$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: KdhBaPa7ENCQMFumk1QWLiHg8jjNG8D0ORBRFKdhxtA= Subject key identifier: 94:7F:45:57:07:93:78:94:22:EC:12:85:61:E9:B4:D0:4C:D1:93:06 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 44199B719D4E6CCC34875C27CD7B7700B3418FD8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Wed 04 Jun 2025 00:50:06 +0000 ROA not before: Wed 04 Jun 2025 00:50:06 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:19:9b:71:9d:4e:6c:cc:34:87:5c:27:cd:7b:77:00:b3:41:8f:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 4 00:50:06 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=c9b42e88e9d58080c1e5b18a0153cf8c59b15efe8a38a16337b3626dd2694e5b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5d:0f:6b:b9:ed:d0:09:55:13:7c:29:3f:94: 35:db:5a:97:ec:f8:0e:63:a4:c7:cb:1b:90:6f:0c: 21:ba:91:f5:12:21:77:73:bc:bd:9d:9f:30:8e:f0: c7:d4:fb:a8:7f:44:12:db:5d:12:e1:6b:22:e6:61: 0f:fc:20:3d:79:01:e1:61:69:6c:cb:a6:40:25:01: af:71:c6:f5:82:ba:cc:79:a8:17:12:a9:29:9c:08: 3c:1b:35:6a:4f:fc:9a:7a:31:58:87:c4:a8:9c:63: 19:c4:31:b0:2d:b9:36:3b:83:bb:51:2d:5c:05:b0: 7f:fd:2d:79:79:21:d5:8a:0a:ee:95:d8:0b:d0:ba: f5:c6:e1:b8:bf:14:8a:6a:2f:9f:ff:d5:7d:46:72: 0a:61:66:89:06:6b:47:d3:11:47:84:59:95:61:7e: eb:0c:60:f4:2d:0c:7a:51:71:eb:b4:e0:5c:de:9e: 07:8f:7b:d0:15:a0:de:bc:6c:4d:dd:60:3e:72:aa: 44:c4:e8:92:33:b7:3b:9b:0c:19:1b:a0:ed:dd:7a: 00:b6:9b:04:df:f5:8d:0d:be:92:53:72:48:17:13: 11:d4:79:16:9c:1d:6f:8d:e1:d7:99:46:14:d5:0a: 4b:ba:02:8d:1d:ed:f7:ca:14:ec:3a:04:e7:a9:d3: 36:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7F:45:57:07:93:78:94:22:EC:12:85:61:E9:B4:D0:4C:D1:93:06 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 9c:81:f6:21:9f:a0:33:39:b8:8d:6f:4e:db:d8:2c:64:5a:dc: 7c:8a:26:b9:21:34:9a:2d:6a:bd:d3:8c:78:6f:7f:6f:45:96: af:5d:8b:76:7b:47:da:2f:f3:a3:99:6e:a8:d9:0b:8d:e0:53: c1:1a:d3:57:42:df:fa:34:7f:56:ad:93:c1:c3:7a:91:7d:c1: 95:1f:5a:60:8c:d4:16:23:ac:c5:fb:d3:6d:32:4f:af:e2:95: 4d:67:84:c8:a2:c9:e3:d4:a1:2c:c6:e3:d5:09:fd:77:43:68: 46:e8:13:d8:db:3d:51:40:f6:c0:20:5a:ff:3f:30:aa:b2:70: b0:b6:1d:14:e0:f2:8d:d6:82:a3:42:66:d6:50:1e:0e:f9:fd: 27:d1:ec:06:27:a3:2a:97:18:6d:06:7a:d3:bd:0d:73:ee:cb: 60:43:99:18:3b:e0:d6:b2:d9:d1:1b:85:52:b1:4a:bd:57:ea: 76:28:6f:8e:5b:86:f8:f3:8a:31:5b:10:95:aa:a2:05:e9:91: e5:40:4b:fd:d6:3d:f3:18:33:36:45:3b:f9:f8:e2:10:5e:40: aa:36:52:14:6f:b7:21:54:d5:95:25:df:bc:a5:52:08:9f:2e: 0a:14:7b:66:11:b8:7a:2c:a4:83:cc:51:ab:75:6f:af:bd:d0: 20:0b:96:99 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURBmbcZ1ObMw0h1wnzXt3ALNBj9gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjA0MDA1MDA2WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWI0MmU4OGU5ZDU4MDgwYzFlNWIxOGEwMTUzY2Y4YzU5 YjE1ZWZlOGEzOGExNjMzN2IzNjI2ZGQyNjk0ZTViMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKXQ9rue3QCVUTfCk/lDXbWpfs+A5jpMfLG5BvDCG6kfUS IXdzvL2dnzCO8MfU+6h/RBLbXRLhayLmYQ/8ID15AeFhaWzLpkAlAa9xxvWCusx5 qBcSqSmcCDwbNWpP/Jp6MViHxKicYxnEMbAtuTY7g7tRLVwFsH/9LXl5IdWKCu6V 2AvQuvXG4bi/FIpqL5//1X1GcgphZokGa0fTEUeEWZVhfusMYPQtDHpRceu04Fze ngePe9AVoN68bE3dYD5yqkTE6JIztzubDBkboO3degC2mwTf9Y0NvpJTckgXExHU eRacHW+N4deZRhTVCku6Ao0d7ffKFOw6BOep0zYBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlH9FVweTeJQi7BKFYem00EzRkwYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAJyB9iGfoDM5uI1vTtvYLGRa 3HyKJrkhNJotar3TjHhvf29Flq9di3Z7R9ov86OZbqjZC43gU8Ea01dC3/o0f1at k8HDepF9wZUfWmCM1BYjrMX7020yT6/ilU1nhMiiyePUoSzG49UJ/XdDaEboE9jb PVFA9sAgWv8/MKqycLC2HRTg8o3WgqNCZtZQHg75/SfR7AYnoyqXGG0GetO9DXPu y2BDmRg74Nay2dEbhVKxSr1X6nYob45bhvjzijFbEJWqogXpkeVAS/3WPfMYMzZF O/n44hBeQKo2UhRvtyFU1ZUl37ylUgifLgoUe2YRuHospIPMUat1b6+90CALlpk= -----END CERTIFICATE-----Generated at Wed Jun 4 11:19:17 2025 by rpki-client