$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa File: b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa (raw, json) Hash identifier: 1W0892WEoE33F0TJtiBgQOORzUIP8bzs5OOqIWOo/GY= Subject key identifier: 8F:4C:1B:86:A4:C2:D8:21:37:56:B0:5A:8B:C4:B0:0F:B1:E7:90:E6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 27C7C8081928BC0E315DC505081F9EE7BC78D3B5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa Signing time: Sat 24 May 2025 00:30:33 +0000 ROA not before: Sat 24 May 2025 00:30:33 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1:8801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c7:c8:08:19:28:bc:0e:31:5d:c5:05:08:1f:9e:e7:bc:78:d3:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 24 00:30:33 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=cf721d919ba1e678c5d26ceb7984b6e0801643aeb00bf13d94f2b6543f0c27d7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:37:61:4c:4f:7b:8e:e0:41:ba:7a:69:a2:c5: 78:25:fc:63:fb:cb:e5:c1:2e:25:45:f1:17:e2:75: ef:4e:49:0d:6f:78:68:a1:95:83:e2:4c:ef:3d:95: 2d:58:ee:fb:61:76:f1:a9:d5:72:eb:2e:92:20:08: b6:e9:3d:52:e6:56:14:9e:f6:44:e9:45:96:17:3e: 29:fb:9c:df:96:e7:8b:ee:8e:08:d3:05:ec:ba:0f: fa:13:14:5b:5e:c8:f9:8b:09:6d:67:81:b9:3b:2e: 1f:55:84:4d:64:e2:15:56:27:89:45:12:ca:92:aa: ba:0c:c0:81:4b:2e:df:9b:b7:95:cd:f3:a4:98:39: 8b:79:93:dc:d3:78:22:1b:47:c7:82:e9:f9:0c:96: 78:90:6b:c3:5b:70:ae:ba:1c:6e:7f:61:76:57:03: e7:8f:6c:8c:85:75:6f:99:62:bf:69:17:85:88:52: 9e:ed:1d:67:a2:23:ea:c2:8c:21:b8:bf:f8:06:4f: 1b:e3:c4:e4:08:62:83:0b:ac:ed:f7:45:ca:94:96: 89:6a:8d:e9:b7:6f:01:54:ac:b7:bb:be:06:2c:ad: 63:c7:b5:a9:b2:59:98:2c:00:65:72:26:49:ca:47: 56:02:f8:74:74:51:70:67:92:45:29:0d:2c:39:23: 36:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4C:1B:86:A4:C2:D8:21:37:56:B0:5A:8B:C4:B0:0F:B1:E7:90:E6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8801::/48 Signature Algorithm: sha256WithRSAEncryption 5b:bb:4d:fd:2b:cc:40:b4:36:a7:d3:04:2c:f6:5c:37:5e:e6: f6:15:5f:99:98:32:81:3c:5f:1b:2c:6d:eb:32:28:fa:9b:45: 13:b3:bf:bb:20:d7:70:2d:12:8f:1d:e5:1b:05:52:be:2a:0d: dd:82:8d:1c:5b:07:e4:65:3b:3e:a2:fa:01:e1:f0:d9:a6:80: fc:77:b1:68:9b:4b:19:a6:7b:9e:02:36:8f:82:4e:b1:e5:6a: 76:1b:a6:ef:1d:61:68:32:32:f0:aa:e2:d6:29:31:60:59:b2: 18:4f:dc:91:e1:78:f3:e5:31:14:ac:ce:60:33:c8:2a:0a:bd: f6:62:34:06:ea:54:54:db:66:a3:c7:03:78:40:5a:45:e6:00: 3b:15:9c:d0:9f:02:f3:84:ec:46:6e:75:7b:cb:a5:c5:67:69: 6c:07:55:62:7d:7f:07:b5:5a:a2:a1:98:cb:7f:fc:9f:b5:9a: 23:d5:11:7c:19:83:41:34:2d:5b:ef:21:72:c7:c0:d5:26:af: 12:9f:24:a5:72:0b:1c:d1:5f:5c:da:55:8b:42:26:85:5f:66: 28:60:5a:c1:52:fc:00:91:53:8f:24:6f:be:4f:6e:f6:c4:6a: ed:b1:31:01:2e:7b:9f:cb:a0:8b:93:67:66:95:09:5c:00:9a: f6:75:24:45 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ8fICBkovA4xXcUFCB+e57x407UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI0MDAzMDMzWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjcyMWQ5MTliYTFlNjc4YzVkMjZjZWI3OTg0YjZlMDgw MTY0M2FlYjAwYmYxM2Q5NGYyYjY1NDNmMGMyN2Q3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXN2FMT3uO4EG6emmixXgl/GP7y+XBLiVF8Rfide9OSQ1v eGihlYPiTO89lS1Y7vthdvGp1XLrLpIgCLbpPVLmVhSe9kTpRZYXPin7nN+W54vu jgjTBey6D/oTFFteyPmLCW1ngbk7Lh9VhE1k4hVWJ4lFEsqSqroMwIFLLt+bt5XN 86SYOYt5k9zTeCIbR8eC6fkMlniQa8NbcK66HG5/YXZXA+ePbIyFdW+ZYr9pF4WI Up7tHWeiI+rCjCG4v/gGTxvjxOQIYoMLrO33RcqUlolqjem3bwFUrLe7vgYsrWPH tamyWZgsAGVyJknKR1YC+HR0UXBnkkUpDSw5IzbdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUj0wbhqTC2CE3VrBai8SwD7HnkOYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I0MTYzYTM4LWE4ZTItNDhkOS04NTVmLWRkNTNhZTdmNmRjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAEwDQYJKoZIhvcNAQELBQADggEBAFu7Tf0rzEC0NqfTBCz2XDde 5vYVX5mYMoE8XxssbesyKPqbRROzv7sg13AtEo8d5RsFUr4qDd2CjRxbB+RlOz6i +gHh8NmmgPx3sWibSxmme54CNo+CTrHlanYbpu8dYWgyMvCq4tYpMWBZshhP3JHh ePPlMRSszmAzyCoKvfZiNAbqVFTbZqPHA3hAWkXmADsVnNCfAvOE7EZudXvLpcVn aWwHVWJ9fwe1WqKhmMt//J+1miPVEXwZg0E0LVvvIXLHwNUmrxKfJKVyCxzRX1za VYtCJoVfZihgWsFS/ACRU48kb75PbvbEau2xMQEue5/LoIuTZ2aVCVwAmvZ1JEU= -----END CERTIFICATE-----Generated at Fri Jun 6 18:33:48 2025 by rpki-client