$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/adb258f2-061e-4e94-b6ee-d4de9405ec61.roa File: adb258f2-061e-4e94-b6ee-d4de9405ec61.roa (raw, json) Hash identifier: +OoevSMDUKwc6/oU5g2mxcsWB2YC2F/QAnvsY+LZonQ= Subject key identifier: ED:4D:42:E5:B1:98:4C:46:3C:53:1D:30:07:0D:7C:8C:5C:22:00:23 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6EF5C809EA73ABBE054F39F43DB8A8B9B1177C93 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/adb258f2-061e-4e94-b6ee-d4de9405ec61.roa Signing time: Tue 20 May 2025 18:20:09 +0000 ROA not before: Tue 20 May 2025 18:20:09 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:f5:c8:09:ea:73:ab:be:05:4f:39:f4:3d:b8:a8:b9:b1:17:7c:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:20:09 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=dd428bd92703e88705b3f07502b681a4d899b5e7e479904a9b3bfb95bd8a169b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4c:20:5e:e8:db:0a:48:b0:b1:f1:39:d7:04: 53:c6:f8:0b:ef:99:05:69:ac:cb:f9:6f:b7:12:83: 86:1b:61:75:b9:ee:ef:e7:9b:06:82:a1:38:19:54: fd:db:28:a0:ab:b2:e4:c2:53:76:3c:6e:d3:bf:5a: 3b:bf:5d:f7:d2:81:26:9f:e1:55:40:47:02:a9:ac: 2a:f3:e9:3b:86:61:33:59:d4:40:0a:23:73:64:3a: b2:0d:62:4a:d9:15:cd:ac:a9:9d:61:af:0b:b2:a1: 39:ea:ce:90:38:03:73:10:d9:25:a6:a2:e2:29:6b: 06:a1:ff:bd:68:1c:84:fd:ef:1e:2c:6e:34:f3:6d: 39:b8:6f:14:c2:f1:f6:f7:cb:f7:31:22:89:83:4e: b8:93:a0:29:1b:1b:a4:3a:5a:1e:e2:cb:8f:ed:fb: 6a:45:15:ed:af:f7:29:6c:24:da:91:2b:24:a3:3d: 51:70:60:70:8e:e4:93:60:e1:7a:ab:72:96:9a:5f: d8:31:c8:8b:ce:5a:0e:61:32:85:42:24:a0:00:48: 5d:d4:cf:66:24:57:55:66:ca:47:93:46:e4:ee:c6: 37:bd:ef:b7:d8:6a:0c:b2:28:ca:da:50:db:b3:81: bd:4b:14:ff:57:c3:5a:fa:92:70:44:58:92:1c:e8: 13:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:4D:42:E5:B1:98:4C:46:3C:53:1D:30:07:0D:7C:8C:5C:22:00:23 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/adb258f2-061e-4e94-b6ee-d4de9405ec61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:8000::/40 Signature Algorithm: sha256WithRSAEncryption 91:bf:ab:7a:9b:ab:15:e3:79:cf:3d:23:9c:c2:71:94:cc:ae: 68:64:45:79:be:26:57:27:09:09:b6:f7:0d:5c:da:08:68:dc: 9e:a1:c6:49:63:58:6e:6d:c8:24:f2:ab:c7:a3:ee:89:1f:73: f3:71:c7:e8:eb:ec:7a:e6:50:20:b9:24:67:b5:3a:6d:84:f1: b2:ec:ca:5b:5f:01:d6:22:52:7f:d1:ac:5b:4d:3d:1c:a6:17: de:b4:4b:52:da:a4:71:58:91:6e:a1:d4:82:96:f4:49:be:63: 27:6f:93:00:55:c1:77:65:05:0c:42:45:b5:e0:42:9b:87:5e: 63:22:0b:d7:4a:1f:6d:e0:66:71:20:dd:d6:b1:5a:f7:62:54: 5c:1e:18:27:29:06:96:f9:22:cc:a4:76:e6:32:03:51:93:35: ec:09:51:9b:8b:4b:46:78:1e:8e:f7:9c:bb:df:de:9f:d3:57: 69:4f:9e:06:f7:36:28:3e:eb:65:12:35:27:e1:1a:cd:ea:96: 6a:20:86:d5:9e:31:82:c1:3d:53:61:71:7b:6e:0e:01:42:a4: 1e:58:88:a3:7b:94:5e:99:03:80:8a:32:48:c2:72:a1:6e:0c: 2c:23:c9:f6:2a:fe:8b:29:35:a5:db:c1:74:f5:b0:1a:5c:fd: 10:6b:8a:2f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbvXICepzq74FTzn0PbioubEXfJMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgyMDA5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDQyOGJkOTI3MDNlODg3MDViM2YwNzUwMmI2ODFhNGQ4 OTliNWU3ZTQ3OTkwNGE5YjNiZmI5NWJkOGExNjliMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoTCBe6NsKSLCx8TnXBFPG+AvvmQVprMv5b7cSg4YbYXW5 7u/nmwaCoTgZVP3bKKCrsuTCU3Y8btO/Wju/XffSgSaf4VVARwKprCrz6TuGYTNZ 1EAKI3NkOrINYkrZFc2sqZ1hrwuyoTnqzpA4A3MQ2SWmouIpawah/71oHIT97x4s bjTzbTm4bxTC8fb3y/cxIomDTriToCkbG6Q6Wh7iy4/t+2pFFe2v9ylsJNqRKySj PVFwYHCO5JNg4XqrcpaaX9gxyIvOWg5hMoVCJKAASF3Uz2YkV1VmykeTRuTuxje9 77fYagyyKMraUNuzgb1LFP9Xw1r6knBEWJIc6BN9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU7U1C5bGYTEY8Ux0wBw18jFwiACMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FkYjI1OGYyLTA2MWUtNGU5NC1iNmVlLWQ0ZGU5NDA1ZWM2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwgDANBgkqhkiG9w0BAQsFAAOCAQEAkb+repurFeN5zz0jnMJxlMyu aGRFeb4mVycJCbb3DVzaCGjcnqHGSWNYbm3IJPKrx6PuiR9z83HH6OvseuZQILkk Z7U6bYTxsuzKW18B1iJSf9GsW009HKYX3rRLUtqkcViRbqHUgpb0Sb5jJ2+TAFXB d2UFDEJFteBCm4deYyIL10ofbeBmcSDd1rFa92JUXB4YJykGlvkizKR25jIDUZM1 7AlRm4tLRngejvecu9/en9NXaU+eBvc2KD7rZRI1J+EazeqWaiCG1Z4xgsE9U2Fx e24OAUKkHliIo3uUXpkDgIoySMJyoW4MLCPJ9ir+iyk1pdvBdPWwGlz9EGuKLw== -----END CERTIFICATE-----Generated at Sat Jun 7 04:16:58 2025 by rpki-client