$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa File: 03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa (raw, json) Hash identifier: FKqUKWJKC9WivkHvfnqrTRLDkLr5WaxV2S3YgxaUux0= Subject key identifier: 02:81:99:1C:03:71:01:62:54:9C:05:B1:5C:A8:A4:38:A4:7E:B2:FC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 28313897BB84902517140C0FCF289A3D4D06352C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa Signing time: Tue 20 May 2025 18:00:45 +0000 ROA not before: Tue 20 May 2025 18:00:45 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:31:38:97:bb:84:90:25:17:14:0c:0f:cf:28:9a:3d:4d:06:35:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:45 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=f2bfa3cedba00ee3000cca57872cbe5aa3ef69a38cd24acbf99cc369274cf70b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2a:79:97:f5:53:99:ea:5b:a9:33:73:56:5c: 27:ff:da:3e:17:0d:1c:3b:d7:13:c9:d6:9f:e3:91: 96:1c:ed:a7:e5:7e:12:d0:22:be:3d:9a:40:ec:c0: d1:0c:69:8e:92:a9:2a:91:58:f0:b0:b5:6a:e7:8b: 8a:77:82:83:3a:86:06:ea:be:d0:3b:2b:53:cc:5e: 69:e7:19:f8:db:5b:8f:b3:fa:57:3c:e2:99:45:b5: 5d:66:5f:40:56:13:c8:88:1d:7c:e3:02:62:52:4f: 35:68:91:6f:39:6b:20:e6:3c:28:8e:31:91:03:4e: 70:db:e2:3d:5a:c4:64:97:c1:e2:e2:c7:ff:ed:cb: fc:f4:64:03:dd:9b:cd:bf:04:30:3b:6e:55:ca:26: a6:c7:38:9c:f5:70:87:81:c3:3b:91:10:83:90:ff: 37:73:12:5e:9a:c3:f6:2d:53:3f:70:50:75:6d:eb: 72:7c:35:6b:f8:38:88:13:8d:69:ce:7d:09:d7:f9: 93:eb:39:58:75:f0:72:27:d1:d7:bd:8a:eb:e2:8e: ba:03:02:95:82:af:cd:08:e3:54:cd:1b:b0:42:86: e1:f7:1a:b9:04:2d:21:18:46:f0:c4:66:38:d7:43: 6b:3f:3e:ae:3c:7e:f0:c5:b7:f7:42:01:97:96:74: d5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:81:99:1C:03:71:01:62:54:9C:05:B1:5C:A8:A4:38:A4:7E:B2:FC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 2f:6e:10:c5:82:e6:90:80:63:54:4c:93:34:0e:cc:2f:bc:fd: 8c:87:19:0f:62:9d:c7:55:2b:21:e7:40:68:a2:8a:1d:ad:8b: 17:2d:0a:97:94:84:46:60:12:b0:90:c8:bc:72:d1:a5:e4:c9: a9:43:e6:2d:5b:c0:16:29:7d:cc:22:ee:a2:e1:8b:c0:b0:90: bc:e2:62:d2:d9:53:d8:a6:4c:ad:c3:57:44:e2:a7:bc:61:6d: b9:fd:b0:bf:b1:04:90:02:dd:f0:10:b5:30:81:d9:f5:c8:1f: 4f:fc:40:88:b2:63:8a:5d:cc:10:bc:77:95:6f:dc:c8:b9:0f: 52:52:3e:4e:f2:2d:7d:cb:a2:74:97:42:8a:97:0a:9c:54:e3: 15:f9:50:02:7f:41:6f:d9:b2:98:8e:6a:7c:76:7e:26:77:18: e3:7a:91:c0:21:38:8f:5c:67:db:13:64:1b:6b:73:d5:61:0e: 69:8b:52:35:c5:37:b1:27:23:6c:29:ae:c9:6c:e5:fb:7f:fd: 23:9c:ac:db:c6:82:f5:6c:af:ee:d4:f0:32:fd:a1:7a:f3:47: 9b:57:0c:e5:92:9f:63:94:a4:a1:02:79:80:33:0f:62:b2:b7: 88:ba:1e:7b:c8:8f:38:51:1f:49:c2:1f:7c:70:56:b5:ca:c2: cc:1f:a7:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKDE4l7uEkCUXFAwPzyiaPU0GNSwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDQ1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmJmYTNjZWRiYTAwZWUzMDAwY2NhNTc4NzJjYmU1YWEz ZWY2OWEzOGNkMjRhY2JmOTljYzM2OTI3NGNmNzBiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtKnmX9VOZ6lupM3NWXCf/2j4XDRw71xPJ1p/jkZYc7afl fhLQIr49mkDswNEMaY6SqSqRWPCwtWrni4p3goM6hgbqvtA7K1PMXmnnGfjbW4+z +lc84plFtV1mX0BWE8iIHXzjAmJSTzVokW85ayDmPCiOMZEDTnDb4j1axGSXweLi x//ty/z0ZAPdm82/BDA7blXKJqbHOJz1cIeBwzuREIOQ/zdzEl6aw/YtUz9wUHVt 63J8NWv4OIgTjWnOfQnX+ZPrOVh18HIn0de9iuvijroDApWCr80I41TNG7BChuH3 GrkELSEYRvDEZjjXQ2s/Pq48fvDFt/dCAZeWdNU/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAoGZHANxAWJUnAWxXKikOKR+svwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzYjU5YTFlLTYyNjgtNDYwNy1hNmMxLTY5ZTZkZTgwY2Y0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAC9uEMWC5pCAY1RMkzQOzC+8 /YyHGQ9incdVKyHnQGiiih2tixctCpeUhEZgErCQyLxy0aXkyalD5i1bwBYpfcwi 7qLhi8CwkLziYtLZU9imTK3DV0Tip7xhbbn9sL+xBJAC3fAQtTCB2fXIH0/8QIiy Y4pdzBC8d5Vv3Mi5D1JSPk7yLX3LonSXQoqXCpxU4xX5UAJ/QW/ZspiOanx2fiZ3 GON6kcAhOI9cZ9sTZBtrc9VhDmmLUjXFN7EnI2wprsls5ft//SOcrNvGgvVsr+7U 8DL9oXrzR5tXDOWSn2OUpKECeYAzD2Kyt4i6HnvIjzhRH0nCH3xwVrXKwswfp7w= -----END CERTIFICATE-----Generated at Sat Jun 14 06:22:09 2025 by rpki-client