$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87fc20f7-0de9-48d8-850e-c430d88860e9.roa File: 87fc20f7-0de9-48d8-850e-c430d88860e9.roa (raw, json) Hash identifier: 0eF+ywHfwiqskFJeAxnW4L9xMPSF0+mPackIIRSXc1c= Subject key identifier: 7E:7D:E4:57:E1:C8:12:EB:BE:CE:8B:EE:88:3B:00:EC:9B:4C:3A:4D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6F6DED9ECA0FCFB24DAD16C657E3DCB7C8055772 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87fc20f7-0de9-48d8-850e-c430d88860e9.roa Signing time: Tue 04 Mar 2025 23:11:08 +0000 ROA not before: Tue 04 Mar 2025 23:11:08 +0000 ROA not after: Tue 08 Apr 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:6d:ed:9e:ca:0f:cf:b2:4d:ad:16:c6:57:e3:dc:b7:c8:05:57:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 4 23:11:08 2025 GMT Not After : Apr 8 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:12:d0:e5:4d:76:0d:76:c9:00:fd:cd:39:1f: ef:da:d7:08:8f:63:80:92:64:b4:3e:e4:45:5c:9b: 8f:01:37:9a:2f:2a:fe:04:b8:12:b7:8b:69:72:04: 11:4c:71:dc:55:ad:2c:4c:77:de:58:06:e8:91:62: 19:ac:55:e8:90:6b:cf:cd:2c:12:49:36:02:98:91: e0:58:ea:fb:53:b6:ba:ec:b2:d0:fd:18:65:6c:35: a1:65:cd:21:a9:53:ed:52:ee:9b:c4:f7:e4:a9:54: 10:8a:69:c5:75:c9:4d:fb:dd:4b:0e:73:05:08:62: 79:3f:f8:c9:90:f2:5c:c7:de:c5:05:8e:9e:10:52: a7:00:d8:71:f2:ff:11:c5:09:f7:ed:27:e3:5f:88: 52:39:54:ba:e8:44:2d:d1:d5:03:e8:01:f9:45:f3: ec:da:07:1f:6d:47:87:03:b3:70:f4:bf:8b:30:14: 97:b1:8d:cb:7f:bb:b2:8d:cc:0a:94:b6:0e:70:fc: 9a:cc:31:c7:d9:ae:aa:c8:ab:2c:da:66:d5:1c:32: 5d:e3:5f:8b:b2:d9:c3:dd:89:a5:d9:fb:92:fe:46: a3:57:f4:b1:64:3b:12:da:ab:8d:25:0e:85:7c:5d: af:01:9b:11:f3:b4:8d:2e:83:08:6b:59:12:a3:ea: 8d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:7D:E4:57:E1:C8:12:EB:BE:CE:8B:EE:88:3B:00:EC:9B:4C:3A:4D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87fc20f7-0de9-48d8-850e-c430d88860e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:3::/48 Signature Algorithm: sha256WithRSAEncryption a7:66:46:58:4f:ce:3c:85:f2:7d:b3:bf:a8:49:7f:6d:5c:89: 4d:92:50:47:a2:c7:24:a4:b7:76:9a:29:c9:9e:3a:31:6c:60: 5c:92:5f:14:67:31:48:1a:d1:e2:4f:10:71:80:a3:ae:40:c8: 91:e3:df:3b:67:94:a2:0d:a1:07:87:f5:0c:47:2d:76:d5:6f: c7:ed:46:2b:1a:e6:b9:cf:4a:ea:29:7f:fd:91:a4:6b:ac:af: 3f:13:c3:b0:17:1a:1f:c1:35:61:1f:fe:6c:28:fc:57:3a:15: 28:2d:43:f4:a7:a5:c6:79:e5:b1:34:90:ce:5b:24:2d:2a:07: c2:74:7b:d5:74:d3:ed:a7:7b:9f:b8:fc:b5:a5:9e:28:d0:00: 8a:3c:64:43:bd:e8:99:95:79:b6:aa:4d:2a:13:23:f7:1f:31: f4:d8:6c:43:3a:b4:2e:08:17:2d:75:b5:52:5b:87:38:a4:4c: f0:80:69:e3:35:81:5d:74:02:e0:a7:38:97:97:32:48:a5:bd: 3b:96:5a:d1:e6:7e:65:63:22:31:a7:81:d1:62:25:19:1f:0c: f4:0e:e1:8e:ae:94:38:0d:51:ab:0d:37:e0:64:e4:5c:da:8f: 53:fa:7b:f1:dd:b6:13:3f:c1:65:98:a3:ae:6b:33:70:2a:61: a0:a4:f2:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb23tnsoPz7JNrRbGV+Pct8gFV3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzA0MjMxMTA4WhcNMjUwNDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmViMGFhZGQ2MTk2N2NmZWY0MWQzZDdmMjZiNmY1NGMy YmFhNjFlN2ZiZGVmZDE1ZTFiODU0M2RjYzg0NDU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiEtDlTXYNdskA/c05H+/a1wiPY4CSZLQ+5EVcm48BN5ov Kv4EuBK3i2lyBBFMcdxVrSxMd95YBuiRYhmsVeiQa8/NLBJJNgKYkeBY6vtTtrrs stD9GGVsNaFlzSGpU+1S7pvE9+SpVBCKacV1yU373UsOcwUIYnk/+MmQ8lzH3sUF jp4QUqcA2HHy/xHFCfftJ+NfiFI5VLroRC3R1QPoAflF8+zaBx9tR4cDs3D0v4sw FJexjct/u7KNzAqUtg5w/JrMMcfZrqrIqyzaZtUcMl3jX4uy2cPdiaXZ+5L+RqNX 9LFkOxLaq40lDoV8Xa8BmxHztI0ugwhrWRKj6o0LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfn3kV+HIEuu+zovuiDsA7JtMOk0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg3ZmMyMGY3LTBkZTktNDhkOC04NTBlLWM0MzBkODg4NjBlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAMwDQYJKoZIhvcNAQELBQADggEBAKdmRlhPzjyF8n2zv6hJf21c iU2SUEeixySkt3aaKcmeOjFsYFySXxRnMUga0eJPEHGAo65AyJHj3ztnlKINoQeH 9QxHLXbVb8ftRisa5rnPSuopf/2RpGusrz8Tw7AXGh/BNWEf/mwo/Fc6FSgtQ/Sn pcZ55bE0kM5bJC0qB8J0e9V00+2ne5+4/LWlnijQAIo8ZEO96JmVebaqTSoTI/cf MfTYbEM6tC4IFy11tVJbhzikTPCAaeM1gV10AuCnOJeXMkilvTuWWtHmfmVjIjGn gdFiJRkfDPQO4Y6ulDgNUasNN+Bk5Fzaj1P6e/HdthM/wWWYo65rM3AqYaCk8tQ= -----END CERTIFICATE-----Generated at Thu Mar 13 23:47:13 2025 by rpki-client