$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa File: 0668f39a-0950-45e9-b174-8f7a83ff26e9.roa (raw, json) Hash identifier: HXd5kjf80KjryaybSxqILNdoPaQt+T5NWOF28nYlrLs= Subject key identifier: 53:41:E3:E6:11:AA:7E:03:C4:78:7F:24:09:F4:19:E8:89:A5:70:A1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 302E7291F221D3DB440A1D38AF218156601E3D19 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa Signing time: Tue 20 May 2025 18:00:20 +0000 ROA not before: Tue 20 May 2025 18:00:20 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:2e:72:91:f2:21:d3:db:44:0a:1d:38:af:21:81:56:60:1e:3d:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:20 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=8f892f009dad054678e7d5438bb9c6ee517d08c53d6159943bda02e7f8a26bd4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c4:5b:14:00:85:28:1c:80:f2:e2:1b:2c:8c: 8a:60:c0:42:22:2f:6d:66:26:17:34:d4:5a:1a:a2: 6f:83:d5:9c:69:38:3c:67:66:30:82:80:a9:55:4a: 8b:e2:e7:25:7a:60:98:e9:47:b3:3e:b0:98:ae:45: 9b:29:29:fb:62:b9:0c:38:c5:a2:3e:f8:47:bc:90: ae:a6:af:98:82:f3:92:b3:1c:f6:d6:a5:ab:88:d0: ea:bb:38:11:68:cc:32:75:8c:ed:2b:3c:17:32:0e: 55:b4:eb:09:7f:8c:e0:44:a8:a2:7e:3b:df:d4:86: 85:93:ce:b7:93:dd:a8:01:90:24:4d:dc:fa:ac:82: 62:ac:7f:20:e7:48:b2:52:ec:80:ac:60:ca:e0:7b: 6c:b9:b0:74:c1:7a:fe:a5:f2:21:5a:d4:0d:2d:1e: 7a:7a:7b:c3:72:cd:b8:27:5f:12:24:bb:ac:5a:ce: a4:d3:c4:b5:13:5b:ec:d3:a6:00:7c:09:53:5c:8d: 2a:c2:bc:d4:c7:ff:52:dd:10:94:8b:f7:71:32:52: 62:65:cb:c4:0a:e8:98:e8:1f:59:07:b2:bf:f3:8b: 42:48:ab:7d:1f:e6:82:37:04:3b:31:57:15:a1:90: eb:56:6d:cd:36:50:b1:fb:18:bf:3a:4f:f8:01:97: fc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:41:E3:E6:11:AA:7E:03:C4:78:7F:24:09:F4:19:E8:89:A5:70:A1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 30:e9:2c:a8:6c:e3:cf:84:a3:71:04:cf:24:ed:d0:51:a8:87: fe:79:b0:4f:d7:d9:75:8d:8d:02:4b:c1:b3:db:94:d8:da:fc: 12:16:95:e2:8f:7c:51:32:ad:87:52:74:6c:e9:76:3a:50:f0: 6c:04:b9:bd:9e:c7:41:e3:1c:d1:43:2d:f1:3d:8f:b6:98:09: 60:31:47:85:1a:42:77:c5:13:b4:e9:c9:df:a0:eb:e0:69:b8: 46:c7:f3:ec:86:dd:d0:2a:f9:6e:c3:e2:29:51:63:fc:e6:0b: 00:83:45:97:bd:99:a0:4f:16:e8:c8:02:5b:98:f2:68:f3:df: 32:b2:f4:46:d9:4a:ba:13:f7:57:5c:08:c8:39:75:10:34:22: a6:91:ba:fe:96:fc:35:a8:90:79:46:85:86:2b:46:01:0c:78: 34:ea:46:7f:be:11:43:75:38:42:0f:e9:33:d2:1b:9d:66:11: 36:d7:98:21:eb:af:3e:61:32:1f:20:d5:15:b1:c2:7e:ab:bb: 82:c5:1f:10:2c:e5:7a:8b:64:90:75:05:2d:95:ec:cc:7c:8c: 58:7c:0d:80:4e:0d:d1:17:98:a3:25:c4:58:6f:25:9a:f9:c9: f3:fc:96:56:df:09:2a:23:0f:84:f1:74:d8:c2:32:19:11:45: 42:8d:43:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMC5ykfIh09tECh04ryGBVmAePRkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDIwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4Zjg5MmYwMDlkYWQwNTQ2NzhlN2Q1NDM4YmI5YzZlZTUx N2QwOGM1M2Q2MTU5OTQzYmRhMDJlN2Y4YTI2YmQ0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXxFsUAIUoHIDy4hssjIpgwEIiL21mJhc01Foaom+D1Zxp ODxnZjCCgKlVSovi5yV6YJjpR7M+sJiuRZspKftiuQw4xaI++Ee8kK6mr5iC85Kz HPbWpauI0Oq7OBFozDJ1jO0rPBcyDlW06wl/jOBEqKJ+O9/UhoWTzreT3agBkCRN 3PqsgmKsfyDnSLJS7ICsYMrge2y5sHTBev6l8iFa1A0tHnp6e8NyzbgnXxIku6xa zqTTxLUTW+zTpgB8CVNcjSrCvNTH/1LdEJSL93EyUmJly8QK6JjoH1kHsr/zi0JI q30f5oI3BDsxVxWhkOtWbc02ULH7GL86T/gBl/wLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUU0Hj5hGqfgPEeH8kCfQZ6ImlcKEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2NjhmMzlhLTA5NTAtNDVlOS1iMTc0LThmN2E4M2ZmMjZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBADDpLKhs48+Eo3EEzyTt0FGo h/55sE/X2XWNjQJLwbPblNja/BIWleKPfFEyrYdSdGzpdjpQ8GwEub2ex0HjHNFD LfE9j7aYCWAxR4UaQnfFE7Tpyd+g6+BpuEbH8+yG3dAq+W7D4ilRY/zmCwCDRZe9 maBPFujIAluY8mjz3zKy9EbZSroT91dcCMg5dRA0IqaRuv6W/DWokHlGhYYrRgEM eDTqRn++EUN1OEIP6TPSG51mETbXmCHrrz5hMh8g1RWxwn6ru4LFHxAs5XqLZJB1 BS2V7Mx8jFh8DYBODdEXmKMlxFhvJZr5yfP8llbfCSojD4TxdNjCMhkRRUKNQ5w= -----END CERTIFICATE-----Generated at Sun Jun 8 19:22:04 2025 by rpki-client