$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa File: 1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa (raw, json) Hash identifier: QtOYAqnThaPjap1NUs6mP5F3WBoxTPzyTeyjEYAgjXU= Subject key identifier: 64:40:40:C5:1F:02:2F:A9:05:C6:1F:F2:5D:CE:2C:9F:22:CA:FD:CD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 46D895E1946EE15392E7C2C91586954D2794590A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa Signing time: Sat 24 May 2025 00:30:38 +0000 ROA not before: Sat 24 May 2025 00:30:38 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:d8:95:e1:94:6e:e1:53:92:e7:c2:c9:15:86:95:4d:27:94:59:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 24 00:30:38 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=7fbb326fe6d816e641d731c1d32a509890618ef09dfcf55e0c08347704b68f48, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:02:64:96:f4:1e:80:e0:36:11:7d:e8:e0:86: 71:13:d2:70:03:3b:d5:e2:42:dd:7c:3b:e9:26:e4: 73:3c:b2:12:5e:91:00:8a:3c:fe:d6:8c:82:85:d9: 3d:42:08:c1:48:78:f1:92:d9:fa:59:e8:2e:53:bb: 2b:90:3a:d5:3b:e4:49:bc:6d:8c:63:4e:7f:fb:7f: e2:55:ce:4a:5e:5c:e5:dd:e7:9a:be:20:64:31:9f: 13:88:60:39:3f:25:73:88:99:fe:db:a2:8d:3d:7c: 95:26:cd:d9:ac:d5:6d:8d:7d:00:0f:c1:f2:b4:46: b4:a9:50:89:65:49:80:cc:0a:45:1a:33:a9:26:9e: 27:c2:5a:e6:7c:fd:f0:bb:05:0c:98:31:19:dc:a9: 4f:cc:ed:c6:b9:c4:af:a3:2a:74:26:ca:8b:61:8e: 28:e0:a9:3e:98:93:b1:c5:34:dd:6c:8b:a4:ed:a5: af:c1:f5:10:f1:cb:02:d0:92:85:65:5f:21:8e:d7: bd:b2:43:c8:27:07:e3:2b:31:92:c7:9c:0a:e3:aa: 2d:c5:f0:93:d8:9f:db:dc:a9:6f:2f:e8:c6:a0:1c: b8:91:6c:49:76:6c:ba:fb:1d:3d:91:79:34:05:c6: 3e:97:ff:4e:8b:5d:25:20:a3:3d:16:43:42:cf:19: fc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:40:40:C5:1F:02:2F:A9:05:C6:1F:F2:5D:CE:2C:9F:22:CA:FD:CD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8800::/40 Signature Algorithm: sha256WithRSAEncryption a7:99:b5:02:12:be:a9:3e:49:38:de:96:32:5b:48:c9:e8:83: 17:27:93:24:a3:c0:df:3b:21:9b:b2:d9:7e:63:16:0c:5d:36: fd:46:b8:9a:ed:0d:60:c2:69:57:3d:a5:fe:2b:bb:ec:f3:a0: 1c:f0:6f:96:9e:65:8e:0f:75:11:4e:6a:15:05:9b:d7:ee:de: 18:f5:cf:27:15:71:fa:a9:79:d1:23:a2:27:24:5f:8e:d4:65: f7:d5:9a:45:5c:0a:aa:47:5a:f0:48:f3:93:3a:b5:ac:25:e9: 46:52:51:bc:b2:5d:11:5d:6b:34:5c:d3:90:2d:eb:ea:cf:33: 1f:59:85:fa:76:f0:70:02:10:e2:51:9e:35:50:59:28:11:16: e5:5a:5e:c2:1f:0a:41:5e:3b:a4:fd:c5:5d:91:0c:d1:08:c5: cd:8d:6f:3b:48:e3:7e:98:e5:95:ef:e3:a8:cd:20:6f:ba:c0: 3f:5f:b1:21:67:9c:41:59:fe:20:af:b5:94:d9:55:aa:f4:92: 80:c8:4c:61:80:a4:ab:02:00:b0:42:9c:bd:28:e5:15:23:17: 34:73:20:34:e2:47:1b:e1:e4:2b:24:20:0f:dc:7d:8d:01:0d: a5:a8:20:2a:80:cd:f7:2a:cb:03:2a:ab:28:5b:7e:39:37:62: 79:9a:8a:bb -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURtiV4ZRu4VOS58LJFYaVTSeUWQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI0MDAzMDM4WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmJiMzI2ZmU2ZDgxNmU2NDFkNzMxYzFkMzJhNTA5ODkw NjE4ZWYwOWRmY2Y1NWUwYzA4MzQ3NzA0YjY4ZjQ4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzAmSW9B6A4DYRfejghnET0nADO9XiQt18O+km5HM8shJe kQCKPP7WjIKF2T1CCMFIePGS2fpZ6C5TuyuQOtU75Em8bYxjTn/7f+JVzkpeXOXd 55q+IGQxnxOIYDk/JXOImf7boo09fJUmzdms1W2NfQAPwfK0RrSpUIllSYDMCkUa M6kmnifCWuZ8/fC7BQyYMRncqU/M7ca5xK+jKnQmyothjijgqT6Yk7HFNN1si6Tt pa/B9RDxywLQkoVlXyGO172yQ8gnB+MrMZLHnArjqi3F8JPYn9vcqW8v6MagHLiR bEl2bLr7HT2ReTQFxj6X/06LXSUgoz0WQ0LPGfw5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZEBAxR8CL6kFxh/yXc4snyLK/c0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFkZjRhODJhLTA4NzUtNDdiNi05ZmMwLWI2N2MwOTdiYzQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxiDANBgkqhkiG9w0BAQsFAAOCAQEAp5m1AhK+qT5JON6WMltIyeiD FyeTJKPA3zshm7LZfmMWDF02/Ua4mu0NYMJpVz2l/iu77POgHPBvlp5ljg91EU5q FQWb1+7eGPXPJxVx+ql50SOiJyRfjtRl99WaRVwKqkda8Ejzkzq1rCXpRlJRvLJd EV1rNFzTkC3r6s8zH1mF+nbwcAIQ4lGeNVBZKBEW5Vpewh8KQV47pP3FXZEM0QjF zY1vO0jjfpjlle/jqM0gb7rAP1+xIWecQVn+IK+1lNlVqvSSgMhMYYCkqwIAsEKc vSjlFSMXNHMgNOJHG+HkKyQgD9x9jQENpaggKoDN9yrLAyqrKFt+OTdieZqKuw== -----END CERTIFICATE-----Generated at Fri Jun 6 04:49:01 2025 by rpki-client