$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa File: 0b456d9a-b78d-45ba-9949-b00a9581f118.roa (raw, json) Hash identifier: pIVRoKKMk+bObMjI7bAlUXq3Hb+oLOKgtfjs+sdtzjc= Subject key identifier: A5:48:A4:E0:09:C1:D7:BC:D4:4E:38:37:AB:0E:7F:4C:C9:BE:26:AF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 48CCEEDF821F6C0956FE15423064E6B915F54BAB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa Signing time: Tue 20 May 2025 18:10:48 +0000 ROA not before: Tue 20 May 2025 18:10:48 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:cc:ee:df:82:1f:6c:09:56:fe:15:42:30:64:e6:b9:15:f5:4b:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:48 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=73809f88b3985cffa3029c0ae72c645325d71193407eddb10a01726df91298ce, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f0:f1:7d:81:84:95:b6:d3:4b:bb:96:88:5d: 79:58:2f:57:98:13:64:8d:0d:36:5e:58:53:7d:8d: 86:d0:79:63:57:57:f7:fa:da:20:ee:6b:0d:4e:2c: 1e:42:4e:95:fc:27:59:b3:fd:2b:03:b4:58:2a:b8: c2:e5:c6:c2:a1:6e:cf:3b:60:d4:11:7e:9d:16:5d: 42:80:5e:21:e9:e9:95:ca:a2:a0:fe:4c:2c:4a:88: 54:7b:fd:1f:3c:b5:c4:e0:ae:51:dd:96:6f:07:53: d8:9e:f6:1e:ed:75:0b:31:64:b3:f2:13:1e:bd:bf: de:e5:be:3e:f3:b2:e1:e9:4d:8b:bd:50:b1:a3:1a: 06:e2:77:cc:f2:cd:5b:a3:39:f5:89:8d:1a:9f:c9: e6:e6:4f:5b:34:ed:2c:5b:57:6a:bb:d5:1b:b4:92: fe:55:4b:72:08:10:eb:17:32:c6:40:a5:3a:b3:90: 55:4e:7d:05:d7:d7:6c:c0:8a:ab:69:59:a7:87:07: 3c:03:9e:06:09:f8:fc:05:1a:5c:63:f6:95:45:19: 51:04:f2:c7:f4:26:71:9a:d1:cd:7b:05:c1:af:d3: db:3c:be:ce:0e:8f:c8:0b:0e:8a:34:48:d9:22:c8: 6f:72:62:c1:b2:76:8b:ee:95:11:60:05:22:ee:44: 78:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:48:A4:E0:09:C1:D7:BC:D4:4E:38:37:AB:0E:7F:4C:C9:BE:26:AF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/42 Signature Algorithm: sha256WithRSAEncryption 43:32:4d:d3:a1:3e:bf:39:1b:57:78:7d:95:2f:8c:ad:90:24: 66:db:30:cd:e4:66:48:56:57:26:48:2b:45:71:17:1e:81:a6: 82:51:6a:4f:b2:a4:39:4c:6b:5f:6e:52:aa:f5:73:c4:af:90: 06:1b:f9:00:27:b6:3d:46:bd:1c:38:e0:f5:c4:ad:91:73:4b: 08:3c:63:bb:5f:4f:51:51:d2:76:8f:2b:71:b0:3c:9e:db:76: 65:8d:6b:67:6c:50:e7:06:4e:f9:96:39:37:67:1f:e4:f7:6b: 9b:8d:9a:5a:14:71:21:f3:95:00:1d:73:53:23:d9:29:18:39: 2a:90:d8:22:3d:0d:01:74:7b:5b:7d:a3:b1:59:d4:40:35:a0: 93:ea:c8:4b:36:f4:5c:f2:68:2c:4d:eb:f9:d2:1c:30:f8:ea: 65:65:14:e7:27:cb:25:91:06:be:35:cd:c9:96:a9:19:81:2e: 71:54:6d:07:9c:f4:7f:49:ac:d5:b9:6c:35:9f:ad:0f:eb:ac: 89:5d:2f:8f:97:6d:12:9a:4e:da:3d:50:00:8c:a0:aa:aa:1c: 43:38:d5:d4:d9:e9:d7:b8:0b:07:98:6e:f2:59:2a:b6:0a:f8: de:be:b5:33:50:a6:6b:97:04:5b:02:0d:6e:39:62:d0:58:58: 4c:ee:68:a7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSMzu34IfbAlW/hVCMGTmuRX1S6swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDQ4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzgwOWY4OGIzOTg1Y2ZmYTMwMjljMGFlNzJjNjQ1MzI1 ZDcxMTkzNDA3ZWRkYjEwYTAxNzI2ZGY5MTI5OGNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCV8PF9gYSVttNLu5aIXXlYL1eYE2SNDTZeWFN9jYbQeWNX V/f62iDuaw1OLB5CTpX8J1mz/SsDtFgquMLlxsKhbs87YNQRfp0WXUKAXiHp6ZXK oqD+TCxKiFR7/R88tcTgrlHdlm8HU9ie9h7tdQsxZLPyEx69v97lvj7zsuHpTYu9 ULGjGgbid8zyzVujOfWJjRqfyebmT1s07SxbV2q71Ru0kv5VS3IIEOsXMsZApTqz kFVOfQXX12zAiqtpWaeHBzwDngYJ+PwFGlxj9pVFGVEE8sf0JnGa0c17BcGv09s8 vs4Oj8gLDoo0SNkiyG9yYsGydovulRFgBSLuRHhXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpUik4AnB17zUTjg3qw5/TMm+Jq8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiNDU2ZDlhLWI3OGQtNDViYS05OTQ5LWIwMGE5NTgxZjExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77AAwDQYJKoZIhvcNAQELBQADggEBAEMyTdOhPr85G1d4fZUvjK2Q JGbbMM3kZkhWVyZIK0VxFx6BpoJRak+ypDlMa19uUqr1c8SvkAYb+QAntj1GvRw4 4PXErZFzSwg8Y7tfT1FR0naPK3GwPJ7bdmWNa2dsUOcGTvmWOTdnH+T3a5uNmloU cSHzlQAdc1Mj2SkYOSqQ2CI9DQF0e1t9o7FZ1EA1oJPqyEs29FzyaCxN6/nSHDD4 6mVlFOcnyyWRBr41zcmWqRmBLnFUbQec9H9JrNW5bDWfrQ/rrIldL4+XbRKaTto9 UACMoKqqHEM41dTZ6de4CweYbvJZKrYK+N6+tTNQpmuXBFsCDW45YtBYWEzuaKc= -----END CERTIFICATE-----Generated at Sat Jun 14 18:54:34 2025 by rpki-client