$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa File: 1ad26571-c674-4a73-b205-77cb32fe83bd.roa (raw, json) Hash identifier: JIVYeADc+qNJHPyl0mxP3vAFFIw4tEmoFj395Dj6ce8= Subject key identifier: CB:F9:9C:6F:10:3C:5D:6E:FF:0B:DD:06:7D:22:16:80:4C:12:D9:93 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5755956E17C829311E78EC3358BCC77280C52BBC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa Signing time: Tue 20 May 2025 18:00:49 +0000 ROA not before: Tue 20 May 2025 18:00:49 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:55:95:6e:17:c8:29:31:1e:78:ec:33:58:bc:c7:72:80:c5:2b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:49 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=1a9707baecca0e45e263e6502f7c21e1dcdcc4095741ffc144db254ab4979b42, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:37:47:95:78:a0:c7:52:67:27:63:fc:3a:0e: ae:b3:aa:74:94:06:a6:69:b4:49:a3:02:1a:5d:9f: e6:df:75:26:e4:a1:b3:51:ea:be:ec:ed:30:c3:54: 12:98:3d:7c:ae:0a:9a:10:e7:91:df:37:65:23:da: 17:17:d2:1d:73:4e:b0:60:e8:a8:95:d3:21:20:d1: 09:02:a3:2f:88:7a:76:c6:bf:8b:67:13:16:01:54: 37:c5:6e:8b:62:b6:47:1c:a7:80:be:9d:c8:a7:25: 4b:aa:0b:de:86:c1:38:ab:2e:30:3f:31:c5:99:5d: b5:8f:57:1d:63:32:be:e9:31:6e:99:6d:b1:80:42: 0a:55:d2:e7:80:69:0d:42:6a:c1:99:71:bf:29:86: b3:b5:14:a4:3c:82:3e:12:f9:8d:00:ab:f7:5c:f4: 61:6f:c1:67:66:32:49:ed:52:aa:4c:6a:fc:68:d0: 0a:a3:e7:c6:76:25:f4:a8:b3:2a:7e:89:97:74:3f: a7:73:e1:be:5f:fa:bb:56:e4:ae:56:1f:b3:10:9e: 9a:33:44:05:6e:e2:14:65:9a:54:9c:bb:a2:14:b0: b2:af:f3:ec:a1:77:71:e7:16:d2:8d:7a:ed:33:4d: 34:aa:fa:72:a6:59:68:b6:5c:3c:6c:03:1f:42:e8: 1c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F9:9C:6F:10:3C:5D:6E:FF:0B:DD:06:7D:22:16:80:4C:12:D9:93 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10::/48 Signature Algorithm: sha256WithRSAEncryption 28:d1:18:73:bf:14:6f:b4:6d:53:9e:6c:05:ce:7e:f9:ce:cc: 12:f3:c0:91:df:4c:4a:90:0c:8e:1e:e9:eb:26:43:8c:8b:ba: 55:09:a1:96:c1:fe:59:a2:6c:f1:7d:81:37:c9:b1:a5:f9:2f: 12:10:e3:e7:0c:9c:75:88:a2:54:ff:79:bb:dd:ee:a1:e8:07: 92:0f:35:86:5a:ea:fe:b0:ac:90:93:37:c8:db:ff:93:56:f5: 2f:98:67:c8:f8:9e:c7:ff:45:79:c2:08:20:49:13:e3:e6:b7: f9:e6:00:4a:6b:d0:4c:82:d1:d8:65:74:85:3e:6e:7a:7f:64: 6a:0b:6d:d3:44:4c:31:2a:a1:43:8b:cd:37:05:18:6b:38:27: d0:f2:b8:33:7e:2d:ac:b2:a0:0e:53:83:fe:20:f2:11:a8:fb: 15:95:e6:b0:7c:3a:7f:78:91:1e:71:0e:5a:4d:d5:90:22:e0: 8d:6a:98:04:e8:2d:fe:50:f5:89:07:8d:94:73:ac:c4:05:3f: 34:ca:ba:9e:80:df:c0:5e:73:12:f1:cd:99:2e:79:f0:3d:d5: fd:bc:ec:34:f0:ad:12:eb:48:c7:ac:72:38:d7:ed:74:17:e5: 81:23:b0:78:6c:9d:cb:cf:09:02:f8:de:36:a5:bb:51:3e:95: 5c:27:8b:52 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUV1WVbhfIKTEeeOwzWLzHcoDFK7wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDQ5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTk3MDdiYWVjY2EwZTQ1ZTI2M2U2NTAyZjdjMjFlMWRj ZGNjNDA5NTc0MWZmYzE0NGRiMjU0YWI0OTc5YjQyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeN0eVeKDHUmcnY/w6Dq6zqnSUBqZptEmjAhpdn+bfdSbk obNR6r7s7TDDVBKYPXyuCpoQ55HfN2Uj2hcX0h1zTrBg6KiV0yEg0QkCoy+IenbG v4tnExYBVDfFbotitkccp4C+ncinJUuqC96GwTirLjA/McWZXbWPVx1jMr7pMW6Z bbGAQgpV0ueAaQ1CasGZcb8phrO1FKQ8gj4S+Y0Aq/dc9GFvwWdmMkntUqpMavxo 0Aqj58Z2JfSosyp+iZd0P6dz4b5f+rtW5K5WH7MQnpozRAVu4hRlmlScu6IUsLKv 8+yhd3HnFtKNeu0zTTSq+nKmWWi2XDxsAx9C6BytAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUy/mcbxA8XW7/C90GfSIWgEwS2ZMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhZDI2NTcxLWM2NzQtNGE3My1iMjA1LTc3Y2IzMmZlODNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABAwDQYJKoZIhvcNAQELBQADggEBACjRGHO/FG+0bVOebAXOfvnO zBLzwJHfTEqQDI4e6esmQ4yLulUJoZbB/lmibPF9gTfJsaX5LxIQ4+cMnHWIolT/ ebvd7qHoB5IPNYZa6v6wrJCTN8jb/5NW9S+YZ8j4nsf/RXnCCCBJE+Pmt/nmAEpr 0EyC0dhldIU+bnp/ZGoLbdNETDEqoUOLzTcFGGs4J9DyuDN+LayyoA5Tg/4g8hGo +xWV5rB8On94kR5xDlpN1ZAi4I1qmAToLf5Q9YkHjZRzrMQFPzTKup6A38BecxLx zZkuefA91f287DTwrRLrSMescjjX7XQX5YEjsHhsncvPCQL43jalu1E+lVwni1I= -----END CERTIFICATE-----Generated at Sun Jun 15 08:43:48 2025 by rpki-client