$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa File: ec42dc47-0cc9-474a-9470-19700f756d36.roa (raw, json) Hash identifier: s6xLA/H3KGCbFZVXYxCGTFqMSDODie6DKuhVlz4UnFE= Subject key identifier: 67:6B:3B:A3:DB:FD:08:9B:16:45:AD:A7:CD:AE:87:4B:97:1B:EF:02 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2E56CD9B4D44D94DEE8B79A4C5CA7FDAE73B46EC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa Signing time: Tue 20 May 2025 18:00:10 +0000 ROA not before: Tue 20 May 2025 18:00:10 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:56:cd:9b:4d:44:d9:4d:ee:8b:79:a4:c5:ca:7f:da:e7:3b:46:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:10 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=7a9ce98fed1d206f0af022fee41436092772c177ed96b9827c3b5dcc804814a8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a7:ec:14:42:72:39:2b:cc:69:a8:f6:9b:b5: 40:c8:3b:79:ef:cf:97:b2:8a:d8:a0:ec:79:d8:f8: 57:0a:d6:49:43:8d:6c:6b:b1:77:94:72:b6:bf:83: f1:13:77:e9:85:d2:80:ce:42:14:49:27:3e:74:0e: c3:fd:24:0e:a8:ad:9e:2a:94:5d:e9:d1:ad:16:5a: a9:e7:69:0d:31:d6:6d:df:bd:1f:e5:b1:cc:33:5d: fd:58:f2:39:86:5e:f9:02:8a:72:85:a0:cd:44:61: 79:17:20:94:23:b7:eb:ee:6d:47:d5:c6:1c:a5:14: eb:e8:d7:6b:9a:a4:dc:17:ae:65:f9:18:72:ce:62: 71:3b:e8:94:da:ff:97:53:5b:6d:c9:57:c4:ea:74: 7e:e5:12:b9:e2:4e:00:45:c8:3a:38:41:7f:1a:ef: 6b:c1:07:19:c7:33:73:71:9a:f4:2f:f6:39:03:d0: cc:2d:27:aa:d3:27:a8:cc:a0:39:ba:47:65:d8:90: 25:2a:16:99:b1:ff:08:d0:ff:1b:79:bb:d4:33:f2: 4b:5d:ad:02:cc:74:30:ab:70:4b:78:3d:7d:b2:75: 0f:4f:68:ee:a3:ef:eb:7d:04:da:64:99:fe:72:dd: 1c:de:6a:51:00:a1:ff:a5:fb:ff:8f:4a:5f:a6:5e: be:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:6B:3B:A3:DB:FD:08:9B:16:45:AD:A7:CD:AE:87:4B:97:1B:EF:02 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 2d:0f:92:86:c0:51:7c:d7:df:b8:3c:2d:85:f9:95:f8:ba:e2: 59:97:ed:64:24:58:ad:19:7b:8c:1c:2c:33:6a:d7:67:5a:cb: 69:2d:d3:d2:e7:b5:cb:f5:90:a2:12:73:ff:99:e9:95:6a:eb: 73:01:2f:8d:f4:8f:1c:e7:ae:63:1f:99:e3:62:3d:28:72:a0: a9:7b:4d:ec:b1:59:39:69:c6:9f:96:e2:c0:ba:6a:24:03:85: 0d:5e:fc:a9:37:0b:29:be:7e:30:d7:29:4e:5f:b2:dc:70:cb: ff:2f:56:d2:5a:0a:ae:b7:14:90:a5:68:a5:13:7b:bf:43:e7: db:6d:c1:9c:30:a3:22:01:97:5c:d4:31:22:a1:3c:b5:c1:7b: c1:5c:30:de:5b:f0:a6:ae:c3:34:dc:48:ce:b3:01:d4:28:97: fa:e2:c4:8f:15:cf:53:dd:fd:5e:d9:41:2f:e8:c6:d0:9c:2c: 28:d4:92:f9:9c:1c:d9:55:1f:29:b3:7b:44:16:76:f4:95:43: b4:8a:c8:76:57:28:c9:59:f0:7d:b0:b4:a5:40:d9:6d:37:92: bf:fa:75:fc:d9:9a:e5:9d:93:4d:5d:4e:11:c6:d0:13:25:06: a2:22:b6:46:59:3e:89:0e:72:14:25:b6:1d:d6:82:31:ad:98: 0f:63:fa:b4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULlbNm01E2U3ui3mkxcp/2uc7RuwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDEwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTljZTk4ZmVkMWQyMDZmMGFmMDIyZmVlNDE0MzYwOTI3 NzJjMTc3ZWQ5NmI5ODI3YzNiNWRjYzgwNDgxNGE4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0p+wUQnI5K8xpqPabtUDIO3nvz5eyitig7HnY+FcK1klD jWxrsXeUcra/g/ETd+mF0oDOQhRJJz50DsP9JA6orZ4qlF3p0a0WWqnnaQ0x1m3f vR/lscwzXf1Y8jmGXvkCinKFoM1EYXkXIJQjt+vubUfVxhylFOvo12uapNwXrmX5 GHLOYnE76JTa/5dTW23JV8TqdH7lErniTgBFyDo4QX8a72vBBxnHM3NxmvQv9jkD 0MwtJ6rTJ6jMoDm6R2XYkCUqFpmx/wjQ/xt5u9Qz8ktdrQLMdDCrcEt4PX2ydQ9P aO6j7+t9BNpkmf5y3RzealEAof+l+/+PSl+mXr5LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ2s7o9v9CJsWRa2nza6HS5cb7wIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjNDJkYzQ3LTBjYzktNDc0YS05NDcwLTE5NzAwZjc1NmQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAC0PkobAUXzX37g8LYX5lfi6 4lmX7WQkWK0Ze4wcLDNq12day2kt09Lntcv1kKISc/+Z6ZVq63MBL430jxznrmMf meNiPShyoKl7TeyxWTlpxp+W4sC6aiQDhQ1e/Kk3Cym+fjDXKU5fstxwy/8vVtJa Cq63FJClaKUTe79D59ttwZwwoyIBl1zUMSKhPLXBe8FcMN5b8KauwzTcSM6zAdQo l/rixI8Vz1Pd/V7ZQS/oxtCcLCjUkvmcHNlVHymze0QWdvSVQ7SKyHZXKMlZ8H2w tKVA2W03kr/6dfzZmuWdk01dThHG0BMlBqIitkZZPokOchQlth3WgjGtmA9j+rQ= -----END CERTIFICATE-----Generated at Mon Jun 2 16:55:03 2025 by rpki-client