$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa File: 87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa (raw, json) Hash identifier: D8TjBJql7owY7PEG0UnrNGT6anF0z90NBaQIipraJJE= Subject key identifier: 67:C1:A8:6C:F2:F7:5E:AE:E3:01:7D:FC:C7:21:7A:A5:02:F4:A7:13 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7AACF0D48E072F3EC4673110AB4D4029357F954F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa Signing time: Tue 20 May 2025 18:11:26 +0000 ROA not before: Tue 20 May 2025 18:11:26 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ac:f0:d4:8e:07:2f:3e:c4:67:31:10:ab:4d:40:29:35:7f:95:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:26 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c4dd18ea99d56792b7af9c53b006e3c89fb34101f3cb1b1566b32c95264f9205, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e9:78:d5:4c:37:66:98:85:91:32:0f:f7:45: 85:c3:a6:21:8b:a5:8b:5d:20:0a:9c:0d:e6:bc:56: e2:f9:3f:cd:29:26:51:eb:fe:64:04:1e:e6:e4:07: 19:78:e6:c4:12:53:bc:60:41:ab:3c:ff:9c:2e:07: ac:ac:fa:b0:93:d3:3d:9e:3b:29:3b:44:6e:4e:96: 55:f3:79:ea:de:7c:b7:f7:1c:e5:bf:50:55:d3:b9: 86:ba:9e:6a:6a:b6:0f:17:dc:6b:a3:53:33:40:d0: ee:3b:9d:10:8f:f4:40:48:e7:9c:c0:86:cb:d9:5f: 6f:80:70:f9:71:07:1f:6d:74:7a:18:a6:a2:c6:34: dc:31:b4:82:d0:eb:11:23:98:10:8a:65:d4:31:1c: b6:1d:a5:fc:2f:68:eb:21:f5:6a:64:d3:1b:03:73: bc:9c:81:29:e1:11:06:93:73:fe:da:1d:15:a0:2b: b0:41:dd:18:0d:d8:9f:e5:c0:94:6f:af:ba:e8:78: 30:aa:d9:cd:a6:0c:18:5a:02:71:45:8c:35:23:90: 9b:ec:82:2d:f4:86:39:fb:f3:41:83:ab:9f:ff:04: 3c:a1:ea:35:a0:51:ce:f9:10:b9:4a:e1:b5:98:04: a6:17:ab:1b:5e:ca:f7:31:ac:49:d1:f8:42:54:f2: 4a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C1:A8:6C:F2:F7:5E:AE:E3:01:7D:FC:C7:21:7A:A5:02:F4:A7:13 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 96:75:ba:2e:8d:1f:27:3f:04:0a:bc:32:1d:6d:c5:65:ac:18: 79:fa:f5:45:a3:d5:ab:9f:d0:85:41:f4:91:62:c1:1e:bf:46: dc:2a:60:4d:e3:51:ff:c3:03:55:7e:13:4c:d3:b4:d1:fa:67: 67:24:66:c3:1b:de:80:15:a7:3d:61:d1:8d:30:cc:82:7f:a3: ec:30:85:cb:5b:47:0c:5e:e4:13:c3:79:45:fb:aa:bf:1f:ff: a7:5f:c7:d0:c7:af:eb:53:43:d9:1e:3a:c4:69:03:08:ff:cf: 70:ba:85:5d:69:52:06:d4:3d:cc:9f:ed:ec:e4:02:33:fc:23: b4:44:6a:d0:4c:bf:24:11:1e:aa:a0:5a:f5:b3:6a:f6:c4:06: f4:1d:df:7c:a8:bc:8b:91:a2:54:e0:29:19:73:a5:28:6e:4a: c6:45:cb:2f:68:1b:df:97:c6:60:b9:80:30:c1:52:fd:8b:d4: 23:2d:09:e6:e6:3c:31:6b:a6:d0:5e:ed:8e:65:f2:cc:2c:98: a2:1c:70:b4:2e:f3:91:9d:59:91:63:5f:a2:f6:a8:cc:c1:e1: 61:17:68:9a:20:03:81:d9:de:f5:a9:fe:1a:b6:85:6a:b8:28: 4d:71:60:6b:21:e7:82:34:66:23:39:99:09:ec:52:c1:06:80: 74:07:c1:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeqzw1I4HLz7EZzEQq01AKTV/lU8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTI2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGRkMThlYTk5ZDU2NzkyYjdhZjljNTNiMDA2ZTNjODlm YjM0MTAxZjNjYjFiMTU2NmIzMmM5NTI2NGY5MjA1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt6XjVTDdmmIWRMg/3RYXDpiGLpYtdIAqcDea8VuL5P80p JlHr/mQEHubkBxl45sQSU7xgQas8/5wuB6ys+rCT0z2eOyk7RG5OllXzeerefLf3 HOW/UFXTuYa6nmpqtg8X3GujUzNA0O47nRCP9EBI55zAhsvZX2+AcPlxBx9tdHoY pqLGNNwxtILQ6xEjmBCKZdQxHLYdpfwvaOsh9Wpk0xsDc7ycgSnhEQaTc/7aHRWg K7BB3RgN2J/lwJRvr7roeDCq2c2mDBhaAnFFjDUjkJvsgi30hjn780GDq5//BDyh 6jWgUc75ELlK4bWYBKYXqxteyvcxrEnR+EJU8koNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ8GobPL3Xq7jAX38xyF6pQL0pxMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg3YmFmYjBkLTdjZWMtNDMzMS04YTA5LTRhNGQ1NmFiZjdkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75QAwDQYJKoZIhvcNAQELBQADggEBAJZ1ui6NHyc/BAq8Mh1txWWs GHn69UWj1auf0IVB9JFiwR6/RtwqYE3jUf/DA1V+E0zTtNH6Z2ckZsMb3oAVpz1h 0Y0wzIJ/o+wwhctbRwxe5BPDeUX7qr8f/6dfx9DHr+tTQ9keOsRpAwj/z3C6hV1p UgbUPcyf7ezkAjP8I7REatBMvyQRHqqgWvWzavbEBvQd33yovIuRolTgKRlzpShu SsZFyy9oG9+XxmC5gDDBUv2L1CMtCebmPDFrptBe7Y5l8swsmKIccLQu85GdWZFj X6L2qMzB4WEXaJogA4HZ3vWp/hq2hWq4KE1xYGsh54I0ZiM5mQnsUsEGgHQHwYE= -----END CERTIFICATE-----Generated at Fri Jun 6 17:51:35 2025 by rpki-client