$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa File: 455cc001-6d98-49b1-ab73-9a1e06726f9f.roa (raw, json) Hash identifier: 8pN3W87KrGRKbEteryIhG2PbrnXEVu0OyTkvfBw5A7w= Subject key identifier: A7:7C:9D:0F:9A:FA:34:7E:35:55:7B:6E:B2:B7:62:4C:35:3B:21:1E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5E652130428C459A624418EBE00450292A01FAB6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa Signing time: Sat 10 May 2025 00:50:05 +0000 ROA not before: Sat 10 May 2025 00:50:05 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:65:21:30:42:8c:45:9a:62:44:18:eb:e0:04:50:29:2a:01:fa:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 10 00:50:05 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=78897591fdd4549751a298ad8dc5aa55fcf4a8417b0af502dc58829652b29078, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:06:87:5e:92:eb:55:6c:47:32:e8:66:86:db: 88:8a:bd:11:7f:98:c8:2d:b2:2b:93:94:c7:d4:df: 19:cb:dc:63:aa:2b:80:26:34:6c:11:98:59:51:cc: 39:9e:cb:44:52:f8:c6:b1:96:38:de:66:e7:67:d0: e4:58:3f:1e:2c:77:40:51:12:ff:19:5f:23:dd:27: e3:11:e5:01:8a:56:6e:ba:97:b4:6f:af:fa:8b:50: bf:07:79:c1:8b:81:65:ac:8b:54:2f:d0:c8:be:13: aa:18:28:64:40:46:e9:bc:ad:29:b4:0c:e0:21:08: f2:e2:f1:52:de:1e:f5:20:98:2b:f2:48:34:50:73: a9:dd:6c:f1:24:d0:ca:77:af:c0:72:a5:54:1c:09: 36:30:c7:a9:29:44:a5:88:41:c6:a7:fa:ba:ae:ba: 6e:51:71:1c:98:98:f0:43:88:6e:c2:85:ba:31:2b: 8d:31:27:8c:2f:43:86:a6:af:53:6d:f6:43:27:e9: e2:4a:37:47:44:ea:a0:9e:e4:40:df:18:a3:22:18: e4:ea:c2:98:2e:b6:e9:1a:bb:06:9a:4f:82:f8:6a: 28:0b:ba:6c:fa:c7:39:b9:b3:9b:95:60:8a:5c:7b: 91:9e:f2:ba:24:c2:56:5c:5e:7d:5f:62:c1:ef:f8: f3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:7C:9D:0F:9A:FA:34:7E:35:55:7B:6E:B2:B7:62:4C:35:3B:21:1E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 02:79:96:4c:1e:50:73:7b:4c:8b:08:0a:ef:14:41:47:c9:a2: 41:12:cb:67:43:c3:cf:31:f9:1b:99:18:aa:7a:ad:44:4c:dc: 35:2d:a1:95:e2:8e:15:17:27:64:e0:ea:c6:f5:a5:55:e2:22: 10:8c:8f:b2:d8:2d:e2:ed:ad:ad:b2:fd:38:b7:3e:df:3e:82: a4:39:51:40:12:93:0b:82:c7:9c:b5:3c:76:ec:69:d2:64:b9: 9d:87:cf:08:b4:8f:6a:fd:20:64:f6:7d:6d:98:d0:53:02:a1: 3e:f9:e8:87:33:83:dc:5e:c1:42:6c:93:23:92:8d:88:29:18: ab:3e:6c:3b:7f:ab:7f:35:2d:c9:f2:49:1c:1c:73:25:55:b9: 51:69:37:bf:69:4b:39:8b:1e:e7:5c:17:f8:07:28:db:a2:58: ec:d3:c4:be:5f:b0:63:33:a2:0f:cb:a6:d8:14:41:54:a6:c6: 1c:f5:53:e5:bb:ce:b8:6d:49:d0:19:a8:5d:f8:0f:55:bc:1b: 75:1b:ed:36:3f:b3:4f:96:86:43:c6:ab:a6:ae:9d:ef:e1:d8: ed:7f:4c:50:e3:32:57:f3:00:be:61:6b:4d:99:5d:e9:3c:79: af:19:86:b5:ba:c8:7a:54:3f:a4:3a:46:94:af:16:b7:b0:8b: 3e:f9:1c:4b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXmUhMEKMRZpiRBjr4ARQKSoB+rYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTEwMDA1MDA1WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODg5NzU5MWZkZDQ1NDk3NTFhMjk4YWQ4ZGM1YWE1NWZj ZjRhODQxN2IwYWY1MDJkYzU4ODI5NjUyYjI5MDc4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeBodekutVbEcy6GaG24iKvRF/mMgtsiuTlMfU3xnL3GOq K4AmNGwRmFlRzDmey0RS+MaxljjeZudn0ORYPx4sd0BREv8ZXyPdJ+MR5QGKVm66 l7Rvr/qLUL8HecGLgWWsi1Qv0Mi+E6oYKGRARum8rSm0DOAhCPLi8VLeHvUgmCvy SDRQc6ndbPEk0Mp3r8BypVQcCTYwx6kpRKWIQcan+rquum5RcRyYmPBDiG7Chbox K40xJ4wvQ4amr1Nt9kMn6eJKN0dE6qCe5EDfGKMiGOTqwpgutukauwaaT4L4aigL umz6xzm5s5uVYIpce5Ge8rokwlZcXn1fYsHv+PMRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUp3ydD5r6NH41VXtusrdiTDU7IR4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NWNjMDAxLTZkOTgtNDliMS1hYjczLTlhMWUwNjcyNmY5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAAJ5lkweUHN7TIsICu8UQUfJ okESy2dDw88x+RuZGKp6rURM3DUtoZXijhUXJ2Tg6sb1pVXiIhCMj7LYLeLtra2y /Ti3Pt8+gqQ5UUASkwuCx5y1PHbsadJkuZ2Hzwi0j2r9IGT2fW2Y0FMCoT756Icz g9xewUJskyOSjYgpGKs+bDt/q381LcnySRwccyVVuVFpN79pSzmLHudcF/gHKNui WOzTxL5fsGMzog/LptgUQVSmxhz1U+W7zrhtSdAZqF34D1W8G3Ub7TY/s0+WhkPG q6aune/h2O1/TFDjMlfzAL5ha02ZXek8ea8ZhrW6yHpUP6Q6RpSvFrewiz75HEs= -----END CERTIFICATE-----Generated at Sun May 11 12:38:27 2025 by rpki-client