$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: ioItc5mZOv2ovKHHE9BPxjap/s5Gu8yndHO8U8XuKAI= Subject key identifier: 5F:7C:B3:D4:9F:D3:03:8D:7D:87:40:98:1B:96:5C:73:DB:56:D1:8A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1029CE3A422CFED264955EE97B4A67A9AEBA0B40 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Sat 10 May 2025 00:50:04 +0000 ROA not before: Sat 10 May 2025 00:50:04 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:29:ce:3a:42:2c:fe:d2:64:95:5e:e9:7b:4a:67:a9:ae:ba:0b:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 10 00:50:04 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=aefc922eb1676a402c7fd716b37f59249c6f14fae39f8794d15ae57e69a7b0f0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:18:2f:b3:9a:9d:52:57:eb:2f:f6:cb:fb:69: 83:ed:3a:5d:3a:cf:2d:5a:62:ae:b7:7b:a6:fa:8e: 6b:2b:92:c9:8f:f2:86:20:4f:cd:57:52:2b:d2:19: bd:89:9f:a4:15:13:83:43:6b:94:8e:ef:3a:9d:f3: 3b:8f:d1:98:be:06:2a:c2:34:94:d3:ff:d2:2e:31: 9a:b5:1d:4d:b3:c8:0f:3b:a2:8e:07:4c:f7:3f:91: b8:95:04:8a:58:89:ee:a6:dd:83:c0:25:69:47:d1: 27:5a:d6:7b:d2:99:2c:24:79:79:cd:61:46:8d:40: 61:41:a9:0b:09:af:56:8b:ed:ce:6c:90:c6:37:85: cf:c8:94:fa:f0:a0:31:74:e1:62:28:5f:e0:31:fd: b7:bc:40:75:0e:71:d3:db:09:4a:df:68:be:9e:d6: 8f:98:9f:47:97:2a:e1:bc:dd:15:89:46:3f:a9:c1: 78:f1:70:24:d4:33:10:8e:28:c8:d1:11:a2:8d:a4: f5:73:02:36:3f:7f:81:9f:94:e1:67:eb:59:43:c7: 8d:9b:cf:4b:ed:80:60:f4:80:bc:6c:e5:ce:91:00: 94:31:9a:65:b9:ee:66:d2:cf:ea:5e:68:c9:f0:a3: a4:0b:a4:b6:c8:a6:4d:2d:23:95:8e:35:4d:5c:f1: 2b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7C:B3:D4:9F:D3:03:8D:7D:87:40:98:1B:96:5C:73:DB:56:D1:8A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 58:bb:10:08:98:92:75:a3:59:f1:62:8b:69:54:09:f8:d3:ef: c5:2d:f2:38:b5:c8:f1:2c:7d:86:f4:55:c5:79:54:e0:a5:b5: 4c:49:2c:9e:21:65:54:40:6c:35:c7:e5:95:17:ab:7b:6b:b5: 33:67:66:e8:03:20:75:f1:e9:a9:8f:ab:76:d7:b3:be:05:af: 1c:f8:ac:9c:93:04:1b:79:78:ce:18:d0:22:c3:6f:9a:b7:6a: b1:8a:da:e3:b1:22:df:a5:a8:11:aa:93:63:2e:72:68:3d:aa: e9:ad:e2:1b:3d:b0:41:f7:7a:b4:1f:90:d8:02:42:c7:72:90: e7:c3:4d:39:90:fe:f4:7f:30:53:71:d9:fa:a5:ed:84:4d:f4: 55:bb:2c:74:51:7e:a6:be:20:5e:5b:90:1b:83:06:bd:8c:d6: bf:11:2a:6b:77:6a:6f:66:78:dd:d4:1a:80:42:c6:9c:c9:70: d8:f2:ee:70:8b:78:d1:22:61:07:75:4d:04:92:1b:f4:bc:a1: 26:e9:e8:94:5e:1d:4f:f8:a1:19:15:b2:62:37:b9:69:78:88: a6:72:f3:d9:d4:be:0b:10:02:1b:9c:71:21:1b:85:4d:02:fa: 19:b6:bc:95:13:e5:b2:33:cc:28:64:41:ba:d2:7d:7d:1f:44: fc:38:37:7c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUECnOOkIs/tJklV7pe0pnqa66C0AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTEwMDA1MDA0WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZWZjOTIyZWIxNjc2YTQwMmM3ZmQ3MTZiMzdmNTkyNDlj NmYxNGZhZTM5Zjg3OTRkMTVhZTU3ZTY5YTdiMGYwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0GC+zmp1SV+sv9sv7aYPtOl06zy1aYq63e6b6jmsrksmP 8oYgT81XUivSGb2Jn6QVE4NDa5SO7zqd8zuP0Zi+BirCNJTT/9IuMZq1HU2zyA87 oo4HTPc/kbiVBIpYie6m3YPAJWlH0Sda1nvSmSwkeXnNYUaNQGFBqQsJr1aL7c5s kMY3hc/IlPrwoDF04WIoX+Ax/be8QHUOcdPbCUrfaL6e1o+Yn0eXKuG83RWJRj+p wXjxcCTUMxCOKMjREaKNpPVzAjY/f4GflOFn61lDx42bz0vtgGD0gLxs5c6RAJQx mmW57mbSz+peaMnwo6QLpLbIpk0tI5WONU1c8SszAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUX3yz1J/TA419h0CYG5Zcc9tW0YowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAFi7EAiYknWjWfFii2lUCfjT 78Ut8ji1yPEsfYb0VcV5VOCltUxJLJ4hZVRAbDXH5ZUXq3trtTNnZugDIHXx6amP q3bXs74Frxz4rJyTBBt5eM4Y0CLDb5q3arGK2uOxIt+lqBGqk2Mucmg9qumt4hs9 sEH3erQfkNgCQsdykOfDTTmQ/vR/MFNx2fql7YRN9FW7LHRRfqa+IF5bkBuDBr2M 1r8RKmt3am9meN3UGoBCxpzJcNjy7nCLeNEiYQd1TQSSG/S8oSbp6JReHU/4oRkV smI3uWl4iKZy89nUvgsQAhuccSEbhU0C+hm2vJUT5bIzzChkQbrSfX0fRPw4N3w= -----END CERTIFICATE-----Generated at Sun May 11 18:53:04 2025 by rpki-client