$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c062590-8f7f-4f01-9123-64634a17a4cd.roa File: 4c062590-8f7f-4f01-9123-64634a17a4cd.roa (raw, json) Hash identifier: W6wScf18vxuj2JBlEADX5L4YhmJbAt0g3qSOsDp1SCE= Subject key identifier: 5F:63:79:AF:E2:CD:20:C1:11:09:E0:BA:C3:BC:DE:54:3D:D4:24:A2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2FB3C7CB4B5A3ADC6D54222635B506BC63F7463D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c062590-8f7f-4f01-9123-64634a17a4cd.roa Signing time: Tue 20 May 2025 18:11:02 +0000 ROA not before: Tue 20 May 2025 18:11:02 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:b3:c7:cb:4b:5a:3a:dc:6d:54:22:26:35:b5:06:bc:63:f7:46:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:02 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=9c38f0850726814930bada9e99f6fbd531b9484a4a7cc895b10aef963a845970, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c4:2d:4e:e1:5e:e5:5a:45:d0:5f:36:6e:83: 82:9c:54:5e:bd:f2:06:2a:4f:fe:b5:aa:c1:65:34: 78:1d:1c:ff:d6:05:e8:0e:5b:9c:c8:df:f7:51:70: a8:79:a2:ff:bd:f1:14:15:5a:2d:6d:42:ab:61:d4: 67:ce:f7:07:99:b4:67:15:2a:5a:d1:39:02:e1:67: 66:17:04:58:b3:28:54:3a:6a:16:53:be:21:9e:2c: ba:c9:20:2f:2c:30:61:cf:67:c8:73:81:04:cc:c6: 3d:53:ff:77:f1:5f:71:d4:9f:3b:1f:02:99:9a:2e: a4:bd:36:bc:cd:c4:12:3f:3c:e3:dc:ab:39:c4:56: 2b:71:55:b0:23:c2:51:07:17:05:49:01:0d:91:9f: d6:d6:14:c6:a2:a1:f2:d5:36:09:e6:19:26:ed:11: 3d:c4:36:d5:9a:93:82:3c:4d:69:10:4d:60:b4:e7: 29:6e:c7:4c:d0:6d:c5:2a:d4:f8:36:57:b5:dc:cb: 31:de:e8:39:4c:2f:7b:ac:8a:9b:79:ff:a0:6e:c0: 9d:ce:b5:d5:a9:c4:ee:dc:4f:07:d0:58:2f:0f:2e: 9e:fd:ef:d0:e9:a8:11:43:d9:1e:45:2e:ce:b3:bf: f6:b8:3d:c7:14:d7:60:70:bc:f6:51:b9:a7:2f:42: f4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:63:79:AF:E2:CD:20:C1:11:09:E0:BA:C3:BC:DE:54:3D:D4:24:A2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c062590-8f7f-4f01-9123-64634a17a4cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/40 Signature Algorithm: sha256WithRSAEncryption 7c:9b:67:ff:72:31:c3:90:b8:b5:ac:f8:0c:f9:c2:51:c7:14: 38:c1:b5:bb:fc:a8:c6:95:4f:5a:21:cd:8d:90:00:a8:4d:a3: 25:74:c6:e1:2c:99:17:c4:60:1e:78:3e:f8:05:9c:f6:de:ee: 17:e2:49:d1:eb:82:73:01:9f:f8:8c:6a:96:5d:fd:07:71:f3: b4:d7:de:d5:7b:cc:8b:00:94:6d:58:1c:63:a3:48:75:17:5c: 08:66:be:91:8d:8c:9a:79:96:67:c3:e0:ff:05:41:8b:8b:fc: ae:eb:cc:44:fd:76:ba:22:60:f0:f4:89:0c:01:24:16:24:5c: 53:83:96:7a:36:c3:a0:e3:71:2b:ba:ee:0b:3b:b2:56:70:97: a6:29:ef:71:ec:8c:f5:45:e7:49:cb:3c:d8:5f:61:49:da:5b: 27:46:0a:17:50:a8:8b:72:18:f5:e6:cf:6c:b6:32:cf:77:51: 0e:dd:1b:79:64:b9:d8:e3:3a:cb:86:a0:46:31:cf:b8:f7:56: d3:c8:a3:1f:e7:9e:c4:1e:11:5a:ea:c6:6d:12:b8:6c:a6:53: 56:e1:b9:c5:f5:99:25:91:8f:77:18:bc:e9:10:8e:14:2d:f5: 0b:2d:af:72:86:81:ce:36:dd:5d:9b:3d:fb:7b:56:ac:df:f3: 62:98:fe:ee -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUL7PHy0taOtxtVCImNbUGvGP3Rj0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTAyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzM4ZjA4NTA3MjY4MTQ5MzBiYWRhOWU5OWY2ZmJkNTMx Yjk0ODRhNGE3Y2M4OTViMTBhZWY5NjNhODQ1OTcwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqxC1O4V7lWkXQXzZug4KcVF698gYqT/61qsFlNHgdHP/W BegOW5zI3/dRcKh5ov+98RQVWi1tQqth1GfO9weZtGcVKlrROQLhZ2YXBFizKFQ6 ahZTviGeLLrJIC8sMGHPZ8hzgQTMxj1T/3fxX3HUnzsfApmaLqS9NrzNxBI/POPc qznEVitxVbAjwlEHFwVJAQ2Rn9bWFMaiofLVNgnmGSbtET3ENtWak4I8TWkQTWC0 5ylux0zQbcUq1Pg2V7XcyzHe6DlML3usipt5/6BuwJ3OtdWpxO7cTwfQWC8PLp79 79DpqBFD2R5FLs6zv/a4PccU12BwvPZRuacvQvQLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUX2N5r+LNIMERCeC6w7zeVD3UJKIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRjMDYyNTkwLThmN2YtNGYwMS05MTIzLTY0NjM0YTE3YTRjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76TANBgkqhkiG9w0BAQsFAAOCAQEAfJtn/3Ixw5C4taz4DPnCUccU OMG1u/yoxpVPWiHNjZAAqE2jJXTG4SyZF8RgHng++AWc9t7uF+JJ0euCcwGf+Ixq ll39B3HztNfe1XvMiwCUbVgcY6NIdRdcCGa+kY2MmnmWZ8Pg/wVBi4v8ruvMRP12 uiJg8PSJDAEkFiRcU4OWejbDoONxK7ruCzuyVnCXpinvceyM9UXnScs82F9hSdpb J0YKF1Coi3IY9ebPbLYyz3dRDt0beWS52OM6y4agRjHPuPdW08ijH+eexB4RWurG bRK4bKZTVuG5xfWZJZGPdxi86RCOFC31Cy2vcoaBzjbdXZs9+3tWrN/zYpj+7g== -----END CERTIFICATE-----Generated at Fri Jun 6 05:30:58 2025 by rpki-client