$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2537a9dc-38fe-4282-a7fd-c3f10cbb6270.roa File: 2537a9dc-38fe-4282-a7fd-c3f10cbb6270.roa (raw, json) Hash identifier: czy2P24N1UQ6NjSYHpw7AHWbdan+hda8j4Utd4Ra2M0= Subject key identifier: DD:79:6D:DF:84:8F:7A:1D:CC:EB:53:23:68:32:F7:78:E6:B9:6C:E7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5A39F5A47BBC16657291F06F651B2179297E7BE0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2537a9dc-38fe-4282-a7fd-c3f10cbb6270.roa Signing time: Tue 29 Apr 2025 00:30:11 +0000 ROA not before: Tue 29 Apr 2025 00:30:11 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:39:f5:a4:7b:bc:16:65:72:91:f0:6f:65:1b:21:79:29:7e:7b:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:30:11 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=3d0f9ee062a71cca7cdc447d84094325b0fce6a09d1ca196256583f61539c727, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:35:03:d3:1e:3a:77:54:26:bc:69:7d:19:3f: 5a:fd:5b:7a:f2:f5:57:c6:b0:00:6b:00:f0:d9:35: 6a:6f:c2:c7:72:e4:72:4c:b3:b0:d8:d5:d7:b4:43: fa:91:0c:9b:ff:d4:77:3a:2d:9e:c9:3b:75:00:7a: b9:d7:40:b4:9e:b0:4e:40:4d:48:7f:d5:23:5a:17: f3:22:dd:fa:34:a2:4c:71:6b:6c:2e:e2:e0:35:a0: ad:0e:bf:89:1b:68:f2:3f:34:4b:91:31:a0:d8:fc: 17:5a:7c:5d:ea:22:59:8f:fa:6e:be:f8:be:7f:a3: e1:e7:a0:2b:8f:25:cd:49:e2:94:cb:7b:ae:54:19: 72:c0:f8:45:b6:90:bf:23:c6:31:97:6a:7c:5d:c6: 44:a3:e7:85:80:a0:f8:55:92:5f:18:c2:74:66:98: e5:21:77:67:9c:8f:74:94:20:c9:86:10:a1:3a:b7: 4e:d0:df:eb:4a:c6:50:e3:3f:57:03:55:0b:dd:e3: 55:3d:34:4d:d1:d4:85:70:77:97:21:73:37:2b:96: 86:c7:1f:8c:e5:f0:23:0d:41:21:2d:a4:44:fb:7f: f6:06:24:37:dd:d8:c6:0b:4b:30:42:6b:cb:08:0b: df:dc:2b:eb:e7:9e:09:e6:2a:42:88:c2:0f:8d:e7: 7a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:79:6D:DF:84:8F:7A:1D:CC:EB:53:23:68:32:F7:78:E6:B9:6C:E7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2537a9dc-38fe-4282-a7fd-c3f10cbb6270.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 70:d3:03:4a:68:df:ef:c2:c4:ec:bc:2c:69:fe:73:de:ec:ee: 41:17:9c:34:51:e3:00:da:e2:22:33:8c:4d:ca:c6:67:24:92: 9c:64:27:67:d5:20:60:95:a9:67:42:f6:ea:ed:53:66:ae:72: 51:a9:ba:85:2b:44:ec:bb:97:56:28:a8:7e:1d:88:3b:d4:5b: b4:b0:ca:7f:1c:97:29:77:54:57:2a:c2:89:e6:23:dc:c7:93: 2f:20:01:c8:c5:59:7f:94:a5:2c:2d:f0:3f:df:5e:e4:d6:ae: e2:de:07:e5:b5:c7:ba:4f:13:33:38:4d:9d:d0:03:69:52:8c: 6c:c3:00:54:6a:77:43:23:3b:29:8e:6e:e4:0b:bd:79:b0:f4: 74:63:ef:65:b4:68:f6:28:80:d5:ec:a2:ab:77:19:49:38:44: 52:d6:28:37:5a:3e:59:62:d8:18:47:5c:74:2c:d1:38:42:e0: ca:bf:db:47:d7:4c:f7:ce:1d:67:54:9b:11:25:90:ea:00:5e: 9e:f0:3e:56:87:1f:43:6c:87:d2:85:68:dc:38:b5:25:96:b3: 0d:d1:fa:24:0a:50:97:3d:21:56:34:cc:37:12:50:da:ba:8c: 15:af:ae:4e:d4:90:34:f5:e5:d9:85:b4:85:66:14:9d:70:c4: e7:25:68:f3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWjn1pHu8FmVykfBvZRsheSl+e+AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI5MDAzMDExWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDBmOWVlMDYyYTcxY2NhN2NkYzQ0N2Q4NDA5NDMyNWIw ZmNlNmEwOWQxY2ExOTYyNTY1ODNmNjE1MzljNzI3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoNQPTHjp3VCa8aX0ZP1r9W3ry9VfGsABrAPDZNWpvwsdy 5HJMs7DY1de0Q/qRDJv/1Hc6LZ7JO3UAernXQLSesE5ATUh/1SNaF/Mi3fo0okxx a2wu4uA1oK0Ov4kbaPI/NEuRMaDY/BdafF3qIlmP+m6++L5/o+HnoCuPJc1J4pTL e65UGXLA+EW2kL8jxjGXanxdxkSj54WAoPhVkl8YwnRmmOUhd2ecj3SUIMmGEKE6 t07Q3+tKxlDjP1cDVQvd41U9NE3R1IVwd5chczcrlobHH4zl8CMNQSEtpET7f/YG JDfd2MYLSzBCa8sIC9/cK+vnngnmKkKIwg+N53pNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3Xlt34SPeh3M61MjaDL3eOa5bOcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI1MzdhOWRjLTM4ZmUtNDI4Mi1hN2ZkLWMzZjEwY2JiNjI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAHDTA0po3+/CxOy8LGn+c97s 7kEXnDRR4wDa4iIzjE3KxmckkpxkJ2fVIGCVqWdC9urtU2auclGpuoUrROy7l1Yo qH4diDvUW7Swyn8clyl3VFcqwonmI9zHky8gAcjFWX+UpSwt8D/fXuTWruLeB+W1 x7pPEzM4TZ3QA2lSjGzDAFRqd0MjOymObuQLvXmw9HRj72W0aPYogNXsoqt3GUk4 RFLWKDdaPlli2BhHXHQs0ThC4Mq/20fXTPfOHWdUmxElkOoAXp7wPlaHH0Nsh9KF aNw4tSWWsw3R+iQKUJc9IVY0zDcSUNq6jBWvrk7UkDT15dmFtIVmFJ1wxOclaPM= -----END CERTIFICATE-----Generated at Tue May 6 13:21:44 2025 by rpki-client