$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa File: 789a1aef-77f7-4108-9d41-1a97c18e12cb.roa (raw, json) Hash identifier: JODN1c546wEIq4lzVLDsCG+DHiFtC/xEyw0FbQDlmOA= Subject key identifier: 7D:CB:B6:06:51:B2:DE:DC:88:F9:A3:46:4A:23:B4:39:99:94:DE:24 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 30173DB0C560026FD8CE3595565169E3F3B4CB44 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa Signing time: Mon 16 Jun 2025 19:31:27 +0000 ROA not before: Mon 16 Jun 2025 19:31:27 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f00c::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:17:3d:b0:c5:60:02:6f:d8:ce:35:95:56:51:69:e3:f3:b4:cb:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:31:27 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=c36be1e33995afbcdddd55cf4bcee41935952691643cbeb7ef5233d706f1e63d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5f:32:90:4a:df:ca:cb:64:65:f7:ad:8a:cb: d4:81:25:4f:89:0c:8d:e9:5b:d7:5c:7b:6c:db:46: 5b:5e:8f:9d:c7:6f:44:f6:ac:e5:6d:0f:d5:b3:37: 5c:65:c2:8d:35:ce:ab:ef:db:29:e5:18:02:88:1b: 00:df:31:97:fc:f1:1c:a3:ab:0c:9b:c8:a9:d8:28: 36:34:86:2e:51:d6:8b:f6:94:ea:c1:f1:b7:eb:8a: d5:e3:27:59:0f:37:24:a7:62:e5:cc:02:5b:d6:4c: 36:c7:c7:7c:b7:38:db:10:24:4d:45:95:1c:00:df: 93:ac:7f:03:c4:0f:8a:b8:aa:d0:e0:68:97:bd:30: 59:f3:be:f9:ba:f3:f2:d7:ed:61:c6:27:29:f9:4e: bd:9a:45:15:c8:73:4d:c4:18:f1:db:60:d7:d2:18: 8a:6b:07:9c:c5:51:5c:9d:6e:09:e3:28:57:9e:da: e3:64:b0:9d:ba:fd:d1:f0:71:3c:25:f0:75:fd:ef: c2:33:9c:5f:26:b9:96:db:e3:e9:20:65:77:7d:7d: 63:1e:78:06:ac:29:05:3d:95:e9:4b:2c:c9:8f:f2: 6d:b6:20:34:06:db:21:bc:b8:b5:24:48:83:95:40: cc:bf:d8:0d:d4:d0:21:14:53:f9:58:67:f3:82:e3: f0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CB:B6:06:51:B2:DE:DC:88:F9:A3:46:4A:23:B4:39:99:94:DE:24 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00c::/39 Signature Algorithm: sha256WithRSAEncryption 0f:4e:14:29:6a:7b:f7:04:31:91:85:6f:f3:26:13:cd:6a:a5: 36:1d:2f:fc:1f:66:3d:2d:06:73:c8:42:16:dd:ac:1d:cd:d1: d1:90:04:c4:54:cc:9b:43:82:cd:91:d7:2f:0d:4a:73:52:77: af:92:ac:e8:50:2a:04:3d:54:e2:4b:e8:db:49:3c:14:eb:00: a8:9c:c7:36:30:37:65:fc:07:95:30:9d:30:c8:40:58:41:b1: eb:00:dc:24:3e:3b:2e:90:21:e0:97:f0:e1:f4:a8:d9:4d:35: 45:62:1a:28:8f:a6:18:b7:61:51:e9:c7:71:2e:d4:ff:a0:68: 8c:11:80:93:e1:68:9a:8b:06:88:bb:e1:d9:6a:70:22:c4:60: fb:e3:1a:70:b5:32:2d:6a:f6:54:a2:a8:b4:9f:61:c6:75:c7: ea:ba:91:bf:12:62:a6:a1:39:18:66:9e:2c:36:c7:4e:97:18: f7:67:be:7c:4a:69:ee:06:e7:fd:c5:8a:02:14:a2:8b:ce:1b: 07:7a:6f:87:9b:3b:e3:f4:30:9d:cf:9c:cc:5e:47:c1:2c:d3: 16:c2:7c:81:3d:ca:e2:ec:4b:58:cc:73:19:e2:ab:46:79:6a: 2a:ac:3f:0a:03:ec:ec:71:05:4d:95:86:23:c6:6c:71:62:e7: 20:51:a4:54 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMBc9sMVgAm/YzjWVVlFp4/O0y0QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMTI3WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzZiZTFlMzM5OTVhZmJjZGRkZDU1Y2Y0YmNlZTQxOTM1 OTUyNjkxNjQzY2JlYjdlZjUyMzNkNzA2ZjFlNjNkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRXzKQSt/Ky2Rl962Ky9SBJU+JDI3pW9dce2zbRltej53H b0T2rOVtD9WzN1xlwo01zqvv2ynlGAKIGwDfMZf88RyjqwybyKnYKDY0hi5R1ov2 lOrB8bfritXjJ1kPNySnYuXMAlvWTDbHx3y3ONsQJE1FlRwA35OsfwPED4q4qtDg aJe9MFnzvvm68/LX7WHGJyn5Tr2aRRXIc03EGPHbYNfSGIprB5zFUVydbgnjKFee 2uNksJ26/dHwcTwl8HX978IznF8muZbb4+kgZXd9fWMeeAasKQU9lelLLMmP8m22 IDQG2yG8uLUkSIOVQMy/2A3U0CEUU/lYZ/OC4/DzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUfcu2BlGy3tyI+aNGSiO0OZmU3iQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc4OWExYWVmLTc3ZjctNDEwOC05ZDQxLTFhOTdjMThlMTJjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAMADANBgkqhkiG9w0BAQsFAAOCAQEAD04UKWp79wQxkYVv8yYTzWql Nh0v/B9mPS0Gc8hCFt2sHc3R0ZAExFTMm0OCzZHXLw1Kc1J3r5Ks6FAqBD1U4kvo 20k8FOsAqJzHNjA3ZfwHlTCdMMhAWEGx6wDcJD47LpAh4Jfw4fSo2U01RWIaKI+m GLdhUenHcS7U/6BojBGAk+FomosGiLvh2WpwIsRg++MacLUyLWr2VKKotJ9hxnXH 6rqRvxJipqE5GGaeLDbHTpcY92e+fEpp7gbn/cWKAhSii84bB3pvh5s74/Qwnc+c zF5HwSzTFsJ8gT3K4uxLWMxzGeKrRnlqKqw/CgPs7HEFTZWGI8ZscWLnIFGkVA== -----END CERTIFICATE-----Generated at Mon Jun 30 20:58:47 2025 by rpki-client