$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa File: 0668f39a-0950-45e9-b174-8f7a83ff26e9.roa (raw, json) Hash identifier: 6d8PwOWIkaJGRSfvsTukt1pykOG9hQmKcJp5mn30E4Q= Subject key identifier: 67:F8:FC:4B:CB:CE:3C:FC:63:71:01:04:E2:6C:1A:2E:F9:B9:94:96 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1384CE73C1E834DCCBC6AE189E3E355D58C08E13 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa Signing time: Mon 16 Jun 2025 19:10:19 +0000 ROA not before: Mon 16 Jun 2025 19:10:19 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:84:ce:73:c1:e8:34:dc:cb:c6:ae:18:9e:3e:35:5d:58:c0:8e:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:10:19 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=05b4fbe0004b48c90f1cfa253c36be004acc1f5339c32469d831d02a7755a325, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a0:9f:52:50:24:68:33:53:85:38:b7:7a:f8: d6:ae:a0:a5:4e:20:97:95:41:23:21:4a:ed:f2:a6: 7d:15:54:e8:88:04:43:13:01:81:72:5c:e1:a1:82: 99:8b:59:e8:de:42:31:0d:0f:0b:fd:bb:97:2c:cf: a2:bd:89:82:83:c2:ce:91:63:3f:3f:e6:0b:ac:17: 45:0a:c7:7d:f1:8a:9a:d9:24:88:4c:4b:18:60:c5: f4:55:8e:4e:7d:6e:a7:bc:79:a6:8a:fe:76:8c:79: 91:7b:3c:29:bc:1e:9c:e3:04:6e:d6:15:cf:58:3b: 17:fb:2e:29:4c:7f:a4:17:e4:0d:c6:c7:bb:c7:1b: 10:29:f2:88:eb:0f:61:60:d3:b6:8f:38:5f:92:b8: 5f:6d:d4:d6:2c:a7:59:68:95:78:b4:1f:24:e7:12: 86:25:c9:ea:ad:5e:56:a8:4c:1b:6c:b6:90:20:10: f9:ae:42:f5:bb:7d:a9:5d:2c:d7:55:19:24:4f:db: eb:82:0a:d6:45:85:7c:9c:78:ac:ce:71:62:34:ef: ac:a2:98:36:ac:18:0d:c7:f5:36:7d:39:8b:88:93: 38:cd:1c:42:a2:19:67:90:b5:54:8d:b3:4e:f8:28: 90:b4:2e:59:c1:8e:ad:fc:6b:9c:7d:4a:6c:5d:44: bc:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F8:FC:4B:CB:CE:3C:FC:63:71:01:04:E2:6C:1A:2E:F9:B9:94:96 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 22:dc:4e:bd:91:68:4a:c7:91:48:e5:36:68:be:fc:99:d3:27: 89:5f:d9:6b:e2:98:36:83:ab:be:c1:a3:13:01:ec:98:c5:13: 1f:aa:af:b1:74:06:52:32:68:0f:9e:44:d2:0e:c2:f1:79:fa: 0d:33:5f:c7:34:bb:56:ce:a2:cb:b3:d3:34:a6:9c:df:16:6b: 35:2f:ed:9d:a9:62:77:25:1b:69:b4:50:e8:94:70:51:c3:fc: 9c:83:e6:7b:d7:55:60:09:35:6e:b2:3b:2e:de:9d:89:6a:d6: 1e:f0:e1:be:ab:22:03:db:54:f9:63:85:62:67:dd:25:ca:2c: 89:0c:63:11:ee:73:1f:9f:c3:2e:9e:a6:4f:81:92:85:0a:29: 8f:38:de:9b:4b:17:8b:1b:13:42:cc:c9:4a:a5:27:b9:0c:71: ad:18:da:93:62:e4:5e:a9:83:f0:c8:48:96:29:b4:58:f9:80: c7:3e:66:ea:4d:0d:c3:87:e3:11:9c:86:9b:23:75:bc:7e:3c: 27:e5:81:df:42:5d:05:19:df:8d:79:6d:c2:5a:19:fd:4d:e4: 05:63:f3:f9:02:7d:f7:8b:c8:35:85:88:d6:97:be:38:ee:ba: f1:44:58:ce:1a:9c:a9:11:5b:67:19:2f:ae:48:fb:12:ab:d2: ce:7a:52:9b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE4TOc8HoNNzLxq4Ynj41XVjAjhMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkxMDE5WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWI0ZmJlMDAwNGI0OGM5MGYxY2ZhMjUzYzM2YmUwMDRh Y2MxZjUzMzljMzI0NjlkODMxZDAyYTc3NTVhMzI1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPoJ9SUCRoM1OFOLd6+NauoKVOIJeVQSMhSu3ypn0VVOiI BEMTAYFyXOGhgpmLWejeQjENDwv9u5csz6K9iYKDws6RYz8/5gusF0UKx33xiprZ JIhMSxhgxfRVjk59bqe8eaaK/naMeZF7PCm8HpzjBG7WFc9YOxf7LilMf6QX5A3G x7vHGxAp8ojrD2Fg07aPOF+SuF9t1NYsp1lolXi0HyTnEoYlyeqtXlaoTBtstpAg EPmuQvW7faldLNdVGSRP2+uCCtZFhXyceKzOcWI076yimDasGA3H9TZ9OYuIkzjN HEKiGWeQtVSNs074KJC0LlnBjq38a5x9SmxdRLyPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ/j8S8vOPPxjcQEE4mwaLvm5lJYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2NjhmMzlhLTA5NTAtNDVlOS1iMTc0LThmN2E4M2ZmMjZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBACLcTr2RaErHkUjlNmi+/JnT J4lf2WvimDaDq77BoxMB7JjFEx+qr7F0BlIyaA+eRNIOwvF5+g0zX8c0u1bOosuz 0zSmnN8WazUv7Z2pYnclG2m0UOiUcFHD/JyD5nvXVWAJNW6yOy7enYlq1h7w4b6r IgPbVPljhWJn3SXKLIkMYxHucx+fwy6epk+BkoUKKY843ptLF4sbE0LMyUqlJ7kM ca0Y2pNi5F6pg/DISJYptFj5gMc+ZupNDcOH4xGchpsjdbx+PCflgd9CXQUZ3415 bcJaGf1N5AVj8/kCffeLyDWFiNaXvjjuuvFEWM4anKkRW2cZL65I+xKr0s56Ups= -----END CERTIFICATE-----Generated at Thu Jun 19 02:27:47 2025 by rpki-client