$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa File: 321028ee-2e2d-410c-8bdc-39a00f2044f0.roa (raw, json) Hash identifier: J0bvDrpb0tw25reZGhoz9F/SG6MQ6cPEf0qb7/nUWek= Subject key identifier: 71:4B:31:0C:DE:B6:B0:70:28:C1:4B:15:26:76:01:3E:6C:18:98:A4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3245E5DF3A3A67C00C83B1B3E0CEBAE7B66535F4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa Signing time: Tue 20 May 2025 18:00:39 +0000 ROA not before: Tue 20 May 2025 18:00:39 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:45:e5:df:3a:3a:67:c0:0c:83:b1:b3:e0:ce:ba:e7:b6:65:35:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:39 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=288069075d9079fb0686d6b5e44ba4b98d006b4847526dd082515db725640e11, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:93:0a:ad:39:66:6d:cb:87:cd:bd:57:e2:fa: dd:58:6e:d9:dc:67:f6:3d:08:47:91:c4:5c:b7:cb: 25:8b:af:47:f8:01:34:33:40:2d:a7:05:6e:9b:e0: 8b:c4:af:4f:c5:b7:62:1e:40:be:47:0b:08:71:19: ef:91:ad:83:6d:cd:62:bf:52:0d:91:5f:ad:ec:2b: b1:58:a8:96:94:02:ce:ee:dd:82:5d:b0:32:7d:b5: d9:57:d2:cf:18:4d:26:7d:0c:9a:8f:ee:a6:23:72: c4:3c:f3:ac:a2:f0:7e:b7:d0:5a:b7:36:60:35:88: 8d:c0:73:8d:21:ef:87:0a:af:0d:96:ae:de:7c:fc: 0a:70:43:0f:89:55:df:f4:62:29:56:97:6b:01:c7: 41:05:4e:ec:c4:ab:c3:ae:b2:1f:2f:77:b2:9d:2b: a9:27:72:01:8b:e2:87:14:86:72:9c:62:bf:f7:2c: ca:96:de:72:dd:ae:af:42:31:4c:cd:81:3d:8e:bc: f3:d5:9f:ba:3e:e4:78:71:31:9e:dc:b9:4f:b0:0b: 96:dc:a6:bf:c7:65:8b:56:e2:2c:ed:73:70:76:be: 34:62:87:cb:a7:01:4f:f5:f8:14:d6:ec:c9:7d:4d: 2f:cc:60:b2:9d:bf:7a:52:93:cb:db:f3:66:dd:f1: c7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:4B:31:0C:DE:B6:B0:70:28:C1:4B:15:26:76:01:3E:6C:18:98:A4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption a6:ef:ae:f6:e9:f4:c1:e5:c4:70:30:c1:94:c0:ca:eb:91:4c: 26:ef:b2:8f:3e:4d:3f:07:f8:f9:c6:e1:bb:70:d8:84:ea:16: 0c:53:ea:b2:e8:ab:51:83:1c:99:bd:ff:57:f8:c2:51:a8:ff: bd:c2:a5:cb:42:c4:59:bf:3d:5a:f2:9b:db:82:7a:14:64:ab: d0:42:c6:ff:31:01:22:e7:78:39:bd:f1:42:fc:99:9f:13:be: 15:b6:3e:f7:f9:12:b4:c4:6b:c2:c0:9e:aa:fe:cd:f0:27:80: 28:f3:d8:97:08:7b:59:a3:09:bd:be:66:cc:7a:a4:78:25:7c: fd:bb:ed:e3:5d:63:b4:3b:7b:d5:99:14:e8:8c:2d:ea:87:ee: 5b:ed:8e:d2:9a:67:5b:99:99:a1:f6:b3:92:ad:e6:e4:40:06: 89:36:09:25:2e:53:cf:0a:9b:74:f7:bc:af:54:f1:3e:15:87: 3b:5f:5a:c3:bb:84:d3:38:7a:6b:c3:f3:ce:07:bd:ce:23:90: 72:91:d9:d4:f4:9e:42:b1:7a:86:c3:84:0e:3b:41:44:b8:b3: e6:92:51:30:36:be:8a:bf:8f:60:51:a9:27:87:57:0e:b9:0d: 45:72:b2:ce:80:3f:2e:6c:d5:34:46:c5:8e:41:36:4d:b6:a4: cb:b2:03:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMkXl3zo6Z8AMg7Gz4M6657ZlNfQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDM5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODgwNjkwNzVkOTA3OWZiMDY4NmQ2YjVlNDRiYTRiOThk MDA2YjQ4NDc1MjZkZDA4MjUxNWRiNzI1NjQwZTExMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZkwqtOWZty4fNvVfi+t1YbtncZ/Y9CEeRxFy3yyWLr0f4 ATQzQC2nBW6b4IvEr0/Ft2IeQL5HCwhxGe+RrYNtzWK/Ug2RX63sK7FYqJaUAs7u 3YJdsDJ9tdlX0s8YTSZ9DJqP7qYjcsQ886yi8H630Fq3NmA1iI3Ac40h74cKrw2W rt58/ApwQw+JVd/0YilWl2sBx0EFTuzEq8Oush8vd7KdK6kncgGL4ocUhnKcYr/3 LMqW3nLdrq9CMUzNgT2OvPPVn7o+5HhxMZ7cuU+wC5bcpr/HZYtW4iztc3B2vjRi h8unAU/1+BTW7Ml9TS/MYLKdv3pSk8vb82bd8cdfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcUsxDN62sHAowUsVJnYBPmwYmKQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzMyMTAyOGVlLTJlMmQtNDEwYy04YmRjLTM5YTAwZjIwNDRmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAKbvrvbp9MHlxHAwwZTAyuuR TCbvso8+TT8H+PnG4btw2ITqFgxT6rLoq1GDHJm9/1f4wlGo/73CpctCxFm/PVry m9uCehRkq9BCxv8xASLneDm98UL8mZ8TvhW2Pvf5ErTEa8LAnqr+zfAngCjz2JcI e1mjCb2+Zsx6pHglfP277eNdY7Q7e9WZFOiMLeqH7lvtjtKaZ1uZmaH2s5Kt5uRA Bok2CSUuU88Km3T3vK9U8T4VhztfWsO7hNM4emvD884Hvc4jkHKR2dT0nkKxeobD hA47QUS4s+aSUTA2voq/j2BRqSeHVw65DUVyss6APy5s1TRGxY5BNk22pMuyA1Q= -----END CERTIFICATE-----Generated at Sun Jun 15 19:57:43 2025 by rpki-client