$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa File: b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa (raw, json) Hash identifier: qnkn17GxaDhsRZnwGXwAH4WeBqH0If00XR6N/gi9RZs= Subject key identifier: CD:50:B0:B6:21:15:9E:30:B1:5D:F0:8D:1D:32:35:CC:7E:4C:6B:4C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 572EB271C1A7B378F3FC0EEFD1C1AED737A47E17 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa Signing time: Fri 04 Apr 2025 00:20:18 +0000 ROA not before: Fri 04 Apr 2025 00:20:18 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1:8801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:2e:b2:71:c1:a7:b3:78:f3:fc:0e:ef:d1:c1:ae:d7:37:a4:7e:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 4 00:20:18 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cb:92:e0:fc:cd:67:19:cb:8d:79:8e:ce:15: eb:31:ed:34:89:b1:1d:88:fb:3e:c2:0e:2d:9e:d0: 88:10:7b:d1:b7:d5:0f:24:bb:49:e1:ac:3c:34:ab: 18:0d:77:97:61:8e:43:46:8f:2a:84:2e:b5:e8:c1: 4d:6f:48:2c:10:b7:56:50:54:d5:ba:9b:97:f0:34: 91:3b:9e:7b:fc:72:a9:9d:4a:1b:00:bc:86:60:7e: 53:56:ba:7e:a6:1d:fd:ab:9d:92:6c:4c:c3:6b:81: 82:fb:ec:85:69:60:89:9c:d6:30:1d:25:91:6c:26: dc:cb:23:d4:ab:f3:cd:ac:b7:07:4d:08:53:0f:04: 79:2c:74:ce:cd:5e:56:b5:7a:8f:0c:8b:51:64:5c: 24:8d:b3:d2:b8:d5:a3:3c:d4:c8:5b:2f:f7:da:f6: 2b:a0:65:98:40:f7:28:40:01:d8:8c:91:ed:45:1e: c8:4d:01:9e:bd:0c:54:21:c0:0b:fd:2e:6c:36:cb: be:2c:fb:2a:af:12:75:34:9a:e1:2a:96:b2:73:9e: b6:3f:8e:ae:28:ed:96:39:b8:25:75:e4:d4:34:39: 5b:c6:fb:ec:95:de:12:64:a3:a1:ff:13:d0:15:df: 7d:f3:bc:dc:c2:ff:ce:38:5b:1a:b4:7b:65:ba:ba: 0b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:50:B0:B6:21:15:9E:30:B1:5D:F0:8D:1D:32:35:CC:7E:4C:6B:4C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8801::/48 Signature Algorithm: sha256WithRSAEncryption 64:9d:a7:cd:9b:66:6a:6d:9c:d5:dc:ce:c6:55:42:e4:2f:6c: 42:c2:c6:58:87:0c:f2:6e:e1:e0:31:5b:7e:91:8d:96:47:73: 1e:c0:ce:d7:46:9a:cb:32:1c:b4:a4:98:bf:d3:d2:73:0f:ed: 51:4e:3a:6b:41:7c:99:2e:a2:d0:70:e8:40:60:32:07:9e:31: 05:cc:eb:e0:21:e3:66:5a:32:14:2c:0e:50:c1:d5:54:26:e1: 9a:f5:4d:ce:36:53:60:14:89:8f:31:c1:f8:a2:67:61:c8:62: d2:a9:4d:56:bd:2b:79:21:fd:1b:70:3d:9a:03:08:ea:19:7c: b9:44:9b:07:a0:32:0e:6b:b6:d6:ca:6a:87:5d:af:76:50:05: 97:24:61:f7:09:23:b8:69:19:11:1d:6c:21:b1:06:0b:98:2b: 71:82:06:56:fb:c3:64:d2:fd:0e:73:af:36:5f:16:d2:8b:2f: f8:ce:c1:8b:da:d4:48:c9:9d:09:55:28:f9:1c:2c:a5:48:44: e6:8c:92:19:2d:93:99:2d:46:c6:b7:08:e1:3f:68:ac:46:54: ff:50:04:9f:d2:d0:c0:11:69:82:d4:a1:f2:f5:5b:e0:d9:58: 79:6d:10:05:5a:72:66:59:19:0f:c3:82:19:3f:b7:a3:53:86: 2e:72:20:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVy6yccGns3jz/A7v0cGu1zekfhcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNDA0MDAyMDE4WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTlkOWYxMTg1ZGMzZTk4OTRhYzFlNjM5OGFlNDk2NTI2 MDk5MmM3ZTE1YTEwYWJhOGE3M2M0MWEyY2IxNDJiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXy5Lg/M1nGcuNeY7OFesx7TSJsR2I+z7CDi2e0IgQe9G3 1Q8ku0nhrDw0qxgNd5dhjkNGjyqELrXowU1vSCwQt1ZQVNW6m5fwNJE7nnv8cqmd ShsAvIZgflNWun6mHf2rnZJsTMNrgYL77IVpYImc1jAdJZFsJtzLI9Sr882stwdN CFMPBHksdM7NXla1eo8Mi1FkXCSNs9K41aM81MhbL/fa9iugZZhA9yhAAdiMke1F HshNAZ69DFQhwAv9Lmw2y74s+yqvEnU0muEqlrJznrY/jq4o7ZY5uCV15NQ0OVvG ++yV3hJko6H/E9AV333zvNzC/844Wxq0e2W6ugsDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzVCwtiEVnjCxXfCNHTI1zH5Ma0wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I0MTYzYTM4LWE4ZTItNDhkOS04NTVmLWRkNTNhZTdmNmRjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAEwDQYJKoZIhvcNAQELBQADggEBAGSdp82bZmptnNXczsZVQuQv bELCxliHDPJu4eAxW36RjZZHcx7AztdGmssyHLSkmL/T0nMP7VFOOmtBfJkuotBw 6EBgMgeeMQXM6+Ah42ZaMhQsDlDB1VQm4Zr1Tc42U2AUiY8xwfiiZ2HIYtKpTVa9 K3kh/RtwPZoDCOoZfLlEmwegMg5rttbKaoddr3ZQBZckYfcJI7hpGREdbCGxBguY K3GCBlb7w2TS/Q5zrzZfFtKLL/jOwYva1EjJnQlVKPkcLKVIROaMkhktk5ktRsa3 COE/aKxGVP9QBJ/S0MARaYLUofL1W+DZWHltEAVacmZZGQ/Dghk/t6NThi5yIJI= -----END CERTIFICATE-----Generated at Fri Apr 4 23:44:15 2025 by rpki-client