$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa File: a4c99211-8489-4968-bb5b-fa10b298aaaf.roa (raw, json) Hash identifier: PAtXDICqE1x2+8Qxq4byInv3BPeNN8u4Tv33z5uQGIA= Subject key identifier: D6:50:BF:AF:E4:95:E1:0D:85:4D:5D:22:03:E7:0F:EF:56:4B:89:D6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4BD2374F73F651367031DFDFF31C8DD95FB0D7A3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa Signing time: Wed 30 Apr 2025 00:10:31 +0000 ROA not before: Wed 30 Apr 2025 00:10:31 +0000 ROA not after: Wed 04 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d2:37:4f:73:f6:51:36:70:31:df:df:f3:1c:8d:d9:5f:b0:d7:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 30 00:10:31 2025 GMT Not After : Jun 4 23:59:59 2025 GMT Subject: serialNumber=e2d83d45ecef8dcdceaaecb777aaca501972593ab0d4e29782134ed65a6cfd0e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:47:43:7e:a3:5b:5f:54:e8:1d:39:b5:1b:b7: d3:19:a6:ce:de:d3:3d:de:3b:6b:b7:58:56:33:d4: bf:4c:e8:10:08:1c:e3:55:8c:2f:b3:46:b4:fe:36: c5:a1:46:4d:db:5f:c1:1e:a2:18:8a:73:c6:a9:7f: 73:ec:5e:27:80:b0:f0:72:7d:c6:46:c8:a9:1e:e1: 13:88:26:3d:9d:b3:c4:5d:b6:d1:35:f4:ea:29:27: e7:c5:1b:cc:41:b8:1a:a5:ae:61:de:9f:20:c4:05: 58:c8:c5:97:6c:28:d9:eb:1c:4b:83:a6:8f:4f:57: 27:f9:5c:80:5a:ba:07:e5:47:77:c7:40:a3:2a:61: 6a:36:3e:5d:7b:5c:10:9b:da:bb:ba:93:ed:23:08: 47:eb:f7:cb:73:4a:7d:1a:5e:73:44:3a:f2:7d:ff: 4a:6f:b6:e5:b9:2f:88:a7:16:07:48:e1:bf:16:d1: 78:95:45:c8:48:79:43:8e:ae:3f:0b:0e:1c:2b:7e: 44:22:9f:1e:1f:d8:11:49:a4:df:e1:4a:d5:de:19: e8:18:78:4e:61:52:27:67:1b:95:03:33:fd:a8:07: 47:9a:b1:f9:b7:0e:83:9c:c5:b9:a6:73:ae:f7:0e: 9d:a6:7e:a9:17:92:cc:bb:ef:5c:dc:43:bc:fa:bb: 24:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:50:BF:AF:E4:95:E1:0D:85:4D:5D:22:03:E7:0F:EF:56:4B:89:D6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 09:8a:08:15:9e:32:c2:4d:3e:aa:4c:85:21:54:38:bf:0a:cb: 52:e3:13:04:58:cc:41:66:c7:61:d6:15:fc:a2:a5:a7:ee:90: 15:50:5c:1c:53:a8:2f:54:76:41:84:d0:cf:81:3b:85:99:54: 33:2c:ef:dd:80:b9:68:61:b4:ac:09:75:a3:da:d0:30:7e:a6: 33:fb:40:b7:63:20:be:e9:d3:1a:70:93:73:12:ad:a4:98:61: b7:2a:35:48:ef:1a:8f:e5:3f:0a:4b:1c:c9:57:0e:f5:1b:7d: bf:50:6f:cb:62:b9:a0:c9:de:84:f7:18:7f:1c:a6:f8:ff:da: 1c:ee:4b:eb:10:d2:4e:9c:82:7e:02:80:a7:a9:7c:e3:19:9d: 33:93:0c:fd:2d:25:4a:e2:fe:43:d8:16:60:13:1d:0d:ff:a9: b2:2b:6b:9d:cf:15:4d:2e:d1:c5:8d:59:2e:ed:ae:b5:91:46: 60:bd:46:d9:13:e6:ba:f5:97:14:94:9f:4b:7e:56:05:f0:e5: 6e:f4:d6:c8:64:83:7a:55:59:38:bd:86:ad:cd:cc:fd:e8:c4: 37:81:64:bb:d7:90:e2:e7:bd:56:7d:2f:c8:39:e6:7e:6f:56: 52:06:ed:64:73:df:a8:b8:3e:94:d7:0c:27:58:57:f6:43:a6: b1:29:04:3e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS9I3T3P2UTZwMd/f8xyN2V+w16MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDMwMDAxMDMxWhcNMjUwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMmQ4M2Q0NWVjZWY4ZGNkY2VhYWVjYjc3N2FhY2E1MDE5 NzI1OTNhYjBkNGUyOTc4MjEzNGVkNjVhNmNmZDBlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTR0N+o1tfVOgdObUbt9MZps7e0z3eO2u3WFYz1L9M6BAI HONVjC+zRrT+NsWhRk3bX8EeohiKc8apf3PsXieAsPByfcZGyKke4ROIJj2ds8Rd ttE19OopJ+fFG8xBuBqlrmHenyDEBVjIxZdsKNnrHEuDpo9PVyf5XIBaugflR3fH QKMqYWo2Pl17XBCb2ru6k+0jCEfr98tzSn0aXnNEOvJ9/0pvtuW5L4inFgdI4b8W 0XiVRchIeUOOrj8LDhwrfkQinx4f2BFJpN/hStXeGegYeE5hUidnG5UDM/2oB0ea sfm3DoOcxbmmc673Dp2mfqkXksy771zcQ7z6uyTVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1lC/r+SV4Q2FTV0iA+cP71ZLidYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0Yzk5MjExLTg0ODktNDk2OC1iYjViLWZhMTBiMjk4YWFhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBAAmKCBWeMsJNPqpMhSFUOL8K y1LjEwRYzEFmx2HWFfyipafukBVQXBxTqC9UdkGE0M+BO4WZVDMs792AuWhhtKwJ daPa0DB+pjP7QLdjIL7p0xpwk3MSraSYYbcqNUjvGo/lPwpLHMlXDvUbfb9Qb8ti uaDJ3oT3GH8cpvj/2hzuS+sQ0k6cgn4CgKepfOMZnTOTDP0tJUri/kPYFmATHQ3/ qbIra53PFU0u0cWNWS7trrWRRmC9RtkT5rr1lxSUn0t+VgXw5W701shkg3pVWTi9 hq3NzP3oxDeBZLvXkOLnvVZ9L8g55n5vVlIG7WRz36i4PpTXDCdYV/ZDprEpBD4= -----END CERTIFICATE-----Generated at Sun May 11 16:03:46 2025 by rpki-client