$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ad26bb9-2f69-40ee-b91a-0cce67fa4a5c.roa File: 7ad26bb9-2f69-40ee-b91a-0cce67fa4a5c.roa (raw, json) Hash identifier: 2GwTDreYisRz8IT/SQmb6fZ+V7uQa5zmEoRUl9Vdw80= Subject key identifier: 1A:37:39:7F:B7:2F:11:8C:F8:85:6C:1E:07:47:D5:99:C2:2A:2B:57 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5A817AFE4F01651B8C93CCC11FC6D8C80B02E1BB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ad26bb9-2f69-40ee-b91a-0cce67fa4a5c.roa Signing time: Tue 20 May 2025 18:10:17 +0000 ROA not before: Tue 20 May 2025 18:10:17 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:81:7a:fe:4f:01:65:1b:8c:93:cc:c1:1f:c6:d8:c8:0b:02:e1:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:17 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=3890988dd8497680da115b9cd354d8da78d959df9d5d56d4bd102ec2e464bcf8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:24:0d:8a:f4:da:db:ae:b7:78:d3:4b:8d:ff: 41:33:9f:e0:2e:29:f8:a8:36:4e:64:13:73:7f:1c: f7:8a:fb:c6:fb:61:2d:84:aa:70:76:db:bf:28:62: e5:74:2e:22:60:b4:3b:4f:63:f7:f5:a6:2f:35:86: 3e:88:dc:ad:a0:31:4d:a1:3e:12:10:ea:23:fd:62: bb:a3:9b:e9:f1:2a:b1:cf:ce:99:27:cb:be:2f:47: 37:03:93:ab:7e:ed:56:40:2d:a5:8f:d2:ae:bf:9e: c9:8e:ef:55:bf:dd:d9:75:3c:05:98:3a:92:ca:78: 2a:41:a2:49:9a:f5:8f:a1:8d:db:e3:49:48:3d:5e: 52:d3:4f:e2:cc:37:d6:7f:e6:7f:f4:7b:2c:f6:22: c6:04:11:78:67:9b:21:2d:38:47:b8:2e:7a:a6:76: 36:6b:a7:25:96:88:97:8f:5f:8d:38:c4:1e:ea:73: d2:15:d9:88:b1:e6:e1:24:94:b3:ed:2d:91:a0:fb: 35:59:1e:e0:c4:1c:7f:5a:5e:a2:9f:5a:77:96:39: fb:bb:b1:a7:61:72:eb:90:dc:28:e6:22:e9:5f:0a: f0:81:3a:a0:b6:6e:47:ac:1e:e4:f5:c7:d8:c9:1e: ef:dd:f5:ed:da:3c:07:2d:00:ca:09:04:83:ec:a8: 0f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:37:39:7F:B7:2F:11:8C:F8:85:6C:1E:07:47:D5:99:C2:2A:2B:57 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ad26bb9-2f69-40ee-b91a-0cce67fa4a5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/40 Signature Algorithm: sha256WithRSAEncryption 4b:6f:6d:eb:17:b1:68:34:f4:fc:10:27:99:67:f6:5e:f6:a3: 94:7b:f0:f0:64:b5:f7:46:e1:5d:1d:11:1e:2a:29:a8:8e:16: b9:81:75:1a:00:93:fd:b0:c4:55:2f:f6:c1:6d:db:a2:e0:8a: cb:ef:f7:af:ec:83:9c:9e:07:a8:60:93:42:97:51:0f:d0:52: 91:11:76:c5:95:ff:9c:d8:30:37:09:7c:2a:cb:e7:65:67:15: 96:be:be:22:1d:80:84:e6:47:be:ac:18:5b:43:ba:59:18:1e: a6:47:1c:81:ec:94:b9:b5:4d:52:de:2b:55:b5:73:d7:23:7c: 20:31:30:35:d3:75:1a:69:a3:f1:b6:07:51:4a:59:dc:6b:ab: bd:e4:1a:3b:62:5f:e6:38:95:b8:ad:a5:4e:26:44:8a:47:1d: 78:22:6d:27:12:47:b2:2c:0e:0e:56:3c:1f:2d:a2:b8:a2:dc: c7:8a:9c:4c:10:5d:17:55:ed:9e:1b:7c:5a:8a:45:d0:d8:4f: 49:5c:c2:72:fa:78:a0:4c:ac:21:ab:8c:fd:9a:ae:12:1c:2b: 59:17:e7:3f:11:d8:f1:42:a0:53:33:55:60:bb:67:46:91:a7: 67:d1:60:2c:b9:40:8e:36:a3:55:67:98:84:71:08:6a:7e:5f: ef:a1:cf:6d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWoF6/k8BZRuMk8zBH8bYyAsC4bswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDE3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODkwOTg4ZGQ4NDk3NjgwZGExMTViOWNkMzU0ZDhkYTc4 ZDk1OWRmOWQ1ZDU2ZDRiZDEwMmVjMmU0NjRiY2Y4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2JA2K9Nrbrrd400uN/0Ezn+AuKfioNk5kE3N/HPeK+8b7 YS2EqnB2278oYuV0LiJgtDtPY/f1pi81hj6I3K2gMU2hPhIQ6iP9Yrujm+nxKrHP zpkny74vRzcDk6t+7VZALaWP0q6/nsmO71W/3dl1PAWYOpLKeCpBokma9Y+hjdvj SUg9XlLTT+LMN9Z/5n/0eyz2IsYEEXhnmyEtOEe4LnqmdjZrpyWWiJePX404xB7q c9IV2Yix5uEklLPtLZGg+zVZHuDEHH9aXqKfWneWOfu7sadhcuuQ3CjmIulfCvCB OqC2bkesHuT1x9jJHu/d9e3aPActAMoJBIPsqA/hAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUGjc5f7cvEYz4hWweB0fVmcIqK1cwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdhZDI2YmI5LTJmNjktNDBlZS1iOTFhLTBjY2U2N2ZhNGE1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76DANBgkqhkiG9w0BAQsFAAOCAQEAS29t6xexaDT0/BAnmWf2Xvaj lHvw8GS190bhXR0RHiopqI4WuYF1GgCT/bDEVS/2wW3bouCKy+/3r+yDnJ4HqGCT QpdRD9BSkRF2xZX/nNgwNwl8KsvnZWcVlr6+Ih2AhOZHvqwYW0O6WRgepkccgeyU ubVNUt4rVbVz1yN8IDEwNdN1Gmmj8bYHUUpZ3GurveQaO2Jf5jiVuK2lTiZEikcd eCJtJxJHsiwODlY8Hy2iuKLcx4qcTBBdF1Xtnht8WopF0NhPSVzCcvp4oEysIauM /ZquEhwrWRfnPxHY8UKgUzNVYLtnRpGnZ9FgLLlAjjajVWeYhHEIan5f76HPbQ== -----END CERTIFICATE-----Generated at Fri Jun 6 05:01:03 2025 by rpki-client