$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa File: bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa (raw, json) Hash identifier: cs+GfMJKQXZM1gMXp6hXefa2F03S43ciu7N1FcDQ3/U= Subject key identifier: 7C:7A:F2:27:6A:40:7C:6E:01:41:9A:49:5A:0F:C5:27:13:9E:DE:7E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 148FAEF25843D520D08C0784392EDEBBE8FD3EDE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa Signing time: Mon 31 Mar 2025 18:50:19 +0000 ROA not before: Mon 31 Mar 2025 18:50:19 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:8f:ae:f2:58:43:d5:20:d0:8c:07:84:39:2e:de:bb:e8:fd:3e:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:50:19 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9f:c6:9e:b2:77:85:a5:06:2e:69:88:c7:67: 65:8b:c3:e7:a9:ea:eb:09:db:fc:f0:71:d8:a6:33: 9a:b4:ea:fa:27:8a:02:64:f6:99:23:3b:3e:fd:62: 0e:c5:07:ac:59:4c:a9:7a:f9:bf:0c:53:5c:22:02: 93:c6:92:32:64:41:c0:c7:ba:99:18:b4:d7:f4:2d: 37:32:bd:8d:e8:0e:7d:60:93:47:80:f7:b7:81:92: f6:54:6b:ec:23:7e:75:d6:8f:0c:7f:97:ef:08:38: 68:5f:77:1b:4b:d6:c3:d3:0f:c9:f9:b4:af:34:28: f8:a9:7b:ba:a7:5c:53:b0:db:37:fc:89:95:30:92: 59:96:84:ee:4b:f5:00:2e:3f:5d:5d:9e:fb:0b:62: 31:72:5d:a5:1c:58:48:ef:93:cc:5f:2b:55:ad:f2: 5b:d7:4e:01:79:e2:f6:5e:df:7f:ef:1a:0c:5a:25: 8c:9b:58:ca:98:5c:55:ea:07:72:63:af:d8:bd:0b: ef:32:36:49:93:c7:8b:e2:8c:24:93:b2:5e:ed:5e: d3:59:c6:0c:7a:16:78:32:10:3b:bb:59:4d:99:ad: b0:85:9a:5f:a6:33:9b:dd:23:0d:d5:ee:43:56:2f: 08:0d:90:29:6c:2c:94:49:d1:9a:fd:40:bc:4f:11: 6a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7A:F2:27:6A:40:7C:6E:01:41:9A:49:5A:0F:C5:27:13:9E:DE:7E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/42 Signature Algorithm: sha256WithRSAEncryption 15:30:3c:3c:ab:b3:3d:77:7e:6a:8c:c6:74:43:b1:6e:c4:be: f6:50:eb:38:ca:f3:bf:a7:aa:7d:1a:7d:73:96:92:3f:e7:77: 57:1e:a7:13:0d:88:61:77:12:8c:3a:6c:ee:82:2f:5a:ed:f0: 84:9f:05:fc:df:4a:01:19:cc:a5:be:6c:e8:43:14:c6:c9:9b: f7:01:ce:ed:39:74:81:ac:19:e5:e2:03:2e:79:fb:18:77:e8: d5:b0:51:18:38:1d:fe:6c:30:78:67:4b:92:08:6b:f6:76:47: 63:2b:13:f3:2f:12:c4:1d:aa:45:3d:e0:b7:9e:fa:e0:fe:27: b7:f6:a7:c8:86:bb:a7:51:83:cc:a9:1d:e8:c6:ee:62:e2:f5: f7:90:94:58:ce:18:54:9c:f3:a4:60:db:c8:2b:7f:4a:7a:05: 5c:01:87:f8:de:83:9e:aa:fc:f6:5f:ed:4b:4b:d3:5e:71:d9: d2:20:01:fe:40:53:a0:fc:7d:05:7e:9d:47:df:5c:43:c0:2d: 80:a2:9c:9c:70:e3:b6:08:7b:18:61:34:b0:10:1d:03:76:ce: 8d:c0:63:db:a9:29:4d:82:c5:58:8f:95:76:7f:8c:57:3c:e5: 33:db:54:62:ae:41:58:5f:de:99:92:44:2c:25:16:1d:ae:fa: 1f:5e:f5:a3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFI+u8lhD1SDQjAeEOS7eu+j9Pt4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg1MDE5WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjQ1YzlhZDI1MDUxNTc0YWRjZmE4NGExNGU5NWY3NGU3 MTU2OWMyYzkwNDQ3Y2UxZDk3MWEyOTQ3NWNmYTBmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkn8aesneFpQYuaYjHZ2WLw+ep6usJ2/zwcdimM5q06von igJk9pkjOz79Yg7FB6xZTKl6+b8MU1wiApPGkjJkQcDHupkYtNf0LTcyvY3oDn1g k0eA97eBkvZUa+wjfnXWjwx/l+8IOGhfdxtL1sPTD8n5tK80KPipe7qnXFOw2zf8 iZUwklmWhO5L9QAuP11dnvsLYjFyXaUcWEjvk8xfK1Wt8lvXTgF54vZe33/vGgxa JYybWMqYXFXqB3Jjr9i9C+8yNkmTx4vijCSTsl7tXtNZxgx6FngyEDu7WU2ZrbCF ml+mM5vdIw3V7kNWLwgNkClsLJRJ0Zr9QLxPEWrVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfHryJ2pAfG4BQZpJWg/FJxOe3n4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JmMjdmZGI3LTg0YmYtNDBkMi05MDZhLTdiNGMxZmY0MDViMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75AAwDQYJKoZIhvcNAQELBQADggEBABUwPDyrsz13fmqMxnRDsW7E vvZQ6zjK87+nqn0afXOWkj/nd1cepxMNiGF3Eow6bO6CL1rt8ISfBfzfSgEZzKW+ bOhDFMbJm/cBzu05dIGsGeXiAy55+xh36NWwURg4Hf5sMHhnS5IIa/Z2R2MrE/Mv EsQdqkU94Lee+uD+J7f2p8iGu6dRg8ypHejG7mLi9feQlFjOGFSc86Rg28grf0p6 BVwBh/jeg56q/PZf7UtL015x2dIgAf5AU6D8fQV+nUffXEPALYCinJxw47YIexhh NLAQHQN2zo3AY9upKU2CxViPlXZ/jFc85TPbVGKuQVhf3pmSRCwlFh2u+h9e9aM= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:47 2025 by rpki-client