$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa File: b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa (raw, json) Hash identifier: pH6FlEWCRjHF26WJVPF/+TvX8Pc1a5n47w/ZkPPYcME= Subject key identifier: 39:88:97:12:3E:58:93:69:77:62:73:8E:0F:A4:0A:0A:B2:AC:AC:DD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 58E1027EE7C15F739FE486A39E24CD50B9670442 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa Signing time: Wed 04 Jun 2025 00:50:09 +0000 ROA not before: Wed 04 Jun 2025 00:50:09 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e1:02:7e:e7:c1:5f:73:9f:e4:86:a3:9e:24:cd:50:b9:67:04:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 4 00:50:09 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=9259e9e2a24140a5f076b6fe8c3d4a19ce97167d1aa6d334324438fd96027aee, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:21:a2:c9:c7:2d:b5:a8:09:52:e8:02:d5:4b: 87:05:1c:eb:85:88:ba:9c:9c:ce:46:2c:8d:de:f6: 33:3f:96:74:f3:4c:d5:de:a2:3e:fb:68:c2:3e:7d: 76:3d:6d:35:80:f8:9e:a2:08:f1:d1:12:f4:e0:0b: 42:ad:9c:34:9d:48:82:a9:21:3c:44:bf:bc:3e:d5: 01:73:98:3c:e2:b0:34:8b:88:a2:c8:89:ff:56:a1: 51:82:fe:17:32:f1:73:09:38:29:0c:94:8b:66:e7: af:3e:79:fe:df:6f:87:6f:5c:03:a8:b0:8f:9d:3b: e1:59:4d:78:9b:a1:d1:8e:be:52:4f:65:d3:31:8f: 08:07:f7:69:c2:16:86:4d:3f:ef:4d:dc:cf:2e:d8: 55:d3:f0:b5:a3:00:e7:d6:ec:97:d8:c2:2e:58:a4: fa:ef:f5:fc:0d:4c:69:b9:89:d7:d7:6f:14:1f:58: 0c:08:18:71:44:bb:3a:dd:85:a0:0f:7f:9e:73:35: 01:72:57:59:67:36:eb:fc:02:8f:51:8b:66:84:41: 83:18:54:fc:3f:49:e5:90:13:21:11:60:9f:3d:fb: ef:75:34:73:ef:9d:51:e6:18:20:3d:d7:53:d9:71: c4:3a:af:16:d6:fa:25:90:4c:de:cb:35:42:1c:c6: 8e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:88:97:12:3E:58:93:69:77:62:73:8E:0F:A4:0A:0A:B2:AC:AC:DD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0::/28 Signature Algorithm: sha256WithRSAEncryption 3e:16:4d:4e:52:b7:15:0d:e3:26:73:60:6c:bb:4e:34:b3:f1: f6:dd:f4:d0:d9:28:b0:bc:02:47:d8:8d:da:d8:39:fa:f9:2c: 62:8e:81:40:12:cc:17:ac:67:ca:5e:99:15:ce:75:18:a9:93: aa:84:3f:70:65:d3:7a:f0:eb:5a:90:8c:f0:02:25:c6:08:13: 28:fb:47:c6:21:64:06:78:3c:21:c5:45:61:cd:3e:57:9c:5d: 3e:31:15:d4:49:9c:7e:08:80:d6:97:3e:11:eb:7b:34:6d:90: b3:68:0a:80:63:8b:06:dc:cc:ac:60:e3:4d:d8:aa:5b:96:46: 7a:13:d8:fc:41:9f:af:d0:96:a8:4b:e3:f1:f9:c9:7e:76:66: 16:d3:c2:6f:84:98:52:44:27:a1:8c:ed:86:85:02:95:81:08: 5c:96:7e:5d:30:56:2d:a5:e4:d1:a4:e8:c3:28:44:d4:06:54: ce:d5:42:d2:e9:86:4b:22:bc:fc:60:7e:b1:fb:a9:86:03:a4: bc:f3:5c:3c:63:2e:87:c8:0f:73:57:7b:90:d2:bc:43:66:ec: 12:47:55:b7:7c:46:e5:a0:3b:bb:9b:38:6a:ce:ec:e3:ca:82: 04:91:ff:e8:c9:01:fd:d1:5c:72:80:40:a9:bf:39:8d:4c:db: cb:03:09:00 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUWOECfufBX3Of5IajniTNULlnBEIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjA0MDA1MDA5WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjU5ZTllMmEyNDE0MGE1ZjA3NmI2ZmU4YzNkNGExOWNl OTcxNjdkMWFhNmQzMzQzMjQ0MzhmZDk2MDI3YWVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzIaLJxy21qAlS6ALVS4cFHOuFiLqcnM5GLI3e9jM/lnTz TNXeoj77aMI+fXY9bTWA+J6iCPHREvTgC0KtnDSdSIKpITxEv7w+1QFzmDzisDSL iKLIif9WoVGC/hcy8XMJOCkMlItm568+ef7fb4dvXAOosI+dO+FZTXibodGOvlJP ZdMxjwgH92nCFoZNP+9N3M8u2FXT8LWjAOfW7JfYwi5YpPrv9fwNTGm5idfXbxQf WAwIGHFEuzrdhaAPf55zNQFyV1lnNuv8Ao9Ri2aEQYMYVPw/SeWQEyERYJ89++91 NHPvnVHmGCA911PZccQ6rxbW+iWQTN7LNUIcxo4XAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUOYiXEj5Yk2l3YnOOD6QKCrKsrN0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3YmJhZmJmLWU2ZDQtNDQ4Ny05ZWJiLWNiZDcyYjNkNmM3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPDwMA0GCSqGSIb3DQEBCwUAA4IBAQA+Fk1OUrcVDeMmc2Bsu040s/H2 3fTQ2SiwvAJH2I3a2Dn6+SxijoFAEswXrGfKXpkVznUYqZOqhD9wZdN68OtakIzw AiXGCBMo+0fGIWQGeDwhxUVhzT5XnF0+MRXUSZx+CIDWlz4R63s0bZCzaAqAY4sG 3MysYONN2KpblkZ6E9j8QZ+v0JaoS+Px+cl+dmYW08JvhJhSRCehjO2GhQKVgQhc ln5dMFYtpeTRpOjDKETUBlTO1ULS6YZLIrz8YH6x+6mGA6S881w8Yy6HyA9zV3uQ 0rxDZuwSR1W3fEbloDu7mzhqzuzjyoIEkf/oyQH90VxygECpvzmNTNvLAwkA -----END CERTIFICATE-----Generated at Sat Jun 7 05:00:04 2025 by rpki-client