFjZjRmMzJiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmFvxfG1A9StKJRjW6j0XZVbO8sFpKkjNbAs6x9Zi3a68j yS7drVPLJGqObEM743cymjKt6NgRE8nQMtB+AzB4sTO0AWL5TgvistK8Zir6ULAl 1rtCbkARwTVEXNlzMacYsGhJ9fyioA7BbVx/rX90L59y09D3glTgj1AZq+xTYwKv xmsQYAXoROtZ8bJ5qHiksKAsRf6sFsPeUN23OpzjC6/XE4E7eiNITp0BR0x8Q2LP kupG2Y/+sEHB4n0OUf/Ua2Nov+M5FBrBLvptZJKHRlwrm2J1dVPFLJ+wil0fxrG/ jZRQGhLhorXL6ihmH4u6RxiXL3iTJrlJK/yMCCHTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeN42H9CUcgSmqRbd46+eSwHk+mEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA1OGIyNzIzLTA3NDktNDFjYi05OTJiLTIxNWI4MWRkZjM2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBABYzO7cQm621bo5VS7myHw80 q+6dSSvLCk1orehMvZTLlf0A2wGfMp3xibDGGiZQ6awNSg3gP21VjpckU9/AiXsF 1a8UySEm8H8V+JTL7/nsMapfZnVxY+Y0Te2pEaCBm4uXW1fcDARWe0BH37F5pUmG u7FEW3PxHFfqShRKmivVMEjFiDSfCNZsLHrq1+K8NtmJImsms+xh2Vyrfsob3JRB x7DisuPgMIBWl2MqsPg9U6c3Lrn3V3oSvJrrVdqmQH6zgAoz9dKIwqV2LLBJj0p1 iPShaM2lIqxSDm73c2wBGaY/qt/Z1Wspfz4RF4MGWgklOELkwZwrurwdLEvxiwg= -----END CERTIFICATE-----Generated at Mon May 5 10:26:14 2025 by rpki-client