$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa File: ee2c3586-4c23-4045-b98b-d28000a3bd55.roa (raw, json) Hash identifier: ay+obeb8GSQGRGEqF5bIyOFQzQCCnO6z5YmXwVZBM3U= Subject key identifier: 90:0F:9B:2A:27:38:5C:68:C6:45:74:74:BE:2E:2B:0F:87:FA:EC:46 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0DD3A17FABBD9AEB0203290CB0F0CD3967449AE7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa Signing time: Sat 31 May 2025 00:50:07 +0000 ROA not before: Sat 31 May 2025 00:50:07 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:d3:a1:7f:ab:bd:9a:eb:02:03:29:0c:b0:f0:cd:39:67:44:9a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 31 00:50:07 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=2d32b2b3b0576dbc65cb3cf275a4de7fa62f9325ac63cc3b17d723e563d55f0b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:96:97:17:8b:5f:58:91:a9:8f:85:2e:75:8a: fe:9e:90:ab:7a:c5:1d:00:a5:90:64:3e:70:2c:91: ed:bc:a9:51:f4:76:13:2a:ec:45:27:7d:b5:7c:49: 4c:e7:0d:a0:44:59:9f:3e:7c:b2:50:72:78:8a:c7: ac:76:9b:94:9d:4a:26:19:8b:6e:69:d8:c6:a8:2f: 9c:fb:51:eb:77:b7:aa:45:9d:b6:80:85:c0:5a:b7: 49:66:28:4b:f7:0a:57:aa:9a:48:4a:2c:0b:93:aa: 20:40:8c:f9:be:2d:67:a8:23:8d:97:df:52:62:5f: a4:07:e4:a3:3c:c5:23:b3:ff:13:ca:19:17:14:d6: 78:2c:53:12:f5:6a:a4:cf:df:06:2c:b9:ac:bd:d9: 13:61:18:80:67:a9:06:55:16:4e:bb:51:0e:cc:df: d0:46:1b:f7:18:15:7c:90:27:ba:18:3a:72:43:7e: 90:ec:cd:eb:c5:96:e4:14:e7:d5:8a:55:5c:94:4c: b6:ca:26:d4:a2:6b:f7:12:2a:0e:25:52:07:98:23: 1f:91:2f:0c:af:8b:7d:b3:f5:6e:2a:93:55:01:37: a5:0d:e3:31:71:85:1d:e2:a2:32:b4:11:28:6a:63: 3c:47:2d:52:77:f1:70:7a:f8:c9:b8:f4:5e:38:29: f4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:0F:9B:2A:27:38:5C:68:C6:45:74:74:BE:2E:2B:0F:87:FA:EC:46 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 8b:a5:8c:75:24:9e:d2:d5:29:d1:cd:a2:a9:a0:63:7a:9c:0b: 8a:b0:61:b2:dc:80:97:b2:97:a2:f0:c0:d8:21:61:37:f2:18: a9:38:96:13:c7:b0:80:14:a2:83:be:a2:24:97:9e:09:47:1d: 7c:e0:73:b1:90:a8:65:0d:37:03:24:7a:e9:6b:ed:35:2f:74: 8d:d8:92:b7:1c:dd:8b:f9:aa:5e:85:bc:88:6e:43:f4:1c:3a: b7:e9:8f:9a:32:ac:5c:f0:1c:18:d2:1e:46:11:0f:35:71:0c: 58:26:e8:8a:4e:71:6e:f2:fb:91:b1:19:54:53:32:7e:61:88: 78:45:cb:df:eb:6d:ca:58:e5:b8:f5:20:05:55:c3:62:49:f7: 1b:c0:51:3f:ba:da:f9:7d:48:74:9d:6c:c4:fd:23:2f:a2:f5: bf:2f:dd:70:c6:91:84:d7:1f:81:d5:8d:fb:30:1b:34:3a:5b: 25:16:bf:40:9b:14:e1:bc:10:40:31:98:02:54:96:c3:44:91: d6:f1:ef:db:40:ce:de:d6:df:29:78:38:43:61:65:c0:74:30: a8:b2:bf:74:95:9e:9f:89:92:39:af:67:71:8d:75:ed:ec:82: 7f:d8:78:fe:4f:f2:d7:dc:2c:0f:20:d9:ee:1e:17:de:46:dd: ac:fc:2c:ad -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDdOhf6u9musCAykMsPDNOWdEmucwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTMxMDA1MDA3WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDMyYjJiM2IwNTc2ZGJjNjVjYjNjZjI3NWE0ZGU3ZmE2 MmY5MzI1YWM2M2NjM2IxN2Q3MjNlNTYzZDU1ZjBiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8lpcXi19YkamPhS51iv6ekKt6xR0ApZBkPnAske28qVH0 dhMq7EUnfbV8SUznDaBEWZ8+fLJQcniKx6x2m5SdSiYZi25p2MaoL5z7Uet3t6pF nbaAhcBat0lmKEv3CleqmkhKLAuTqiBAjPm+LWeoI42X31JiX6QH5KM8xSOz/xPK GRcU1ngsUxL1aqTP3wYsuay92RNhGIBnqQZVFk67UQ7M39BGG/cYFXyQJ7oYOnJD fpDszevFluQU59WKVVyUTLbKJtSia/cSKg4lUgeYIx+RLwyvi32z9W4qk1UBN6UN 4zFxhR3iojK0EShqYzxHLVJ38XB6+Mm49F44KfRZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkA+bKic4XGjGRXR0vi4rD4f67EYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VlMmMzNTg2LTRjMjMtNDA0NS1iOThiLWQyODAwMGEzYmQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBAIuljHUkntLVKdHNoqmgY3qc C4qwYbLcgJeyl6LwwNghYTfyGKk4lhPHsIAUooO+oiSXnglHHXzgc7GQqGUNNwMk eulr7TUvdI3Ykrcc3Yv5ql6FvIhuQ/QcOrfpj5oyrFzwHBjSHkYRDzVxDFgm6IpO cW7y+5GxGVRTMn5hiHhFy9/rbcpY5bj1IAVVw2JJ9xvAUT+62vl9SHSdbMT9Iy+i 9b8v3XDGkYTXH4HVjfswGzQ6WyUWv0CbFOG8EEAxmAJUlsNEkdbx79tAzt7W3yl4 OENhZcB0MKiyv3SVnp+JkjmvZ3GNde3sgn/YeP5P8tfcLA8g2e4eF95G3az8LK0= -----END CERTIFICATE-----Generated at Fri Jun 6 05:31:15 2025 by rpki-client