$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa File: 514fa870-df33-4dfe-a228-5ea96e0f3560.roa (raw, json) Hash identifier: inH8wGTniLLvmtZRqlMT9unMob8k/pFgwXj48LGABxI= Subject key identifier: 55:3F:98:64:C0:87:E1:B3:FA:23:83:28:91:84:81:1D:C3:BC:64:D3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 400457C0C8BF28F78ABEE3C3973DC4B9923BEA1C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa Signing time: Fri 02 May 2025 00:20:40 +0000 ROA not before: Fri 02 May 2025 00:20:40 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:04:57:c0:c8:bf:28:f7:8a:be:e3:c3:97:3d:c4:b9:92:3b:ea:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 2 00:20:40 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=d3f56025ac32859b1500d0a00301b16a4effd7b25d1bfc2e390392e589a49d40, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:24:65:2b:f4:0f:d6:68:fd:cb:1a:0f:87:5f: c7:12:d2:9e:cc:5e:39:fd:eb:57:8a:1e:54:5d:85: 2b:cd:0b:1e:7a:60:c1:5b:33:da:8f:af:11:1d:41: e9:71:76:af:89:76:f4:c2:d1:38:32:c4:2d:2e:5f: d8:1f:a9:10:b7:dd:77:9f:c3:7e:a8:7e:11:d5:c1: 06:f2:27:1e:90:e6:42:3b:bb:ee:3b:38:74:fb:71: 12:17:88:12:2e:65:b1:6c:0d:0d:a9:09:42:8d:cc: 93:8d:6a:71:34:4a:99:27:91:f2:4c:d2:3e:c1:2b: bc:2b:59:19:f8:ca:a4:eb:84:63:7c:68:73:d6:6a: 21:31:9a:af:ba:51:8e:cc:21:9e:b5:2b:66:ab:ec: 4d:5b:6a:10:4f:f3:c2:5c:51:5d:ae:54:15:23:64: 00:c5:d2:80:c0:27:f4:36:7a:3b:89:eb:96:78:c9: a5:f0:4f:f0:18:04:37:91:11:85:17:26:72:e5:78: 92:21:59:e8:89:49:7c:df:f2:15:22:dd:93:d1:b9: 8e:94:d1:41:f6:18:5b:3a:f6:7d:f8:12:74:63:8e: 95:ae:9a:01:73:15:51:96:96:99:93:b2:7f:16:0d: 70:25:a4:e7:ba:67:db:c6:2c:ef:0c:28:ca:e4:94: 42:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3F:98:64:C0:87:E1:B3:FA:23:83:28:91:84:81:1D:C3:BC:64:D3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 5b:4b:00:87:eb:08:a0:df:9f:b1:3e:f6:44:a1:5d:3b:69:e8: 63:13:c3:f6:fa:cd:7e:6b:74:fa:f6:33:31:52:36:ce:7d:c3: 7d:ad:5c:cd:ad:88:00:97:55:e6:87:30:ac:7f:90:d7:ca:d4: 17:d6:62:1d:b6:ed:bf:85:72:ce:9c:04:63:b8:de:fe:e2:0c: dc:61:1b:cb:e6:c1:a8:93:6c:db:9b:79:c1:c0:b1:f8:6a:95: ee:50:37:48:5b:3e:1a:08:24:d7:49:e3:34:da:a4:5a:5e:5f: e8:04:39:ba:0d:8e:7b:16:c5:02:d1:5d:0f:f1:d1:8d:75:f0: 85:19:fa:f8:27:e3:f8:61:ce:c6:01:73:22:e6:6a:e7:59:ae: f2:4b:2f:5b:8e:3a:94:23:ca:36:de:49:91:6b:17:5b:3b:de: 3d:e6:92:35:a1:95:73:47:61:95:06:e6:97:c7:eb:06:6e:db: 29:92:f4:e6:5c:7e:cb:66:09:aa:ef:25:bc:85:16:43:c8:be: 73:7f:d8:ed:70:c4:8b:13:29:4e:d7:bc:bc:30:b1:60:97:b7: d4:b6:4a:50:02:5d:b6:19:58:56:2d:48:16:df:a9:74:d5:14: fa:29:a9:ee:e0:4c:f0:3e:c2:22:1d:75:15:f3:18:aa:d7:cb: bd:a7:8b:a7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQARXwMi/KPeKvuPDlz3EuZI76hwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTAyMDAyMDQwWhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2Y1NjAyNWFjMzI4NTliMTUwMGQwYTAwMzAxYjE2YTRl ZmZkN2IyNWQxYmZjMmUzOTAzOTJlNTg5YTQ5ZDQwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCCJGUr9A/WaP3LGg+HX8cS0p7MXjn961eKHlRdhSvNCx56 YMFbM9qPrxEdQelxdq+JdvTC0TgyxC0uX9gfqRC33Xefw36ofhHVwQbyJx6Q5kI7 u+47OHT7cRIXiBIuZbFsDQ2pCUKNzJONanE0SpknkfJM0j7BK7wrWRn4yqTrhGN8 aHPWaiExmq+6UY7MIZ61K2ar7E1bahBP88JcUV2uVBUjZADF0oDAJ/Q2ejuJ65Z4 yaXwT/AYBDeREYUXJnLleJIhWeiJSXzf8hUi3ZPRuY6U0UH2GFs69n34EnRjjpWu mgFzFVGWlpmTsn8WDXAlpOe6Z9vGLO8MKMrklEIFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVT+YZMCH4bP6I4MokYSBHcO8ZNMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUxNGZhODcwLWRmMzMtNGRmZS1hMjI4LTVlYTk2ZTBmMzU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAFtLAIfrCKDfn7E+9kShXTtp 6GMTw/b6zX5rdPr2MzFSNs59w32tXM2tiACXVeaHMKx/kNfK1BfWYh227b+Fcs6c BGO43v7iDNxhG8vmwaiTbNubecHAsfhqle5QN0hbPhoIJNdJ4zTapFpeX+gEOboN jnsWxQLRXQ/x0Y118IUZ+vgn4/hhzsYBcyLmaudZrvJLL1uOOpQjyjbeSZFrF1s7 3j3mkjWhlXNHYZUG5pfH6wZu2ymS9OZcfstmCarvJbyFFkPIvnN/2O1wxIsTKU7X vLwwsWCXt9S2SlACXbYZWFYtSBbfqXTVFPopqe7gTPA+wiIddRXzGKrXy72ni6c= -----END CERTIFICATE-----Generated at Sat May 10 10:29:03 2025 by rpki-client