$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa File: ef295804-89a7-4ec3-826e-73e32733dc02.roa (raw, json) Hash identifier: Ne94sxetXUN1MTDscGwPN74IRO7vG+xMHPnFilPu4c4= Subject key identifier: C6:98:14:B9:FB:8E:71:7C:38:FA:B0:55:38:4D:0D:28:38:2F:60:07 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0FCB5AC8E09CB60F7738B931676064CDDCFDCB0A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa Signing time: Tue 20 May 2025 18:00:43 +0000 ROA not before: Tue 20 May 2025 18:00:43 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:cb:5a:c8:e0:9c:b6:0f:77:38:b9:31:67:60:64:cd:dc:fd:cb:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:43 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=4909f71cedf530c446e4a22f68f1a27f89ea9c75e6c74e84af2147137926e3a1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e3:be:b5:d7:40:48:cb:ea:93:b4:58:5e:6f: 5a:4f:5a:3e:b5:dc:b4:98:5e:a7:98:41:18:a2:33: 6f:af:ce:9f:3c:03:6e:45:68:7d:fb:b4:5a:79:71: f5:8c:4b:92:30:68:e1:fb:69:06:0c:38:21:88:38: 3a:0a:53:02:bc:fd:1d:de:9a:cc:1a:a0:97:b9:cf: b0:09:bb:18:92:ee:87:1d:5f:4f:bc:5d:c9:c5:f2: 83:e3:51:e1:2a:e3:38:e3:9b:a5:49:b1:cf:ae:95: 00:b6:f8:d3:6f:88:0d:7e:4f:0c:68:b5:d9:bd:92: 65:9c:9e:99:34:6b:51:c5:d4:47:7b:f7:a6:32:d1: be:9c:74:32:60:4a:8a:77:21:8d:0a:2d:90:8d:cd: 56:5e:bf:0f:56:2d:69:31:ab:8c:57:ca:7d:99:e8: 0e:90:7a:5f:82:90:81:b6:a2:8a:db:88:b8:32:13: ca:a7:3b:86:48:4b:9e:6a:3a:8f:f0:6b:1f:4e:50: 08:da:f2:a4:ad:ff:fd:52:7f:94:cd:77:c9:93:13: 41:46:7e:98:c8:68:b8:d0:58:bd:f7:4c:17:24:d6: aa:f5:2c:e1:f8:11:23:34:d4:b1:1f:fc:30:68:76: f8:f2:86:b7:06:93:00:a9:c6:87:b3:d9:a1:81:88: 16:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:98:14:B9:FB:8E:71:7C:38:FA:B0:55:38:4D:0D:28:38:2F:60:07 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 24:ae:ce:73:47:10:3d:7f:34:35:1f:64:2d:60:5b:35:03:a9: b3:cf:ea:da:f6:d7:c4:62:dd:8b:55:9a:64:ee:3c:16:8b:9d: 4d:01:3a:21:20:33:24:8a:c8:01:9b:99:f7:f1:b5:39:f6:39: 47:fa:8b:41:d4:9b:c9:03:35:38:06:3f:70:41:85:44:5a:0a: a5:d0:41:c9:32:87:54:b6:05:46:94:a2:a2:b7:e4:10:b2:3a: 59:6f:61:46:55:c1:8d:a8:6f:9e:c9:ad:5c:4e:85:53:c3:cd: 8c:5d:02:ef:73:33:22:f5:eb:71:d2:0a:fc:61:8c:20:1f:08: 77:5e:7d:75:6a:b4:a8:5b:26:df:89:96:6a:80:6c:d7:71:ae: 7b:32:4a:22:f4:b0:b9:83:a0:7e:fe:e4:ac:67:e4:67:ee:5c: 44:8f:57:3b:0f:34:3f:10:a3:1a:a3:04:34:9a:3b:cd:44:82: 1c:b5:72:2c:6f:84:2c:e3:38:8c:12:1e:f2:22:2e:b0:23:7f: 19:3d:22:f3:3f:67:c4:2b:76:29:86:45:27:c6:5e:fa:bc:ea: 97:e5:cd:67:03:e9:b7:7c:1e:6e:17:b2:2c:56:1d:43:59:2e: f8:16:be:68:aa:b8:34:75:5e:e8:47:59:cd:f7:94:73:e7:1c: 5b:03:a8:14 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD8tayOCctg93OLkxZ2Bkzdz9ywowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDQzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTA5ZjcxY2VkZjUzMGM0NDZlNGEyMmY2OGYxYTI3Zjg5 ZWE5Yzc1ZTZjNzRlODRhZjIxNDcxMzc5MjZlM2ExMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ476110BIy+qTtFheb1pPWj613LSYXqeYQRiiM2+vzp88 A25FaH37tFp5cfWMS5IwaOH7aQYMOCGIODoKUwK8/R3emswaoJe5z7AJuxiS7ocd X0+8XcnF8oPjUeEq4zjjm6VJsc+ulQC2+NNviA1+Twxotdm9kmWcnpk0a1HF1Ed7 96Yy0b6cdDJgSop3IY0KLZCNzVZevw9WLWkxq4xXyn2Z6A6Qel+CkIG2oorbiLgy E8qnO4ZIS55qOo/wax9OUAja8qSt//1Sf5TNd8mTE0FGfpjIaLjQWL33TBck1qr1 LOH4ESM01LEf/DBodvjyhrcGkwCpxoez2aGBiBalAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxpgUufuOcXw4+rBVOE0NKDgvYAcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmMjk1ODA0LTg5YTctNGVjMy04MjZlLTczZTMyNzMzZGMwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBACSuznNHED1/NDUfZC1gWzUD qbPP6tr218Ri3YtVmmTuPBaLnU0BOiEgMySKyAGbmffxtTn2OUf6i0HUm8kDNTgG P3BBhURaCqXQQckyh1S2BUaUoqK35BCyOllvYUZVwY2ob57JrVxOhVPDzYxdAu9z MyL163HSCvxhjCAfCHdefXVqtKhbJt+JlmqAbNdxrnsySiL0sLmDoH7+5Kxn5Gfu XESPVzsPND8QoxqjBDSaO81Eghy1cixvhCzjOIwSHvIiLrAjfxk9IvM/Z8QrdimG RSfGXvq86pflzWcD6bd8Hm4XsixWHUNZLvgWvmiquDR1XuhHWc33lHPnHFsDqBQ= -----END CERTIFICATE-----Generated at Sat Jun 7 12:33:46 2025 by rpki-client