$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa File: ee2c3586-4c23-4045-b98b-d28000a3bd55.roa (raw, json) Hash identifier: OVIDMnni3tNNpxftmq88BxHOr8jYzhb+t1C4HIEwgZQ= Subject key identifier: A1:49:D2:C5:A6:7A:59:EE:1D:91:7E:C4:E6:05:78:59:92:49:8B:BC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 413D5E365B58D56535B6836E4554FE7E790F57C2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa Signing time: Tue 06 May 2025 00:40:05 +0000 ROA not before: Tue 06 May 2025 00:40:05 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:3d:5e:36:5b:58:d5:65:35:b6:83:6e:45:54:fe:7e:79:0f:57:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 6 00:40:05 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=3454fb04cd39e372896a0200f2a7e0eba3c20b38a89d9151c07d2ef610171e89, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c6:60:2c:48:2b:22:8a:a1:52:e3:01:13:4c: 1d:d7:a8:f8:96:34:33:2b:93:83:64:80:df:62:33: 8a:64:2b:78:bf:e1:d2:d3:a3:a3:fb:53:8f:0a:a7: fe:c1:da:db:5c:4a:04:6f:9a:a5:de:7f:bd:01:a4: 5f:de:13:2e:be:8c:0a:c7:73:7f:20:15:d1:35:75: 76:db:80:61:43:49:31:28:3c:c7:6e:da:cb:36:ba: 26:66:fd:76:c4:45:61:b1:00:72:28:cb:ae:42:5d: d7:2c:1a:f0:b9:1c:1e:f8:c2:c9:5c:97:7f:3d:f5: 5d:f6:37:ef:83:72:d5:66:ee:e5:96:64:02:f1:bd: eb:1c:16:df:07:19:df:df:c3:aa:13:bf:6c:7f:f7: 97:4d:db:9d:19:60:7a:f9:ce:73:e2:00:06:c1:5d: af:c0:4b:e8:68:4a:c7:3f:66:c7:5a:7d:04:f5:04: 0d:f9:6a:45:91:96:23:e4:f6:49:6f:45:b4:4c:f5: f0:70:d4:1c:77:9f:76:3c:e7:e4:00:7f:dd:45:52: ef:a6:c7:95:7a:1f:2d:bc:d0:86:0f:18:74:e1:63: fc:2a:0c:d5:b5:9f:5c:aa:bb:cd:b0:34:4b:ec:5b: 6c:05:9c:95:63:96:2d:f8:45:f9:f2:7c:7d:4b:07: 62:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:49:D2:C5:A6:7A:59:EE:1D:91:7E:C4:E6:05:78:59:92:49:8B:BC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 4c:9d:3a:be:9d:41:8a:d7:74:88:fe:fd:44:fa:8a:7a:d5:33: 42:65:5f:b2:d6:8a:72:99:51:1c:79:6f:3d:df:04:50:be:46: 9e:5e:31:fe:91:aa:25:e9:ec:91:1c:a8:86:fd:98:4f:ed:8e: 4c:24:78:b7:5f:4c:bc:e4:42:12:3f:94:22:11:52:b0:99:ff: 51:22:c1:4a:7d:82:ec:83:b2:38:5d:99:da:b8:8f:49:9d:b0: 8b:6f:de:6d:64:75:e7:61:22:c1:b8:29:46:43:b6:f5:ad:b8: 56:f6:7f:1e:fc:9c:c1:a4:ce:e7:1b:3f:e8:6c:ff:e8:02:89: 45:f3:1a:fd:a2:59:98:ae:7b:f4:98:c0:00:48:90:9a:15:d4: 64:ec:e0:64:39:10:2f:bf:ce:88:bf:35:f9:2d:5a:c2:c2:58: 16:ed:67:b7:e5:97:7f:05:b0:0a:26:9f:5f:82:00:69:07:51: 7e:30:46:82:13:1d:1b:b5:bf:3c:b7:2b:03:1a:71:21:c9:5c: 4c:82:a8:2c:10:42:42:a4:25:73:60:a0:bb:45:ea:bc:07:e7: 10:97:a2:71:e2:d0:be:25:55:d9:51:ef:bd:d8:03:d0:8f:2b: e4:dd:d6:a4:c9:e7:12:ab:10:78:39:ad:3b:df:cb:af:72:ee: 29:7a:19:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQT1eNltY1WU1toNuRVT+fnkPV8IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTA2MDA0MDA1WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDU0ZmIwNGNkMzllMzcyODk2YTAyMDBmMmE3ZTBlYmEz YzIwYjM4YTg5ZDkxNTFjMDdkMmVmNjEwMTcxZTg5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDexmAsSCsiiqFS4wETTB3XqPiWNDMrk4NkgN9iM4pkK3i/ 4dLTo6P7U48Kp/7B2ttcSgRvmqXef70BpF/eEy6+jArHc38gFdE1dXbbgGFDSTEo PMdu2ss2uiZm/XbERWGxAHIoy65CXdcsGvC5HB74wslcl3899V32N++DctVm7uWW ZALxvescFt8HGd/fw6oTv2x/95dN250ZYHr5znPiAAbBXa/AS+hoSsc/ZsdafQT1 BA35akWRliPk9klvRbRM9fBw1Bx3n3Y85+QAf91FUu+mx5V6Hy280IYPGHThY/wq DNW1n1yqu82wNEvsW2wFnJVjli34RfnyfH1LB2LTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoUnSxaZ6We4dkX7E5gV4WZJJi7wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VlMmMzNTg2LTRjMjMtNDA0NS1iOThiLWQyODAwMGEzYmQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBAEydOr6dQYrXdIj+/UT6inrV M0JlX7LWinKZURx5bz3fBFC+Rp5eMf6RqiXp7JEcqIb9mE/tjkwkeLdfTLzkQhI/ lCIRUrCZ/1EiwUp9guyDsjhdmdq4j0mdsItv3m1kdedhIsG4KUZDtvWtuFb2fx78 nMGkzucbP+hs/+gCiUXzGv2iWZiue/SYwABIkJoV1GTs4GQ5EC+/zoi/NfktWsLC WBbtZ7fll38FsAomn1+CAGkHUX4wRoITHRu1vzy3KwMacSHJXEyCqCwQQkKkJXNg oLtF6rwH5xCXonHi0L4lVdlR773YA9CPK+Td1qTJ5xKrEHg5rTvfy69y7il6Gag= -----END CERTIFICATE-----Generated at Sun May 11 22:17:19 2025 by rpki-client