$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4550dcb5-431c-4b07-9e46-224c71cb2b00.roa File: 4550dcb5-431c-4b07-9e46-224c71cb2b00.roa (raw, json) Hash identifier: KYi4a5hbZo9YWLcDoITLSIf3P7GGxarwpb8OsC+mSbc= Subject key identifier: 6C:CD:2D:1F:87:CE:84:BC:FE:6B:66:E3:4D:EF:D9:E1:D0:6A:3E:25 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 048301A8A6706747044AC398CB4133366832029B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4550dcb5-431c-4b07-9e46-224c71cb2b00.roa Signing time: Tue 20 May 2025 18:00:18 +0000 ROA not before: Tue 20 May 2025 18:00:18 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:83:01:a8:a6:70:67:47:04:4a:c3:98:cb:41:33:36:68:32:02:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:18 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=f95856a29f0cdfb9be25442974e7ef139bf152ea5553ea366614b1ace7936071, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5d:f5:db:e1:93:69:4b:6a:52:54:cc:b8:73: 93:3d:31:dd:b5:71:e6:21:d6:f3:14:57:78:28:4a: d6:f6:bb:52:62:ad:af:69:d2:63:95:af:f2:78:b8: fc:c3:e1:35:34:f5:3c:db:6d:a2:f9:82:02:a7:a8: a2:0d:d9:a9:79:e8:6c:38:54:d2:a1:a8:ed:73:6f: 1c:60:85:45:1f:1a:c2:b8:55:40:fa:e0:bf:18:5f: 0e:63:4e:91:71:35:5b:5a:ca:01:6c:f4:c9:34:8b: 44:22:df:70:ce:20:62:fd:67:dd:13:45:fd:09:27: 27:bc:64:ba:ac:94:3b:51:97:bb:01:19:8d:b4:7b: 84:83:26:fb:b5:d4:c7:c8:68:a1:26:77:96:ca:eb: 59:5a:85:6e:f8:e1:99:c3:d1:29:99:a5:f6:a8:28: 64:52:c7:e9:a8:03:0b:6b:5e:81:8a:1a:a8:06:d0: 91:9d:30:e5:b9:9d:af:a6:2d:1e:68:e3:b8:22:e2: c2:d8:6e:89:34:69:20:2b:bd:d2:31:4a:cb:8e:f1: f3:09:ec:8c:65:c3:79:a2:2f:fd:af:e3:79:b4:80: fe:56:e8:9c:70:df:a0:63:a0:1f:5d:42:65:9e:db: d1:75:5e:98:a2:de:a8:56:79:1a:33:33:35:c2:79: c2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CD:2D:1F:87:CE:84:BC:FE:6B:66:E3:4D:EF:D9:E1:D0:6A:3E:25 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4550dcb5-431c-4b07-9e46-224c71cb2b00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 01:26:a5:82:d7:0e:71:b7:bc:66:1a:b6:90:62:89:53:86:48: 23:3b:7b:93:7c:ec:5c:16:2e:63:55:7d:c5:bb:e3:04:7a:94: d0:b2:03:e4:16:7a:43:dc:95:1c:a7:8a:80:43:04:98:38:bf: a6:5c:30:db:8b:29:be:65:9c:65:66:0d:8f:10:d7:6f:dd:8c: f4:0f:fe:98:f7:30:c9:0c:c5:be:8c:4a:05:9c:3e:a4:15:23: 60:68:a0:c6:36:1e:c7:de:2c:1f:59:97:6a:94:5f:6b:60:2d: 70:4a:2a:f2:6e:8a:e5:28:f3:74:2f:b0:f5:98:6a:e0:2b:f5: 1f:63:21:5c:8c:ec:f8:75:1f:ca:e0:d9:b3:e5:16:0a:c4:98: 3d:1c:0e:4d:15:f2:99:72:dd:82:df:b3:68:ab:bd:7c:f5:40: 8c:7f:27:ae:32:77:0d:ec:74:ef:ca:c9:01:99:88:9f:9c:aa: 60:65:dd:b3:40:c3:bc:83:00:73:fb:3f:bb:9f:9f:55:64:55: b5:3c:27:39:b3:8e:82:5e:a6:43:6b:10:22:44:ad:51:9e:cc: a7:02:ea:b7:31:68:dc:ee:5f:b4:ec:79:c1:ad:73:c2:01:94: d9:52:10:4e:85:22:47:ed:fe:47:47:ca:58:cf:6a:91:10:c0: 1c:8c:f4:a6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBIMBqKZwZ0cESsOYy0EzNmgyApswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDE4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTU4NTZhMjlmMGNkZmI5YmUyNTQ0Mjk3NGU3ZWYxMzli ZjE1MmVhNTU1M2VhMzY2NjE0YjFhY2U3OTM2MDcxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYXfXb4ZNpS2pSVMy4c5M9Md21ceYh1vMUV3goStb2u1Ji ra9p0mOVr/J4uPzD4TU09TzbbaL5ggKnqKIN2al56Gw4VNKhqO1zbxxghUUfGsK4 VUD64L8YXw5jTpFxNVtaygFs9Mk0i0Qi33DOIGL9Z90TRf0JJye8ZLqslDtRl7sB GY20e4SDJvu11MfIaKEmd5bK61lahW744ZnD0SmZpfaoKGRSx+moAwtrXoGKGqgG 0JGdMOW5na+mLR5o47gi4sLYbok0aSArvdIxSsuO8fMJ7Ixlw3miL/2v43m0gP5W 6Jxw36BjoB9dQmWe29F1Xpii3qhWeRozMzXCecJTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbM0tH4fOhLz+a2bjTe/Z4dBqPiUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NTBkY2I1LTQzMWMtNGIwNy05ZTQ2LTIyNGM3MWNiMmIwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBAAEmpYLXDnG3vGYatpBiiVOG SCM7e5N87FwWLmNVfcW74wR6lNCyA+QWekPclRynioBDBJg4v6ZcMNuLKb5lnGVm DY8Q12/djPQP/pj3MMkMxb6MSgWcPqQVI2BooMY2HsfeLB9Zl2qUX2tgLXBKKvJu iuUo83QvsPWYauAr9R9jIVyM7Ph1H8rg2bPlFgrEmD0cDk0V8ply3YLfs2irvXz1 QIx/J64ydw3sdO/KyQGZiJ+cqmBl3bNAw7yDAHP7P7ufn1VkVbU8JzmzjoJepkNr ECJErVGezKcC6rcxaNzuX7TsecGtc8IBlNlSEE6FIkft/kdHyljPapEQwByM9KY= -----END CERTIFICATE-----Generated at Sun Jun 15 20:44:30 2025 by rpki-client