$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa File: 6632e911-ee11-4bc9-a573-00ef83fd31d7.roa (raw, json) Hash identifier: jvSsdBwBHRsES3OVt9y+oc876J0vTSn0vZetkaX0aeY= Subject key identifier: 9A:4B:A3:6F:91:3F:3D:23:56:61:2E:B4:A9:4D:53:9E:5A:A3:45:4F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 52FD32C14EDA21B7C3C201BD3CE5C51513AB2078 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa Signing time: Tue 20 May 2025 18:10:05 +0000 ROA not before: Tue 20 May 2025 18:10:05 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:fd:32:c1:4e:da:21:b7:c3:c2:01:bd:3c:e5:c5:15:13:ab:20:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:05 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=6e270e44cc14764db3f90b98c4636e8cf1cd9ec4a7de66f37ef9e12a73b8519a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:db:7d:73:c8:d2:a0:12:e9:80:ba:2d:ad:65: 4b:bd:3a:7d:a2:10:5e:1f:af:87:70:a4:ef:92:da: c0:d0:ee:98:ff:ff:0b:a7:f6:55:7b:d0:23:ca:54: 25:8b:c6:80:bc:da:45:84:12:5a:72:19:80:71:8d: 72:29:88:47:19:b4:81:68:46:4b:3e:1a:30:32:8d: bf:06:df:36:b2:86:1c:79:b5:56:b6:48:4c:24:32: 8b:78:c0:18:76:5a:59:f9:e2:be:9b:f2:c7:a0:d0: 4c:d8:d9:18:2b:54:ca:ae:4b:2b:48:85:f5:3f:5e: 3e:90:76:d9:88:05:8e:9d:e5:0f:72:b4:c6:b3:de: ec:e6:47:f1:59:7f:06:2c:ff:4b:fa:24:7e:4f:19: da:72:28:6b:7b:f1:a3:e4:d0:a9:22:79:65:f7:64: 92:37:10:75:3f:77:9a:3f:ec:5e:56:b0:4e:fd:3d: 38:38:76:2e:9d:ad:66:8f:c5:ec:7a:24:b0:59:92: 44:d6:b8:89:2e:88:7e:ca:8a:93:19:2d:fb:36:43: 98:db:e9:17:ab:eb:20:4e:d1:2b:ae:1d:5d:e9:0c: ee:37:6d:3d:62:95:25:54:0e:a5:18:05:b4:b3:cc: da:f9:d7:82:e7:a6:eb:86:b3:77:26:29:ba:1c:38: d6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:4B:A3:6F:91:3F:3D:23:56:61:2E:B4:A9:4D:53:9E:5A:A3:45:4F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6000::/44 Signature Algorithm: sha256WithRSAEncryption 55:f7:57:b1:d7:06:4a:2c:32:f6:a5:c7:f3:57:bc:c0:b4:3e: 26:66:fc:ef:95:5e:38:70:ba:25:47:11:6e:c4:7d:da:ac:ef: 83:73:0d:a8:cb:9a:74:4d:e5:d6:7d:55:07:19:b7:47:77:a9: 2e:40:9d:e8:b3:b9:0b:31:fa:78:4a:94:4a:77:ff:91:74:a3: 16:f7:ab:99:09:0a:3a:0a:14:c5:29:1d:50:f1:2a:60:31:c1: 0c:c3:a3:45:12:3f:b3:f4:11:04:0d:79:02:74:7c:62:52:d2: 4a:3d:5f:bc:9f:b7:7c:24:db:48:d7:67:b0:3f:6e:94:95:20: 2d:16:5d:7f:5e:43:8f:b3:ec:50:45:61:9a:36:d5:2e:36:2c: b7:67:0b:ef:40:5c:8a:ee:7f:5b:71:aa:9d:77:10:a1:9e:56: 52:5e:bc:24:98:2c:a8:8f:ad:e1:62:80:3e:d5:45:69:44:ac: 7a:3c:d2:64:be:5a:09:08:3e:9b:a4:e5:b9:1b:b6:9f:80:95: da:61:0f:1e:05:41:ae:19:fc:58:13:bd:e9:8c:28:75:c4:ca: 38:a5:bb:61:2a:21:26:79:e4:ec:b6:6d:50:ec:38:93:97:5a: e3:5c:3c:b3:5d:19:b5:cf:c6:30:6c:52:c2:db:b8:8a:8c:bd: 0c:cf:0a:3a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUv0ywU7aIbfDwgG9POXFFROrIHgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDA1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTI3MGU0NGNjMTQ3NjRkYjNmOTBiOThjNDYzNmU4Y2Yx Y2Q5ZWM0YTdkZTY2ZjM3ZWY5ZTEyYTczYjg1MTlhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDw231zyNKgEumAui2tZUu9On2iEF4fr4dwpO+S2sDQ7pj/ /wun9lV70CPKVCWLxoC82kWEElpyGYBxjXIpiEcZtIFoRks+GjAyjb8G3zayhhx5 tVa2SEwkMot4wBh2Wln54r6b8seg0EzY2RgrVMquSytIhfU/Xj6QdtmIBY6d5Q9y tMaz3uzmR/FZfwYs/0v6JH5PGdpyKGt78aPk0KkieWX3ZJI3EHU/d5o/7F5WsE79 PTg4di6drWaPxex6JLBZkkTWuIkuiH7KipMZLfs2Q5jb6Rer6yBO0SuuHV3pDO43 bT1ilSVUDqUYBbSzzNr514LnpuuGs3cmKbocONYlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmkujb5E/PSNWYS60qU1TnlqjRU8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY2MzJlOTExLWVlMTEtNGJjOS1hNTczLTAwZWY4M2ZkMzFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYAAwDQYJKoZIhvcNAQELBQADggEBAFX3V7HXBkosMvalx/NXvMC0 PiZm/O+VXjhwuiVHEW7Efdqs74NzDajLmnRN5dZ9VQcZt0d3qS5AneizuQsx+nhK lEp3/5F0oxb3q5kJCjoKFMUpHVDxKmAxwQzDo0USP7P0EQQNeQJ0fGJS0ko9X7yf t3wk20jXZ7A/bpSVIC0WXX9eQ4+z7FBFYZo21S42LLdnC+9AXIruf1txqp13EKGe VlJevCSYLKiPreFigD7VRWlErHo80mS+WgkIPpuk5bkbtp+AldphDx4FQa4Z/FgT vemMKHXEyjilu2EqISZ55Oy2bVDsOJOXWuNcPLNdGbXPxjBsUsLbuIqMvQzPCjo= -----END CERTIFICATE-----Generated at Fri Jun 6 05:16:46 2025 by rpki-client