$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa File: 7200dfa9-d36f-44de-852a-1adda1bbb99c.roa (raw, json) Hash identifier: TDDaQQWZg8Ro0DYKY+9NCbdfLh8qww+4m5jRK3YiJg8= Subject key identifier: A2:BC:C9:FA:47:E6:D8:5A:84:38:BA:E8:C1:79:B5:BC:ED:ED:05:19 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5D73CCAB459924E8BF2F69476D4AF2F4D1A68BF7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa Signing time: Tue 20 May 2025 18:00:22 +0000 ROA not before: Tue 20 May 2025 18:00:22 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:73:cc:ab:45:99:24:e8:bf:2f:69:47:6d:4a:f2:f4:d1:a6:8b:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:22 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=ba5853cb20ac66da41b7fa000fa85680e12301e733c8b2c80599cfc8c1d687a1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ad:94:12:de:c4:a2:9b:01:98:4e:d1:e0:15: 7a:ae:18:63:32:e5:20:c4:47:03:d1:65:b3:e3:82: 5c:70:83:1c:5c:5e:aa:80:ad:44:7a:f9:58:26:84: 13:91:d9:ef:48:51:b2:4e:9e:47:c8:8a:21:27:8f: ec:4a:5b:0f:7b:aa:c5:33:b6:58:47:90:57:61:ef: 75:2f:a5:ce:c7:3c:77:49:fe:f8:2e:e2:a9:6e:64: 7b:82:f1:f0:73:47:c7:be:5b:b9:0a:b7:61:b7:eb: d0:69:a7:7b:c0:5d:df:67:17:64:48:49:92:91:67: bb:48:ca:33:19:34:d9:29:e0:af:de:36:ab:33:cc: c8:f4:03:46:9b:a7:4f:92:71:f5:08:45:97:53:8e: 44:4b:f9:84:2d:90:cf:42:41:5a:af:91:9e:a5:e5: 3a:49:e8:3a:16:e2:b5:a5:8e:36:8d:cd:1c:25:9e: 4c:69:e5:37:24:46:ae:43:f1:33:34:8b:cb:e2:fb: 05:0e:60:8b:22:40:b5:30:32:6e:66:f6:f1:91:10: 2f:b0:b0:c2:44:01:bd:4c:31:1f:2c:16:e0:75:df: 4c:ab:47:b2:b5:dd:8e:82:54:27:84:53:13:d9:de: f1:ce:7e:e4:12:a0:0c:85:fd:20:53:76:b1:1f:c8: d7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BC:C9:FA:47:E6:D8:5A:84:38:BA:E8:C1:79:B5:BC:ED:ED:05:19 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 73:d7:f8:86:05:88:af:e8:08:8f:05:8e:fd:f9:ed:e6:ec:6f: 27:64:73:22:78:fd:de:f9:54:a1:f7:84:05:80:c0:8b:47:e1: 6c:85:36:77:ef:43:a9:bb:85:ce:0e:a1:85:19:02:3c:76:a8: 63:56:b5:45:26:7e:51:41:f9:f6:81:76:3f:ec:ee:ac:0b:69: 20:39:fb:7f:a4:84:fb:55:7e:25:e7:fa:a5:e0:85:ed:74:c4: 79:f8:4e:9e:18:05:6d:e5:b5:f4:5d:98:c3:34:a5:03:b5:8c: 89:0f:51:82:94:75:3f:8c:1d:2e:3c:02:6b:e9:9c:0a:40:13: af:d2:48:98:38:20:48:57:4d:fd:2c:d3:22:31:76:f6:8b:7d: 31:d5:cb:24:49:02:50:73:13:b2:72:fb:19:a2:75:2d:f9:81: 11:2d:fe:a3:c3:d4:7e:9f:01:3b:50:27:92:79:22:b2:0b:a3: da:03:ab:4b:ea:71:64:f3:85:65:68:1d:d0:b9:8b:48:a3:8d: b6:ce:d3:c5:a6:f9:6b:67:bd:11:1c:b7:09:81:f9:43:9d:d2: f9:c0:0a:00:25:3e:9c:6d:cf:a1:d2:8e:d4:40:84:74:56:3a: 97:37:a3:b2:3b:ad:38:37:4d:84:04:b3:24:17:08:90:c2:1d: bc:7e:94:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXXPMq0WZJOi/L2lHbUry9NGmi/cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDIyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTU4NTNjYjIwYWM2NmRhNDFiN2ZhMDAwZmE4NTY4MGUx MjMwMWU3MzNjOGIyYzgwNTk5Y2ZjOGMxZDY4N2ExMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYrZQS3sSimwGYTtHgFXquGGMy5SDERwPRZbPjglxwgxxc XqqArUR6+VgmhBOR2e9IUbJOnkfIiiEnj+xKWw97qsUztlhHkFdh73Uvpc7HPHdJ /vgu4qluZHuC8fBzR8e+W7kKt2G369Bpp3vAXd9nF2RISZKRZ7tIyjMZNNkp4K/e NqszzMj0A0abp0+ScfUIRZdTjkRL+YQtkM9CQVqvkZ6l5TpJ6DoW4rWljjaNzRwl nkxp5TckRq5D8TM0i8vi+wUOYIsiQLUwMm5m9vGREC+wsMJEAb1MMR8sFuB130yr R7K13Y6CVCeEUxPZ3vHOfuQSoAyF/SBTdrEfyNeFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUorzJ+kfm2FqEOLrowXm1vO3tBRkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMDBkZmE5LWQzNmYtNDRkZS04NTJhLTFhZGRhMWJiYjk5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAHPX+IYFiK/oCI8Fjv357ebs bydkcyJ4/d75VKH3hAWAwItH4WyFNnfvQ6m7hc4OoYUZAjx2qGNWtUUmflFB+faB dj/s7qwLaSA5+3+khPtVfiXn+qXghe10xHn4Tp4YBW3ltfRdmMM0pQO1jIkPUYKU dT+MHS48AmvpnApAE6/SSJg4IEhXTf0s0yIxdvaLfTHVyyRJAlBzE7Jy+xmidS35 gREt/qPD1H6fATtQJ5J5IrILo9oDq0vqcWTzhWVoHdC5i0ijjbbO08Wm+WtnvREc twmB+UOd0vnACgAlPpxtz6HSjtRAhHRWOpc3o7I7rTg3TYQEsyQXCJDCHbx+lNQ= -----END CERTIFICATE-----Generated at Sun Jun 8 00:44:32 2025 by rpki-client