$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa File: 20df74ce-1a64-4df1-b616-115d4493a969.roa (raw, json) Hash identifier: CzkvrWtuE6Eatacok4Fdidm/kBmOGk7s1mHIW/khMuA= Subject key identifier: 82:07:87:49:3D:30:B2:07:86:3D:0B:7E:0E:7A:19:F8:22:52:C7:C2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 64F290FFD2B3BC335EC517A13AA3692E7FD73D26 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa Signing time: Tue 20 May 2025 18:20:09 +0000 ROA not before: Tue 20 May 2025 18:20:09 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f2:90:ff:d2:b3:bc:33:5e:c5:17:a1:3a:a3:69:2e:7f:d7:3d:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:20:09 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=cff2e86cfc220a599ef52913bf3ded2c15ae4444f3ddd377b6e1af18e4f39ea5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7e:78:4e:66:d0:ca:9d:38:ae:7a:4d:cc:cf: 31:d6:50:49:82:fc:ed:43:b9:f8:4f:f1:35:3f:57: c2:17:6a:f3:ba:cd:19:6e:53:27:9f:10:7c:10:84: b3:37:af:ad:3c:f2:a2:c9:b8:ef:5c:a2:68:f4:2a: 06:7e:b5:2b:c5:42:b1:6f:a6:c5:bf:1e:9f:64:c1: c9:80:67:7b:30:ed:b2:c5:12:de:aa:77:9e:49:9a: 36:64:50:e8:8e:d5:5c:55:c1:f2:41:49:ff:4f:e8: be:bb:ae:20:0b:27:7e:a9:f8:8c:f6:98:b8:31:9e: a7:0a:cc:4f:69:dc:5d:07:01:5a:87:b3:85:02:b7: 89:3a:a1:d5:ac:6e:2f:dc:94:5b:46:d2:e8:61:86: 4f:42:d6:37:83:84:db:c5:0b:44:22:ae:fa:3e:92: 49:e5:86:0e:23:4b:9d:1a:36:8d:90:34:e5:76:77: 79:a7:70:08:2b:62:b5:a7:82:e3:6b:4c:7a:4b:b7: a2:0e:2a:49:7f:7f:dd:ac:83:03:32:23:d5:6b:a9: 3c:74:87:43:c6:a3:27:98:cd:8e:73:33:07:f3:4a: d1:33:3d:05:b9:8d:e2:d0:2c:2e:d4:b5:2b:ac:3d: 9f:cd:ec:25:60:02:87:70:70:46:6f:44:69:8a:6c: 5b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:07:87:49:3D:30:B2:07:86:3D:0B:7E:0E:7A:19:F8:22:52:C7:C2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:200::/40 Signature Algorithm: sha256WithRSAEncryption 7f:8c:05:40:34:78:40:05:5b:40:0d:c9:fb:11:22:af:a8:31: bc:08:18:d4:01:d6:97:d6:c4:93:36:37:23:45:8c:03:22:c4: 23:42:2d:96:12:40:6d:5b:4c:67:68:58:b1:fd:6f:97:dd:e2: b4:47:e6:76:03:69:98:4b:cd:e5:c0:32:1f:35:ff:d8:e1:72: e0:ed:17:12:20:32:45:55:ff:2d:dd:c9:c4:81:56:90:1e:71: 67:de:65:ee:61:7d:1e:ad:90:25:8d:b1:6e:2f:1e:14:22:0c: dc:f1:17:f2:f1:8d:9a:9f:cf:ad:56:bb:75:8b:d4:16:f8:14: 54:67:75:ad:4d:d2:31:43:c3:ce:3d:bd:38:5c:ce:58:7c:ef: 11:13:c0:96:89:19:49:cf:9c:3a:45:7d:b9:21:fc:cd:08:1d: ba:37:bc:12:2e:e1:77:18:2d:b5:4a:9f:af:20:5d:76:01:15: 5f:62:e3:94:c1:5f:2d:6c:47:c2:15:2f:0e:91:97:d5:95:a9: e3:2a:5a:14:25:b2:55:7b:9d:43:d8:cd:9c:b4:78:d2:ab:43: 0a:cb:ea:a0:02:15:d6:6b:2f:5f:8a:b7:78:d9:47:6d:89:cd: a7:19:6f:5b:50:70:5c:5f:80:cc:7b:cb:e9:91:e8:21:70:c4: 2f:69:88:78 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZPKQ/9KzvDNexRehOqNpLn/XPSYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgyMDA5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmYyZTg2Y2ZjMjIwYTU5OWVmNTI5MTNiZjNkZWQyYzE1 YWU0NDQ0ZjNkZGQzNzdiNmUxYWYxOGU0ZjM5ZWE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCufnhOZtDKnTiuek3MzzHWUEmC/O1DufhP8TU/V8IXavO6 zRluUyefEHwQhLM3r6088qLJuO9comj0KgZ+tSvFQrFvpsW/Hp9kwcmAZ3sw7bLF Et6qd55JmjZkUOiO1VxVwfJBSf9P6L67riALJ36p+Iz2mLgxnqcKzE9p3F0HAVqH s4UCt4k6odWsbi/clFtG0uhhhk9C1jeDhNvFC0Qirvo+kknlhg4jS50aNo2QNOV2 d3mncAgrYrWnguNrTHpLt6IOKkl/f92sgwMyI9VrqTx0h0PGoyeYzY5zMwfzStEz PQW5jeLQLC7UtSusPZ/N7CVgAodwcEZvRGmKbFuDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUggeHST0wsgeGPQt+DnoZ+CJSx8IwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIwZGY3NGNlLTFhNjQtNGRmMS1iNjE2LTExNWQ0NDkzYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwAjANBgkqhkiG9w0BAQsFAAOCAQEAf4wFQDR4QAVbQA3J+xEir6gx vAgY1AHWl9bEkzY3I0WMAyLEI0ItlhJAbVtMZ2hYsf1vl93itEfmdgNpmEvN5cAy HzX/2OFy4O0XEiAyRVX/Ld3JxIFWkB5xZ95l7mF9Hq2QJY2xbi8eFCIM3PEX8vGN mp/PrVa7dYvUFvgUVGd1rU3SMUPDzj29OFzOWHzvERPAlokZSc+cOkV9uSH8zQgd uje8Ei7hdxgttUqfryBddgEVX2LjlMFfLWxHwhUvDpGX1ZWp4ypaFCWyVXudQ9jN nLR40qtDCsvqoAIV1msvX4q3eNlHbYnNpxlvW1BwXF+AzHvL6ZHoIXDEL2mIeA== -----END CERTIFICATE-----Generated at Fri Jun 6 05:12:52 2025 by rpki-client