$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa File: bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa (raw, json) Hash identifier: 48if5Wefs+XFrDvqCJbUm8S3FTTFPAcK2mLPbOcwZnA= Subject key identifier: 2A:D8:6D:AB:6D:0C:97:B8:FE:26:D8:CA:2E:3E:5A:4C:92:8B:16:2A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 016583E39E85283AFE34257A0D3777205E26741A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa Signing time: Tue 20 May 2025 18:10:44 +0000 ROA not before: Tue 20 May 2025 18:10:44 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:65:83:e3:9e:85:28:3a:fe:34:25:7a:0d:37:77:20:5e:26:74:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:44 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=a12dbc1e072a359ab322ebc93a4ee0067083c274db9a9b5aba22b18fc1107989, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d4:5b:a3:a6:3e:70:fb:96:29:7a:8f:6a:5d: 69:0f:28:14:da:24:e5:ed:a3:73:de:12:d0:6b:fd: 4e:29:71:af:47:87:62:c5:2d:1c:58:e2:0c:06:c4: 41:35:70:f7:13:b4:bd:6a:08:3d:6c:cb:84:37:6e: f9:c8:e8:fa:9b:e8:63:2d:f8:48:8a:99:52:20:3d: 6a:94:67:f5:b4:cb:e1:d5:ac:20:0f:30:5e:0c:0d: e5:47:39:8d:08:ca:f3:1a:12:b5:01:31:e3:24:53: 5e:a2:5c:4f:2c:7d:9e:15:1d:e9:82:6f:d3:64:1c: db:da:7a:c6:0e:af:26:4e:4a:7f:ee:3b:23:e2:f7: 0e:8a:a7:e8:e9:ac:70:cb:47:89:6f:0c:8c:a4:52: da:68:ca:8a:10:a1:49:f8:a7:19:63:9e:c1:7c:20: 49:e9:42:56:ad:f2:ab:ac:37:ca:4a:fa:da:23:07: 2e:51:3c:dc:6e:6f:20:eb:44:78:01:3d:44:9f:6a: af:0b:ee:5c:0a:c6:f2:9c:f0:f4:2c:0b:ed:ab:47: 71:c9:14:c4:74:e1:29:ec:a3:cd:b8:8e:17:6e:0e: 2e:36:a4:37:e7:87:9f:d4:a7:f4:51:80:c9:0a:83: 66:4f:f1:21:a9:06:e1:d0:06:d7:b0:de:77:e9:ce: c1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D8:6D:AB:6D:0C:97:B8:FE:26:D8:CA:2E:3E:5A:4C:92:8B:16:2A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/42 Signature Algorithm: sha256WithRSAEncryption 6b:de:02:3e:7d:62:7b:99:92:fe:1c:20:cc:97:42:88:e3:2f: 50:17:43:6d:67:9f:67:35:d2:ee:ab:43:49:47:82:81:0b:52: 42:66:c7:24:f6:37:73:4a:f4:c3:11:2b:1e:9c:37:94:ef:77: c5:b3:39:a2:72:71:00:03:23:77:5a:07:49:26:13:8b:0a:97: 8a:95:d2:9a:b9:e8:73:db:09:14:18:e2:bc:62:9a:16:b6:06: 77:c9:0f:84:1c:cf:7a:2e:21:91:c3:58:76:1f:41:83:80:87: 7d:47:a2:77:32:09:86:ec:a8:a3:b4:d2:fd:6a:8d:29:32:a7: 69:53:22:9d:79:67:c9:2e:e0:e3:a4:7a:77:54:0a:c6:87:49: 3f:25:d3:7e:2d:f3:9b:40:ad:a4:49:b5:41:42:19:09:d2:e1: a8:0e:7a:1c:b7:cc:6e:7f:11:3d:7f:6b:69:44:f8:ce:fb:cf: 94:f3:7c:b9:db:87:e7:47:e2:9f:c7:df:59:e0:60:4d:df:da: 38:76:b5:f5:fd:47:7d:2f:37:84:a2:a0:4c:c0:c6:b2:89:92: 38:1e:e0:59:f6:50:f3:c9:99:c2:29:7b:7e:a8:3d:b8:09:57: cb:81:e9:29:45:7f:8f:35:c9:0e:ff:e6:4d:5f:6e:5c:e4:94: 66:e2:4c:37 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAWWD456FKDr+NCV6DTd3IF4mdBowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDQ0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTJkYmMxZTA3MmEzNTlhYjMyMmViYzkzYTRlZTAwNjcw ODNjMjc0ZGI5YTliNWFiYTIyYjE4ZmMxMTA3OTg5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm1Fujpj5w+5Ypeo9qXWkPKBTaJOXto3PeEtBr/U4pca9H h2LFLRxY4gwGxEE1cPcTtL1qCD1sy4Q3bvnI6Pqb6GMt+EiKmVIgPWqUZ/W0y+HV rCAPMF4MDeVHOY0IyvMaErUBMeMkU16iXE8sfZ4VHemCb9NkHNvaesYOryZOSn/u OyPi9w6Kp+jprHDLR4lvDIykUtpoyooQoUn4pxljnsF8IEnpQlat8qusN8pK+toj By5RPNxubyDrRHgBPUSfaq8L7lwKxvKc8PQsC+2rR3HJFMR04Snso824jhduDi42 pDfnh5/Up/RRgMkKg2ZP8SGpBuHQBtew3nfpzsGtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKthtq20Ml7j+JtjKLj5aTJKLFiowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JmMjdmZGI3LTg0YmYtNDBkMi05MDZhLTdiNGMxZmY0MDViMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75AAwDQYJKoZIhvcNAQELBQADggEBAGveAj59YnuZkv4cIMyXQojj L1AXQ21nn2c10u6rQ0lHgoELUkJmxyT2N3NK9MMRKx6cN5Tvd8WzOaJycQADI3da B0kmE4sKl4qV0pq56HPbCRQY4rximha2BnfJD4Qcz3ouIZHDWHYfQYOAh31Honcy CYbsqKO00v1qjSkyp2lTIp15Z8ku4OOkendUCsaHST8l034t85tAraRJtUFCGQnS 4agOehy3zG5/ET1/a2lE+M77z5TzfLnbh+dH4p/H31ngYE3f2jh2tfX9R30vN4Si oEzAxrKJkjge4Fn2UPPJmcIpe36oPbgJV8uB6SlFf481yQ7/5k1fblzklGbiTDc= -----END CERTIFICATE-----Generated at Sat Jun 7 12:33:39 2025 by rpki-client