$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa File: aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa (raw, json) Hash identifier: slQZtam4QdohtNOZmN8BLjaaHUdQk1FhpF+83xL9row= Subject key identifier: 9E:24:66:1D:DF:2B:FA:37:02:B3:AE:2E:B6:97:3D:3D:77:AC:50:DC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5FE7C9293732899D4F9ECFA547ED8ADDE827A901 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa Signing time: Tue 20 May 2025 18:10:40 +0000 ROA not before: Tue 20 May 2025 18:10:40 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:e7:c9:29:37:32:89:9d:4f:9e:cf:a5:47:ed:8a:dd:e8:27:a9:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:40 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=46f801f041cc82b67277032d1b49a48997f36dc2fde3b39acd04f486464a2aa0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d4:43:05:21:9d:e2:9f:7f:37:a9:1b:13:77: 9f:0f:6c:88:1e:80:91:7c:ce:e5:2b:44:bf:06:f1: fb:28:c7:31:33:26:44:2d:95:6f:5b:48:4c:d4:18: b1:97:94:27:23:50:70:fb:19:96:f2:82:75:85:71: 93:a0:ab:54:f7:d6:0d:6a:d4:4a:32:82:67:f6:aa: be:80:9d:8c:2a:0a:41:97:87:5e:c7:6f:7e:fb:ce: e9:75:db:28:be:df:6c:c2:b8:43:46:80:a8:49:c0: 83:9d:b1:6e:e6:ee:96:25:2c:b0:75:59:8a:94:ed: fd:49:59:99:07:82:b2:94:5e:49:ec:00:11:36:02: 28:b1:4f:a6:a3:49:a3:9f:d8:95:ca:d7:ec:5b:dc: 67:70:18:bf:8d:ff:96:8d:7a:11:bb:bb:2a:a4:5e: 83:3b:1f:a9:5f:39:71:95:b1:dc:30:28:43:4d:ec: 7e:44:06:b4:2f:9b:c5:a7:d8:c5:82:e9:ba:0f:c1: 7d:9d:2b:97:a8:aa:39:c1:3c:e1:eb:26:db:f7:50: 95:35:b1:a3:d4:f7:53:55:0c:7b:40:b8:0e:dd:42: fa:68:18:d4:9c:5f:cc:d3:5e:d2:e4:64:a2:ff:5f: 48:99:d0:02:88:4b:4e:c5:a6:43:19:29:e5:56:44: 0a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:24:66:1D:DF:2B:FA:37:02:B3:AE:2E:B6:97:3D:3D:77:AC:50:DC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/42 Signature Algorithm: sha256WithRSAEncryption 22:1c:63:d3:67:9b:89:83:f1:61:3f:fa:0e:14:01:00:58:25: 2e:42:23:cf:f5:b8:44:9f:20:9a:49:0b:28:b5:01:32:a6:28: 96:9e:50:d8:36:76:c6:8a:f4:ee:63:32:ee:53:83:39:a2:6f: 17:4f:92:9a:75:81:38:10:68:b0:6a:03:d1:6e:db:97:96:db: bc:70:5e:23:e6:45:32:34:f8:05:09:42:9e:8f:c7:b3:b2:06: 3c:5f:1a:8b:41:c0:8e:5c:54:63:b1:0d:3f:be:51:1f:70:a2: 27:72:85:81:da:b5:22:e9:8f:f8:a3:27:dd:e2:81:b5:ff:5e: 08:19:40:b6:d8:a5:63:1b:8a:56:8e:1f:2c:ed:f9:60:b6:39: 3a:aa:58:c1:59:09:33:8c:ce:da:90:d3:5e:ab:7b:7e:c5:b7: fa:15:82:58:e4:24:ae:93:d1:7f:a2:f0:36:49:a6:f2:0f:c8: 29:20:1f:7e:be:5a:4b:25:fc:14:8e:ef:91:c2:0c:4f:55:13: 5b:9d:df:fc:9b:b5:fd:e9:61:15:0c:36:92:e5:23:26:b4:28: 5c:7c:40:ab:c4:62:98:95:44:2d:14:51:91:7f:e1:8f:08:c6: 67:7b:75:fb:67:d7:33:81:67:15:06:43:8d:91:b3:08:d1:74: f2:87:8e:d9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUX+fJKTcyiZ1Pns+lR+2K3egnqQEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDQwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NmY4MDFmMDQxY2M4MmI2NzI3NzAzMmQxYjQ5YTQ4OTk3 ZjM2ZGMyZmRlM2IzOWFjZDA0ZjQ4NjQ2NGEyYWEwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm1EMFIZ3in383qRsTd58PbIgegJF8zuUrRL8G8fsoxzEz JkQtlW9bSEzUGLGXlCcjUHD7GZbygnWFcZOgq1T31g1q1Eoygmf2qr6AnYwqCkGX h17Hb377zul12yi+32zCuENGgKhJwIOdsW7m7pYlLLB1WYqU7f1JWZkHgrKUXkns ABE2AiixT6ajSaOf2JXK1+xb3GdwGL+N/5aNehG7uyqkXoM7H6lfOXGVsdwwKENN 7H5EBrQvm8Wn2MWC6boPwX2dK5eoqjnBPOHrJtv3UJU1saPU91NVDHtAuA7dQvpo GNScX8zTXtLkZKL/X0iZ0AKIS07FpkMZKeVWRAr9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUniRmHd8r+jcCs64utpc9PXesUNwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZjUxNDAyLWYxYmYtNGU3Yi1iN2MzLTY1ZDkzZGVmNmJkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74gAwDQYJKoZIhvcNAQELBQADggEBACIcY9Nnm4mD8WE/+g4UAQBY JS5CI8/1uESfIJpJCyi1ATKmKJaeUNg2dsaK9O5jMu5TgzmibxdPkpp1gTgQaLBq A9Fu25eW27xwXiPmRTI0+AUJQp6Px7OyBjxfGotBwI5cVGOxDT++UR9woidyhYHa tSLpj/ijJ93igbX/XggZQLbYpWMbilaOHyzt+WC2OTqqWMFZCTOMztqQ016re37F t/oVgljkJK6T0X+i8DZJpvIPyCkgH36+Wksl/BSO75HCDE9VE1ud3/ybtf3pYRUM NpLlIya0KFx8QKvEYpiVRC0UUZF/4Y8Ixmd7dftn1zOBZxUGQ42RswjRdPKHjtk= -----END CERTIFICATE-----Generated at Sat Jun 7 04:59:51 2025 by rpki-client