$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1713f755-e887-41fa-83fe-8bab1dc14311.roa File: 1713f755-e887-41fa-83fe-8bab1dc14311.roa (raw, json) Hash identifier: t7g/12LMlnd+sqttsmfKyV9Uya8jCfrmvRypgYS4L8U= Subject key identifier: D2:EA:43:A9:BF:D8:DE:FE:ED:AB:AD:4B:8F:7E:CC:D3:62:35:1C:2B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 114C78B6A0090F9519B12FDE734D5B35735619C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1713f755-e887-41fa-83fe-8bab1dc14311.roa Signing time: Tue 20 May 2025 18:20:01 +0000 ROA not before: Tue 20 May 2025 18:20:01 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ea00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:4c:78:b6:a0:09:0f:95:19:b1:2f:de:73:4d:5b:35:73:56:19:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:20:01 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=10c57ae25abd3add93a98c286f80ed0dc22ac092cbe3b8bd0f808c44c79376c7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b7:b1:72:6b:51:46:c2:94:45:ff:1d:2f:f0: 5d:de:21:a5:f2:66:59:83:1e:06:2a:54:d8:27:8a: 5f:6a:8c:83:ea:94:e1:48:7d:04:e9:a4:3a:a3:de: c9:6b:24:7d:fd:8a:42:e7:65:27:08:0f:f5:8d:1a: c1:d6:55:09:bf:18:b7:eb:f0:53:ee:a8:90:d1:fb: e4:a3:af:11:12:b1:f6:48:c4:76:e8:6d:94:0f:44: 3c:c6:e4:de:a4:2d:b3:e8:65:04:75:84:dc:b6:eb: 62:c8:4b:c6:be:13:ce:63:dc:91:22:66:aa:fd:9f: dc:1a:b0:23:76:f5:5b:c6:76:22:ab:fe:23:34:c6: a0:b6:c3:a5:9c:63:b6:dc:ec:19:b5:3c:06:26:e5: 25:7d:67:1e:c7:09:0b:d0:c4:63:d2:1f:0f:41:89: b5:50:66:73:a4:3c:a5:3d:18:ae:32:8e:43:b7:c8: 0f:cc:ac:e1:2e:8c:ee:25:3c:e8:f5:31:48:2f:ec: af:78:fb:f1:1d:0a:ab:07:c0:12:eb:df:ed:2e:9e: f3:ec:67:07:67:0b:f8:d9:76:d5:ba:1f:be:a4:78: dc:e2:57:5d:6b:d4:5d:bb:2e:35:0e:98:f6:6a:b2: 62:4c:0e:6e:f4:c2:9f:54:8c:9d:de:45:e9:71:d5: 4a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:EA:43:A9:BF:D8:DE:FE:ED:AB:AD:4B:8F:7E:CC:D3:62:35:1C:2B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1713f755-e887-41fa-83fe-8bab1dc14311.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/42 Signature Algorithm: sha256WithRSAEncryption a7:9b:b4:49:97:eb:2b:5e:75:dc:fe:8a:d6:79:05:7b:da:d4: 6b:10:cd:c5:1d:1f:a7:9e:04:e5:1f:f8:34:4a:ec:8f:2a:46: da:fa:08:52:49:51:d1:5f:33:ba:3f:34:2f:a8:e0:0b:24:d2: e0:ea:f6:2c:4e:d6:86:55:29:5a:ed:15:68:f4:48:32:8e:6e: 0c:b3:2a:1a:13:e7:7c:16:08:85:a0:a3:1b:5e:de:3e:e9:7d: 6d:ac:06:9e:ab:b8:54:81:a6:93:8c:28:db:7c:7f:4b:dc:41: c7:32:9c:54:93:61:e3:01:ef:21:8d:52:b1:52:35:54:7a:d7: 34:a6:6e:00:01:dd:4d:62:0e:1b:82:a1:bf:1e:b3:40:6a:f1: 79:f7:c4:9b:57:2f:d1:ec:de:27:6f:c1:b1:4b:08:a7:53:62: 31:9a:54:79:cd:85:ee:e5:98:04:22:73:42:5b:d7:b3:91:a4: 50:83:2c:b5:27:ce:78:a2:bc:f0:3c:e1:7a:6c:27:22:5c:cc: d4:21:a2:b2:3b:f4:86:70:66:03:29:b0:09:8a:a2:53:e1:ac: c2:0e:6f:11:25:3e:ac:27:0e:ca:b9:51:31:1d:91:a6:e7:18: 5c:b5:4a:1d:12:cf:a3:c9:19:b8:00:39:b5:ee:62:4a:45:c0: 8e:3e:d4:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEUx4tqAJD5UZsS/ec01bNXNWGcAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgyMDAxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMGM1N2FlMjVhYmQzYWRkOTNhOThjMjg2ZjgwZWQwZGMy MmFjMDkyY2JlM2I4YmQwZjgwOGM0NGM3OTM3NmM3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFt7Fya1FGwpRF/x0v8F3eIaXyZlmDHgYqVNgnil9qjIPq lOFIfQTppDqj3slrJH39ikLnZScID/WNGsHWVQm/GLfr8FPuqJDR++SjrxESsfZI xHbobZQPRDzG5N6kLbPoZQR1hNy262LIS8a+E85j3JEiZqr9n9wasCN29VvGdiKr /iM0xqC2w6WcY7bc7Bm1PAYm5SV9Zx7HCQvQxGPSHw9BibVQZnOkPKU9GK4yjkO3 yA/MrOEujO4lPOj1MUgv7K94+/EdCqsHwBLr3+0unvPsZwdnC/jZdtW6H76keNzi V11r1F27LjUOmPZqsmJMDm70wp9UjJ3eRelx1UqZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0upDqb/Y3v7tq61Lj37M02I1HCswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE3MTNmNzU1LWU4ODctNDFmYS04M2ZlLThiYWIxZGMxNDMxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76gAwDQYJKoZIhvcNAQELBQADggEBAKebtEmX6yteddz+itZ5BXva 1GsQzcUdH6eeBOUf+DRK7I8qRtr6CFJJUdFfM7o/NC+o4Ask0uDq9ixO1oZVKVrt FWj0SDKObgyzKhoT53wWCIWgoxte3j7pfW2sBp6ruFSBppOMKNt8f0vcQccynFST YeMB7yGNUrFSNVR61zSmbgAB3U1iDhuCob8es0Bq8Xn3xJtXL9Hs3idvwbFLCKdT YjGaVHnNhe7lmAQic0Jb17ORpFCDLLUnzniivPA84XpsJyJczNQhorI79IZwZgMp sAmKolPhrMIObxElPqwnDsq5UTEdkabnGFy1Sh0Sz6PJGbgAObXuYkpFwI4+1MQ= -----END CERTIFICATE-----Generated at Fri Jun 6 18:59:41 2025 by rpki-client