$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa File: 8dc8b90b-7591-404d-b954-05b005230216.roa (raw, json) Hash identifier: YfjRAXQ6HgtX3akrk7O9FcenW1tZqNkFv9stoWtUs4A= Subject key identifier: 5F:CD:B5:A3:96:9F:94:A4:0A:40:C5:6F:6D:C0:4B:4F:0D:6F:C9:05 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4F89582DE27718F44CAE36EEA72A27508ED464BD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa Signing time: Tue 20 May 2025 18:20:15 +0000 ROA not before: Tue 20 May 2025 18:20:15 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:89:58:2d:e2:77:18:f4:4c:ae:36:ee:a7:2a:27:50:8e:d4:64:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:20:15 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=3f7a2d71f67806c99c93128774087520ed61e4c84b8aad70e60fa51c24cb7dc9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:42:6b:cd:78:e7:18:1c:92:a7:9c:e6:f7:95: 62:c1:59:c6:87:99:b9:b0:87:b7:21:e8:b4:5b:8e: b2:d7:2d:9b:40:64:49:b6:71:66:dc:8a:ec:ba:d6: fb:c8:50:dc:89:01:7f:3f:15:1e:f7:ca:6a:19:a2: f5:07:c3:60:58:f8:b7:7e:aa:f9:5f:6d:ba:6b:dc: d0:e4:0c:b4:12:66:ff:57:a4:da:74:98:91:d2:02: db:88:92:3d:bb:51:ca:72:8d:58:8c:ba:67:25:51: 5f:4b:d6:bb:17:fa:28:82:19:aa:bc:bf:80:9f:3e: 2c:d9:1f:aa:76:bc:b5:57:dc:7a:af:99:9c:cd:71: 51:9c:87:e5:19:36:61:c1:19:3d:8d:de:d0:f4:34: 3f:26:d6:9d:67:a4:e7:61:dc:e3:57:1f:f1:06:3e: b3:dc:eb:a4:59:9c:1f:70:9e:16:d1:b4:dc:d8:f7: 2e:8b:de:96:6d:fe:d5:f2:45:a0:1b:6f:d2:18:07: 78:8f:1e:bb:09:46:81:06:db:a1:dd:d5:7a:b1:25: d1:73:f6:44:08:a2:09:20:64:c1:58:be:a3:7a:75: 7d:b2:b2:1b:53:3c:15:a8:65:c1:c3:01:97:8e:3d: 5e:59:68:46:07:9d:e3:ab:1f:b4:8a:09:a7:56:c9: 8b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:CD:B5:A3:96:9F:94:A4:0A:40:C5:6F:6D:C0:4B:4F:0D:6F:C9:05 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/39 Signature Algorithm: sha256WithRSAEncryption 6d:24:c8:3e:c8:69:e6:45:57:52:59:72:fe:ee:ad:56:96:3f: 1c:bf:a0:9f:e0:98:ca:f1:f9:25:31:f3:0a:57:aa:3a:ee:16: 54:99:44:a8:af:f9:27:07:98:29:b3:75:62:17:75:da:d3:05: d1:fd:82:2e:1e:d6:43:1e:7c:6d:78:8b:e5:7b:0b:9e:c4:b3: b9:04:82:0c:46:ce:43:11:25:60:29:8e:5d:fe:92:47:42:0d: 44:ef:8c:5f:99:6b:d2:25:ca:b8:9e:dc:bd:9f:d0:7e:1c:a1: 14:05:1b:a3:bc:00:68:39:d5:85:54:0a:b5:bb:45:5f:ce:8a: 97:03:9e:20:3e:56:1a:03:f7:9d:c9:7f:85:34:1a:34:5f:5f: 68:c9:9b:f8:cb:38:90:a9:84:d7:5c:b4:ac:b9:48:b9:1e:e3: f7:71:f6:ef:47:de:dc:2a:6e:1f:06:9b:f9:87:4f:79:62:94: 91:9e:e3:59:3d:7d:d8:76:50:73:cd:bb:67:33:cd:5d:96:07: 47:89:ab:ed:88:81:78:7d:91:e6:d8:a9:d4:03:de:0b:c9:a4: 52:aa:13:39:8e:27:94:fe:30:d1:a7:fc:f5:23:7f:ea:a5:6b: 77:ed:7d:c7:ab:ec:61:39:4c:02:85:21:0a:96:4a:0f:16:a6: 9e:0d:4e:bd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUT4lYLeJ3GPRMrjbupyonUI7UZL0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgyMDE1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjdhMmQ3MWY2NzgwNmM5OWM5MzEyODc3NDA4NzUyMGVk NjFlNGM4NGI4YWFkNzBlNjBmYTUxYzI0Y2I3ZGM5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQQmvNeOcYHJKnnOb3lWLBWcaHmbmwh7ch6LRbjrLXLZtA ZEm2cWbciuy61vvIUNyJAX8/FR73ymoZovUHw2BY+Ld+qvlfbbpr3NDkDLQSZv9X pNp0mJHSAtuIkj27UcpyjViMumclUV9L1rsX+iiCGaq8v4CfPizZH6p2vLVX3Hqv mZzNcVGch+UZNmHBGT2N3tD0ND8m1p1npOdh3ONXH/EGPrPc66RZnB9wnhbRtNzY 9y6L3pZt/tXyRaAbb9IYB3iPHrsJRoEG26Hd1XqxJdFz9kQIogkgZMFYvqN6dX2y shtTPBWoZcHDAZeOPV5ZaEYHneOrH7SKCadWyYslAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUX821o5aflKQKQMVvbcBLTw1vyQUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhkYzhiOTBiLTc1OTEtNDA0ZC1iOTU0LTA1YjAwNTIzMDIxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAADANBgkqhkiG9w0BAQsFAAOCAQEAbSTIPshp5kVXUlly/u6tVpY/ HL+gn+CYyvH5JTHzCleqOu4WVJlEqK/5JweYKbN1Yhd12tMF0f2CLh7WQx58bXiL 5XsLnsSzuQSCDEbOQxElYCmOXf6SR0INRO+MX5lr0iXKuJ7cvZ/QfhyhFAUbo7wA aDnVhVQKtbtFX86KlwOeID5WGgP3ncl/hTQaNF9faMmb+Ms4kKmE11y0rLlIuR7j 93H270fe3CpuHwab+YdPeWKUkZ7jWT192HZQc827ZzPNXZYHR4mr7YiBeH2R5tip 1APeC8mkUqoTOY4nlP4w0af89SN/6qVrd+19x6vsYTlMAoUhCpZKDxamng1OvQ== -----END CERTIFICATE-----Generated at Wed Jun 4 11:27:01 2025 by rpki-client