$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa File: b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa (raw, json) Hash identifier: HTb/cBpTS761qF4evrYc81HPEtpJh7LqP1LHWgAlHqU= Subject key identifier: 7E:8F:56:14:6E:6A:64:82:48:E5:FE:75:16:AC:2E:CC:0A:F9:2C:CE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2AA7E0F9DF6CDC64B5DB984AA9AE37AD7A545D8F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa Signing time: Sat 24 May 2025 00:30:49 +0000 ROA not before: Sat 24 May 2025 00:30:49 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:e00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:a7:e0:f9:df:6c:dc:64:b5:db:98:4a:a9:ae:37:ad:7a:54:5d:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 24 00:30:49 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=bea3733b110c4680e7e26e2535027f59d050dab92a3c42c35ee4a38a68d7a1bc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bc:b3:79:14:e6:5a:39:3f:c1:d7:00:ab:d9: d7:3a:44:bb:52:69:7e:d5:e4:03:37:ab:4a:a9:35: 62:a2:3e:fd:fb:69:01:d1:33:ac:47:79:49:bd:66: a3:25:ee:0c:52:e0:af:82:5b:14:e2:cc:de:84:bb: 04:21:3d:ff:da:b8:11:b6:34:1c:d6:8b:fd:67:2a: f8:62:15:ed:5f:32:6e:9e:d2:c9:f6:9d:4b:a0:81: 80:54:dc:25:70:4d:66:35:f7:5e:f3:b3:ac:67:00: 25:95:9e:bf:02:68:1f:ec:89:14:a0:f5:40:a9:38: 63:b4:15:23:67:76:86:93:07:10:fb:be:c3:f7:16: b8:49:06:b2:e1:a1:f2:dd:32:d6:0b:bf:e1:19:0a: 0b:c4:53:3a:73:df:0c:c2:85:74:a6:2d:be:eb:1a: 98:24:b7:14:e0:d5:34:62:29:f9:9d:61:91:6a:7d: 52:6c:cc:29:1b:41:05:e4:81:6f:7d:42:ff:42:a6: e9:b6:3b:9c:e4:31:aa:37:2d:31:84:52:ca:5a:41: 6f:c3:98:89:ef:f0:29:5d:02:11:47:cc:19:10:55: d3:67:a6:1a:cf:c0:60:3f:b8:af:06:ce:23:79:ef: d8:d4:41:e0:64:32:4f:4b:cd:b0:9b:fa:73:1a:1e: a7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:8F:56:14:6E:6A:64:82:48:E5:FE:75:16:AC:2E:CC:0A:F9:2C:CE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:e00::/40 Signature Algorithm: sha256WithRSAEncryption 55:d2:d8:d1:bd:74:80:30:ad:a9:42:cb:d3:f7:27:86:ce:1c: ee:d3:cb:87:46:3f:1e:66:a0:aa:b8:76:95:5f:b8:ab:97:6a: 2f:16:d5:e3:63:67:bd:e1:56:d7:e2:fe:6c:76:6a:77:4b:36: 09:81:6b:fc:a9:67:ab:18:24:8e:11:bf:f9:1d:52:42:ab:93: 2d:56:a3:10:30:28:19:93:a8:81:0a:a6:61:5d:f2:e9:f7:cb: f9:7a:02:a8:00:72:60:85:2c:8f:12:df:61:11:95:1f:c6:74: 26:1d:ad:a5:49:e2:97:f5:85:a0:5e:6f:89:25:8f:c1:19:fd: 8e:1f:3d:a5:36:df:87:46:a5:da:4e:64:61:5a:cd:cf:f1:91: b7:64:12:4a:74:ed:ba:a3:44:a9:4c:88:d2:4d:b7:23:4b:43: 79:06:89:d7:41:ef:0d:2d:fa:c8:b9:5f:5a:8b:09:67:77:a5: 41:a0:4e:93:cb:80:96:3d:b3:2f:33:cc:d9:98:c0:fa:0b:a9: 7a:82:b6:86:79:05:9c:35:d1:0d:99:0a:c9:44:c5:75:9c:e2: b3:0d:50:68:1d:2d:1f:0b:6c:6c:b3:63:1b:57:ad:51:8e:36: 91:02:c0:02:2a:0f:d7:14:c9:b4:d8:26:bc:6d:b7:64:36:0d: ef:bc:0b:2c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKqfg+d9s3GS125hKqa43rXpUXY8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI0MDAzMDQ5WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWEzNzMzYjExMGM0NjgwZTdlMjZlMjUzNTAyN2Y1OWQw NTBkYWI5MmEzYzQyYzM1ZWU0YTM4YTY4ZDdhMWJjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfvLN5FOZaOT/B1wCr2dc6RLtSaX7V5AM3q0qpNWKiPv37 aQHRM6xHeUm9ZqMl7gxS4K+CWxTizN6EuwQhPf/auBG2NBzWi/1nKvhiFe1fMm6e 0sn2nUuggYBU3CVwTWY1917zs6xnACWVnr8CaB/siRSg9UCpOGO0FSNndoaTBxD7 vsP3FrhJBrLhofLdMtYLv+EZCgvEUzpz3wzChXSmLb7rGpgktxTg1TRiKfmdYZFq fVJszCkbQQXkgW99Qv9Cpum2O5zkMao3LTGEUspaQW/DmInv8CldAhFHzBkQVdNn phrPwGA/uK8GziN579jUQeBkMk9LzbCb+nMaHqe7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUfo9WFG5qZIJI5f51FqwuzAr5LM4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I2ZjhjNzQ1LTg4MDctNDJiZC05MjRlLThhZmM1ZjY3Y2IwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwDjANBgkqhkiG9w0BAQsFAAOCAQEAVdLY0b10gDCtqULL0/cnhs4c 7tPLh0Y/Hmagqrh2lV+4q5dqLxbV42NnveFW1+L+bHZqd0s2CYFr/KlnqxgkjhG/ +R1SQquTLVajEDAoGZOogQqmYV3y6ffL+XoCqAByYIUsjxLfYRGVH8Z0Jh2tpUni l/WFoF5viSWPwRn9jh89pTbfh0al2k5kYVrNz/GRt2QSSnTtuqNEqUyI0k23I0tD eQaJ10HvDS36yLlfWosJZ3elQaBOk8uAlj2zLzPM2ZjA+gupeoK2hnkFnDXRDZkK yUTFdZzisw1QaB0tHwtsbLNjG1etUY42kQLAAioP1xTJtNgmvG23ZDYN77wLLA== -----END CERTIFICATE-----Generated at Sat Jun 7 21:49:52 2025 by rpki-client