$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa File: abd82657-873c-4247-976a-fa627e8bd542.roa (raw, json) Hash identifier: K+7LMynsngYV8a9vXGDFL0IJvEO8btvryZahim3EQKU= Subject key identifier: 81:18:1F:D1:E0:5C:14:49:C3:79:A1:44:FC:F6:EC:FC:73:F9:2F:5F Certificate issuer: /CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Certificate serial: 1D8CF7393E0D96DB9B4BE036FBEE029DA618927D Authority key identifier: 53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa Signing time: Fri 09 May 2025 00:00:05 +0000 ROA not before: Fri 09 May 2025 00:00:05 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 54113 IP address blocks: 2606:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:8c:f7:39:3e:0d:96:db:9b:4b:e0:36:fb:ee:02:9d:a6:18:92:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Validity Not Before: May 9 00:00:05 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=5529347bf2e75050bd5ab2bb4c4a6348ab3c2ab2dd707b7de883f350cd42b53a, CN=2c2421b9-0ce5-48c5-ac23-91a5565f7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a7:17:72:27:3e:67:7c:87:c6:d1:2c:4c:66: 12:aa:c7:7c:fc:51:e3:9b:18:a4:c9:a1:de:07:88: 4b:03:a9:b2:d2:2b:fe:54:7a:99:2d:12:87:87:c3: 9c:12:61:10:93:f6:fe:9a:a5:7e:ef:02:b4:5f:48: fb:aa:29:f3:8c:10:fc:9d:51:d0:e7:e6:9d:06:f6: b7:41:3a:6a:b2:9d:06:df:fe:91:5c:37:cd:66:ef: bd:95:e8:96:6b:93:51:29:84:68:73:a0:fc:ad:bd: bd:23:7f:e1:42:fa:bd:c9:f9:e4:1f:79:0d:3d:0b: 41:dc:2f:7c:34:75:41:c5:ce:96:c3:ac:1e:56:35: 64:70:76:11:b4:53:16:f7:a7:63:e5:5e:30:f3:e6: e6:0d:a9:5b:c4:9e:52:9b:a5:cc:ec:a0:18:77:9d: 0a:f1:73:04:78:ab:58:dd:29:94:d5:53:37:c9:27: 6d:96:34:40:23:19:12:15:46:0a:27:e3:40:96:2f: 98:53:60:db:61:bd:33:c2:65:4a:7c:e4:ad:6c:da: 23:16:d4:6b:15:ec:3e:1c:37:fb:94:79:20:29:b2: 71:ea:48:ec:d5:21:6e:2c:1a:02:49:50:72:54:dc: 68:9d:d0:2f:80:4a:3d:15:bf:d8:8d:e1:91:c4:ae: db:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:18:1F:D1:E0:5C:14:49:C3:79:A1:44:FC:F6:EC:FC:73:F9:2F:5F X509v3 Authority Key Identifier: keyid:53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 9f:06:ce:b4:08:8b:a2:7a:b3:5f:5d:43:da:f4:c3:d2:dc:14: 58:26:8c:6a:a9:bf:39:69:12:09:57:68:fe:a8:b3:2c:e1:1c: f7:49:04:64:f3:2f:62:9f:8a:cb:62:a1:24:3c:45:64:b3:2e: 67:85:cb:59:08:2e:d3:42:c0:47:c9:12:ac:04:3c:2e:ab:b0: 5a:5c:a9:66:83:40:96:2b:91:b9:98:6d:e8:40:20:b3:b6:16: 2c:1e:7f:ab:54:81:42:5d:38:96:6a:3b:e3:13:f1:24:dd:fb: 