$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa File: 64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa (raw, json) Hash identifier: MdC/jmTxxTxaGftcGkd7YfaN5QuyI4FE0um/x25zFr0= Subject key identifier: C1:95:7B:B5:83:AB:71:1A:5F:4A:A1:9E:30:24:BB:56:44:91:20:39 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2B852EFBF3D1F452D19A4437C401B03C73CE23E7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa Signing time: Tue 20 May 2025 18:11:33 +0000 ROA not before: Tue 20 May 2025 18:11:33 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:85:2e:fb:f3:d1:f4:52:d1:9a:44:37:c4:01:b0:3c:73:ce:23:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:33 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=bcc87c11c0335a693c0f30e982525ca0a00c73c76729d4bd27f6f3da434552f0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a2:72:b1:30:f3:eb:6a:09:55:1e:1d:40:af: 37:f2:5c:92:1a:ed:03:05:9f:d1:71:78:de:c2:73: 2c:54:99:49:a0:ac:7a:1e:ef:fd:c1:e4:e4:50:3a: aa:7f:0e:68:05:2e:df:31:70:dd:bd:8e:32:42:3c: d6:57:e0:1a:ac:35:bf:eb:94:6d:e5:ca:49:bf:be: 8f:88:a8:32:ac:d1:3a:cf:be:e0:23:8b:e7:52:fb: 32:8d:85:5d:4c:d5:52:21:cb:96:fa:8f:f5:bc:73: 35:38:0f:ba:2c:0e:f5:05:52:f2:7b:62:b4:3f:fa: d1:9c:90:52:94:63:66:dc:33:d6:cd:e3:d7:26:89: 72:ff:91:03:c8:c1:02:78:99:06:35:89:6f:e4:bc: 1e:b5:84:ba:be:c0:10:f4:50:35:5d:aa:99:87:10: e8:28:5e:36:49:13:04:38:74:47:7c:fb:a6:c6:e2: ef:91:04:4f:be:1e:e7:ff:84:04:b6:8f:0f:4e:22: 85:e7:7d:9c:40:9b:e4:d8:54:a9:4a:8c:8a:fb:af: 68:1b:2e:9d:3f:95:e9:d3:02:3e:fb:2a:ef:c7:ed: 75:f1:b6:c6:f6:9a:ad:81:ba:aa:8f:23:90:e6:af: 9d:a4:de:cd:f4:c1:af:ba:e5:2e:15:1a:17:76:fd: 10:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:95:7B:B5:83:AB:71:1A:5F:4A:A1:9E:30:24:BB:56:44:91:20:39 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 2d:15:79:d5:49:4b:df:c8:56:41:d5:6c:82:f8:40:e6:93:81: a5:69:0a:e8:e1:07:e7:a4:9f:50:41:18:e4:ee:a6:a7:72:45: 9b:7e:59:7b:74:f6:77:14:0c:06:c8:bd:46:95:22:06:37:69: 25:c8:31:27:9a:54:e5:3a:83:75:6f:18:a4:e8:bf:ee:d5:8c: 14:ca:80:b8:5a:bb:6c:59:54:8a:25:7e:e0:d8:fe:08:06:27: 68:20:0c:26:6f:e1:94:8e:0b:df:84:cf:5a:b4:78:3e:4b:27: b8:f7:2c:a8:38:d4:05:fc:4f:e3:c3:71:6d:a4:f5:69:ff:70: ec:f7:cf:e6:dd:d8:29:ec:0d:d7:67:ad:6a:ea:1d:7a:fe:7e: 26:56:57:10:ee:d6:61:49:6a:0a:e4:15:23:33:b4:c3:18:8c: 08:eb:f9:9f:24:d3:59:a3:8b:ea:73:2b:51:38:86:21:a8:3f: 28:50:7d:1c:38:c1:33:a9:19:37:8f:9b:1b:ed:22:52:52:ca: 8f:65:47:94:13:97:44:93:34:da:60:31:13:b8:bb:eb:b6:66: e2:9f:72:71:2c:16:5f:ac:57:28:94:f8:69:aa:86:58:49:87: 33:06:27:0e:58:99:a4:28:ac:b2:f9:9c:7c:c0:47:d0:f0:2a: ef:31:7a:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK4Uu+/PR9FLRmkQ3xAGwPHPOI+cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTMzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2M4N2MxMWMwMzM1YTY5M2MwZjMwZTk4MjUyNWNhMGEw MGM3M2M3NjcyOWQ0YmQyN2Y2ZjNkYTQzNDU1MmYwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfonKxMPPraglVHh1ArzfyXJIa7QMFn9FxeN7CcyxUmUmg rHoe7/3B5ORQOqp/DmgFLt8xcN29jjJCPNZX4BqsNb/rlG3lykm/vo+IqDKs0TrP vuAji+dS+zKNhV1M1VIhy5b6j/W8czU4D7osDvUFUvJ7YrQ/+tGckFKUY2bcM9bN 49cmiXL/kQPIwQJ4mQY1iW/kvB61hLq+wBD0UDVdqpmHEOgoXjZJEwQ4dEd8+6bG 4u+RBE++Huf/hAS2jw9OIoXnfZxAm+TYVKlKjIr7r2gbLp0/lenTAj77Ku/H7XXx tsb2mq2BuqqPI5Dmr52k3s30wa+65S4VGhd2/RBTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwZV7tYOrcRpfSqGeMCS7VkSRIDkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0ZGNlMzcxLTM3YjItNGZhYi05ZDg1LTA1ZWE3ZjJjMWFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBAC0VedVJS9/IVkHVbIL4QOaT gaVpCujhB+ekn1BBGOTupqdyRZt+WXt09ncUDAbIvUaVIgY3aSXIMSeaVOU6g3Vv GKTov+7VjBTKgLhau2xZVIolfuDY/ggGJ2ggDCZv4ZSOC9+Ez1q0eD5LJ7j3LKg4 1AX8T+PDcW2k9Wn/cOz3z+bd2CnsDddnrWrqHXr+fiZWVxDu1mFJagrkFSMztMMY jAjr+Z8k01mji+pzK1E4hiGoPyhQfRw4wTOpGTePmxvtIlJSyo9lR5QTl0STNNpg MRO4u+u2ZuKfcnEsFl+sVyiU+GmqhlhJhzMGJw5YmaQorLL5nHzAR9DwKu8xelA= -----END CERTIFICATE-----Generated at Sat Jun 7 04:59:52 2025 by rpki-client