$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa File: 3562da89-c8ff-4159-8f92-365721d94405.roa (raw, json) Hash identifier: Tg/nzkojec/9sJnwgT9NE4nrn3aQwoDALE+oskzsZvI= Subject key identifier: D2:10:1B:4B:2B:B7:E2:DD:DE:1E:D2:F1:F2:47:4E:20:AB:A1:82:87 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3FCE1B3508C312D0ECE71EAFB7D41CE188ACD9A0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa Signing time: Fri 30 May 2025 15:00:01 +0000 ROA not before: Fri 30 May 2025 15:00:01 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:ce:1b:35:08:c3:12:d0:ec:e7:1e:af:b7:d4:1c:e1:88:ac:d9:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 30 15:00:01 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=fbf8f77f2c8d0952f81510839bbfad0b954d4adb54dfa9583bbb34dd16db7000, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:50:2e:d3:23:2b:71:f9:b3:12:37:1a:74:fe: 93:67:42:c6:6d:fd:98:4a:18:25:66:cb:2f:83:6c: 69:f5:0a:35:31:6b:f7:db:3f:c5:fb:58:58:e4:95: 28:90:56:27:74:91:f0:40:8d:ea:ab:4e:19:4e:56: 00:39:49:f6:ad:ce:dc:ae:8c:e0:90:51:f2:e3:6f: 06:6c:c4:f1:92:67:ca:ed:6b:f9:bb:9a:25:f0:7d: f3:c1:fc:85:7f:13:ff:6c:d1:44:d3:75:8d:3d:ba: 09:bd:8e:d0:67:d6:e4:99:82:3b:bd:8d:69:6e:c6: 87:b3:58:c8:8c:58:2d:f5:c3:39:bb:69:cc:4f:8a: c1:3f:fd:74:a0:fa:7a:0d:28:c1:a9:1a:a3:30:4b: c2:5a:98:57:fe:68:4d:77:6e:a2:e0:4f:a2:3d:cf: 94:ab:35:f2:91:3b:e8:fb:f5:61:8c:c0:9a:07:10: aa:51:e5:d8:9c:b9:c6:a5:81:db:91:6a:40:0e:76: 31:11:37:89:40:7e:5c:e6:fa:f4:ac:85:72:be:8e: 16:fc:70:3e:3f:1f:0f:8b:1b:2f:4c:28:30:65:57: cc:fc:4f:bc:76:d4:d0:2c:57:8b:11:11:70:5b:77: b4:1e:6a:44:5d:d9:65:eb:56:b6:1d:18:d6:dd:52: f7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:10:1B:4B:2B:B7:E2:DD:DE:1E:D2:F1:F2:47:4E:20:AB:A1:82:87 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 8d:78:a2:17:0b:52:d0:2d:2a:55:b9:32:3b:4d:d9:ab:a5:1e: 85:41:9b:59:9e:9f:1f:12:39:ee:62:4a:52:cd:d9:52:6e:ba: 7c:85:43:6e:97:36:f2:5b:ec:ac:80:31:78:f2:c7:87:c8:15: 80:be:9b:a6:5b:b1:19:bc:29:f9:68:16:3a:60:44:50:70:79: f9:b3:d8:ae:09:f0:3d:38:ed:74:74:fb:56:58:fb:21:4f:a3: bb:4a:bf:3d:da:8b:f4:69:f0:9d:d4:bb:ab:87:e3:9e:33:6a: e7:60:91:2d:c2:3c:6c:2e:9f:9d:7a:c5:87:b4:be:a3:e0:f9: bd:7a:be:d2:bd:1e:97:ff:c1:a6:87:bd:a1:1d:dc:e9:f8:df: 78:99:76:99:46:b3:4e:5e:7f:7b:aa:78:63:03:d4:b3:35:8c: 92:89:6d:5b:84:1b:e9:da:d9:d4:31:0b:a6:ff:05:fa:24:cd: 50:d4:90:91:96:f3:84:05:5d:16:25:86:65:cf:79:74:d3:b1: 0a:b7:15:da:5a:44:c3:bc:cb:e7:ff:60:e2:05:07:33:61:47: f0:5f:6f:1c:5b:52:bd:17:27:87:b6:35:27:2f:a2:b8:d7:45: 1a:4d:68:b6:fc:ee:17:80:d7:ec:3b:b9:5d:33:5c:d9:30:b1: 4a:79:37:85 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP84bNQjDEtDs5x6vt9Qc4Yis2aAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTMwMTUwMDAxWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYmY4Zjc3ZjJjOGQwOTUyZjgxNTEwODM5YmJmYWQwYjk1 NGQ0YWRiNTRkZmE5NTgzYmJiMzRkZDE2ZGI3MDAwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtUC7TIytx+bMSNxp0/pNnQsZt/ZhKGCVmyy+DbGn1CjUx a/fbP8X7WFjklSiQVid0kfBAjeqrThlOVgA5SfatztyujOCQUfLjbwZsxPGSZ8rt a/m7miXwffPB/IV/E/9s0UTTdY09ugm9jtBn1uSZgju9jWluxoezWMiMWC31wzm7 acxPisE//XSg+noNKMGpGqMwS8JamFf+aE13bqLgT6I9z5SrNfKRO+j79WGMwJoH EKpR5dicucalgduRakAOdjERN4lAflzm+vSshXK+jhb8cD4/Hw+LGy9MKDBlV8z8 T7x21NAsV4sREXBbd7QeakRd2WXrVrYdGNbdUvd5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0hAbSyu34t3eHtLx8kdOIKuhgocwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM1NjJkYTg5LWM4ZmYtNDE1OS04ZjkyLTM2NTcyMWQ5NDQwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAI14ohcLUtAtKlW5MjtN2aul HoVBm1menx8SOe5iSlLN2VJuunyFQ26XNvJb7KyAMXjyx4fIFYC+m6ZbsRm8Kflo FjpgRFBwefmz2K4J8D047XR0+1ZY+yFPo7tKvz3ai/Rp8J3Uu6uH454zaudgkS3C PGwun516xYe0vqPg+b16vtK9Hpf/waaHvaEd3On433iZdplGs05ef3uqeGMD1LM1 jJKJbVuEG+na2dQxC6b/BfokzVDUkJGW84QFXRYlhmXPeXTTsQq3FdpaRMO8y+f/ YOIFBzNhR/BfbxxbUr0XJ4e2NScvorjXRRpNaLb87heA1+w7uV0zXNkwsUp5N4U= -----END CERTIFICATE-----Generated at Wed Jun 4 11:29:16 2025 by rpki-client