$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa File: da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa (raw, json) Hash identifier: GXJOkYYmf12VKeSdbOFimVcAZpOuR2giQAWcl9Fl/dg= Subject key identifier: F3:E9:82:CF:FA:A3:3B:79:E0:12:B7:18:63:56:D1:1E:1D:F9:15:52 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 396F863176CDDA198F1B6203FD492C9CF624F60B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa Signing time: Mon 31 Mar 2025 18:40:07 +0000 ROA not before: Mon 31 Mar 2025 18:40:07 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:6f:86:31:76:cd:da:19:8f:1b:62:03:fd:49:2c:9c:f6:24:f6:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:40:07 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7d:8d:46:78:ad:eb:56:df:e5:96:1e:1a:3a: b4:15:05:9b:a1:c7:ee:2f:7e:75:7e:db:cf:9f:f9: 10:ae:d7:f8:0a:7b:0b:5f:de:08:7f:e0:48:1b:22: 56:28:b5:80:bf:5e:8d:9a:2a:5e:ee:45:85:58:97: a5:7e:8d:95:5f:00:ed:72:ba:b9:a5:c4:27:a7:8d: 23:de:b9:ae:7f:b6:de:70:7a:34:62:4a:ef:cc:df: 58:1c:0a:ab:9d:50:d7:35:de:60:da:5b:7a:11:c6: b9:04:d2:7d:b9:ef:ad:92:f1:4a:67:b7:cc:ed:b3: 82:fb:33:d3:b7:8f:7b:fd:48:c6:42:c8:2d:f6:06: 50:67:6a:9b:d9:49:e1:5d:9f:49:18:2a:f9:e5:96: 0d:63:49:c0:45:52:95:10:60:8b:ea:85:71:08:c8: 9d:c8:60:6f:79:18:de:0f:8c:1e:3e:17:d0:45:a2: f0:59:b0:6d:52:68:b9:4f:bf:39:84:26:4c:cd:f8: 6e:31:d0:4a:9e:64:4f:6b:89:e1:3f:23:75:b1:0f: cc:71:61:3a:24:2c:29:b2:f4:b8:2c:f7:7a:d1:40: 7a:bd:13:14:37:02:38:86:37:44:6d:ac:31:cd:32: 5f:76:d0:71:f6:77:30:3b:fd:dd:0e:ec:b7:7b:7e: 1a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:E9:82:CF:FA:A3:3B:79:E0:12:B7:18:63:56:D1:1E:1D:F9:15:52 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption a0:66:35:3f:6f:74:0e:ad:d3:d7:f0:91:24:bc:a0:58:a1:91: 8b:fa:6c:ea:e6:41:82:c1:a4:3a:82:0e:34:c7:f2:54:2f:83: d7:37:6c:07:ec:c4:e2:ca:63:1a:fa:9d:d6:f3:7b:50:4a:c8: 18:cd:8b:a3:19:7e:5c:f2:a3:e6:85:93:66:99:40:db:02:f4: 89:80:12:eb:0b:4b:53:7a:b5:1a:72:c5:18:09:74:55:ba:0a: b1:43:6b:98:28:19:0a:7c:74:e2:b7:da:82:f1:a9:27:da:db: 8f:b8:e9:f6:56:e7:ed:d5:f4:7a:55:90:43:ca:80:f2:2e:f4: bd:21:2b:79:d0:dd:df:15:46:cc:1c:83:1f:6b:ed:b4:b3:c6: f4:0c:51:70:4a:4c:17:7a:99:e2:e5:2c:85:6e:b8:66:c1:0b: e1:cc:58:c9:48:bc:c1:a8:29:21:65:11:bb:0b:43:39:10:dc: f0:47:1c:93:ab:09:0d:cd:ec:d4:6e:4f:14:14:2c:76:20:5f: eb:33:2f:c4:15:2b:05:c8:cf:bd:86:7b:4e:eb:62:c5:5f:0b: 64:b2:ff:ad:d3:b0:3b:84:8e:bd:e3:1d:24:a4:e5:ab:e3:02: b9:ef:84:f1:a8:f7:0e:f4:2a:7d:4b:55:63:46:46:f4:06:30: 5c:8a:43:b4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOW+GMXbN2hmPG2ID/UksnPYk9gswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg0MDA3WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWNhODc1YWVjNzExOTkzMTJlODExZTY3MGJkMjRlMjc0 MmQ4ZDBkMzA3Y2NiNmI4MDk0MzI3MWViMTRkMTg0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7fY1GeK3rVt/llh4aOrQVBZuhx+4vfnV+28+f+RCu1/gK ewtf3gh/4EgbIlYotYC/Xo2aKl7uRYVYl6V+jZVfAO1yurmlxCenjSPeua5/tt5w ejRiSu/M31gcCqudUNc13mDaW3oRxrkE0n25762S8Upnt8zts4L7M9O3j3v9SMZC yC32BlBnapvZSeFdn0kYKvnllg1jScBFUpUQYIvqhXEIyJ3IYG95GN4PjB4+F9BF ovBZsG1SaLlPvzmEJkzN+G4x0EqeZE9rieE/I3WxD8xxYTokLCmy9Lgs93rRQHq9 ExQ3AjiGN0RtrDHNMl920HH2dzA7/d0O7Ld7fhoTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8+mCz/qjO3ngErcYY1bRHh35FVIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMGQwZjFmLWY4MmQtNDdiYi05YWM3LWVlMDlhNTFiM2YyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAKBmNT9vdA6t09fwkSS8oFih kYv6bOrmQYLBpDqCDjTH8lQvg9c3bAfsxOLKYxr6ndbze1BKyBjNi6MZflzyo+aF k2aZQNsC9ImAEusLS1N6tRpyxRgJdFW6CrFDa5goGQp8dOK32oLxqSfa24+46fZW 5+3V9HpVkEPKgPIu9L0hK3nQ3d8VRswcgx9r7bSzxvQMUXBKTBd6meLlLIVuuGbB C+HMWMlIvMGoKSFlEbsLQzkQ3PBHHJOrCQ3N7NRuTxQULHYgX+szL8QVKwXIz72G e07rYsVfC2Sy/63TsDuEjr3jHSSk5avjArnvhPGo9w70Kn1LVWNGRvQGMFyKQ7Q= -----END CERTIFICATE-----Generated at Sat Apr 5 11:12:50 2025 by rpki-client