9f:95:9b:0f:5d:56:46:b9:4a:87:8e:4c:62:c5:f2:c8:22:7c: 3b:b2:69:92:0f:89:fc:5c:47:5b:49:a6:31:67:34:f6:ea:92: 8f:b5:b1:5a:d0:31:45:c9:e3:51:9f:2d:a6:0d:15:c2:c8:cb: c4:45:66:a5:25:46:90:5e:d1:be:ef:58:3a:5a:dc:1f:d6:f0: f4:be:ef:ac:0e:38:2f:fa:9a:92:d7:09:7a:17:25:4a:42:4c: d0:39:0e:64:19:b0:9c:57:14:21:77:75:81:70:b3:2f:87:76: 91:18:b7:d9:7a:0e:cf:fa:bc:f0:43:b7:7d:04:96:df:6d:c9: c3:34:d9:f6:d4:2b:65:24:37:82:b1:1a:c3:06:f4:90:f8:b3: 1d:03:bd:be -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUHYz3OT4NltubS+A2++4CnaYYkn0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjMwNTMwMzQwODgxMTU2YzJlMTRhZmVmOWQ2MTk2MjI3 ZTJjNjAzNWEwOWVmMGQyNTcwHhcNMjUwNTA5MDAwMDA1WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTI5MzQ3YmYyZTc1MDUwYmQ1YWIyYmI0YzRhNjM0OGFi M2MyYWIyZGQ3MDdiN2RlODgzZjM1MGNkNDJiNTNhMS0wKwYDVQQDEyQyYzI0MjFi OS0wY2U1LTQ4YzUtYWMyMy05MWE1NTY1ZjdhZmMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQpxdyJz5nfIfG0SxMZhKqx3z8UeObGKTJod4HiEsDqbLS K/5UepktEoeHw5wSYRCT9v6apX7vArRfSPuqKfOMEPydUdDn5p0G9rdBOmqynQbf /pFcN81m772V6JZrk1EphGhzoPytvb0jf+FC+r3J+eQfeQ09C0HcL3w0dUHFzpbD rB5WNWRwdhG0Uxb3p2PlXjDz5uYNqVvEnlKbpczsoBh3nQrxcwR4q1jdKZTVUzfJ J22WNEAjGRIVRgon40CWL5hTYNthvTPCZUp85K1s2iMW1GsV7D4cN/uUeSApsnHq SOzVIW4sGgJJUHJU3Gid0C+ASj0Vv9iN4ZHErttnAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUgRgf0eBcFEnDeaFE/Pbs/HP5L18wHwYDVR0jBBgwFoAUU+6gKbpu763K tNB3mJ3V7UdVtnAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8zMTQ1ZWJmZi1k Yzg0LTQ1YTktYjc2OS1lZmJhYWY1Nzc5ZTMvYjMwNTMwMzQwODgxMTU2YzJlMTRh ZmVmOWQ2MTk2MjI3ZTJjNjAzNWEwOWVmMGQyNTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNzFlNTIzNmYtYzZmMS00OTI4LWExYjktOGRl ZjA5YzA2MDg1L2FiZDgyNjU3LTg3M2MtNDI0Ny05NzZhLWZhNjI3ZThiZDU0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzcxZTUyMzZmLWM2ZjEtNDkyOC1hMWI5 LThkZWYwOWMwNjA4NS9nUlZzTGhTdjc1MWhsaUotTEdBMW9KN3cwbGMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBizAMA0GCSqGSIb3DQEBCwUAA4IBAQCfBs60CIuierNfXUPa9MPS3BRY Joxqqb85aRIJV2j+qLMs4Rz3SQRk8y9in4rLYqEkPEVksy5nhctZCC7TQsBHyRKs BDwuq7BaXKlmg0CWK5G5mG3oQCCzthYsHn+rVIFCXTiWajvjE/Ek3fuflZsPXVZG uUqHjkxixfLIInw7smmSD4n8XEdbSaYxZzT26pKPtbFa0DFFyeNRny2mDRXCyMvE RWalJUaQXtG+71g6Wtwf1vD0vu+sDjgv+pqS1wl6FyVKQkzQOQ5kGbCcVxQhd3WB cLMvh3aRGLfZeg7P+rzwQ7d9BJbfbcnDNNn21CtlJDeCsRrDBvSQ+LMdA72+ -----END CERTIFICATE-----Generated at Fri May 9 23:55:49 2025 by rpki-client