$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa File: 2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa (raw, json) Hash identifier: geWF5T5twS5yb1IUO9ff+OZeKDdSeRi0Uhy5pgCzvVQ= Subject key identifier: FD:2F:FB:3A:3C:B7:9D:43:25:31:19:36:C2:AA:9C:C6:82:D7:3C:8D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7A1AE0B809FC345EACC856EFB63024FF04A5E9C6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa Signing time: Tue 20 May 2025 18:00:41 +0000 ROA not before: Tue 20 May 2025 18:00:41 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:1a:e0:b8:09:fc:34:5e:ac:c8:56:ef:b6:30:24:ff:04:a5:e9:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:41 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=b6c410e3fa74473df42a7b3a7b7e3d4217be63271cdaac6fd6d8f8b3b631dcce, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f8:1f:5e:7b:45:fb:f8:2d:c5:d4:bc:72:2c: 30:a7:60:92:ff:29:46:61:e7:11:c4:79:1f:38:3d: ec:66:d3:b0:22:4f:0a:a4:93:a2:ed:e9:54:a6:8c: fb:09:87:b7:d0:88:6f:2d:14:a9:7b:7d:33:6c:39: 36:17:f9:59:7d:4f:c6:8a:d3:1e:72:41:16:3c:e5: 6b:fc:58:bd:87:7e:5a:80:cf:45:31:54:c6:45:8c: ae:33:ab:da:6e:39:3a:36:ee:76:3d:36:90:bc:78: 74:da:d0:7d:d6:f5:32:36:76:66:c2:d3:ac:51:2b: f6:81:88:ba:89:80:33:b3:8f:f4:e9:8c:51:42:2a: 27:90:8c:b0:27:50:16:ea:7c:d6:9a:9f:c8:de:24: e4:8f:da:e1:c7:0e:8c:e3:c7:2b:fc:a6:e1:ac:4b: 61:e6:69:19:00:8c:04:96:fb:d2:19:ad:76:69:66: 28:c0:ca:34:2b:1b:5f:aa:37:80:00:31:6a:56:85: 82:45:07:0a:94:6f:45:25:b4:ec:ab:4c:fc:f3:9d: d5:c4:fc:68:3d:09:dc:3f:93:9a:22:f1:45:b6:db: 5f:50:9f:fa:51:0b:24:d2:38:86:68:48:de:25:a9: 3f:63:7b:d2:61:bf:99:b6:1b:92:fd:10:a5:55:e5: ca:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2F:FB:3A:3C:B7:9D:43:25:31:19:36:C2:AA:9C:C6:82:D7:3C:8D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/40 Signature Algorithm: sha256WithRSAEncryption 87:c2:e8:1a:aa:f1:f4:35:8a:e8:f5:48:43:a8:23:6e:e3:01: 16:f1:e5:a1:f9:8e:7c:ce:68:ef:54:0b:1f:25:6a:9b:5e:9c: f5:a5:1d:4e:07:59:fc:24:1a:8b:4b:05:df:ae:4a:63:e9:67: 68:3f:89:b1:9c:5e:7d:2a:6b:97:45:a5:31:20:cb:49:40:e3: d2:f0:44:68:e3:90:9f:02:59:e2:6b:55:47:b7:cc:e2:d6:98: 26:17:29:04:40:e7:76:75:c6:51:27:f5:c8:58:cc:d0:8a:c7: 10:af:76:4c:fd:fb:fe:33:7c:20:8b:4b:5d:a4:7a:e5:4b:12: c6:d1:ef:69:89:f1:e9:30:47:d9:0d:9a:0d:28:85:71:f5:b9: f6:02:d1:41:10:38:a1:19:11:83:28:c3:e8:b5:32:64:3e:97: 50:e0:da:68:79:ca:ad:c9:b9:84:76:0d:ae:e0:8f:65:18:c8: 2b:4b:54:c3:5f:58:31:c0:0c:ed:db:27:aa:f6:d5:0f:80:78: 0c:4b:6c:d2:46:1e:f8:54:44:51:5b:06:3e:31:20:2e:5c:c5: 28:55:06:83:14:70:62:fb:8b:21:80:ce:a4:66:2f:c1:51:da: 69:53:6e:64:83:36:3f:9d:41:54:ec:1a:ad:b2:34:e8:94:ef: 7e:b5:4c:30 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUehrguAn8NF6syFbvtjAk/wSl6cYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDQxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmM0MTBlM2ZhNzQ0NzNkZjQyYTdiM2E3YjdlM2Q0MjE3 YmU2MzI3MWNkYWFjNmZkNmQ4ZjhiM2I2MzFkY2NlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4+B9ee0X7+C3F1LxyLDCnYJL/KUZh5xHEeR84Pexm07Ai Twqkk6Lt6VSmjPsJh7fQiG8tFKl7fTNsOTYX+Vl9T8aK0x5yQRY85Wv8WL2HflqA z0UxVMZFjK4zq9puOTo27nY9NpC8eHTa0H3W9TI2dmbC06xRK/aBiLqJgDOzj/Tp jFFCKieQjLAnUBbqfNaan8jeJOSP2uHHDozjxyv8puGsS2HmaRkAjASW+9IZrXZp ZijAyjQrG1+qN4AAMWpWhYJFBwqUb0UltOyrTPzzndXE/Gg9Cdw/k5oi8UW2219Q n/pRCyTSOIZoSN4lqT9je9Jhv5m2G5L9EKVV5cojAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/S/7Ojy3nUMlMRk2wqqcxoLXPI0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI5MTBiY2ZhLTRiY2ItNDEyNS1hNTZmLTRiYjk1OTZmNWFkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwBTANBgkqhkiG9w0BAQsFAAOCAQEAh8LoGqrx9DWK6PVIQ6gjbuMB FvHlofmOfM5o71QLHyVqm16c9aUdTgdZ/CQai0sF365KY+lnaD+JsZxefSprl0Wl MSDLSUDj0vBEaOOQnwJZ4mtVR7fM4taYJhcpBEDndnXGUSf1yFjM0IrHEK92TP37 /jN8IItLXaR65UsSxtHvaYnx6TBH2Q2aDSiFcfW59gLRQRA4oRkRgyjD6LUyZD6X UODaaHnKrcm5hHYNruCPZRjIK0tUw19YMcAM7dsnqvbVD4B4DEts0kYe+FREUVsG PjEgLlzFKFUGgxRwYvuLIYDOpGYvwVHaaVNuZIM2P51BVOwarbI06JTvfrVMMA== -----END CERTIFICATE-----Generated at Fri Jun 6 18:11:03 2025 by rpki-client