$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/344bc29d-01a1-4e8a-bded-f30ec2519804.roa File: 344bc29d-01a1-4e8a-bded-f30ec2519804.roa (raw, json) Hash identifier: d45oFw9WvD7XmG6y7QwhyU58k6TIc6gcmJx8MirYVOM= Subject key identifier: C4:49:81:DE:4C:B7:46:9D:46:42:FF:9E:C8:50:C1:E2:94:7A:FB:AC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3F766B999960A586F0D213B5E4B7653199DB5FA5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/344bc29d-01a1-4e8a-bded-f30ec2519804.roa Signing time: Tue 20 May 2025 18:20:11 +0000 ROA not before: Tue 20 May 2025 18:20:11 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:700::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:76:6b:99:99:60:a5:86:f0:d2:13:b5:e4:b7:65:31:99:db:5f:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:20:11 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=b94c0ea5f0136c16eb25875788178e7c608fc1c2ef3280d8ceefdc4eb3a4f5e9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7f:13:8c:e6:0a:9c:e3:8b:5a:65:46:4e:70: 20:c5:a2:97:5f:20:1a:e7:f8:1a:72:f3:a3:1d:e6: 9b:99:6a:a9:4c:6d:c7:93:d0:ce:d5:f8:b2:38:65: 4c:e0:25:25:0b:33:ff:f9:0d:e6:4e:34:0e:80:45: 7c:82:f2:d7:25:5e:de:ef:83:33:28:d6:90:74:32: 72:04:95:4f:1a:1d:a6:fd:0f:68:3a:0f:9a:f4:3e: b5:09:ce:5b:62:c9:79:57:bd:80:c2:01:2f:31:0d: ea:6a:f0:08:b6:3a:cb:6a:85:a4:7d:3c:7d:5a:55: 13:f6:5c:32:31:9d:2a:48:65:4b:52:33:c8:73:d7: 2c:11:a8:b1:13:36:c9:63:74:cc:e6:6b:0a:62:7c: 13:38:46:92:ad:b5:1f:17:c2:ea:17:84:21:7d:5a: 38:1e:8a:14:ec:c0:7b:29:41:81:0e:30:9e:ca:f7: 12:93:bc:1a:03:01:79:29:ae:27:35:7d:06:f0:b9: cc:5f:8a:29:7b:a6:2b:60:56:3a:32:37:6c:d7:35: 48:c4:d7:25:fe:5b:d3:16:b0:c0:a9:f8:89:ca:57: 83:08:cd:dd:b0:d4:98:41:ca:f1:33:58:3b:eb:a5: 14:d6:22:ce:1c:8b:ad:50:02:7d:00:d4:dd:47:01: 76:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:49:81:DE:4C:B7:46:9D:46:42:FF:9E:C8:50:C1:E2:94:7A:FB:AC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/344bc29d-01a1-4e8a-bded-f30ec2519804.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:700::/40 Signature Algorithm: sha256WithRSAEncryption 4f:ed:99:c2:b1:e5:d3:10:ad:dd:6b:16:05:d9:cc:d7:09:ae: 99:0d:c4:fa:66:d3:00:28:5c:f1:df:b1:5c:3e:37:53:f5:61: 71:04:01:11:71:53:66:de:32:41:4f:33:98:4c:e3:da:1f:3b: 98:25:40:b9:66:3d:ee:29:bd:f5:6e:63:8b:36:03:97:22:eb: 38:88:7a:f1:d7:5d:01:94:42:eb:83:4f:72:23:07:25:73:e0: 46:57:0d:c9:ba:65:26:48:a1:34:a2:45:44:c2:f2:dd:8e:4c: 37:61:a7:6f:c5:a1:17:49:f2:d2:6f:ab:b5:67:6e:ff:91:c0: dd:11:a3:d1:16:61:e1:75:2b:4a:23:ed:7a:c3:aa:d4:49:4c: 70:5e:0c:9c:66:8c:c7:b7:9b:c1:9b:90:e6:bb:84:47:f7:01: fc:02:e9:6b:ca:7e:ad:b2:d7:d3:43:69:b3:04:44:19:35:57: 69:74:ff:80:01:90:2b:06:ce:57:88:a8:71:11:19:8a:4c:7d: f7:1b:d9:ba:8e:25:0f:67:e3:36:61:9e:a2:0e:63:9b:45:cf: 82:ae:0d:1c:23:e4:1e:b6:58:ec:8d:6a:bf:b5:0c:91:92:85: 39:fd:13:eb:b9:45:a2:b2:f3:56:69:f4:55:9f:ab:1d:2a:f4: 43:dc:18:72 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUP3ZrmZlgpYbw0hO15LdlMZnbX6UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgyMDExWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTRjMGVhNWYwMTM2YzE2ZWIyNTg3NTc4ODE3OGU3YzYw OGZjMWMyZWYzMjgwZDhjZWVmZGM0ZWIzYTRmNWU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNfxOM5gqc44taZUZOcCDFopdfIBrn+Bpy86Md5puZaqlM bceT0M7V+LI4ZUzgJSULM//5DeZONA6ARXyC8tclXt7vgzMo1pB0MnIElU8aHab9 D2g6D5r0PrUJzltiyXlXvYDCAS8xDepq8Ai2OstqhaR9PH1aVRP2XDIxnSpIZUtS M8hz1ywRqLETNsljdMzmawpifBM4RpKttR8XwuoXhCF9WjgeihTswHspQYEOMJ7K 9xKTvBoDAXkpric1fQbwucxfiil7pitgVjoyN2zXNUjE1yX+W9MWsMCp+InKV4MI zd2w1JhByvEzWDvrpRTWIs4ci61QAn0A1N1HAXb3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUxEmB3ky3Rp1GQv+eyFDB4pR6+6wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM0NGJjMjlkLTAxYTEtNGU4YS1iZGVkLWYzMGVjMjUxOTgwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwBzANBgkqhkiG9w0BAQsFAAOCAQEAT+2ZwrHl0xCt3WsWBdnM1wmu mQ3E+mbTAChc8d+xXD43U/VhcQQBEXFTZt4yQU8zmEzj2h87mCVAuWY97im99W5j izYDlyLrOIh68dddAZRC64NPciMHJXPgRlcNybplJkihNKJFRMLy3Y5MN2Gnb8Wh F0ny0m+rtWdu/5HA3RGj0RZh4XUrSiPtesOq1ElMcF4MnGaMx7ebwZuQ5ruER/cB /ALpa8p+rbLX00NpswREGTVXaXT/gAGQKwbOV4iocREZikx99xvZuo4lD2fjNmGe og5jm0XPgq4NHCPkHrZY7I1qv7UMkZKFOf0T67lForLzVmn0VZ+rHSr0Q9wYcg== -----END CERTIFICATE-----Generated at Sat Jun 7 12:30:00 2025 by rpki-client