$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa File: 72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa (raw, json) Hash identifier: UeXGNC0XbKQqZGmL7oAfJ9quaCJQ24LVOu3WbrTETAI= Subject key identifier: E9:73:6B:AA:44:DC:7E:F5:A8:F6:4B:C2:4C:42:84:30:53:CC:25:40 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7173C963636B9CD2DE339E71566143B3331F53EA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa Signing time: Tue 20 May 2025 18:10:18 +0000 ROA not before: Tue 20 May 2025 18:10:18 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ee00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:73:c9:63:63:6b:9c:d2:de:33:9e:71:56:61:43:b3:33:1f:53:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:18 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c127112a59e51d848edffc8d2776773594bf3a3dc5ff7b1185c1a4899048de74, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4a:6d:e6:e4:61:bc:64:7b:ee:4d:c8:90:78: 0f:4f:5d:16:24:03:f9:4e:b8:57:1d:56:bc:19:bd: 07:00:b0:3e:63:1d:03:1c:04:24:2b:31:04:aa:72: 7b:18:a0:c2:9f:ab:01:11:e5:8f:98:4a:39:cd:75: 3c:75:86:e5:33:10:72:70:af:ca:9c:62:21:a0:86: 8e:4a:b6:dc:d4:d5:f4:17:24:47:b8:f4:9a:12:eb: 39:ec:00:c2:58:e3:8f:4b:85:22:64:bb:2d:d4:84: b6:ca:db:37:e6:85:4e:c7:7f:8c:22:a4:60:5e:33: bb:91:1e:69:3d:69:e1:35:56:f1:6f:e3:5e:38:5c: 14:36:af:ae:74:7b:6e:8a:95:f9:f2:03:de:9b:70: fb:e5:8f:7a:0f:16:3e:73:57:c4:fa:66:55:ac:da: 0f:d8:f9:1e:c6:7b:2f:9d:bb:73:72:a1:67:98:fb: 5b:eb:32:71:c7:88:77:6e:f1:c6:fd:a3:7b:34:14: 8c:1a:75:54:dd:f3:b6:b8:c7:ea:f6:ef:60:48:9d: db:c4:28:5c:a5:b7:a7:29:2d:ad:61:3d:19:d9:31: e1:b0:f0:bf:ee:45:77:6c:33:d0:b1:3c:e1:20:43: b3:ef:2a:1e:6e:d4:f8:f5:4f:99:3c:34:7e:61:6b: 26:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:73:6B:AA:44:DC:7E:F5:A8:F6:4B:C2:4C:42:84:30:53:CC:25:40 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ee00::/42 Signature Algorithm: sha256WithRSAEncryption a3:d7:54:92:7b:a2:19:ee:47:dd:98:64:2f:d3:81:1f:fe:e2: 8b:a6:cc:a3:87:34:50:ac:cf:30:8c:07:7e:c2:83:17:c7:2a: 03:a8:bd:cb:aa:b9:50:35:7f:75:45:fe:1f:3a:16:3f:97:8c: 6c:23:16:70:82:cb:c7:c3:24:44:67:e4:ee:ad:68:d5:ab:4b: d7:16:25:46:37:1a:51:8d:9e:c6:f6:bd:03:08:de:55:bc:56: c3:07:f0:59:82:15:21:21:c6:92:65:27:37:ed:e6:f7:e5:04: 2a:53:9b:90:cb:40:45:47:10:d3:23:98:9f:ef:21:6b:a7:54: 41:97:ff:92:50:25:cc:9e:ef:35:1a:61:ee:72:eb:9d:87:93: e0:30:a3:27:d8:db:42:ba:a9:7a:71:f1:09:f3:7e:cc:f2:2a: 93:20:31:6e:c1:86:b4:e0:10:3d:50:c3:bc:13:35:73:3a:07: fb:93:81:46:e9:d8:8c:94:5d:12:05:fc:0e:f9:e8:ad:14:77: 9b:62:ba:ee:bb:e0:0d:33:e7:ac:54:92:f0:ba:83:29:4c:38: 23:83:fc:3f:61:eb:7c:33:17:4c:ea:03:c8:fe:3a:69:15:19: e8:39:1c:d7:4b:c7:30:56:6a:2b:da:c0:61:cd:ad:ad:2c:5d: 5a:9b:d4:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcXPJY2NrnNLeM55xVmFDszMfU+owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDE4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTI3MTEyYTU5ZTUxZDg0OGVkZmZjOGQyNzc2NzczNTk0 YmYzYTNkYzVmZjdiMTE4NWMxYTQ4OTkwNDhkZTc0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCySm3m5GG8ZHvuTciQeA9PXRYkA/lOuFcdVrwZvQcAsD5j HQMcBCQrMQSqcnsYoMKfqwER5Y+YSjnNdTx1huUzEHJwr8qcYiGgho5KttzU1fQX JEe49JoS6znsAMJY449LhSJkuy3UhLbK2zfmhU7Hf4wipGBeM7uRHmk9aeE1VvFv 4144XBQ2r650e26KlfnyA96bcPvlj3oPFj5zV8T6ZlWs2g/Y+R7Gey+du3NyoWeY +1vrMnHHiHdu8cb9o3s0FIwadVTd87a4x+r272BIndvEKFylt6cpLa1hPRnZMeGw 8L/uRXdsM9CxPOEgQ7PvKh5u1Pj1T5k8NH5haybFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6XNrqkTcfvWo9kvCTEKEMFPMJUAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMjQxZGM2LTU2YWUtNDMzNy1iYjRiLWI4NGZiZGFlNTFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77gAwDQYJKoZIhvcNAQELBQADggEBAKPXVJJ7ohnuR92YZC/TgR/+ 4oumzKOHNFCszzCMB37CgxfHKgOovcuquVA1f3VF/h86Fj+XjGwjFnCCy8fDJERn 5O6taNWrS9cWJUY3GlGNnsb2vQMI3lW8VsMH8FmCFSEhxpJlJzft5vflBCpTm5DL QEVHENMjmJ/vIWunVEGX/5JQJcye7zUaYe5y652Hk+AwoyfY20K6qXpx8Qnzfszy KpMgMW7BhrTgED1Qw7wTNXM6B/uTgUbp2IyUXRIF/A756K0Ud5tiuu674A0z56xU kvC6gylMOCOD/D9h63wzF0zqA8j+OmkVGeg5HNdLxzBWaivawGHNra0sXVqb1Lc= -----END CERTIFICATE-----Generated at Sat Jun 7 05:01:32 2025 by rpki-client