$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa File: ddabe105-17a8-4460-a8c9-18b7474ee13f.roa (raw, json) Hash identifier: jhMWwa+RDVKyB3poTUDUAZxZqj1K2xjsJKxBTJnt6JM= Subject key identifier: 3D:33:4C:A6:48:A4:C1:10:A3:E2:97:6A:17:F2:DC:83:50:B9:C4:5A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7498D8D36B8D242B583D129D86FAE74DBB1B5E0B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa Signing time: Tue 29 Apr 2025 00:30:17 +0000 ROA not before: Tue 29 Apr 2025 00:30:17 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:98:d8:d3:6b:8d:24:2b:58:3d:12:9d:86:fa:e7:4d:bb:1b:5e:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:30:17 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=9bf67e6c6a342661f713e4c9be585b4e9f2c60786741a103b7e912cf857a3c9b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:c5:b2:92:5a:e9:5e:76:16:eb:08:55:a3:56: 68:b9:2f:05:e3:5c:3e:1c:9e:27:84:ea:b3:81:13: 76:bb:91:3d:d2:be:d8:25:72:5b:85:fd:d9:32:b8: 58:e5:c9:5e:c5:e0:06:7f:37:90:ed:7f:ed:62:fa: 11:e7:00:b1:a7:92:f7:06:00:bf:e0:6b:7f:52:54: c4:a0:f2:ef:95:15:4e:4b:a7:be:b0:94:f9:d0:b0: 13:76:2a:e2:1e:fe:c6:74:d9:2f:1a:66:e5:c7:c4: 98:b6:84:8f:1e:54:c3:4e:f6:ea:bc:7c:a1:bb:01: 08:9f:16:a6:c3:bb:e9:55:49:28:8a:19:c9:fa:03: 95:5f:10:14:24:dd:c5:20:49:36:1c:1c:1f:74:0d: 7d:b7:06:3e:ac:b1:63:66:3a:63:46:5e:00:0d:74: 06:ee:32:d8:0a:50:47:e3:5d:87:e2:45:05:97:f8: 4f:98:c9:87:5d:9d:27:a0:f5:11:01:c7:84:1b:6e: 71:40:5a:c1:ef:7c:40:3a:5d:c1:d8:2b:e6:4e:15: 9e:93:19:e6:76:57:99:37:f5:94:87:3b:0e:00:69: 31:a5:a5:ba:f1:34:c1:ae:e0:74:07:15:3f:0f:b3: a0:17:4a:2c:e5:47:1f:39:e0:6c:43:aa:83:9e:c1: f4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:33:4C:A6:48:A4:C1:10:A3:E2:97:6A:17:F2:DC:83:50:B9:C4:5A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/44 Signature Algorithm: sha256WithRSAEncryption a2:32:68:ef:f7:a7:db:b4:6a:99:57:c0:18:18:0f:9b:a2:d8: 21:23:55:f5:f4:71:42:e1:6c:70:e9:e6:c5:85:54:dd:97:f5: 56:27:a7:d6:a3:6d:d4:c0:23:bf:05:4a:76:c3:49:ad:f1:66: f1:70:91:b8:38:5b:5f:f0:3f:65:71:5b:b0:c7:11:bf:84:95: ad:7d:86:06:40:77:a1:56:fa:7f:20:71:58:7e:b6:14:d0:15: 6d:eb:65:24:41:e7:86:78:a3:f7:f0:a0:ad:7b:03:7d:ec:10: 9f:e0:4e:49:11:2c:5c:e3:15:c4:ba:fd:79:71:91:4a:c8:ef: 3f:79:41:47:f8:5b:32:88:10:59:2e:f7:36:79:fc:d2:0d:c8: 4b:94:87:e7:8a:76:72:ef:26:90:10:fe:fd:f6:57:3e:13:28: d9:cc:9b:13:d0:7f:ad:3f:74:2d:0c:d7:a9:0d:e4:fe:e8:41: b1:66:ab:ea:dc:c7:f5:37:fd:02:4c:11:c9:a4:0f:58:1a:98: 10:86:63:8b:c6:ae:b9:34:10:8a:d0:c0:0d:d3:b9:9c:99:d9: 08:65:3f:2c:1d:95:c9:dd:82:aa:51:0e:0f:d5:0b:30:74:8d: b8:80:1d:fb:d9:ff:47:40:8d:e4:d9:d2:30:52:51:35:ce:cc: d5:79:ad:94 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdJjY02uNJCtYPRKdhvrnTbsbXgswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDI5MDAzMDE3WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YmY2N2U2YzZhMzQyNjYxZjcxM2U0YzliZTU4NWI0ZTlm MmM2MDc4Njc0MWExMDNiN2U5MTJjZjg1N2EzYzliMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOxbKSWuledhbrCFWjVmi5LwXjXD4cnieE6rOBE3a7kT3S vtglcluF/dkyuFjlyV7F4AZ/N5Dtf+1i+hHnALGnkvcGAL/ga39SVMSg8u+VFU5L p76wlPnQsBN2KuIe/sZ02S8aZuXHxJi2hI8eVMNO9uq8fKG7AQifFqbDu+lVSSiK Gcn6A5VfEBQk3cUgSTYcHB90DX23Bj6ssWNmOmNGXgANdAbuMtgKUEfjXYfiRQWX +E+YyYddnSeg9REBx4QbbnFAWsHvfEA6XcHYK+ZOFZ6TGeZ2V5k39ZSHOw4AaTGl pbrxNMGu4HQHFT8Ps6AXSizlRx854GxDqoOewfR/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPTNMpkikwRCj4pdqF/Lcg1C5xFowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RkYWJlMTA1LTE3YTgtNDQ2MC1hOGM5LTE4Yjc0NzRlZTEzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBAKIyaO/3p9u0aplXwBgYD5ui 2CEjVfX0cULhbHDp5sWFVN2X9VYnp9ajbdTAI78FSnbDSa3xZvFwkbg4W1/wP2Vx W7DHEb+Ela19hgZAd6FW+n8gcVh+thTQFW3rZSRB54Z4o/fwoK17A33sEJ/gTkkR LFzjFcS6/XlxkUrI7z95QUf4WzKIEFku9zZ5/NINyEuUh+eKdnLvJpAQ/v32Vz4T KNnMmxPQf60/dC0M16kN5P7oQbFmq+rcx/U3/QJMEcmkD1gamBCGY4vGrrk0EIrQ wA3TuZyZ2QhlPywdlcndgqpRDg/VCzB0jbiAHfvZ/0dAjeTZ0jBSUTXOzNV5rZQ= -----END CERTIFICATE-----Generated at Sat May 10 09:48:33 2025 by rpki-client