$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa File: 3eb80061-d999-4560-9395-9a007e8e03f9.roa (raw, json) Hash identifier: 1GetrKkRurRBivZS2ryJglvC6NolKivJGo2XazyJGYE= Subject key identifier: 76:8D:05:9F:7E:D9:C3:88:F0:47:8B:98:6A:21:14:56:E1:8B:31:5A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7925A30F209FECD839518F00A1FDE9F6DF90A3EC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa Signing time: Fri 30 May 2025 15:00:02 +0000 ROA not before: Fri 30 May 2025 15:00:02 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:25:a3:0f:20:9f:ec:d8:39:51:8f:00:a1:fd:e9:f6:df:90:a3:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 30 15:00:02 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=3847193ed84a63561737eec9c9ee34b3a4dd100666385fbd56b2b9bcc1cc347b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:34:05:3c:1e:c9:b6:ac:09:8a:a7:e1:18:a1: f0:aa:1d:7a:25:ad:f7:bb:ef:c0:f9:f7:2e:b3:d4: 87:4a:66:57:6b:20:47:e9:fd:85:c8:a7:8b:65:a9: be:b4:ce:30:93:de:e6:e7:83:a6:fc:b5:bc:82:39: 6a:b7:c0:5a:90:9d:92:d2:89:a1:ed:7b:dd:6c:41: 6b:ff:6d:12:8e:e6:54:f0:07:6c:b5:b0:42:1a:5f: 75:80:53:17:55:e8:83:87:80:fb:b6:8f:f5:a7:8f: 5a:0d:62:9f:23:ed:d4:47:a3:78:d3:06:d5:67:54: ab:66:47:49:86:f0:b2:96:8f:c9:04:a2:6b:62:fa: 25:d1:02:e5:13:3d:fe:ff:7c:f6:bf:24:72:d0:ec: f2:43:9e:a4:f4:46:d4:80:9e:69:03:87:11:ac:65: 90:50:84:37:50:ad:40:2e:98:47:91:fa:3c:e3:71: ce:7f:26:a7:d0:ae:04:9b:7e:fa:d1:28:33:74:50: 92:0f:90:52:f9:83:b0:31:4c:14:c7:e7:40:3a:ef: fe:7b:a2:1c:42:37:a8:35:1f:ff:4d:d7:bf:10:88: 30:78:db:b5:6f:aa:41:ae:f3:d0:5f:67:e8:f9:fb: cf:bd:25:4e:91:a8:55:72:b9:90:93:1e:a4:d3:0b: c5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:8D:05:9F:7E:D9:C3:88:F0:47:8B:98:6A:21:14:56:E1:8B:31:5A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 98:d5:5c:10:3b:23:d2:88:37:e7:53:6b:85:82:c9:92:41:41: ab:6b:cd:cf:fe:a7:02:6e:7b:77:2f:29:ed:e0:9f:c6:0d:6d: 57:98:e4:c0:16:8a:f3:3f:61:60:c1:a9:80:51:39:e2:8b:47: 1a:7b:b0:d2:2e:6c:be:52:68:e7:4b:d0:5c:02:52:ce:c0:5d: fb:39:64:9a:b2:da:f7:55:b9:0e:59:c2:da:ff:e8:f1:d0:dd: e1:0b:8d:6f:4e:32:7f:8b:15:c6:2f:23:c9:3b:7d:b3:58:c8: 6a:22:2f:d4:93:db:ad:c3:2e:73:11:67:50:bd:b6:9b:9f:cf: a4:9d:ea:f1:77:fd:42:00:c5:7b:5f:54:2a:c4:c3:8f:cc:bb: 76:6f:19:e9:f0:00:60:f2:a6:20:88:78:84:bd:cd:ac:10:58: 58:ef:5f:e4:77:d2:93:41:f5:50:5a:cc:19:16:17:97:11:f7: 58:d1:95:f8:98:8d:aa:e0:14:8d:c5:30:db:9b:96:fe:a3:b2: 63:e1:76:c9:aa:7d:6d:44:9f:85:57:fc:86:e4:0b:af:1e:2e: 3f:ea:8f:7a:eb:e5:eb:9c:4f:51:f0:2d:a7:1e:3b:ce:13:c8: 2e:d6:3a:bf:8e:ce:cf:7b:e5:72:0d:f3:1c:9b:d3:71:6d:35: a8:50:d4:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeSWjDyCf7Ng5UY8Aof3p9t+Qo+wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTMwMTUwMDAyWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODQ3MTkzZWQ4NGE2MzU2MTczN2VlYzljOWVlMzRiM2E0 ZGQxMDA2NjYzODVmYmQ1NmIyYjliY2MxY2MzNDdiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgNAU8Hsm2rAmKp+EYofCqHXolrfe778D59y6z1IdKZldr IEfp/YXIp4tlqb60zjCT3ubng6b8tbyCOWq3wFqQnZLSiaHte91sQWv/bRKO5lTw B2y1sEIaX3WAUxdV6IOHgPu2j/Wnj1oNYp8j7dRHo3jTBtVnVKtmR0mG8LKWj8kE omti+iXRAuUTPf7/fPa/JHLQ7PJDnqT0RtSAnmkDhxGsZZBQhDdQrUAumEeR+jzj cc5/JqfQrgSbfvrRKDN0UJIPkFL5g7AxTBTH50A67/57ohxCN6g1H/9N178QiDB4 27VvqkGu89BfZ+j5+8+9JU6RqFVyuZCTHqTTC8WvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdo0Fn37Zw4jwR4uYaiEUVuGLMVowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNlYjgwMDYxLWQ5OTktNDU2MC05Mzk1LTlhMDA3ZThlMDNmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAJjVXBA7I9KIN+dTa4WCyZJB Qatrzc/+pwJue3cvKe3gn8YNbVeY5MAWivM/YWDBqYBROeKLRxp7sNIubL5SaOdL 0FwCUs7AXfs5ZJqy2vdVuQ5Zwtr/6PHQ3eELjW9OMn+LFcYvI8k7fbNYyGoiL9ST 263DLnMRZ1C9tpufz6Sd6vF3/UIAxXtfVCrEw4/Mu3ZvGenwAGDypiCIeIS9zawQ WFjvX+R30pNB9VBazBkWF5cR91jRlfiYjargFI3FMNublv6jsmPhdsmqfW1En4VX /IbkC68eLj/qj3rr5eucT1HwLaceO84TyC7WOr+Ozs975XIN8xyb03FtNahQ1M4= -----END CERTIFICATE-----Generated at Wed Jun 4 11:28:25 2025 by rpki-client