$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa File: 0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa (raw, json) Hash identifier: +Bt3O43fniB4ugNh5ICdcFEbLm4LoKQ10HviZzLy0Hs= Subject key identifier: EC:9E:34:DC:4E:C3:CF:77:F5:E5:B6:0E:32:5A:EB:56:C4:6B:05:0D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7CD2B9A84320C01B68571019BFDDB2CFA21E93C6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa Signing time: Tue 20 May 2025 18:00:50 +0000 ROA not before: Tue 20 May 2025 18:00:50 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d2:b9:a8:43:20:c0:1b:68:57:10:19:bf:dd:b2:cf:a2:1e:93:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:50 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=7dd2912a0434aa26b2415be54c49509fdb67525fd9fefb2ad5beab7631b58619, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:61:2f:f3:95:8c:67:5b:fd:09:10:47:ae:43: df:b7:c7:5b:ba:e7:99:f0:c2:9b:3b:2d:af:b0:c3: 88:ac:59:0b:1b:d6:fb:f2:bc:64:aa:4c:d7:bc:a4: 03:d5:0f:f4:34:27:c6:3b:43:76:7e:85:5b:0f:b2: bb:e4:3a:bd:00:fc:a2:0f:7a:dd:17:8d:ea:32:9d: d7:42:ee:88:d0:39:55:90:17:7a:05:97:05:fd:16: 63:24:86:9c:76:c4:bf:b3:32:88:76:29:27:3f:f0: 78:d5:11:d1:a7:6c:21:a9:17:74:cf:ef:83:2a:de: 20:a7:49:d3:b2:38:a9:37:c3:6f:a1:1a:70:b2:42: 07:86:70:d5:b9:fd:3a:fe:89:c9:b2:33:e2:11:3c: ac:d2:d5:e8:e3:51:44:db:f4:43:ae:45:92:f6:6a: 7c:c9:1a:52:aa:c6:1b:13:8b:06:ed:f8:dd:04:ea: 16:a5:bb:2b:47:6a:7b:6f:21:6a:9d:6d:e3:b1:a0: 68:e6:8c:93:1b:2f:0a:d9:7b:f6:28:85:b4:98:a6: c2:68:3b:ac:e0:94:70:27:e3:af:d8:e5:17:cb:f8: a5:c3:1f:0d:3f:3b:38:67:58:eb:4a:3b:60:65:72: f4:0b:81:07:d5:51:6f:25:87:ca:23:6e:9c:f7:dc: f6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:9E:34:DC:4E:C3:CF:77:F5:E5:B6:0E:32:5A:EB:56:C4:6B:05:0D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:20::/48 Signature Algorithm: sha256WithRSAEncryption 49:04:c8:17:77:5d:f6:76:25:df:96:67:aa:6f:ad:a0:57:06: dd:2b:97:63:48:aa:93:42:ba:db:d2:f1:db:ff:9e:45:b8:b8: 5f:c4:f4:40:0b:d3:8f:c1:bd:6f:ea:19:3d:eb:41:46:5d:02: da:ec:9f:0e:94:74:d4:a1:25:30:3a:15:57:61:5c:5b:ac:e1: 29:86:8f:8b:ea:a8:95:7d:ad:0d:67:06:88:6f:f8:ba:a3:3a: d1:ce:de:32:ea:88:ce:97:5f:34:a9:71:77:b8:0e:57:46:ab: d3:02:4b:3b:32:c3:04:a5:af:67:81:82:43:36:ae:69:8a:47: a8:c7:06:0a:ad:78:49:5b:45:b1:47:19:cb:11:16:1c:61:25: 2d:fd:ba:27:f2:2b:27:5e:dd:09:f4:bc:d6:81:72:a8:aa:b6: 92:37:8b:ab:f3:68:23:3c:cf:7c:dd:93:e4:40:a9:62:fa:9f: 86:e7:dc:3a:40:1b:a5:ed:93:d2:d1:48:5a:0b:00:b7:a2:38: e3:33:ef:10:f0:fe:47:dd:13:1a:65:a1:0d:e9:81:82:24:1a: b3:eb:60:1f:9c:6e:9f:47:7c:0c:c7:db:a3:e0:d6:59:aa:4f: e5:62:62:0d:66:cb:ea:51:01:4c:5b:30:75:8f:ca:bf:ed:9b: 0e:7d:c2:aa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfNK5qEMgwBtoVxAZv92yz6Iek8YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDUwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZGQyOTEyYTA0MzRhYTI2YjI0MTViZTU0YzQ5NTA5ZmRi Njc1MjVmZDlmZWZiMmFkNWJlYWI3NjMxYjU4NjE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuYS/zlYxnW/0JEEeuQ9+3x1u655nwwps7La+ww4isWQsb 1vvyvGSqTNe8pAPVD/Q0J8Y7Q3Z+hVsPsrvkOr0A/KIPet0XjeoynddC7ojQOVWQ F3oFlwX9FmMkhpx2xL+zMoh2KSc/8HjVEdGnbCGpF3TP74Mq3iCnSdOyOKk3w2+h GnCyQgeGcNW5/Tr+icmyM+IRPKzS1ejjUUTb9EOuRZL2anzJGlKqxhsTiwbt+N0E 6haluytHantvIWqdbeOxoGjmjJMbLwrZe/YohbSYpsJoO6zglHAn46/Y5RfL+KXD Hw0/OzhnWOtKO2BlcvQLgQfVUW8lh8ojbpz33PblAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7J403E7Dz3f15bYOMlrrVsRrBQ0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiODljNGZlLTY3MzAtNGY2MC1iYzRjLWVhMTZiMTljMmMzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwACAwDQYJKoZIhvcNAQELBQADggEBAEkEyBd3XfZ2Jd+WZ6pvraBX Bt0rl2NIqpNCutvS8dv/nkW4uF/E9EAL04/BvW/qGT3rQUZdAtrsnw6UdNShJTA6 FVdhXFus4SmGj4vqqJV9rQ1nBohv+LqjOtHO3jLqiM6XXzSpcXe4DldGq9MCSzsy wwSlr2eBgkM2rmmKR6jHBgqteElbRbFHGcsRFhxhJS39uifyKyde3Qn0vNaBcqiq tpI3i6vzaCM8z3zdk+RAqWL6n4bn3DpAG6Xtk9LRSFoLALeiOOMz7xDw/kfdExpl oQ3pgYIkGrPrYB+cbp9HfAzH26Pg1lmqT+ViYg1my+pRAUxbMHWPyr/tmw59wqo= -----END CERTIFICATE-----Generated at Sat Jun 14 06:01:02 2025 by rpki-client