$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa File: f30a276d-715e-46ee-8158-fd4576a10978.roa (raw, json) Hash identifier: qSVP/oB176IHeBlmpkcdsC7gjT0xofTb0RLI4bv69Qs= Subject key identifier: 2A:6E:49:40:0A:5B:DA:83:5B:06:8D:30:3C:A0:17:7F:C0:41:47:EC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6CFD99C6CAD328BDD8333BE194D5DF194DE6F855 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa Signing time: Tue 20 May 2025 18:10:49 +0000 ROA not before: Tue 20 May 2025 18:10:49 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:fd:99:c6:ca:d3:28:bd:d8:33:3b:e1:94:d5:df:19:4d:e6:f8:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:49 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=67fe131c42e0b11438de07543943e9f0398e842bf3b5d11f799a035c971bfc49, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:97:04:a1:e4:7b:20:0b:bc:0f:a0:04:e5:4d: 69:a0:a2:84:84:16:61:38:e1:41:4c:9c:b9:8a:df: 8c:ea:55:6c:2a:23:a6:2e:33:f7:32:1e:8a:3f:a8: 81:7e:a8:9b:3a:68:4a:95:66:ad:7a:eb:45:24:c1: 14:eb:03:c3:d3:42:c6:55:3c:b4:ae:66:70:26:8a: 61:6f:df:d7:a5:e1:cb:a3:0d:01:87:16:45:51:f9: 9a:0d:14:9f:f6:3f:ac:89:26:4f:83:0c:20:55:7a: 33:e4:b5:91:52:0c:d3:e3:42:09:25:46:ea:39:1f: 77:72:b9:54:bd:82:94:7f:e1:b6:8f:0f:bb:da:5b: b1:4a:4c:0c:b2:74:07:31:21:ae:c7:1e:f1:0a:46: 2f:c2:0f:b3:03:3a:2c:0c:cb:9e:5c:a0:ad:e0:ce: 7b:f1:ef:76:0a:17:bf:44:b0:69:9e:ee:ee:f9:bd: d3:c3:02:63:af:d2:f4:cd:0b:00:5e:c1:f1:30:a1: f4:16:50:14:b7:c0:3f:66:f5:51:ab:07:a3:34:f2: 9e:1b:6e:62:cf:b0:34:1b:1f:9e:19:4a:6f:73:64: 25:bc:88:b5:9c:d1:0e:47:7b:68:6e:54:c1:ad:03: a4:78:80:f3:fc:d3:d7:b5:68:16:2c:3a:57:50:29: 5b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6E:49:40:0A:5B:DA:83:5B:06:8D:30:3C:A0:17:7F:C0:41:47:EC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 1f:11:a8:f7:c5:d7:26:ac:7e:0d:8b:e6:d2:6e:c8:64:b4:c4: 2b:0e:77:43:b6:f0:1f:de:93:bf:b3:63:a2:77:a8:b4:4a:e4: 6a:6b:45:76:6d:57:87:f5:e5:9f:a4:b4:1b:78:59:c5:35:97: 31:e2:4e:be:dc:8f:c0:fe:36:21:65:fd:5f:1c:64:a9:da:0f: 32:e9:0e:4e:01:5d:96:83:dc:57:d8:10:6b:fd:76:f4:83:82: c0:81:a5:5d:db:44:54:63:c2:4f:61:ce:a0:4c:97:15:08:f9: 69:59:28:6d:b8:37:6a:00:54:ca:e5:d3:77:e0:af:83:08:5c: 7d:f2:be:4f:37:4f:28:5c:70:de:38:da:b0:74:cf:25:30:52: fe:72:67:58:c0:7e:16:7c:53:3a:22:99:9d:ee:80:10:d5:e9: ab:75:ea:c2:51:e0:50:ca:21:aa:70:2a:1c:cd:62:e2:10:83: 90:17:68:1f:cc:e5:3e:7d:3f:70:06:bc:f1:66:93:f4:0f:c5: e1:45:42:ed:d8:2f:7e:26:fe:94:45:67:0a:1f:86:6b:8a:6c: 4e:ab:3a:3a:75:ca:5f:44:d3:da:6e:98:37:c4:04:86:cd:1a: 2b:ae:9f:2a:fd:37:96:a5:48:c2:2d:00:3d:0f:b5:a7:95:0e: de:9c:3a:06 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbP2ZxsrTKL3YMzvhlNXfGU3m+FUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDQ5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2ZlMTMxYzQyZTBiMTE0MzhkZTA3NTQzOTQzZTlmMDM5 OGU4NDJiZjNiNWQxMWY3OTlhMDM1Yzk3MWJmYzQ5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/lwSh5HsgC7wPoATlTWmgooSEFmE44UFMnLmK34zqVWwq I6YuM/cyHoo/qIF+qJs6aEqVZq1660UkwRTrA8PTQsZVPLSuZnAmimFv39el4cuj DQGHFkVR+ZoNFJ/2P6yJJk+DDCBVejPktZFSDNPjQgklRuo5H3dyuVS9gpR/4baP D7vaW7FKTAyydAcxIa7HHvEKRi/CD7MDOiwMy55coK3gznvx73YKF79EsGme7u75 vdPDAmOv0vTNCwBewfEwofQWUBS3wD9m9VGrB6M08p4bbmLPsDQbH54ZSm9zZCW8 iLWc0Q5He2huVMGtA6R4gPP809e1aBYsOldQKVsfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUKm5JQApb2oNbBo0wPKAXf8BBR+wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YzMGEyNzZkLTcxNWUtNDZlZS04MTU4LWZkNDU3NmExMDk3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEAHxGo98XXJqx+DYvm0m7IZLTE Kw53Q7bwH96Tv7NjoneotErkamtFdm1Xh/Xln6S0G3hZxTWXMeJOvtyPwP42IWX9 XxxkqdoPMukOTgFdloPcV9gQa/129IOCwIGlXdtEVGPCT2HOoEyXFQj5aVkobbg3 agBUyuXTd+CvgwhcffK+TzdPKFxw3jjasHTPJTBS/nJnWMB+FnxTOiKZne6AENXp q3XqwlHgUMohqnAqHM1i4hCDkBdoH8zlPn0/cAa88WaT9A/F4UVC7dgvfib+lEVn Ch+Ga4psTqs6OnXKX0TT2m6YN8QEhs0aK66fKv03lqVIwi0APQ+1p5UO3pw6Bg== -----END CERTIFICATE-----Generated at Sat Jun 7 17:25:46 2025 by rpki-client