$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa File: 9a96c02c-ad61-40ce-b5aa-def693953ba1.roa (raw, json) Hash identifier: +76JLD4Z9fAvAMCOAFcNIjrqMYsSwj1e7btzr+hph5Q= Subject key identifier: B1:BA:0B:15:07:84:3D:FC:5D:0D:4E:1B:CE:73:A6:DE:B2:BE:0B:07 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 8D21F68F717FEEE8FD79495D913B67B770BC0E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa Signing time: Tue 29 Apr 2025 00:30:12 +0000 ROA not before: Tue 29 Apr 2025 00:30:12 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8d:21:f6:8f:71:7f:ee:e8:fd:79:49:5d:91:3b:67:b7:70:bc:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:30:12 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=4473c1178543e8f38c3bed7b69be0c4ef92e74cf88084646e6d8087d31322e46, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b9:b9:2c:9c:9b:66:76:62:9d:11:77:bd:9e: 90:3e:56:b9:70:a1:66:00:5b:bc:2b:41:ba:c9:63: b4:fc:8a:92:85:ae:f0:d4:ce:c4:b5:99:17:e5:78: bd:1a:0d:1a:8a:85:7c:75:76:fe:f2:55:bf:34:2a: c6:c1:68:9e:0b:a6:b5:22:b8:85:ea:21:2e:bc:58: a4:59:21:4e:ad:04:19:68:aa:f3:35:3f:09:24:cb: 8c:75:ec:7b:f2:f1:cf:99:3e:08:5e:3d:be:26:c1: 8b:9d:60:16:f2:89:96:b9:04:89:a7:fd:dd:86:77: 65:6b:91:da:6d:1b:f3:f9:0a:d1:2f:fb:2d:30:4f: dd:c4:23:84:34:69:18:c4:eb:79:a4:4d:af:df:5e: d8:96:db:c4:a3:61:1c:3a:1f:4c:40:ad:a6:1e:3f: 8a:f3:fe:78:c2:9a:b3:9a:56:db:44:c5:18:8e:19: 2c:28:5c:0f:69:b9:52:8f:f4:70:9f:32:85:9b:5a: b2:0a:14:50:5b:75:72:a2:f4:4f:1f:70:3b:e9:40: fc:fe:5d:85:57:bd:c0:9c:97:32:a3:3d:fb:36:ae: 16:87:bd:ef:20:09:14:ce:ca:00:7d:48:02:83:ab: 84:9c:bd:4f:5b:63:b6:f1:32:c1:93:eb:e1:de:94: a9:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:BA:0B:15:07:84:3D:FC:5D:0D:4E:1B:CE:73:A6:DE:B2:BE:0B:07 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 7e:2c:65:37:7c:a1:56:70:d1:58:90:b5:52:84:1a:d1:e2:6a: 05:55:1b:e9:3a:42:76:53:b3:6a:22:11:55:9c:66:74:24:f0: 16:2b:e8:0d:53:f2:49:2b:db:d5:10:eb:f6:bd:50:a9:88:c3: 52:e3:51:a9:17:7a:b1:01:77:43:cb:f9:9e:c3:5e:ff:29:2d: 40:a8:b0:66:3e:fe:08:4c:0e:f2:96:20:19:d8:a8:1a:4a:e0: 5a:d7:4a:ae:47:cf:99:fb:6a:13:03:0e:fb:ae:ab:f1:6e:99: 34:fb:7b:b7:5a:a7:fa:71:62:ef:d8:1f:7c:0d:03:a0:3c:f3: a0:92:47:e4:1c:37:fe:e7:5d:15:8a:cf:d4:f6:60:e7:4e:4c: b6:3d:40:27:36:11:c8:6f:06:57:2f:c0:af:2b:b5:f0:55:ae: 9b:a2:b7:f0:d5:dd:a5:3e:66:be:03:e8:d5:4d:23:b9:a7:6e: fa:1f:b4:66:20:40:63:47:ff:10:5b:d3:d5:d9:ae:6a:eb:54: 07:96:14:47:e6:6d:83:1a:8d:e2:fb:ce:8e:2c:74:45:8a:f3: dc:85:cb:d1:b3:7b:65:39:5e:84:55:ba:54:81:73:ec:c9:db: e7:21:ea:7d:7d:d6:16:e5:fb:8c:72:92:60:cd:5f:5b:0e:3f: f7:fb:fa:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAI0h9o9xf+7o/XlJXZE7Z7dwvA4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI5MDAzMDEyWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDczYzExNzg1NDNlOGYzOGMzYmVkN2I2OWJlMGM0ZWY5 MmU3NGNmODgwODQ2NDZlNmQ4MDg3ZDMxMzIyZTQ2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6ubksnJtmdmKdEXe9npA+VrlwoWYAW7wrQbrJY7T8ipKF rvDUzsS1mRfleL0aDRqKhXx1dv7yVb80KsbBaJ4LprUiuIXqIS68WKRZIU6tBBlo qvM1Pwkky4x17Hvy8c+ZPghePb4mwYudYBbyiZa5BImn/d2Gd2VrkdptG/P5CtEv +y0wT93EI4Q0aRjE63mkTa/fXtiW28SjYRw6H0xAraYeP4rz/njCmrOaVttExRiO GSwoXA9puVKP9HCfMoWbWrIKFFBbdXKi9E8fcDvpQPz+XYVXvcCclzKjPfs2rhaH ve8gCRTOygB9SAKDq4ScvU9bY7bxMsGT6+HelKmHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsboLFQeEPfxdDU4bznOm3rK+CwcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlhOTZjMDJjLWFkNjEtNDBjZS1iNWFhLWRlZjY5Mzk1M2JhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAH4sZTd8oVZw0ViQtVKEGtHi agVVG+k6QnZTs2oiEVWcZnQk8BYr6A1T8kkr29UQ6/a9UKmIw1LjUakXerEBd0PL +Z7DXv8pLUCosGY+/ghMDvKWIBnYqBpK4FrXSq5Hz5n7ahMDDvuuq/FumTT7e7da p/pxYu/YH3wNA6A886CSR+QcN/7nXRWKz9T2YOdOTLY9QCc2EchvBlcvwK8rtfBV rpuit/DV3aU+Zr4D6NVNI7mnbvoftGYgQGNH/xBb09XZrmrrVAeWFEfmbYMajeL7 zo4sdEWK89yFy9Gze2U5XoRVulSBc+zJ2+ch6n191hbl+4xykmDNX1sOP/f7+vE= -----END CERTIFICATE-----Generated at Sun May 11 11:49:37 2025 by rpki-client