$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa File: 77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa (raw, json) Hash identifier: EkppdaMz0Jfg+w2k1euyRxTP4aiK+jNknWUabFveDzs= Subject key identifier: 0C:A7:36:88:84:E5:B5:9F:8F:0C:32:B6:CE:FA:AC:3A:D2:11:B2:B0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0C97057E4E573BE0EE0E4246B65278C6F45C236D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa Signing time: Tue 20 May 2025 18:10:13 +0000 ROA not before: Tue 20 May 2025 18:10:13 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:97:05:7e:4e:57:3b:e0:ee:0e:42:46:b6:52:78:c6:f4:5c:23:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:13 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=e8101e6fdcfea166db10c48c7dbdd8d45e262f8423b934118b95aa813b65873b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d1:35:8a:6a:46:ca:06:59:53:7c:20:fc:b3: f3:89:d7:f4:e6:ab:08:88:1e:00:13:01:a0:5c:df: 12:8a:43:df:dd:48:f3:41:58:4f:e9:93:6e:02:33: 85:6f:ea:74:68:47:53:af:3d:20:f0:df:80:9a:9c: a2:7c:ad:9e:87:07:7a:14:7e:1f:47:c1:5b:aa:ea: a4:50:cf:69:b5:08:5d:14:d7:bc:f6:33:7a:2c:13: b7:3c:b1:79:27:6c:8f:e4:3a:d7:da:27:a0:84:b9: d1:ac:c5:5f:d8:69:05:f3:2e:25:9d:f0:ce:2f:3a: d7:11:e4:01:b0:fa:ba:53:07:8d:4f:5b:ea:bc:eb: e4:41:fc:fa:59:94:da:36:d9:3e:ec:f2:a3:8d:34: 14:78:df:ca:75:1f:01:1a:c0:8b:59:07:4e:4d:30: e9:95:ca:b5:75:54:b6:d8:72:1d:2a:8f:63:e5:7c: 18:4c:e7:75:b7:5f:5c:ac:52:49:98:99:85:88:d3: d8:43:8f:56:ab:25:1a:96:fd:42:0f:17:9f:82:fc: 8a:25:9b:39:22:88:e5:24:94:07:07:77:47:87:80: 30:54:e3:dc:9c:94:e5:a6:6f:fc:d1:5e:4a:b9:4a: 65:69:b1:f2:87:94:58:80:61:49:7e:aa:b1:34:e4: bf:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A7:36:88:84:E5:B5:9F:8F:0C:32:B6:CE:FA:AC:3A:D2:11:B2:B0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption 16:12:f1:2d:03:e7:d4:ff:17:a5:9c:b8:ed:97:a1:1e:45:cb: 18:b2:75:f9:97:02:d5:44:ad:a4:63:5b:c0:6a:08:9d:d1:03: ef:24:38:ed:3d:5f:0f:ec:54:4c:62:fa:46:48:6e:12:3b:6a: fa:cb:ef:c6:5e:29:6c:fc:c6:03:89:c2:3e:82:ef:62:e1:de: ab:34:f6:9a:05:65:8f:e7:b2:3c:e5:56:fb:85:dd:3e:08:73: 59:96:dc:26:f3:98:ca:5e:69:90:dc:3d:3d:bb:c1:f9:d8:55: e3:5c:78:73:aa:2b:93:6f:a2:14:e8:64:6b:04:64:a5:89:8a: 6f:1c:d8:37:71:42:f2:b9:10:d0:d2:4a:55:ca:06:ac:4e:d2: 30:ba:e7:1a:05:51:9d:49:10:b0:02:4e:8e:72:6c:cb:df:b9: 10:b9:04:07:72:a4:d6:63:4c:e6:df:8b:52:b1:aa:fa:a5:ad: 2b:6e:a3:b3:75:98:a9:26:76:69:98:5b:cc:c7:68:9b:ec:84: 67:ca:b8:30:5f:fe:82:ae:0b:1f:ec:7b:4f:4d:92:e3:b1:aa: 21:b8:0a:dd:65:bf:ef:94:76:7e:1f:1d:7c:cd:f1:8f:d8:d2: 8d:d4:5d:15:40:40:f0:d0:33:fe:88:9f:b9:a3:6a:10:4d:29: 70:b7:fa:aa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDJcFfk5XO+DuDkJGtlJ4xvRcI20wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDEzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlODEwMWU2ZmRjZmVhMTY2ZGIxMGM0OGM3ZGJkZDhkNDVl MjYyZjg0MjNiOTM0MTE4Yjk1YWE4MTNiNjU4NzNiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp0TWKakbKBllTfCD8s/OJ1/TmqwiIHgATAaBc3xKKQ9/d SPNBWE/pk24CM4Vv6nRoR1OvPSDw34CanKJ8rZ6HB3oUfh9HwVuq6qRQz2m1CF0U 17z2M3osE7c8sXknbI/kOtfaJ6CEudGsxV/YaQXzLiWd8M4vOtcR5AGw+rpTB41P W+q86+RB/PpZlNo22T7s8qONNBR438p1HwEawItZB05NMOmVyrV1VLbYch0qj2Pl fBhM53W3X1ysUkmYmYWI09hDj1arJRqW/UIPF5+C/IolmzkiiOUklAcHd0eHgDBU 49yclOWmb/zRXkq5SmVpsfKHlFiAYUl+qrE05L+JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDKc2iITltZ+PDDK2zvqsOtIRsrAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc3MDcxZGJhLTNkNzEtNDA5ZC1iZWMzLWU2ZWU0ZDhmYzlkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBABYS8S0D59T/F6WcuO2XoR5F yxiydfmXAtVEraRjW8BqCJ3RA+8kOO09Xw/sVExi+kZIbhI7avrL78ZeKWz8xgOJ wj6C72Lh3qs09poFZY/nsjzlVvuF3T4Ic1mW3CbzmMpeaZDcPT27wfnYVeNceHOq K5NvohToZGsEZKWJim8c2DdxQvK5ENDSSlXKBqxO0jC65xoFUZ1JELACTo5ybMvf uRC5BAdypNZjTObfi1KxqvqlrStuo7N1mKkmdmmYW8zHaJvshGfKuDBf/oKuCx/s e09NkuOxqiG4Ct1lv++Udn4fHXzN8Y/Y0o3UXRVAQPDQM/6In7mjahBNKXC3+qo= -----END CERTIFICATE-----Generated at Fri Jun 6 03:28:38 2025 by rpki-client