$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa File: 3b1d79f6-944a-4da0-acd2-15477b975226.roa (raw, json) Hash identifier: sNbSze1G7GU9L7KlExzBm9TG1yJFux4x6YHBv7QbTXg= Subject key identifier: 84:E7:AE:32:36:D0:AC:8E:5B:67:0C:89:D8:50:F6:00:35:69:A4:18 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4C003B19AB38EF7C0449DE719FF83903F5126F2A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa Signing time: Tue 20 May 2025 18:00:06 +0000 ROA not before: Tue 20 May 2025 18:00:06 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:00:3b:19:ab:38:ef:7c:04:49:de:71:9f:f8:39:03:f5:12:6f:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:06 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=8d03e4a26e473d25ed60cdadeec2da10986a9700e862653dc48edc8098d048c1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bc:08:7f:fe:8d:54:60:d8:d8:b1:3c:73:44: 7c:83:5a:84:35:9d:54:e8:a3:9e:11:df:26:ed:a6: 4d:da:0e:84:65:4c:46:45:4d:cd:04:4f:b1:bb:7e: ec:ef:93:b6:c0:15:8b:12:f9:be:fe:19:cb:18:d6: ad:b2:b8:15:9c:2f:ad:d8:7e:79:90:60:ad:e6:c3: 5e:b7:0b:1a:5a:88:48:24:07:10:b1:d9:f3:6c:03: 87:0e:b4:a8:ec:29:37:d4:0c:88:9a:c4:28:ed:14: b9:0d:cb:5a:39:33:34:eb:98:f8:48:24:da:6c:43: 34:34:41:fa:d9:0d:cf:bf:a2:02:f1:7e:bf:db:8f: 97:4a:0f:f5:0a:20:e0:72:72:65:0c:6b:d7:cc:35: 9f:04:78:82:2c:80:90:ee:41:e2:6a:41:d6:d3:05: 6c:f0:80:dd:62:99:a1:ca:2b:d2:32:13:d2:e6:93: 67:7e:8f:72:50:c7:30:31:1d:d9:99:67:d6:67:52: 0a:dd:68:e0:f6:cb:f3:a4:dd:da:19:4a:19:e1:d0: 7c:21:8f:b4:e8:d0:18:27:e1:e0:60:c5:65:97:79: a7:84:8b:ff:a2:8e:91:cd:b1:ac:04:f2:0c:ab:a7: d0:fb:6d:f7:da:2a:8f:cf:c3:43:42:15:61:73:68: 66:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E7:AE:32:36:D0:AC:8E:5B:67:0C:89:D8:50:F6:00:35:69:A4:18 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551b::/48 Signature Algorithm: sha256WithRSAEncryption 3d:9b:79:37:f5:fc:f6:a0:94:fe:48:d8:b1:c1:f1:c1:10:45: d6:cb:e0:0b:77:bd:28:11:e0:da:87:f5:28:60:87:df:f3:fc: f4:01:aa:e7:e6:c6:e8:a1:bf:82:27:80:61:cb:e3:8b:89:51: c8:b7:da:eb:2c:72:13:03:7e:48:82:67:5d:61:ea:42:d8:38: 59:80:33:48:c4:e0:61:c1:32:11:80:db:f9:dd:f4:e0:db:db: 90:ed:a3:b5:e6:23:4e:24:2b:9e:c1:cf:60:5e:18:87:f9:83: bb:0c:33:0d:13:49:c8:c0:7b:3e:c5:e5:b4:23:e7:de:48:b4: fc:28:c6:b0:c8:c9:a2:2e:67:ad:90:57:3e:6e:e1:b3:66:8e: ed:e5:c4:1f:0b:d0:be:19:b0:e2:e8:77:a4:e6:04:49:d2:e4: e6:df:33:83:ca:b3:4f:91:fc:37:ca:74:0e:4f:d6:06:26:97: c4:41:03:df:6f:49:26:1f:bb:0e:5a:a8:82:65:7c:d0:1a:ba: a1:dc:7c:18:80:c2:3c:1d:a4:97:6f:a7:ec:65:3d:7c:37:f6: b9:41:13:1f:20:a7:ac:ca:7d:30:9e:6b:31:1a:7c:3f:d3:86: 67:a4:d7:d7:3a:5a:e0:1f:10:28:7f:f1:c0:d0:e8:56:c9:68: 85:dd:9b:64 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTAA7Gas473wESd5xn/g5A/USbyowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDA2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDAzZTRhMjZlNDczZDI1ZWQ2MGNkYWRlZWMyZGExMDk4 NmE5NzAwZTg2MjY1M2RjNDhlZGM4MDk4ZDA0OGMxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKvAh//o1UYNjYsTxzRHyDWoQ1nVToo54R3ybtpk3aDoRl TEZFTc0ET7G7fuzvk7bAFYsS+b7+GcsY1q2yuBWcL63YfnmQYK3mw163CxpaiEgk BxCx2fNsA4cOtKjsKTfUDIiaxCjtFLkNy1o5MzTrmPhIJNpsQzQ0QfrZDc+/ogLx fr/bj5dKD/UKIOBycmUMa9fMNZ8EeIIsgJDuQeJqQdbTBWzwgN1imaHKK9IyE9Lm k2d+j3JQxzAxHdmZZ9ZnUgrdaOD2y/Ok3doZShnh0Hwhj7To0Bgn4eBgxWWXeaeE i/+ijpHNsawE8gyrp9D7bffaKo/Pw0NCFWFzaGZpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhOeuMjbQrI5bZwyJ2FD2ADVppBgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNiMWQ3OWY2LTk0NGEtNGRhMC1hY2QyLTE1NDc3Yjk3NTIyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRswDQYJKoZIhvcNAQELBQADggEBAD2beTf1/PaglP5I2LHB8cEQ RdbL4At3vSgR4NqH9Shgh9/z/PQBqufmxuihv4IngGHL44uJUci32usschMDfkiC Z11h6kLYOFmAM0jE4GHBMhGA2/nd9ODb25Dto7XmI04kK57Bz2BeGIf5g7sMMw0T ScjAez7F5bQj595ItPwoxrDIyaIuZ62QVz5u4bNmju3lxB8L0L4ZsOLod6TmBEnS 5ObfM4PKs0+R/DfKdA5P1gYml8RBA99vSSYfuw5aqIJlfNAauqHcfBiAwjwdpJdv p+xlPXw39rlBEx8gp6zKfTCeazEafD/Thmek19c6WuAfECh/8cDQ6FbJaIXdm2Q= -----END CERTIFICATE-----Generated at Mon Jun 16 10:37:20 2025 by rpki-client