$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa File: 976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa (raw, json) Hash identifier: AyuEzUXqrFozNcz6DhsNi5gUkGFtuMJ4fzVXhZal3uU= Subject key identifier: 7B:CB:A6:F1:66:EB:6F:9D:ED:5E:B3:77:65:E9:B0:F3:40:7D:FC:E9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 097CF8483CC83325A4B2277AE6F7AA89763E9930 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa Signing time: Tue 20 May 2025 18:00:48 +0000 ROA not before: Tue 20 May 2025 18:00:48 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7c:f8:48:3c:c8:33:25:a4:b2:27:7a:e6:f7:aa:89:76:3e:99:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:48 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=a0ed54b36788bc6c0207b8ef279008e2ffdbb970430ecca859ef1f100ff2159f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8e:cc:3d:a8:8c:7f:8e:42:9a:8c:32:6e:63: 33:bc:82:e6:57:d9:ae:bc:f4:e2:ed:45:fc:f8:61: 77:34:24:3b:7f:15:4c:67:3b:62:9b:65:0d:cd:88: fe:28:29:ae:73:66:4a:a2:2b:22:a0:66:b8:f8:51: 57:ac:0e:2d:c6:1f:c0:9e:75:03:e8:4f:12:58:52: 7e:b8:d5:3e:50:df:c7:f6:71:52:6d:24:30:1a:ce: c6:37:8e:eb:cd:92:7e:57:25:1e:4f:3e:6d:dc:69: 40:3b:dc:4f:ee:25:f1:42:eb:4f:6f:11:7c:a9:e5: c2:ce:c2:7f:64:bb:e3:8a:f2:ff:80:ca:ed:e5:96: d7:f2:66:fd:6e:6d:82:34:ab:dc:72:fe:ad:e4:32: 76:15:f2:39:19:0e:77:36:fc:4a:95:c4:f7:cf:e6: f3:56:6a:22:d1:f5:61:5b:43:e7:ca:07:42:e1:8b: c3:9b:ff:b0:19:c1:ae:d3:1e:f6:eb:54:0d:0d:a4: a8:44:86:c9:dc:3b:30:10:ff:b5:e2:4d:c6:ba:62: 04:e6:b6:48:ec:46:f7:5a:5a:42:72:ae:99:4b:a6: b7:18:15:d2:c0:86:ee:6c:a8:c4:29:0e:6a:da:d0: aa:5a:d0:8c:de:27:6d:15:74:ba:7a:ec:64:b9:d5: 1d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CB:A6:F1:66:EB:6F:9D:ED:5E:B3:77:65:E9:B0:F3:40:7D:FC:E9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:f00::/48 Signature Algorithm: sha256WithRSAEncryption 64:36:04:c7:26:bc:9c:9d:7c:73:f4:f2:ba:cd:51:ab:ba:b6: 10:7c:de:8b:94:58:03:34:92:20:8a:30:c8:d3:ff:27:5f:e7: b3:d4:f5:dc:0c:53:dc:d7:56:a1:b4:82:3d:65:67:40:6b:a6: 71:ad:15:ff:83:f7:b2:05:cc:b0:c8:62:b8:34:c3:1b:00:b4: a1:2f:a0:50:ed:2a:d8:4b:64:05:82:d6:39:e4:6a:ca:56:22: 4e:a6:3c:3c:a5:3c:42:bf:61:28:4e:32:e9:0c:6d:e1:e5:18: 2f:2a:c1:78:f8:6a:bc:0e:ac:bb:46:ca:cc:ba:d1:d6:8f:be: ce:05:d4:64:82:ea:9b:3e:f0:bd:84:1c:8c:cb:11:b3:6a:d7: d6:a9:fd:ce:b3:d6:3a:ea:45:ef:74:95:7d:c1:e3:12:4f:ae: aa:1e:bb:b7:c4:5e:c1:f9:42:e0:09:0c:0e:3d:5d:78:28:56: 7a:e5:fb:c5:ea:b0:1d:4a:1e:7f:66:21:67:e1:04:e6:ab:47: f2:2e:15:e5:8b:9c:06:41:7c:dd:42:38:87:04:72:c1:74:3a: 7c:26:37:d4:2a:0f:40:4e:d2:04:fa:cf:b7:fc:b3:3d:36:34: 90:45:ed:d0:4a:af:78:a0:a0:b3:79:db:e1:37:55:41:01:39: fa:4d:8b:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCXz4SDzIMyWksid65veqiXY+mTAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDQ4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGVkNTRiMzY3ODhiYzZjMDIwN2I4ZWYyNzkwMDhlMmZm ZGJiOTcwNDMwZWNjYTg1OWVmMWYxMDBmZjIxNTlmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTjsw9qIx/jkKajDJuYzO8guZX2a689OLtRfz4YXc0JDt/ FUxnO2KbZQ3NiP4oKa5zZkqiKyKgZrj4UVesDi3GH8CedQPoTxJYUn641T5Q38f2 cVJtJDAazsY3juvNkn5XJR5PPm3caUA73E/uJfFC609vEXyp5cLOwn9ku+OK8v+A yu3lltfyZv1ubYI0q9xy/q3kMnYV8jkZDnc2/EqVxPfP5vNWaiLR9WFbQ+fKB0Lh i8Ob/7AZwa7THvbrVA0NpKhEhsncOzAQ/7XiTca6YgTmtkjsRvdaWkJyrplLprcY FdLAhu5sqMQpDmra0Kpa0IzeJ20VdLp67GS51R11AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUe8um8Wbrb53tXrN3Zemw80B9/OkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3NjYyM2FkLTBiNWEtNGE1Zi1iNGEzLTYwNjgxZDJlYWM3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDwAwDQYJKoZIhvcNAQELBQADggEBAGQ2BMcmvJydfHP08rrNUau6 thB83ouUWAM0kiCKMMjT/ydf57PU9dwMU9zXVqG0gj1lZ0BrpnGtFf+D97IFzLDI Yrg0wxsAtKEvoFDtKthLZAWC1jnkaspWIk6mPDylPEK/YShOMukMbeHlGC8qwXj4 arwOrLtGysy60daPvs4F1GSC6ps+8L2EHIzLEbNq19ap/c6z1jrqRe90lX3B4xJP rqoeu7fEXsH5QuAJDA49XXgoVnrl+8XqsB1KHn9mIWfhBOarR/IuFeWLnAZBfN1C OIcEcsF0OnwmN9QqD0BO0gT6z7f8sz02NJBF7dBKr3igoLN52+E3VUEBOfpNiwU= -----END CERTIFICATE-----Generated at Mon Jun 2 16:54:51 2025 by rpki-client