$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa File: a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa (raw, json) Hash identifier: kYVhvvkrpGvi37XrAjad/JzKsujkTdF+rZNpz172NV4= Subject key identifier: 75:BC:DA:8D:1F:A5:32:77:55:C4:B1:CC:8A:3F:43:40:55:A9:AE:5D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 187D217AE43050B9970C1B00486BF38E2007E279 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa Signing time: Tue 20 May 2025 18:11:15 +0000 ROA not before: Tue 20 May 2025 18:11:15 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:eb00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:7d:21:7a:e4:30:50:b9:97:0c:1b:00:48:6b:f3:8e:20:07:e2:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:15 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=32e02b9c09a194f345017f547b9e1f922c01134fd20230fa552fdcac36e00a70, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:89:bd:ec:61:cd:a7:61:57:28:71:6c:a9:d4: 8d:37:ff:f0:9d:1d:aa:05:be:0e:d2:47:4a:71:3f: 7c:ba:2b:37:89:5d:70:ea:70:43:96:db:11:a4:34: c2:05:0f:be:8b:b4:d0:ff:9f:88:b3:0e:07:37:59: 79:c2:40:ed:2f:d2:9f:db:8e:66:31:6d:31:b0:a2: b6:a3:1f:e4:35:2b:3c:f7:ec:61:57:b0:52:ca:01: c4:35:6e:20:1b:62:fb:29:8b:f0:b7:9b:b3:92:dd: 0d:c4:14:80:84:79:10:b4:46:b4:3c:29:48:b3:0e: 3b:c8:b0:f7:e3:ad:16:c1:61:e7:ac:f7:93:25:ce: f9:42:6c:31:d5:5b:f5:d7:6a:9c:57:87:72:36:62: 35:52:57:c9:29:32:04:d2:18:ee:b0:da:88:74:3d: 7a:33:32:a2:1d:25:b6:98:cf:90:18:a4:ec:26:4d: 6e:7f:19:2e:6e:25:dd:60:06:45:1b:aa:6e:7c:06: 48:ca:09:45:6c:b4:03:2e:a2:74:21:5c:3c:7b:a1: 9f:74:b0:94:18:49:d4:89:0e:44:c5:3c:60:16:87: bf:bd:77:6a:5d:37:bf:9f:c8:02:c8:0b:c3:11:ff: cf:30:ec:c3:89:83:9a:62:bb:ea:79:06:b6:1f:04: f2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BC:DA:8D:1F:A5:32:77:55:C4:B1:CC:8A:3F:43:40:55:A9:AE:5D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/42 Signature Algorithm: sha256WithRSAEncryption 4d:73:69:04:2b:8c:fa:81:94:65:2d:d3:55:84:19:ac:e6:60: c5:5c:81:a6:aa:7a:29:a6:61:f2:92:12:39:b4:3b:2a:c8:43: cd:48:57:f1:73:f8:c2:42:e1:c4:84:ab:12:86:95:81:3e:7a: fd:03:92:59:0d:4c:e4:3e:68:63:4d:4b:91:14:0a:c7:3b:2c: 9c:ff:56:1d:d1:9f:65:3a:18:c4:58:f7:40:23:bb:50:df:b4: 8b:36:2d:3b:38:92:d3:20:7b:f0:93:45:e6:f6:8e:9d:71:c2: 0f:52:2b:c0:79:a1:90:59:88:4e:38:23:dc:03:3f:e2:ef:0f: 33:88:d0:f6:fc:93:ee:b5:7c:f7:7a:06:a8:14:b0:b9:d0:60: be:1d:31:10:97:1e:fd:44:1e:8b:4d:c7:82:80:00:b5:fb:c2: 97:07:61:70:eb:14:86:03:e2:be:a7:c3:57:da:e1:12:11:99: 8d:81:ec:e3:ab:b8:04:32:06:59:a2:59:a9:18:f9:e0:95:e8: bc:b3:9f:cf:27:9f:20:f1:57:1e:a2:9a:0f:72:8b:1e:0a:95: a7:58:09:dc:8f:61:56:3a:c0:2c:6e:c4:9d:af:f3:f9:af:84: 25:d1:97:cd:62:08:56:2b:9e:2e:2b:ee:17:50:47:38:5b:0c: 69:89:1e:c6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGH0heuQwULmXDBsASGvzjiAH4nkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTE1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmUwMmI5YzA5YTE5NGYzNDUwMTdmNTQ3YjllMWY5MjJj MDExMzRmZDIwMjMwZmE1NTJmZGNhYzM2ZTAwYTcwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoib3sYc2nYVcocWyp1I03//CdHaoFvg7SR0pxP3y6KzeJ XXDqcEOW2xGkNMIFD76LtND/n4izDgc3WXnCQO0v0p/bjmYxbTGworajH+Q1Kzz3 7GFXsFLKAcQ1biAbYvspi/C3m7OS3Q3EFICEeRC0RrQ8KUizDjvIsPfjrRbBYees 95MlzvlCbDHVW/XXapxXh3I2YjVSV8kpMgTSGO6w2oh0PXozMqIdJbaYz5AYpOwm TW5/GS5uJd1gBkUbqm58BkjKCUVstAMuonQhXDx7oZ90sJQYSdSJDkTFPGAWh7+9 d2pdN7+fyALIC8MR/88w7MOJg5piu+p5BrYfBPJ7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdbzajR+lMndVxLHMij9DQFWprl0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2Yzk2YzQyLTQzNDQtNDRjOC1hMTk0LTRjODdmMGFkZTNjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76wAwDQYJKoZIhvcNAQELBQADggEBAE1zaQQrjPqBlGUt01WEGazm YMVcgaaqeimmYfKSEjm0OyrIQ81IV/Fz+MJC4cSEqxKGlYE+ev0DklkNTOQ+aGNN S5EUCsc7LJz/Vh3Rn2U6GMRY90Aju1DftIs2LTs4ktMge/CTReb2jp1xwg9SK8B5 oZBZiE44I9wDP+LvDzOI0Pb8k+61fPd6BqgUsLnQYL4dMRCXHv1EHotNx4KAALX7 wpcHYXDrFIYD4r6nw1fa4RIRmY2B7OOruAQyBlmiWakY+eCV6Lyzn88nnyDxVx6i mg9yix4KladYCdyPYVY6wCxuxJ2v8/mvhCXRl81iCFYrni4r7hdQRzhbDGmJHsY= -----END CERTIFICATE-----Generated at Sat Jun 7 04:55:43 2025 by rpki-client