$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa File: 8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa (raw, json) Hash identifier: zbfaUReV87HeWVyYb4OHVRQyw+Kp08zBkEolReSdBSg= Subject key identifier: 03:1A:8E:35:84:06:99:01:7A:CE:C9:D9:AE:81:DF:57:EA:3C:46:42 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1D30B61F30C81A3A58506A03D5495845F9E4B604 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa Signing time: Tue 20 May 2025 18:00:47 +0000 ROA not before: Tue 20 May 2025 18:00:47 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:30:b6:1f:30:c8:1a:3a:58:50:6a:03:d5:49:58:45:f9:e4:b6:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:47 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=a87c0f9ac5ae55e73e0c49e17418104fc873333a8ff1bccb9b0f2a25cf1efb6a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a2:b9:61:f7:55:3c:2d:7d:8c:20:66:0e:05: 13:6c:8f:0e:c9:20:ed:6e:47:b5:b3:fb:14:1c:02: e8:96:4e:0e:26:06:38:22:02:68:4e:2a:a8:5e:d1: a6:a0:c8:4c:13:f0:18:e5:92:71:af:c9:8a:57:5a: b7:9a:7f:97:9e:ed:40:b2:61:64:a9:d1:ee:31:d7: 77:64:7a:8d:ed:7f:55:11:c7:63:73:ce:43:f6:b9: 04:e3:68:6c:d7:51:d8:7a:f9:44:f6:16:ca:5a:ca: c0:3b:e5:90:5e:9f:f7:bf:7f:07:ca:20:71:a2:b2: 65:e2:c9:9e:7f:43:09:b4:c0:52:06:97:5d:5b:20: 23:94:22:8e:13:0d:22:30:f7:83:21:72:bb:ae:54: ae:4d:3e:ed:fc:b5:71:9a:92:5e:2e:60:e0:7b:56: a4:b8:0c:88:47:0f:ff:82:ed:5d:b5:90:da:01:cb: ad:7c:5c:13:2e:6d:74:05:d2:08:b3:b4:df:5e:8e: ec:2f:a0:a5:40:06:f7:a3:b6:ee:0f:ed:37:da:ad: 5f:3f:a4:91:f3:18:18:81:da:58:5b:33:8f:c6:05: c4:a2:c1:48:7e:5b:96:2a:ae:53:68:3f:ef:22:7f: 08:0a:db:7b:48:5a:8c:55:39:a8:68:4c:c7:fe:60: d8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:1A:8E:35:84:06:99:01:7A:CE:C9:D9:AE:81:DF:57:EA:3C:46:42 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6::/48 Signature Algorithm: sha256WithRSAEncryption 14:4a:84:eb:de:9d:c5:f4:9a:de:64:76:8f:c0:3f:6d:cd:64: 67:7a:37:d0:2a:ed:0d:98:ee:f5:89:1f:1c:df:c6:ea:a2:b4: ff:4b:a6:f1:ac:51:16:d9:88:ca:99:19:2f:29:80:2d:f3:54: 3b:00:f2:07:cf:8c:2e:56:03:47:e8:62:38:42:17:bf:dd:08: 28:db:b5:82:0f:0a:e5:6e:b3:08:28:76:c1:0c:61:59:65:05: 9d:71:90:29:3f:08:ef:3f:78:55:ac:1a:b0:e6:55:1e:bc:3b: c0:8d:21:fd:92:17:6c:03:1b:aa:b3:3a:8d:bc:cd:5b:e2:bc: 1c:02:2e:d1:0f:e8:33:49:d4:77:91:bb:30:8b:77:ad:36:47: ba:7e:3d:ef:78:45:98:41:09:02:3a:dc:15:69:92:b6:f2:0e: 74:9f:09:df:20:0c:df:1e:f1:98:2b:6f:2e:c6:fa:36:37:97: 01:4d:78:e0:91:a7:18:35:5a:c6:37:75:b9:7e:f5:15:e1:fb: 1e:84:2c:fa:be:de:fb:7a:06:77:ce:d0:2a:4b:51:7f:af:5e: 59:ef:dd:dc:bd:16:24:8c:a5:40:fc:09:15:af:e6:7e:87:06: df:42:0b:36:19:1e:f8:3f:b1:09:ea:15:b2:4a:df:11:d2:9d: 84:0d:82:d5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHTC2HzDIGjpYUGoD1UlYRfnktgQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDQ3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODdjMGY5YWM1YWU1NWU3M2UwYzQ5ZTE3NDE4MTA0ZmM4 NzMzMzNhOGZmMWJjY2I5YjBmMmEyNWNmMWVmYjZhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzorlh91U8LX2MIGYOBRNsjw7JIO1uR7Wz+xQcAuiWTg4m BjgiAmhOKqhe0aagyEwT8BjlknGvyYpXWreaf5ee7UCyYWSp0e4x13dkeo3tf1UR x2NzzkP2uQTjaGzXUdh6+UT2FspaysA75ZBen/e/fwfKIHGismXiyZ5/Qwm0wFIG l11bICOUIo4TDSIw94MhcruuVK5NPu38tXGakl4uYOB7VqS4DIhHD/+C7V21kNoB y618XBMubXQF0giztN9ejuwvoKVABvejtu4P7TfarV8/pJHzGBiB2lhbM4/GBcSi wUh+W5YqrlNoP+8ifwgK23tIWoxVOahoTMf+YNiHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAxqONYQGmQF6zsnZroHfV+o8RkIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg0NzJlY2Y1LTVkM2QtNGU0Ni1iNjk5LWUyOTY0NGI0MmZhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAYwDQYJKoZIhvcNAQELBQADggEBABRKhOvencX0mt5kdo/AP23N ZGd6N9Aq7Q2Y7vWJHxzfxuqitP9LpvGsURbZiMqZGS8pgC3zVDsA8gfPjC5WA0fo YjhCF7/dCCjbtYIPCuVuswgodsEMYVllBZ1xkCk/CO8/eFWsGrDmVR68O8CNIf2S F2wDG6qzOo28zVvivBwCLtEP6DNJ1HeRuzCLd602R7p+Pe94RZhBCQI63BVpkrby DnSfCd8gDN8e8Zgrby7G+jY3lwFNeOCRpxg1WsY3dbl+9RXh+x6ELPq+3vt6BnfO 0CpLUX+vXlnv3dy9FiSMpUD8CRWv5n6HBt9CCzYZHvg/sQnqFbJK3xHSnYQNgtU= -----END CERTIFICATE-----Generated at Fri Jun 6 19:44:35 2025 by rpki-client