$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa File: c95d920e-7e95-4907-9edf-29509d14ad36.roa (raw, json) Hash identifier: VQmpsZ7HZCxOAD5CwIjXBCMr56U6Xuhp7VHZAxbaHHY= Subject key identifier: 36:19:C2:DA:4A:7A:C3:FB:F7:21:4A:6C:A9:22:6B:23:02:D3:BD:36 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0349C234418851CF0DC4783F3090D632EE80808B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa Signing time: Tue 20 May 2025 18:11:14 +0000 ROA not before: Tue 20 May 2025 18:11:14 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:eb00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:49:c2:34:41:88:51:cf:0d:c4:78:3f:30:90:d6:32:ee:80:80:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:14 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=868062a613bb2dbb2380c092352bc25becb552b71aaecaba7be1ce9bb5e3b16f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:bb:0b:fc:47:5c:a0:0d:1e:eb:53:35:b4:9d: 32:99:c1:db:83:66:b3:62:21:b4:87:5a:6a:a4:83: d1:c8:4a:ef:d0:50:b6:3d:7e:41:63:ac:2a:8f:5e: d6:50:45:4b:4c:4e:2c:b9:c2:aa:e4:98:71:6f:c6: fb:fe:2e:d5:ed:bc:68:dc:fe:69:5c:59:fb:0f:2c: ce:38:04:a6:07:ae:4c:f8:91:54:67:12:d0:82:79: 02:f3:c2:84:0b:24:1d:c7:a3:9c:18:ab:fb:5b:69: cc:eb:cb:45:3d:77:78:56:67:50:ef:1f:4a:05:5b: 74:97:97:0f:a8:4c:62:8f:2e:44:c1:8e:90:00:4e: fb:08:32:02:1a:db:7f:aa:df:9a:3c:e7:f6:d0:3e: 49:f8:73:2d:34:33:af:fe:6f:4f:62:e3:cf:4c:7b: 12:db:9c:6a:2b:98:85:c4:09:de:40:3e:e9:ba:ed: dc:8f:af:06:61:47:5a:7c:76:19:2e:fb:6c:0a:47: 8e:d8:92:d8:59:84:b5:03:e2:71:cf:0f:c0:6c:25: 50:a4:94:5a:f2:7e:18:c6:b3:a3:a4:74:07:33:3c: 14:cb:40:08:f6:6d:72:95:da:3b:3d:f6:cd:23:be: db:55:a4:a7:ba:ba:6a:1a:70:ec:c8:60:7f:5d:af: cf:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:19:C2:DA:4A:7A:C3:FB:F7:21:4A:6C:A9:22:6B:23:02:D3:BD:36 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/42 Signature Algorithm: sha256WithRSAEncryption 25:b5:82:b9:32:ab:75:c9:f2:6c:d4:a4:6d:c5:c0:0e:24:4c: af:de:3b:64:c2:64:8a:2c:b4:91:84:78:da:2e:3e:bd:2e:80: 17:bc:19:32:17:55:b8:04:8c:0c:2f:90:7f:e5:d2:6c:0e:c9: 54:21:03:85:7a:72:35:d8:2e:3a:86:a2:d2:f8:da:2c:9b:83: 12:f0:cf:8b:95:36:a7:64:7c:de:d5:2c:61:ff:98:18:d6:49: a1:99:18:91:2a:bd:17:50:a3:5c:cd:46:2f:b3:8a:ae:ac:b5: d4:64:28:71:83:94:32:fc:77:13:18:a8:46:ed:ab:70:16:57: dc:4b:d2:09:7e:e0:12:b7:88:3a:8a:7c:2a:8c:a3:f8:01:7a: 04:c5:c3:39:a9:d0:b4:fc:fc:5c:ac:b7:18:99:e1:18:b6:ae: 13:f9:32:53:76:af:a3:c5:96:ec:f8:6c:ee:40:1c:20:93:8f: 19:92:32:72:46:32:90:25:fd:d1:1a:93:77:a2:f6:aa:d1:b6: a6:ab:4f:ff:45:ea:20:28:88:1b:78:6c:45:3e:2a:37:b5:94: ec:a4:8c:63:83:29:bd:10:c6:51:48:81:c5:d6:39:59:ac:db: bd:39:ee:3d:b4:ff:33:21:08:78:05:5b:cb:c0:6a:9a:fd:67: 3d:49:0d:b6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUA0nCNEGIUc8NxHg/MJDWMu6AgIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTE0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjgwNjJhNjEzYmIyZGJiMjM4MGMwOTIzNTJiYzI1YmVj YjU1MmI3MWFhZWNhYmE3YmUxY2U5YmI1ZTNiMTZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNuwv8R1ygDR7rUzW0nTKZwduDZrNiIbSHWmqkg9HISu/Q ULY9fkFjrCqPXtZQRUtMTiy5wqrkmHFvxvv+LtXtvGjc/mlcWfsPLM44BKYHrkz4 kVRnEtCCeQLzwoQLJB3Ho5wYq/tbaczry0U9d3hWZ1DvH0oFW3SXlw+oTGKPLkTB jpAATvsIMgIa23+q35o85/bQPkn4cy00M6/+b09i489MexLbnGormIXECd5APum6 7dyPrwZhR1p8dhku+2wKR47YkthZhLUD4nHPD8BsJVCklFryfhjGs6OkdAczPBTL QAj2bXKV2js99s0jvttVpKe6umoacOzIYH9dr8/HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNhnC2kp6w/v3IUpsqSJrIwLTvTYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5NWQ5MjBlLTdlOTUtNDkwNy05ZWRmLTI5NTA5ZDE0YWQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76wAwDQYJKoZIhvcNAQELBQADggEBACW1grkyq3XJ8mzUpG3FwA4k TK/eO2TCZIostJGEeNouPr0ugBe8GTIXVbgEjAwvkH/l0mwOyVQhA4V6cjXYLjqG otL42iybgxLwz4uVNqdkfN7VLGH/mBjWSaGZGJEqvRdQo1zNRi+ziq6stdRkKHGD lDL8dxMYqEbtq3AWV9xL0gl+4BK3iDqKfCqMo/gBegTFwzmp0LT8/FystxiZ4Ri2 rhP5MlN2r6PFluz4bO5AHCCTjxmSMnJGMpAl/dEak3ei9qrRtqarT/9F6iAoiBt4 bEU+Kje1lOykjGODKb0QxlFIgcXWOVms27057j20/zMhCHgFW8vAapr9Zz1JDbY= -----END CERTIFICATE-----Generated at Wed Jun 4 11:21:58 2025 by rpki-client