$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa File: af93e150-9469-47eb-8185-3ff03d87db06.roa (raw, json) Hash identifier: YEn/90itKPb2n9FAxHnloxSD6GRNKa4KMz6jP/Kie2w= Subject key identifier: 4B:A0:FE:59:4C:1A:EB:9E:04:42:6B:EE:6A:69:5B:EC:84:C2:60:B9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7A69DCDB25EE5BB440A505541CB5A132611EAA37 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa Signing time: Wed 30 Apr 2025 00:10:32 +0000 ROA not before: Wed 30 Apr 2025 00:10:32 +0000 ROA not after: Wed 04 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:69:dc:db:25:ee:5b:b4:40:a5:05:54:1c:b5:a1:32:61:1e:aa:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 30 00:10:32 2025 GMT Not After : Jun 4 23:59:59 2025 GMT Subject: serialNumber=7ad53cd2c1b1476c28b9fda0f0bc76e4d1bd6dea8c83edbc64bbc596ae72e6e9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4c:1f:24:5c:3e:74:fc:5d:5c:91:94:3f:6c: d1:55:98:ea:39:3f:2d:ec:b8:24:99:66:e4:7d:5b: 02:2f:b9:c2:e3:57:68:3e:28:ec:df:f2:93:ae:36: 5f:e8:79:8b:aa:c1:75:97:c8:d5:b7:91:e7:6f:db: 66:f0:a3:27:89:05:a7:50:c1:91:c0:5e:a3:bd:72: 67:ca:80:a5:53:7a:5a:f5:aa:8b:d0:96:83:1f:0e: 4f:aa:33:8e:4d:0f:02:d9:d1:2f:27:a1:35:44:ad: 0c:4e:73:2a:d5:a4:be:50:f5:fb:6b:6d:4b:46:b0: 6a:71:7a:c5:15:3c:67:5d:0a:50:a2:c9:d0:c7:d7: c4:df:60:71:da:f6:a5:93:2c:f0:02:6d:b7:fb:a5: b2:6a:98:07:57:99:7a:8f:c0:f6:19:f0:9d:15:95: fe:9e:f5:42:02:75:4f:dc:ae:dd:4c:60:27:c3:cc: 83:91:08:54:ea:07:60:01:ee:2f:77:f0:11:01:a4: ac:81:25:b5:09:02:9d:d8:ef:05:53:2b:74:03:76: 00:d9:b5:3b:2b:26:db:ed:17:d1:7e:96:73:72:92: e8:cf:31:ff:2f:c7:e2:20:00:8d:d3:a1:58:60:b3: 2e:00:1f:a9:56:93:5d:90:b8:30:fd:74:48:25:02: 9b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A0:FE:59:4C:1A:EB:9E:04:42:6B:EE:6A:69:5B:EC:84:C2:60:B9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 9c:1e:2d:fb:b2:b9:d1:12:c6:d9:78:5b:4e:2f:be:0e:c1:35: 6a:cf:46:f1:27:5b:f0:67:63:ce:27:dc:e7:39:5c:7b:7b:6f: e1:81:69:24:97:67:1e:b7:6e:ad:dd:fe:5a:a9:79:ca:46:83: dd:fc:d7:cc:98:b5:56:4b:0e:43:79:41:bb:46:31:3c:0c:25: cd:3d:5e:46:8d:32:bb:9f:8a:a8:74:99:91:74:47:4f:c7:cf: 5b:96:ac:50:c4:8c:c7:1a:80:89:71:53:76:07:57:01:c8:ef: 46:1d:52:26:2d:e4:83:57:fa:f0:5e:41:6b:d3:73:0b:5e:82: 28:9e:87:d1:76:83:1e:53:ea:1f:8f:e9:94:a9:18:1a:87:ce: 9b:28:1c:73:c6:92:76:24:f4:8c:58:a4:78:31:21:2c:66:3a: b7:10:62:2e:17:34:fd:12:65:32:6f:6f:6f:b3:8c:93:64:df: 58:2e:f1:f8:a0:35:22:ee:83:9d:6b:56:d9:a2:66:64:6f:49: 44:11:ac:52:49:a5:a0:ec:94:b0:ba:12:6c:6d:46:fa:24:55: 34:17:c5:27:64:c8:63:eb:ff:a4:21:bb:84:04:d4:8c:57:10: 06:a0:1f:5a:5c:52:fe:b4:1d:2b:04:24:fc:80:e2:0f:71:35: 1e:b0:53:de -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUemnc2yXuW7RApQVUHLWhMmEeqjcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDMwMDAxMDMyWhcNMjUwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWQ1M2NkMmMxYjE0NzZjMjhiOWZkYTBmMGJjNzZlNGQx YmQ2ZGVhOGM4M2VkYmM2NGJiYzU5NmFlNzJlNmU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuTB8kXD50/F1ckZQ/bNFVmOo5Py3suCSZZuR9WwIvucLj V2g+KOzf8pOuNl/oeYuqwXWXyNW3kedv22bwoyeJBadQwZHAXqO9cmfKgKVTelr1 qovQloMfDk+qM45NDwLZ0S8noTVErQxOcyrVpL5Q9ftrbUtGsGpxesUVPGddClCi ydDH18TfYHHa9qWTLPACbbf7pbJqmAdXmXqPwPYZ8J0Vlf6e9UICdU/crt1MYCfD zIORCFTqB2AB7i938BEBpKyBJbUJAp3Y7wVTK3QDdgDZtTsrJtvtF9F+lnNykujP Mf8vx+IgAI3ToVhgsy4AH6lWk12QuDD9dEglApstAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUS6D+WUwa654EQmvuamlb7ITCYLkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmOTNlMTUwLTk0NjktNDdlYi04MTg1LTNmZjAzZDg3ZGIwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBAJweLfuyudESxtl4W04vvg7B NWrPRvEnW/BnY84n3Oc5XHt7b+GBaSSXZx63bq3d/lqpecpGg93818yYtVZLDkN5 QbtGMTwMJc09XkaNMrufiqh0mZF0R0/Hz1uWrFDEjMcagIlxU3YHVwHI70YdUiYt 5INX+vBeQWvTcwtegiieh9F2gx5T6h+P6ZSpGBqHzpsoHHPGknYk9IxYpHgxISxm OrcQYi4XNP0SZTJvb2+zjJNk31gu8figNSLug51rVtmiZmRvSUQRrFJJpaDslLC6 EmxtRvokVTQXxSdkyGPr/6Qhu4QE1IxXEAagH1pcUv60HSsEJPyA4g9xNR6wU94= -----END CERTIFICATE-----Generated at Fri May 9 05:10:31 2025 by rpki-client