$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa File: 657ed07e-fe87-4071-8960-e0b18e49fe3c.roa (raw, json) Hash identifier: 8rO/VDjwbh6z3OYoDsVr+pDCvYh9zEBnGDBHexh/srs= Subject key identifier: 4F:1D:D6:A5:83:70:72:58:27:8F:30:6C:5E:47:AB:51:FD:92:A8:28 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7EED506CF50F28B1E563E58E80902809ED2B9305 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa Signing time: Fri 16 May 2025 17:30:45 +0000 ROA not before: Fri 16 May 2025 17:30:45 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ed:50:6c:f5:0f:28:b1:e5:63:e5:8e:80:90:28:09:ed:2b:93:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 16 17:30:45 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=71fedcc2c4dadc03ade7b1f0c0d1da65fcb764198b261fa3d5fa439b7adf1d3f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:55:3b:ac:3c:f4:eb:af:20:b3:05:15:98:60: e6:fd:28:d5:09:68:88:b2:64:fe:5c:c7:72:bb:bc: f6:61:99:1c:14:e7:3e:be:ed:3b:99:79:c4:cd:c9: e0:f8:08:6a:80:10:4a:af:cd:f7:b9:b9:31:42:f4: 6b:3d:fb:12:20:91:97:8d:8c:b4:60:77:7b:03:d7: be:79:ca:b7:7d:2b:ae:b5:c2:5b:3d:3f:36:6a:f6: d3:a7:d1:4b:f9:84:af:67:12:b9:79:72:f5:90:f4: 15:c4:84:be:98:41:12:96:11:af:90:63:89:cb:67: bd:6d:fa:3c:cb:ee:57:89:d6:ee:53:ea:5b:fb:73: 8b:95:d4:f6:ac:4b:31:82:b2:14:53:61:49:52:21: 4e:02:cc:c5:7c:ea:b5:6c:d2:fe:ef:57:3e:73:de: 65:8c:2d:b0:9e:db:4d:f3:f4:0d:17:61:3d:3a:04: 4f:72:1b:f5:c7:37:16:f0:99:82:6b:ba:9d:35:be: 0b:02:64:23:e6:c4:f6:12:ac:9a:af:bc:d4:70:34: c5:2e:72:ca:d5:15:83:bf:1c:7b:d6:c3:fa:0b:bb: 2f:49:a9:e4:53:ea:fa:02:52:ad:3b:13:c6:6d:8a: c9:5c:11:bb:74:9d:1f:aa:c5:92:b1:2a:63:7f:43: 0a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1D:D6:A5:83:70:72:58:27:8F:30:6C:5E:47:AB:51:FD:92:A8:28 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 78:a8:98:b5:76:f0:9b:15:bf:27:6a:fc:5f:05:43:4e:1a:bc: 66:6a:cd:db:f7:55:87:79:f0:7b:33:07:9a:51:fe:40:58:45: e5:cb:39:97:3b:e5:99:c6:49:0e:be:d4:e1:1f:68:af:2f:e4: 92:75:02:01:99:6c:29:fc:4b:57:2f:ec:e1:d0:96:fd:10:93: 29:36:98:00:48:01:a2:d5:c8:ac:21:38:52:21:02:82:e4:6a: 1a:ab:27:84:49:1c:c5:d4:94:c7:a3:6e:5c:68:b8:82:d2:ec: 49:07:4f:87:eb:37:be:11:f7:96:dd:2c:68:b1:e1:04:dc:67: f7:b5:31:c6:7e:fe:cd:f7:c7:ff:32:d0:37:44:d7:29:b7:e2: 12:6f:65:fd:54:51:6d:38:00:e4:93:aa:2d:f5:a9:f4:f8:44: 54:b5:b4:e9:ad:b1:52:c0:34:2e:45:b5:a3:cc:3c:8d:aa:b7: 7a:bd:df:97:d3:63:4a:c3:61:e3:e4:da:7d:77:2c:da:40:fa: 83:ac:8b:d8:c5:6e:76:ae:72:79:e4:ed:3a:72:1d:1e:2c:25: 77:f8:3c:39:51:23:54:7d:4e:df:ba:0a:68:a5:1e:d5:45:99: 3c:ed:51:81:11:cf:2b:fe:7b:e8:15:1d:5d:dd:53:d3:90:ea: 26:3f:c1:e7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfu1QbPUPKLHlY+WOgJAoCe0rkwUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTE2MTczMDQ1WhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWZlZGNjMmM0ZGFkYzAzYWRlN2IxZjBjMGQxZGE2NWZj Yjc2NDE5OGIyNjFmYTNkNWZhNDM5YjdhZGYxZDNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1VTusPPTrryCzBRWYYOb9KNUJaIiyZP5cx3K7vPZhmRwU 5z6+7TuZecTNyeD4CGqAEEqvzfe5uTFC9Gs9+xIgkZeNjLRgd3sD1755yrd9K661 wls9PzZq9tOn0Uv5hK9nErl5cvWQ9BXEhL6YQRKWEa+QY4nLZ71t+jzL7leJ1u5T 6lv7c4uV1PasSzGCshRTYUlSIU4CzMV86rVs0v7vVz5z3mWMLbCe203z9A0XYT06 BE9yG/XHNxbwmYJrup01vgsCZCPmxPYSrJqvvNRwNMUucsrVFYO/HHvWw/oLuy9J qeRT6voCUq07E8ZtislcEbt0nR+qxZKxKmN/QwpnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUTx3WpYNwclgnjzBsXkerUf2SqCgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY1N2VkMDdlLWZlODctNDA3MS04OTYwLWUwYjE4ZTQ5ZmUzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAeKiYtXbwmxW/J2r8XwVDThq8 ZmrN2/dVh3nwezMHmlH+QFhF5cs5lzvlmcZJDr7U4R9ory/kknUCAZlsKfxLVy/s 4dCW/RCTKTaYAEgBotXIrCE4UiECguRqGqsnhEkcxdSUx6NuXGi4gtLsSQdPh+s3 vhH3lt0saLHhBNxn97Uxxn7+zffH/zLQN0TXKbfiEm9l/VRRbTgA5JOqLfWp9PhE VLW06a2xUsA0LkW1o8w8jaq3er3fl9NjSsNh4+TafXcs2kD6g6yL2MVudq5yeeTt OnIdHiwld/g8OVEjVH1O37oKaKUe1UWZPO1RgRHPK/576BUdXd1T05DqJj/B5w== -----END CERTIFICATE-----Generated at Mon Jun 9 00:57:15 2025 by rpki-client