$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/15261f12-a3b4-407e-9226-8285aa79061d.roa File: 15261f12-a3b4-407e-9226-8285aa79061d.roa (raw, json) Hash identifier: Djh6uK4HHXx83wJcTYqiW4kRyGHEZEHFNom3TRq7xdg= Subject key identifier: BB:2D:0C:42:08:F2:8B:22:76:1B:76:98:0F:95:33:B2:F9:0D:C5:C2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7A45BAF5FAE7C9F14523EF2EEB0327826BC7AC22 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/15261f12-a3b4-407e-9226-8285aa79061d.roa Signing time: Tue 10 Jun 2025 17:20:02 +0000 ROA not before: Tue 10 Jun 2025 17:20:02 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:45:ba:f5:fa:e7:c9:f1:45:23:ef:2e:eb:03:27:82:6b:c7:ac:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 10 17:20:02 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=29d52a23a600f751d9d78a1ee5aa18ecafb1aba573c59ccc4771590d29f97703, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:21:37:a9:2d:98:34:27:6c:4b:47:5f:53:39: 94:e5:77:65:e0:4b:f9:21:64:55:ca:64:fe:43:c9: 49:ba:d7:4e:98:a5:05:3c:5f:71:c8:0d:c7:fb:6d: 8e:e1:78:1e:3e:1c:7f:ac:70:b8:fb:39:40:0f:1d: 90:0d:11:98:3a:a2:b5:d6:05:64:b6:92:db:ef:a5: d3:12:fe:3b:c8:bf:1c:97:9b:41:bd:f6:19:31:0d: aa:8a:9d:11:e4:29:63:25:47:66:f9:e7:46:22:a2: 81:14:7d:d0:e2:ca:57:9b:06:ae:dc:8d:fe:40:3c: b9:f5:a6:df:1e:3c:c6:aa:fe:f1:f4:98:d7:1c:c5: 01:59:97:48:a5:41:3d:9b:25:93:12:e0:64:c4:f2: 97:98:24:98:74:48:a9:34:c7:5a:5b:2a:de:47:3d: 64:f3:71:e5:f2:d4:20:eb:8c:e4:97:af:e3:2b:dd: 00:67:22:c0:ec:7d:12:00:a6:4c:8c:5e:31:f3:e5: 88:f4:ca:50:3a:1d:28:81:59:2e:30:b9:1d:cf:a8: 3e:bb:83:1e:7c:dc:fa:22:28:60:77:fc:9a:62:9e: ca:bc:1b:a7:c2:ec:e5:83:bd:dd:1c:9a:1f:8e:64: b6:07:38:23:ff:f4:9c:c1:d7:76:75:5f:37:ab:22: 3f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:2D:0C:42:08:F2:8B:22:76:1B:76:98:0F:95:33:B2:F9:0D:C5:C2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/15261f12-a3b4-407e-9226-8285aa79061d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 5f:47:0b:93:65:59:8c:a2:4e:49:5f:07:06:eb:b3:d9:f8:eb: 2d:9c:de:bc:d0:e6:51:64:a2:9d:fe:2e:a2:23:2a:04:3e:83: e8:f5:18:d2:7a:1d:fa:c2:cf:e2:07:53:ef:16:4b:cb:e2:8e: ff:57:bd:00:f8:3b:1d:37:3a:24:ff:c1:76:69:65:eb:8c:e1: ae:79:a9:48:4d:f7:8b:40:2e:f5:6a:bc:60:3b:86:45:80:fe: 1f:1a:43:32:53:86:41:15:bb:76:ca:3b:90:c7:6a:2d:94:5e: 3d:22:f6:9b:4f:54:65:c2:2f:2f:06:09:44:32:d2:04:e5:b4: be:22:b8:56:ca:82:39:1d:3a:0a:73:e2:c5:02:9a:dc:4c:b2: 79:05:e1:13:81:f4:f0:52:18:68:18:44:f0:60:8a:8f:fa:3a: 92:ba:69:a5:8d:c8:77:73:ae:4b:3c:a5:24:e3:4d:c8:9e:0a: 53:5d:49:2f:af:96:a8:58:8d:0d:eb:43:1f:ef:91:8f:65:f3: 43:b9:ee:4c:cd:5f:78:d4:85:10:67:15:c8:7e:68:db:b1:d6: 4a:74:82:08:f3:93:db:62:b4:4e:23:c5:7e:d6:fa:64:b1:5d: aa:e7:82:f9:11:f0:61:b9:85:de:e4:85:94:01:66:ae:7e:cd: 63:f5:c5:78 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUekW69frnyfFFI+8u6wMngmvHrCIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjEwMTcyMDAyWhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWQ1MmEyM2E2MDBmNzUxZDlkNzhhMWVlNWFhMThlY2Fm YjFhYmE1NzNjNTljY2M0NzcxNTkwZDI5Zjk3NzAzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsITepLZg0J2xLR19TOZTld2XgS/khZFXKZP5DyUm6106Y pQU8X3HIDcf7bY7heB4+HH+scLj7OUAPHZANEZg6orXWBWS2ktvvpdMS/jvIvxyX m0G99hkxDaqKnRHkKWMlR2b550YiooEUfdDiylebBq7cjf5APLn1pt8ePMaq/vH0 mNccxQFZl0ilQT2bJZMS4GTE8peYJJh0SKk0x1pbKt5HPWTzceXy1CDrjOSXr+Mr 3QBnIsDsfRIApkyMXjHz5Yj0ylA6HSiBWS4wuR3PqD67gx583PoiKGB3/Jpinsq8 G6fC7OWDvd0cmh+OZLYHOCP/9JzB13Z1XzerIj/zAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUuy0MQgjyiyJ2G3aYD5UzsvkNxcIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE1MjYxZjEyLWEzYjQtNDA3ZS05MjI2LTgyODVhYTc5MDYxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAX0cLk2VZjKJOSV8HBuuz2fjr LZzevNDmUWSinf4uoiMqBD6D6PUY0nod+sLP4gdT7xZLy+KO/1e9APg7HTc6JP/B dmll64zhrnmpSE33i0Au9Wq8YDuGRYD+HxpDMlOGQRW7dso7kMdqLZRePSL2m09U ZcIvLwYJRDLSBOW0viK4VsqCOR06CnPixQKa3EyyeQXhE4H08FIYaBhE8GCKj/o6 krpppY3Id3OuSzylJONNyJ4KU11JL6+WqFiNDetDH++Rj2XzQ7nuTM1feNSFEGcV yH5o27HWSnSCCPOT22K0TiPFftb6ZLFdqueC+RHwYbmF3uSFlAFmrn7NY/XFeA== -----END CERTIFICATE-----Generated at Mon Jun 16 09:35:23 2025 by rpki-client