$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa File: ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa (raw, json) Hash identifier: gT49/blOlhFSVN6Uf5Xmp99JZIiv9j7gJkpOV5xaz5E= Subject key identifier: 86:7D:BF:6E:55:07:1F:F0:0A:E8:2E:BC:BD:FF:B1:6F:BE:AF:31:FD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2AB3236A1FF4786D51CA55C96F92A11249272993 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa Signing time: Tue 20 May 2025 18:10:44 +0000 ROA not before: Tue 20 May 2025 18:10:44 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b3:23:6a:1f:f4:78:6d:51:ca:55:c9:6f:92:a1:12:49:27:29:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:44 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=7ed90cb9fe18ad92af31306a9be8c0176af277b0d8f89f5722e1df804830837d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:87:60:79:8f:fd:74:eb:16:d5:54:f7:3d:cf: f6:50:a1:ec:14:ff:1c:9c:31:38:dc:dc:13:e9:59: db:78:eb:d9:f6:dd:52:a7:df:0f:76:ed:3b:60:55: fb:57:c1:7f:55:a7:09:7f:87:dd:9e:55:f3:5b:02: 1a:36:d6:a5:9c:b2:f3:a0:60:a6:1d:c6:57:6d:72: 15:d8:3c:6a:52:13:31:e4:aa:3a:2f:8a:0e:1a:dc: 01:d9:b8:02:e4:a9:c2:61:ed:ee:9b:a8:a7:74:45: 5c:98:94:28:26:b7:c6:0f:6c:15:fb:65:6c:0a:e5: ad:7c:41:dd:c3:a3:db:4c:3e:af:c1:b7:dd:0d:26: ee:ae:13:97:df:53:00:05:ef:2e:14:30:08:c1:50: be:7c:f9:e2:02:48:f1:91:98:6f:57:28:a5:41:b0: 52:cb:66:24:94:43:ef:fc:73:45:51:e0:b2:0e:6c: a9:af:12:7b:c3:28:98:f9:b7:5a:e5:83:ad:2b:e6: 33:60:25:23:7f:f5:35:aa:ae:ff:80:e2:c2:3b:76: af:8d:38:35:8a:c6:22:b6:f6:63:41:80:8c:45:f9: 7c:82:3c:c7:bf:e2:56:b8:d4:fa:94:90:ed:9f:e3: ef:dd:11:6e:a6:b3:fd:7d:1a:32:9a:65:13:7d:bb: f5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7D:BF:6E:55:07:1F:F0:0A:E8:2E:BC:BD:FF:B1:6F:BE:AF:31:FD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/40 Signature Algorithm: sha256WithRSAEncryption 9c:92:81:79:71:6c:21:da:ff:dd:c8:c8:25:33:9b:04:c8:1d: 04:33:ab:e8:77:be:f3:34:e2:57:bf:49:e7:0e:8b:cc:eb:9e: e8:e6:b7:28:29:29:df:be:ac:43:51:64:3d:29:63:c4:2a:1b: a3:3b:a6:ea:e8:16:5f:1f:21:36:02:71:ae:b3:13:c2:40:d6: 33:b5:25:ed:1f:76:34:80:a0:fb:14:0d:4d:7f:3a:7b:7e:7c: 52:30:24:3a:1e:a3:74:cb:9a:11:94:a9:6c:b3:5e:41:6f:80: 3a:09:7e:bc:f1:1f:e1:1e:ea:da:59:b6:0d:4e:83:e3:92:24: 2a:c1:a4:e9:13:3d:1a:e2:db:64:ea:d0:13:ee:3d:52:99:b5: e6:ab:c4:d2:8b:c0:2a:1b:18:ac:f4:f5:b7:e1:7d:de:d5:4c: ec:47:5d:67:ad:43:79:64:17:60:9f:42:51:24:ae:c2:75:b5: c7:8f:87:f0:a0:9d:d9:49:95:d5:26:4f:cc:14:3f:e1:dc:d5: 33:f2:9c:70:55:5a:f2:75:59:bc:1d:7a:81:0a:7d:a9:58:5d: a0:88:13:78:29:02:29:10:8a:c6:b8:c5:64:09:8f:ee:67:81: 81:97:45:03:da:1e:96:e5:75:4b:c0:b2:38:66:1d:78:26:f0: ad:c6:08:7c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKrMjah/0eG1RylXJb5KhEkknKZMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDQ0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZWQ5MGNiOWZlMThhZDkyYWYzMTMwNmE5YmU4YzAxNzZh ZjI3N2IwZDhmODlmNTcyMmUxZGY4MDQ4MzA4MzdkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgh2B5j/106xbVVPc9z/ZQoewU/xycMTjc3BPpWdt469n2 3VKn3w927TtgVftXwX9Vpwl/h92eVfNbAho21qWcsvOgYKYdxldtchXYPGpSEzHk qjovig4a3AHZuALkqcJh7e6bqKd0RVyYlCgmt8YPbBX7ZWwK5a18Qd3Do9tMPq/B t90NJu6uE5ffUwAF7y4UMAjBUL58+eICSPGRmG9XKKVBsFLLZiSUQ+/8c0VR4LIO bKmvEnvDKJj5t1rlg60r5jNgJSN/9TWqrv+A4sI7dq+NODWKxiK29mNBgIxF+XyC PMe/4la41PqUkO2f4+/dEW6ms/19GjKaZRN9u/UBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUhn2/blUHH/AK6C68vf+xb76vMf0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZmZDJjM2UyLTRkODktNDFhMy1iNDUwLWI1M2Y5NWE5ZGNkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74jANBgkqhkiG9w0BAQsFAAOCAQEAnJKBeXFsIdr/3cjIJTObBMgd BDOr6He+8zTiV79J5w6LzOue6Oa3KCkp376sQ1FkPSljxCobozum6ugWXx8hNgJx rrMTwkDWM7Ul7R92NICg+xQNTX86e358UjAkOh6jdMuaEZSpbLNeQW+AOgl+vPEf 4R7q2lm2DU6D45IkKsGk6RM9GuLbZOrQE+49Upm15qvE0ovAKhsYrPT1t+F93tVM 7EddZ61DeWQXYJ9CUSSuwnW1x4+H8KCd2UmV1SZPzBQ/4dzVM/KccFVa8nVZvB16 gQp9qVhdoIgTeCkCKRCKxrjFZAmP7meBgZdFA9oeluV1S8CyOGYdeCbwrcYIfA== -----END CERTIFICATE-----Generated at Sun Jun 8 04:57:18 2025 by rpki-client