$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: lRHzqzArzTaCXv+XHHymdHigi0kIzQQfYXfkJsG0aVo= Subject key identifier: DE:34:42:65:01:8C:29:63:5A:5C:52:83:73:13:8F:1F:BB:3F:8A:6C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 28D9BCA160315E6A03385C6970DD94CD51E52D9D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Sat 24 May 2025 00:30:48 +0000 ROA not before: Sat 24 May 2025 00:30:48 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d9:bc:a1:60:31:5e:6a:03:38:5c:69:70:dd:94:cd:51:e5:2d:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 24 00:30:48 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=dc470a752da24eac3238b0033a13a99d2b1eab86ef7ababd15f37a07cefa4fc5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:86:bb:3e:40:ea:b7:a6:1b:2f:82:d0:d2:6e: 60:e0:cc:d1:53:e4:00:7b:ed:2c:4b:17:fb:f5:4a: 17:66:30:fe:15:71:ee:1b:19:c9:59:96:8b:56:87: 15:c3:b2:21:36:42:4f:12:a5:4f:ff:5f:54:9d:a3: ce:90:ef:d3:f0:86:d1:5c:67:dc:0e:e4:5b:06:b2: 8f:67:6b:6a:50:48:29:71:f2:c5:67:16:5b:fd:b4: bc:eb:7d:1f:6d:8e:4e:6c:65:ef:24:b9:32:1d:96: 06:2e:88:76:db:3e:95:49:71:b3:fb:1d:16:16:29: 8e:69:f9:b0:3b:6b:21:4b:23:c5:7b:52:bd:9b:9e: 98:2b:e3:a9:ab:39:8a:40:b0:ee:43:02:46:0d:7f: 1c:b3:43:0e:ff:08:29:50:fa:ad:44:a8:60:97:aa: 82:c1:e8:cb:ee:52:a5:23:f1:4e:da:f7:1c:5f:b2: e7:ce:3d:ff:ec:a0:fa:0c:85:8a:39:82:e4:80:84: f5:52:f9:9b:74:30:39:d4:ff:2f:36:b2:e8:c4:2c: b7:57:91:c6:ad:6c:02:a2:12:73:d1:2a:54:81:f8: 0c:86:3d:3e:ae:f2:66:07:58:43:2a:9a:8b:ed:87: 4b:6c:c8:02:7a:dc:00:25:a3:ea:d2:45:a6:2e:aa: 96:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:34:42:65:01:8C:29:63:5A:5C:52:83:73:13:8F:1F:BB:3F:8A:6C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption 4e:88:92:fb:5e:8c:c9:f3:3f:67:86:42:fa:04:e0:77:14:b9: 1d:a6:c3:70:fa:b2:69:5c:00:e3:1d:27:01:e5:5a:cf:c9:2d: 28:3e:ae:24:b8:3a:e1:0d:0e:44:83:aa:0f:9b:7f:7b:a9:c1: e1:11:8d:c0:28:73:f5:ce:be:e3:d8:7a:85:ee:77:aa:a0:ff: bf:4d:9a:1a:cd:dc:13:cb:e1:6f:21:32:e1:82:0a:2e:97:fd: 43:45:06:fc:67:b5:9c:b5:e5:a7:2f:2d:d4:e8:81:39:b6:73: 83:e5:5a:f4:dd:33:a3:86:95:61:4e:a3:10:ad:56:d6:a2:ae: eb:e3:29:c6:73:48:54:8d:ab:2e:c5:a5:f2:fc:d5:de:bd:10: b5:bd:0c:4e:d8:06:e5:43:03:15:db:66:a9:89:45:32:fb:c6: eb:f4:08:f3:87:d5:30:e0:f1:be:58:43:c3:8a:c5:44:ca:05: 3b:ca:cc:ce:e6:8a:63:ad:4f:80:75:03:e4:31:e8:10:75:6a: 50:d7:68:af:2c:2c:2b:33:6c:33:e1:5f:0a:87:78:22:2b:f8: ab:87:4b:ee:03:e2:ad:43:64:74:46:02:81:e0:5e:93:55:cc: a5:03:47:e8:de:2c:9f:eb:45:4a:06:e3:61:db:25:02:15:77: 47:cc:a1:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKNm8oWAxXmoDOFxpcN2UzVHlLZ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI0MDAzMDQ4WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzQ3MGE3NTJkYTI0ZWFjMzIzOGIwMDMzYTEzYTk5ZDJi MWVhYjg2ZWY3YWJhYmQxNWYzN2EwN2NlZmE0ZmM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCshrs+QOq3phsvgtDSbmDgzNFT5AB77SxLF/v1ShdmMP4V ce4bGclZlotWhxXDsiE2Qk8SpU//X1Sdo86Q79PwhtFcZ9wO5FsGso9na2pQSClx 8sVnFlv9tLzrfR9tjk5sZe8kuTIdlgYuiHbbPpVJcbP7HRYWKY5p+bA7ayFLI8V7 Ur2bnpgr46mrOYpAsO5DAkYNfxyzQw7/CClQ+q1EqGCXqoLB6MvuUqUj8U7a9xxf sufOPf/soPoMhYo5guSAhPVS+Zt0MDnU/y82sujELLdXkcatbAKiEnPRKlSB+AyG PT6u8mYHWEMqmovth0tsyAJ63AAlo+rSRaYuqpYbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3jRCZQGMKWNaXFKDcxOPH7s/imwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NDNmMjZlLTk0OWEtNDYwYS1iMTg3LWUyNjI5MGJmY2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwQAAwDQYJKoZIhvcNAQELBQADggEBAE6IkvtejMnzP2eGQvoE4HcU uR2mw3D6smlcAOMdJwHlWs/JLSg+riS4OuENDkSDqg+bf3upweERjcAoc/XOvuPY eoXud6qg/79NmhrN3BPL4W8hMuGCCi6X/UNFBvxntZy15acvLdTogTm2c4PlWvTd M6OGlWFOoxCtVtairuvjKcZzSFSNqy7FpfL81d69ELW9DE7YBuVDAxXbZqmJRTL7 xuv0CPOH1TDg8b5YQ8OKxUTKBTvKzM7mimOtT4B1A+Qx6BB1alDXaK8sLCszbDPh XwqHeCIr+KuHS+4D4q1DZHRGAoHgXpNVzKUDR+jeLJ/rRUoG42HbJQIVd0fMoU0= -----END CERTIFICATE-----Generated at Wed Jun 4 11:30:25 2025 by rpki-client