$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa File: 37e5da86-98ab-4d9c-889e-6ab6e277d866.roa (raw, json) Hash identifier: XwIHZueUsJo1vlI5fn5WEIA1S1KJyPQYhtTM6ORyTV0= Subject key identifier: C2:37:25:D7:87:D0:0D:F4:7C:4C:13:38:A5:42:DD:20:F0:09:33:28 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7DD95CD08EA522D2DE5C65159FA5F4C527ADF77A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa Signing time: Tue 20 May 2025 18:00:03 +0000 ROA not before: Tue 20 May 2025 18:00:03 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d9:5c:d0:8e:a5:22:d2:de:5c:65:15:9f:a5:f4:c5:27:ad:f7:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:03 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=d79f6e4edebb4917122b374284b896143c8972fc8e0be082949a75f7c8fa906f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:81:46:4c:72:6f:6d:1e:11:64:e1:eb:8f:a0: 39:47:73:5d:04:8d:3d:e6:6a:e0:50:53:00:e0:c4: e7:86:d2:55:19:d2:5d:85:33:17:2b:ff:e2:d2:c2: be:84:db:62:15:0f:43:62:4f:b5:8a:d3:d6:39:43: 43:3d:d1:54:59:ce:63:8e:4a:13:7a:3c:cc:b4:8c: 65:ae:fe:5c:0e:84:88:e8:69:f3:6a:54:34:f5:f9: 84:d2:cb:41:bf:9c:87:96:9a:7a:53:42:bc:8e:ca: 28:ac:28:73:a7:8e:f8:9a:7d:59:d1:d2:83:88:13: 1c:df:0e:06:56:e7:0b:39:be:a8:83:77:4e:4c:16: ad:7d:2d:a9:63:5f:86:6b:f7:56:0f:9b:15:a5:cf: 54:a3:7d:8c:a8:c2:14:bb:97:53:0d:2c:7a:d5:9f: 57:7c:de:8c:89:18:0d:a3:8e:12:0a:4a:d5:0e:96: 5d:f5:cb:e6:d0:48:ba:89:48:50:74:5c:29:24:cf: ca:cc:d8:f1:23:12:fb:28:c8:c3:65:72:b6:4c:97: 46:0c:47:64:ca:fd:e6:51:26:f0:1c:58:83:b8:86: 2f:04:4f:8d:29:6d:7a:b6:b7:0e:71:84:28:1a:79: 78:30:22:14:b0:b5:65:05:68:ab:a1:7a:65:db:2b: 3d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:37:25:D7:87:D0:0D:F4:7C:4C:13:38:A5:42:DD:20:F0:09:33:28 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1::/48 Signature Algorithm: sha256WithRSAEncryption a2:85:6f:60:ad:25:e2:2c:71:d0:18:82:8b:dc:50:3d:e5:b6: 59:88:41:a6:48:9a:de:35:f1:df:b4:89:4b:5b:30:51:9b:96: cd:8b:30:54:06:77:4a:6b:90:9d:a0:98:98:94:41:f4:0e:0e: dc:28:f9:d8:51:c3:8a:cf:be:88:11:02:50:69:f6:1d:4f:69: 71:5e:4d:a6:7c:d7:45:82:b6:f0:89:36:d9:6d:dd:de:8d:a6: 6c:4b:4d:34:4d:de:b7:3d:ce:92:cf:90:0e:26:56:f8:54:47: 03:97:64:2a:e9:a9:80:0b:78:63:28:5a:80:d7:85:a5:7f:a8: 63:1b:50:b0:ea:4a:2b:d7:24:03:35:c3:7c:1f:56:5a:1d:fe: 44:4b:33:10:d9:db:b7:cb:65:64:fa:e2:e0:d2:1b:c3:62:05: 02:27:4a:6c:34:1c:09:16:8b:bc:10:34:ff:1a:c5:9c:e8:8d: 61:07:ae:a0:a4:9d:c1:00:38:d6:b4:17:62:d3:bc:cf:b3:b3: 36:10:af:a9:e2:93:e4:26:96:9f:d9:bd:01:da:24:d7:42:66: e1:e0:fb:7d:e2:0b:a6:36:0e:d0:10:bd:7c:34:c2:e8:52:8d: 72:9e:c1:d1:75:ea:55:45:a7:5b:a5:c1:e5:2d:03:82:34:66: 39:52:75:9a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfdlc0I6lItLeXGUVn6X0xSet93owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDAzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzlmNmU0ZWRlYmI0OTE3MTIyYjM3NDI4NGI4OTYxNDNj ODk3MmZjOGUwYmUwODI5NDlhNzVmN2M4ZmE5MDZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxgUZMcm9tHhFk4euPoDlHc10EjT3mauBQUwDgxOeG0lUZ 0l2FMxcr/+LSwr6E22IVD0NiT7WK09Y5Q0M90VRZzmOOShN6PMy0jGWu/lwOhIjo afNqVDT1+YTSy0G/nIeWmnpTQryOyiisKHOnjviafVnR0oOIExzfDgZW5ws5vqiD d05MFq19LaljX4Zr91YPmxWlz1SjfYyowhS7l1MNLHrVn1d83oyJGA2jjhIKStUO ll31y+bQSLqJSFB0XCkkz8rM2PEjEvsoyMNlcrZMl0YMR2TK/eZRJvAcWIO4hi8E T40pbXq2tw5xhCgaeXgwIhSwtWUFaKuhemXbKz0FAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwjcl14fQDfR8TBM4pULdIPAJMygwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM3ZTVkYTg2LTk4YWItNGQ5Yy04ODllLTZhYjZlMjc3ZDg2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAEwDQYJKoZIhvcNAQELBQADggEBAKKFb2CtJeIscdAYgovcUD3l tlmIQaZImt418d+0iUtbMFGbls2LMFQGd0prkJ2gmJiUQfQODtwo+dhRw4rPvogR AlBp9h1PaXFeTaZ810WCtvCJNtlt3d6NpmxLTTRN3rc9zpLPkA4mVvhURwOXZCrp qYALeGMoWoDXhaV/qGMbULDqSivXJAM1w3wfVlod/kRLMxDZ27fLZWT64uDSG8Ni BQInSmw0HAkWi7wQNP8axZzojWEHrqCkncEAONa0F2LTvM+zszYQr6nik+Qmlp/Z vQHaJNdCZuHg+33iC6Y2DtAQvXw0wuhSjXKewdF16lVFp1ulweUtA4I0ZjlSdZo= -----END CERTIFICATE-----Generated at Sat Jun 14 06:44:13 2025 by rpki-client