$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa File: 3eb80061-d999-4560-9395-9a007e8e03f9.roa (raw, json) Hash identifier: fLIft6VeuIPrBHMQ/DUCkNrGXzoNvVBSVrIlX2DvMTI= Subject key identifier: FD:9F:79:75:5A:7C:08:2E:1B:D5:26:1F:1F:DA:08:10:4C:4A:7F:09 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4E3ED74FC3B22232ADC3C562EB5E42A481499803 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa Signing time: Mon 05 May 2025 16:00:00 +0000 ROA not before: Mon 05 May 2025 16:00:00 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:3e:d7:4f:c3:b2:22:32:ad:c3:c5:62:eb:5e:42:a4:81:49:98:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 5 16:00:00 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=72035c9cb3e497862bdf688f4b28c974390fa76a058f6b724d5e6b6774d91f09, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0d:52:8a:a9:63:40:40:ad:de:b2:0b:1d:c9: b7:26:4b:68:59:4c:62:e5:38:8f:09:17:58:da:66: 3c:19:71:6b:9f:f8:94:87:83:6d:bc:5d:dc:bf:7d: e1:f7:b0:51:0e:d3:86:1a:42:c8:a5:59:e9:bf:2d: 82:d5:43:c1:d9:8b:71:d1:7e:42:08:a0:7c:60:1e: 23:38:87:c3:24:ca:b2:1d:04:ea:57:49:94:77:36: 03:5e:a3:88:b5:0f:96:22:4e:5a:6f:4f:dd:03:24: 60:cf:4b:fa:e4:dd:d9:e3:79:69:45:aa:82:88:d7: e2:22:f2:6f:a7:3e:5a:f3:52:05:69:da:00:18:aa: 10:a8:f0:76:24:a1:a1:b7:0d:ac:62:00:d7:01:72: e7:23:bf:77:fb:8c:78:36:72:7b:e0:e1:10:12:a9: 2b:d8:df:e6:bc:55:85:14:77:0e:8c:f0:5a:71:c6: 45:39:00:28:17:3e:6a:f3:7c:7a:4f:23:15:9a:e5: 4d:da:eb:a5:1a:8b:a4:5a:fd:6e:69:dc:09:75:52: db:9f:86:97:64:a5:9c:bf:71:2b:90:ba:15:99:dc: f4:02:fc:57:c2:c0:6b:7b:bc:17:1f:b9:1a:31:46: d7:81:98:52:97:a4:a1:08:c9:6f:2c:bf:38:c7:f2: 35:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9F:79:75:5A:7C:08:2E:1B:D5:26:1F:1F:DA:08:10:4C:4A:7F:09 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 54:18:67:ce:8b:4c:f9:56:5b:ae:8e:49:dc:a9:f7:96:e7:85: bd:80:51:28:10:06:20:de:28:ff:b4:6b:c0:d8:f2:88:21:13: 00:30:b4:39:0a:c3:93:49:aa:19:3d:c4:a0:f7:d6:8a:c0:1d: 54:a0:39:56:71:27:47:89:a9:65:72:76:a6:20:79:4d:92:6c: b8:9a:3f:29:af:14:56:3f:d8:58:4b:03:d3:f6:50:39:35:e1: bf:b8:04:29:6e:40:97:10:e9:65:56:14:5f:27:77:51:10:e2: fd:26:fc:24:aa:da:3b:f0:b9:0b:80:d9:5f:86:bd:a5:5d:77: 8d:26:06:0e:da:82:bf:ee:32:30:19:37:75:d3:57:93:49:11: 90:e1:23:be:7d:f6:29:2e:d0:c9:a5:d2:27:67:2a:ff:3b:fa: cb:bf:00:29:29:9e:f8:40:f8:7e:64:80:bd:86:fc:c4:dc:c9: d8:8c:10:fa:a9:d5:4f:58:da:6e:fd:d2:fd:2b:23:b0:7a:65: 21:b9:17:3b:3f:44:e6:34:6c:88:e4:b3:90:f1:12:16:c2:df: 16:62:0d:e1:7c:52:64:05:34:77:77:80:9f:fb:46:20:2d:9a: 8e:20:14:6a:04:d1:e9:ce:56:18:3d:da:b7:67:69:81:35:72: a7:e6:f3:36 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTj7XT8OyIjKtw8Vi615CpIFJmAMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTA1MTYwMDAwWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjAzNWM5Y2IzZTQ5Nzg2MmJkZjY4OGY0YjI4Yzk3NDM5 MGZhNzZhMDU4ZjZiNzI0ZDVlNmI2Nzc0ZDkxZjA5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxDVKKqWNAQK3esgsdybcmS2hZTGLlOI8JF1jaZjwZcWuf +JSHg228Xdy/feH3sFEO04YaQsilWem/LYLVQ8HZi3HRfkIIoHxgHiM4h8MkyrId BOpXSZR3NgNeo4i1D5YiTlpvT90DJGDPS/rk3dnjeWlFqoKI1+Ii8m+nPlrzUgVp 2gAYqhCo8HYkoaG3DaxiANcBcucjv3f7jHg2cnvg4RASqSvY3+a8VYUUdw6M8Fpx xkU5ACgXPmrzfHpPIxWa5U3a66Uai6Ra/W5p3Al1UtufhpdkpZy/cSuQuhWZ3PQC /FfCwGt7vBcfuRoxRteBmFKXpKEIyW8svzjH8jUVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/Z95dVp8CC4b1SYfH9oIEExKfwkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNlYjgwMDYxLWQ5OTktNDU2MC05Mzk1LTlhMDA3ZThlMDNmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAFQYZ86LTPlWW66OSdyp95bn hb2AUSgQBiDeKP+0a8DY8oghEwAwtDkKw5NJqhk9xKD31orAHVSgOVZxJ0eJqWVy dqYgeU2SbLiaPymvFFY/2FhLA9P2UDk14b+4BCluQJcQ6WVWFF8nd1EQ4v0m/CSq 2jvwuQuA2V+GvaVdd40mBg7agr/uMjAZN3XTV5NJEZDhI7599iku0Mml0idnKv87 +su/ACkpnvhA+H5kgL2G/MTcydiMEPqp1U9Y2m790v0rI7B6ZSG5Fzs/ROY0bIjk s5DxEhbC3xZiDeF8UmQFNHd3gJ/7RiAtmo4gFGoE0enOVhg92rdnaYE1cqfm8zY= -----END CERTIFICATE-----Generated at Tue May 13 14:52:35 2025 by rpki-client