$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa File: f6334ad8-04a1-4b1e-af68-368584971f2f.roa (raw, json) Hash identifier: H5SOl6drMgoJ5EJUl+0bRM3M+NHGJh6NfB7zhLgQRNM= Subject key identifier: C0:4C:0C:BC:5D:62:4F:61:D1:54:C1:23:36:7A:BF:8F:05:45:1E:42 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5D551B1D984794B4ED11F0B5848F8CD03070E0B3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa Signing time: Mon 31 Mar 2025 18:51:05 +0000 ROA not before: Mon 31 Mar 2025 18:51:05 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:55:1b:1d:98:47:94:b4:ed:11:f0:b5:84:8f:8c:d0:30:70:e0:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 31 18:51:05 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d2:5e:bb:e5:a1:2a:e7:55:da:8b:8a:6d:56: d2:c4:9d:a4:35:99:be:06:4f:d6:a4:f8:b4:1a:54: 1a:2b:d8:88:ad:bc:15:55:70:ff:bc:19:62:9d:0c: 5d:f3:50:b6:eb:3a:b5:1c:bf:6b:0d:69:03:aa:df: 37:03:8e:a6:f9:11:e7:29:c2:d8:10:de:61:3c:16: bf:e0:d7:92:39:16:14:1a:8a:a3:17:fa:aa:47:cd: d5:6e:d9:5f:71:1b:24:45:b5:2b:cf:1d:67:de:3f: 43:9c:f1:f8:e1:14:cf:91:d1:b1:45:95:c0:8e:ef: 7e:fd:e6:27:f0:ac:44:99:b5:91:c7:20:4c:ad:78: 76:a7:24:cf:ab:9b:65:fa:9c:e6:dc:f1:e7:ac:dd: 92:52:7e:a0:a2:4e:f5:8e:57:9f:57:4a:6b:04:d3: be:52:ae:43:15:2f:c6:66:4e:22:5c:a7:97:ff:dc: 83:46:88:42:81:32:c8:b7:64:ea:76:23:e5:92:59: b0:cd:1b:70:b9:78:f2:9a:59:b7:33:52:1e:23:13: 7c:6e:69:20:b8:78:e8:7a:98:d7:be:a9:6c:ce:98: 35:0e:c8:d5:3c:9e:57:e4:7d:e4:af:5e:8d:da:90: b5:d2:85:c6:8d:cb:62:c7:e4:32:4a:ca:cd:2f:bc: 16:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:4C:0C:BC:5D:62:4F:61:D1:54:C1:23:36:7A:BF:8F:05:45:1E:42 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 91:61:cb:73:49:04:0e:e9:76:cf:fa:ed:24:12:3b:79:c6:ab: 31:4d:99:89:58:dd:7a:94:75:b6:58:0c:ec:d3:b6:6c:ed:72: ad:f8:e6:9f:53:b1:6a:2a:bf:10:a6:29:7b:62:f7:a0:62:4d: b3:98:18:e7:cb:ce:11:f7:db:ef:a7:ce:92:e9:3e:90:81:ae: 5c:ef:fb:3a:ff:ad:71:7f:f2:28:3e:07:89:37:18:32:81:76: d3:db:2a:4a:ee:ae:13:fb:ba:50:f0:df:f0:a3:1d:0d:b4:21: 17:d7:46:d9:a1:a7:a9:f3:70:7a:a2:cf:0a:ba:6c:3b:84:b6: bc:e1:74:b1:6d:90:7c:88:73:1e:89:ce:36:21:c6:e1:38:e7: 7e:9f:fe:e1:2d:21:dc:33:56:b8:72:b1:76:b8:c7:db:68:23: 7e:80:d4:70:d2:2d:7b:2b:c1:b8:7e:10:33:7f:cb:b0:6f:c0: a9:42:47:c8:05:66:dd:a8:8c:c5:0e:9b:bd:85:50:23:eb:05: 9a:66:f8:e1:5b:1a:8e:e6:10:6f:62:7a:0f:a1:a5:91:70:eb: ae:0a:81:3f:a4:4a:f3:08:c0:6d:68:ef:8e:ee:71:eb:a3:8b: e1:76:ff:78:d1:7b:c6:be:04:ba:cd:2d:09:af:8d:cf:a2:d1: 91:25:6d:d9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXVUbHZhHlLTtEfC1hI+M0DBw4LMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg1MTA1WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmJkNWNkOThkNWQ5MjdjMjM2NzBkZDNmNjI0YjRiYWVm OWRhY2M1Yzg2MTMzNzcyZjY3MzY5ZWM1MGUxOWVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp0l675aEq51Xai4ptVtLEnaQ1mb4GT9ak+LQaVBor2Iit vBVVcP+8GWKdDF3zULbrOrUcv2sNaQOq3zcDjqb5EecpwtgQ3mE8Fr/g15I5FhQa iqMX+qpHzdVu2V9xGyRFtSvPHWfeP0Oc8fjhFM+R0bFFlcCO73795ifwrESZtZHH IEyteHanJM+rm2X6nObc8ees3ZJSfqCiTvWOV59XSmsE075SrkMVL8ZmTiJcp5f/ 3INGiEKBMsi3ZOp2I+WSWbDNG3C5ePKaWbczUh4jE3xuaSC4eOh6mNe+qWzOmDUO yNU8nlfkfeSvXo3akLXShcaNy2LH5DJKys0vvBbdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUwEwMvF1iT2HRVMEjNnq/jwVFHkIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2MzM0YWQ4LTA0YTEtNGIxZS1hZjY4LTM2ODU4NDk3MWYyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEAkWHLc0kEDul2z/rtJBI7ecar MU2ZiVjdepR1tlgM7NO2bO1yrfjmn1Oxaiq/EKYpe2L3oGJNs5gY58vOEffb76fO kuk+kIGuXO/7Ov+tcX/yKD4HiTcYMoF209sqSu6uE/u6UPDf8KMdDbQhF9dG2aGn qfNweqLPCrpsO4S2vOF0sW2QfIhzHonONiHG4Tjnfp/+4S0h3DNWuHKxdrjH22gj foDUcNIteyvBuH4QM3/LsG/AqUJHyAVm3aiMxQ6bvYVQI+sFmmb44VsajuYQb2J6 D6GlkXDrrgqBP6RK8wjAbWjvju5x66OL4Xb/eNF7xr4Eus0tCa+Nz6LRkSVt2Q== -----END CERTIFICATE-----Generated at Sat Apr 5 11:18:01 2025 by rpki-client