$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa File: 16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa (raw, json) Hash identifier: SOdIUO9ohiLnvJKhnyz2Myb/cb45hEMFNtedt+H2cZs= Subject key identifier: CE:0C:0B:28:BD:1D:8E:0D:01:3A:51:25:D4:AE:01:D0:20:3E:26:3A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7EEA3224835778CE4D9C71B60CF5AFFD78FA4984 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa Signing time: Sat 24 May 2025 00:30:41 +0000 ROA not before: Sat 24 May 2025 00:30:41 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ea:32:24:83:57:78:ce:4d:9c:71:b6:0c:f5:af:fd:78:fa:49:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 24 00:30:41 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=71d7dc7e21bdf089bc7a3adad0e0566d3ce01e6fff24ddb0c29f3935d1526b03, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:cd:29:c1:14:74:a7:36:9a:9c:2d:31:bd:1b: 0c:52:ae:eb:f2:b1:0f:66:ec:d4:3c:8f:7f:ff:2e: 25:f3:92:6e:7d:3f:6a:fe:0b:57:7f:a4:3b:8c:15: 03:0e:a4:26:44:b0:6c:02:67:7e:b0:69:1d:55:41: f4:ca:36:cf:3a:43:fe:12:39:37:a8:c4:c3:04:69: 33:cf:39:96:15:08:49:ac:36:49:37:93:9c:8e:a0: 34:25:d6:b0:84:81:93:50:d3:ac:52:8e:c7:5e:09: 1e:df:c7:70:48:b7:2d:f8:01:ea:61:7e:8d:da:4c: 12:d2:81:00:37:f4:5c:18:52:01:2d:38:d6:a8:6f: 20:de:9a:de:47:35:6e:af:65:ba:3b:43:33:b9:08: a4:c2:ea:a7:e8:1f:9a:25:18:0c:d2:ef:e3:01:57: d4:38:86:68:d4:79:9d:66:99:25:83:29:92:8c:35: bd:52:4d:b9:32:16:e7:a2:51:3d:cb:24:a1:b9:db: ed:6d:35:54:3b:54:cb:cf:64:0c:ed:fb:75:ae:55: 9a:ae:88:be:32:8f:79:01:9e:2e:b2:1c:e7:2c:2b: 7f:90:9a:f3:cc:3f:64:ad:f2:20:8f:da:2d:25:19: 8b:d8:9a:f1:13:65:d3:7f:2e:6c:3f:36:cb:ad:11: d0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0C:0B:28:BD:1D:8E:0D:01:3A:51:25:D4:AE:01:D0:20:3E:26:3A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 22:d4:05:fd:e9:fd:cd:6b:81:f9:69:86:3e:b9:dd:b7:35:9a: 16:91:da:b8:45:75:5e:2b:fd:ee:f6:8b:4b:c1:19:ec:fc:00: dd:c4:61:0c:c6:ec:42:c4:7c:80:5b:31:2d:0a:9c:74:9c:33: 98:1e:96:4e:7f:aa:7c:6b:a9:c3:e8:a4:ec:cc:1e:7c:c2:5a: 77:a2:55:ad:ba:ae:13:0b:ed:73:cb:a6:c7:6c:70:8b:e3:33: e0:25:9d:16:db:4f:e5:9c:48:79:e6:e6:32:a4:ea:03:e1:d3: 76:ac:3e:dd:f8:f2:44:51:94:5e:42:d1:d5:ba:94:aa:66:b9: 54:5e:15:92:e0:11:80:b3:b6:c8:cc:f8:a6:e9:39:79:e2:d3: d7:28:33:7d:a4:81:09:97:d9:5d:a7:ce:1e:5e:de:b1:d8:43: ce:62:2d:b5:04:9b:88:1e:b5:d9:c9:2d:c9:e9:0f:1d:8b:55: cc:78:ee:24:7a:af:53:55:1f:b0:c6:d0:ed:16:8d:ea:c1:82: f4:46:82:12:94:49:60:8c:88:fc:bf:ab:0e:47:fc:c5:dc:0c: de:ab:8b:47:fb:1e:64:69:11:c8:c5:cc:74:4d:f6:2a:07:ca: 44:4c:bc:3a:07:e9:69:f5:89:45:b6:e0:10:68:37:b4:d3:1c: 15:fa:17:76 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfuoyJINXeM5NnHG2DPWv/Xj6SYQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI0MDAzMDQxWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWQ3ZGM3ZTIxYmRmMDg5YmM3YTNhZGFkMGUwNTY2ZDNj ZTAxZTZmZmYyNGRkYjBjMjlmMzkzNWQxNTI2YjAzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTzSnBFHSnNpqcLTG9GwxSruvysQ9m7NQ8j3//LiXzkm59 P2r+C1d/pDuMFQMOpCZEsGwCZ36waR1VQfTKNs86Q/4SOTeoxMMEaTPPOZYVCEms Nkk3k5yOoDQl1rCEgZNQ06xSjsdeCR7fx3BIty34Aephfo3aTBLSgQA39FwYUgEt ONaobyDemt5HNW6vZbo7QzO5CKTC6qfoH5olGAzS7+MBV9Q4hmjUeZ1mmSWDKZKM Nb1STbkyFueiUT3LJKG52+1tNVQ7VMvPZAzt+3WuVZquiL4yj3kBni6yHOcsK3+Q mvPMP2St8iCP2i0lGYvYmvETZdN/Lmw/NsutEdCVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzgwLKL0djg0BOlEl1K4B0CA+JjowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE2YjIyZWE4LTRhN2MtNDMxYS1iZDc0LThhMmNjZWFhYWY0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBACLUBf3p/c1rgflphj653bc1 mhaR2rhFdV4r/e72i0vBGez8AN3EYQzG7ELEfIBbMS0KnHScM5gelk5/qnxrqcPo pOzMHnzCWneiVa26rhML7XPLpsdscIvjM+AlnRbbT+WcSHnm5jKk6gPh03asPt34 8kRRlF5C0dW6lKpmuVReFZLgEYCztsjM+KbpOXni09coM32kgQmX2V2nzh5e3rHY Q85iLbUEm4getdnJLcnpDx2LVcx47iR6r1NVH7DG0O0WjerBgvRGghKUSWCMiPy/ qw5H/MXcDN6ri0f7HmRpEcjFzHRN9ioHykRMvDoH6Wn1iUW24BBoN7TTHBX6F3Y= -----END CERTIFICATE-----Generated at Fri Jun 6 04:24:35 2025 by rpki-client