$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f5d9525-0193-4993-b222-48d2585ae7fa.roa File: 4f5d9525-0193-4993-b222-48d2585ae7fa.roa (raw, json) Hash identifier: TT/xu1YB9S+Rx6o2eZ/dmjO5IyC4alY5c8wjwD7HPV0= Subject key identifier: 9E:B8:53:07:A3:DF:1E:95:53:59:38:D3:25:B6:09:6A:DE:B4:5F:1B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3838D3861339348B03D292F476C16E4959D48FCD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f5d9525-0193-4993-b222-48d2585ae7fa.roa Signing time: Mon 26 May 2025 15:10:40 +0000 ROA not before: Mon 26 May 2025 15:10:40 +0000 ROA not after: Mon 30 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:38:d3:86:13:39:34:8b:03:d2:92:f4:76:c1:6e:49:59:d4:8f:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 26 15:10:40 2025 GMT Not After : Jun 30 23:59:59 2025 GMT Subject: serialNumber=a24d5cd6a4d5c41ba406e35e34e0a6f39e82819d7aa8c303616207c05969a294, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e8:cc:37:59:05:33:fc:3a:16:b1:0c:a3:f1: 7c:70:ef:61:72:cb:3d:99:86:79:93:4a:90:55:aa: ec:12:1e:76:8f:e6:23:c8:8c:00:a6:40:2d:37:94: e4:b0:bf:ec:d4:eb:32:4e:18:f3:9d:21:f1:a3:38: ca:43:59:33:cc:ca:b0:11:7f:87:02:b8:fb:a4:f6: 97:99:1f:f2:99:df:66:2a:96:fb:0e:66:11:78:67: 2f:47:a7:ca:b4:c6:e6:26:20:e8:4e:d4:d9:10:b3: 99:79:ec:5d:7c:9b:df:3c:32:d1:15:5e:ab:88:58: f3:92:48:df:13:84:04:df:cb:74:ea:14:d6:07:ad: 87:67:48:d8:70:82:df:4a:67:17:4d:4a:66:fa:4f: 06:10:f5:37:e5:2f:04:78:cc:93:36:d2:76:63:a0: 13:2f:1f:c0:80:5d:c1:77:5a:3f:50:11:8a:34:5a: 72:03:98:9c:3d:f6:41:41:19:b7:d4:78:06:c0:b5: f6:bf:de:e7:bc:31:0b:db:96:3b:2e:cd:c3:1b:05: bb:3d:10:62:a3:22:30:7e:bd:78:7a:30:af:bb:0d: 82:9f:61:bd:73:d3:d3:46:59:99:1f:0a:d8:d8:4a: ca:7a:bc:91:c6:76:81:7c:2c:3c:14:be:ce:11:89: 4d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B8:53:07:A3:DF:1E:95:53:59:38:D3:25:B6:09:6A:DE:B4:5F:1B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f5d9525-0193-4993-b222-48d2585ae7fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 20:c4:87:79:f0:35:56:95:7d:41:e5:4e:f2:94:87:37:7e:a9: 0c:29:2a:e0:7b:56:ac:80:71:70:35:2e:dc:f9:f5:2a:2c:23: 11:59:11:65:d2:fd:f0:33:a9:f9:2e:75:af:02:7e:d2:21:b7: 7a:9f:e2:04:85:1f:f9:25:fc:b6:e6:48:e2:62:b1:b6:c3:fc: e1:d5:95:68:eb:a8:1b:d3:ad:dd:16:4d:98:e1:f0:2d:cc:90: a4:d2:e6:c4:d5:bb:1e:0f:d8:38:7e:cf:8a:83:92:ea:56:c6: 93:05:a9:93:f3:65:ea:41:22:7f:cf:ce:d1:ef:54:f0:ff:8e: 88:0e:11:0e:61:f1:b5:8c:fc:66:d0:b7:8f:9e:4e:28:d4:82: 17:22:82:48:32:72:b9:f2:f0:7b:82:3c:06:d1:82:6d:4d:05: b6:f7:55:5c:d4:95:bd:96:15:dd:27:88:5e:b2:7b:c0:e1:36: 3d:23:c0:14:94:c6:b4:b5:2f:72:62:f5:ba:62:cf:a4:03:ae: 82:e6:43:91:20:55:47:55:17:4c:43:a4:6a:46:9d:c7:d6:34: 72:28:11:6d:f7:33:d0:6f:bc:06:3e:5e:c8:8a:a0:a8:03:67: 6b:26:d5:7d:4a:c5:a5:84:76:67:72:32:9f:ec:99:2a:19:e9: 85:61:7a:35 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUODjThhM5NIsD0pL0dsFuSVnUj80wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI2MTUxMDQwWhcNMjUwNjMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjRkNWNkNmE0ZDVjNDFiYTQwNmUzNWUzNGUwYTZmMzll ODI4MTlkN2FhOGMzMDM2MTYyMDdjMDU5NjlhMjk0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC26Mw3WQUz/DoWsQyj8Xxw72Fyyz2ZhnmTSpBVquwSHnaP 5iPIjACmQC03lOSwv+zU6zJOGPOdIfGjOMpDWTPMyrARf4cCuPuk9peZH/KZ32Yq lvsOZhF4Zy9Hp8q0xuYmIOhO1NkQs5l57F18m988MtEVXquIWPOSSN8ThATfy3Tq FNYHrYdnSNhwgt9KZxdNSmb6TwYQ9TflLwR4zJM20nZjoBMvH8CAXcF3Wj9QEYo0 WnIDmJw99kFBGbfUeAbAtfa/3ue8MQvbljsuzcMbBbs9EGKjIjB+vXh6MK+7DYKf Yb1z09NGWZkfCtjYSsp6vJHGdoF8LDwUvs4RiU1pAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnrhTB6PfHpVTWTjTJbYJat60XxswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRmNWQ5NTI1LTAxOTMtNDk5My1iMjIyLTQ4ZDI1ODVhZTdmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBACDEh3nwNVaVfUHlTvKUhzd+ qQwpKuB7VqyAcXA1Ltz59SosIxFZEWXS/fAzqfkuda8CftIht3qf4gSFH/kl/Lbm SOJisbbD/OHVlWjrqBvTrd0WTZjh8C3MkKTS5sTVux4P2Dh+z4qDkupWxpMFqZPz ZepBIn/PztHvVPD/jogOEQ5h8bWM/GbQt4+eTijUghcigkgycrny8HuCPAbRgm1N Bbb3VVzUlb2WFd0niF6ye8DhNj0jwBSUxrS1L3Ji9bpiz6QDroLmQ5EgVUdVF0xD pGpGncfWNHIoEW33M9BvvAY+XsiKoKgDZ2sm1X1KxaWEdmdyMp/smSoZ6YVhejU= -----END CERTIFICATE-----Generated at Mon Jun 2 17:06:26 2025 by rpki-client