$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd541762-84a0-4063-89f9-de14817d2419.roa File: cd541762-84a0-4063-89f9-de14817d2419.roa (raw, json) Hash identifier: jqWmaZbDfznco6SxhXbXa7Z6cDf1ctZ537O4UY+N3o8= Subject key identifier: EC:13:DB:07:3E:AB:89:B7:27:DF:66:00:4E:2C:D3:06:4F:DA:AE:F8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 28D9DF1C8963B15AEEACE346DFC9D223EB61510D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd541762-84a0-4063-89f9-de14817d2419.roa Signing time: Fri 25 Apr 2025 17:51:07 +0000 ROA not before: Fri 25 Apr 2025 17:51:07 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d9:df:1c:89:63:b1:5a:ee:ac:e3:46:df:c9:d2:23:eb:61:51:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 25 17:51:07 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=38a22bad126dd77f5f3093665d72d375605f1500d6ea37e012de3273908d5dee, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ca:d3:f8:3e:f7:42:2f:ef:d6:cf:e5:54:5b: ba:74:e2:43:fb:d5:96:aa:0c:54:bf:76:22:82:2c: 6f:63:32:fb:60:d6:ed:7c:73:4c:60:2b:ac:ee:e2: 7d:d4:59:31:76:66:15:2d:74:0a:e9:c6:5b:22:c5: ed:7d:ee:02:09:cf:23:e0:84:e6:d3:34:d0:4f:0b: 51:e6:45:b6:98:49:99:8a:3f:21:03:33:48:9a:b3: 06:50:a1:9b:41:95:60:23:28:fa:2e:3b:50:4f:22: f0:f8:28:7a:2f:02:8c:6a:a6:d1:6e:61:43:28:0c: a0:03:b9:ff:cf:84:cf:f2:81:17:e1:64:0c:ab:4b: 2c:33:be:7e:f2:13:45:9f:9f:45:6e:a1:a0:81:13: 0c:74:61:4a:90:1c:96:06:20:51:66:1a:07:fe:93: ab:6b:af:3f:e2:4d:ce:95:f6:47:a8:99:47:ef:9a: bf:ad:93:3f:12:68:03:9b:6a:7d:17:e9:74:17:53: e9:eb:67:86:75:0d:74:71:07:f4:13:c3:c0:c9:a1: 41:2f:c2:cc:70:2d:bb:e4:4a:39:ef:d0:07:2c:0a: c3:11:0a:bd:c3:64:0f:53:62:54:77:4f:5d:f9:19: 8f:da:53:cb:0c:34:82:3e:b2:24:c4:c7:ae:40:23: 09:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:13:DB:07:3E:AB:89:B7:27:DF:66:00:4E:2C:D3:06:4F:DA:AE:F8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd541762-84a0-4063-89f9-de14817d2419.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 6d:c7:97:2a:c1:d7:16:70:48:19:27:06:85:e5:7c:51:10:f9: 00:7b:2c:e5:11:19:f8:a4:99:37:1f:46:fd:37:1e:c8:35:d4: e5:79:65:9e:dc:77:24:b9:e4:17:a2:8a:a2:8f:9b:7a:9a:27: 8a:ba:e9:7a:b8:95:79:ac:53:90:2c:4a:ec:67:8b:58:d6:25: 9d:7b:e2:b9:0a:db:86:b8:8b:8a:e0:f5:48:e2:00:e5:99:c2: f8:e8:96:94:2b:79:f9:41:73:c1:62:1c:41:9e:fe:2e:41:20: 6c:2f:21:00:74:b1:cb:59:96:3d:52:85:e2:bd:16:2c:40:f2: 5f:ee:11:32:3d:3e:c4:ad:11:0d:46:86:81:1b:dc:9d:c2:f7: 50:25:f7:1b:d3:a6:bf:c9:85:a6:ad:98:30:c2:2b:c5:07:a6: 40:4f:d8:39:ef:ae:4a:89:fa:a8:ef:b5:a0:69:65:0f:eb:4b: 39:a7:d2:ad:a1:7f:dc:ce:1a:14:62:da:a8:5f:93:9b:15:7d: 2b:f7:1e:3d:70:4b:f5:1e:52:fe:9e:1e:68:0a:f8:77:3f:d1: 75:ee:6c:c1:eb:e9:d1:16:34:b9:30:b7:48:fe:ab:54:68:83: ab:61:39:5c:fc:cd:82:01:14:a6:84:17:80:3f:13:b3:46:c7: a4:a2:19:76 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKNnfHIljsVrurONG38nSI+thUQ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI1MTc1MTA3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOGEyMmJhZDEyNmRkNzdmNWYzMDkzNjY1ZDcyZDM3NTYw NWYxNTAwZDZlYTM3ZTAxMmRlMzI3MzkwOGQ1ZGVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4ytP4PvdCL+/Wz+VUW7p04kP71ZaqDFS/diKCLG9jMvtg 1u18c0xgK6zu4n3UWTF2ZhUtdArpxlsixe197gIJzyPghObTNNBPC1HmRbaYSZmK PyEDM0iaswZQoZtBlWAjKPouO1BPIvD4KHovAoxqptFuYUMoDKADuf/PhM/ygRfh ZAyrSywzvn7yE0Wfn0VuoaCBEwx0YUqQHJYGIFFmGgf+k6trrz/iTc6V9keomUfv mr+tkz8SaAOban0X6XQXU+nrZ4Z1DXRxB/QTw8DJoUEvwsxwLbvkSjnv0AcsCsMR Cr3DZA9TYlR3T135GY/aU8sMNII+siTEx65AIwnvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7BPbBz6ribcn32YATizTBk/arvgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NkNTQxNzYyLTg0YTAtNDA2My04OWY5LWRlMTQ4MTdkMjQxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAG3HlyrB1xZwSBknBoXlfFEQ +QB7LOURGfikmTcfRv03Hsg11OV5ZZ7cdyS55BeiiqKPm3qaJ4q66Xq4lXmsU5As Suxni1jWJZ174rkK24a4i4rg9UjiAOWZwvjolpQreflBc8FiHEGe/i5BIGwvIQB0 sctZlj1SheK9FixA8l/uETI9PsStEQ1GhoEb3J3C91Al9xvTpr/JhaatmDDCK8UH pkBP2DnvrkqJ+qjvtaBpZQ/rSzmn0q2hf9zOGhRi2qhfk5sVfSv3Hj1wS/UeUv6e HmgK+Hc/0XXubMHr6dEWNLkwt0j+q1Rog6thOVz8zYIBFKaEF4A/E7NGx6SiGXY= -----END CERTIFICATE-----Generated at Tue May 13 01:44:18 2025 by rpki-client