$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa File: 48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa (raw, json) Hash identifier: xxzC5MUGGWPZzbkZAijVGKXJqh1cracKWJOdV/P370c= Subject key identifier: 1F:C3:E9:62:67:C1:61:44:A4:8E:CC:4C:5D:84:C3:B4:D5:1D:36:A8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 33D8D63A22FFB3E0A906FF38480F6E343AF911C2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa Signing time: Fri 30 May 2025 19:06:59 +0000 ROA not before: Fri 30 May 2025 19:06:59 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:108::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:d8:d6:3a:22:ff:b3:e0:a9:06:ff:38:48:0f:6e:34:3a:f9:11:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 30 19:06:59 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=e0a365386afdf1ae3cbd5e63df1d4670b286eb33c69295a854216af14cb725cc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d7:78:76:84:6f:72:0b:fb:ce:c2:02:d8:e0: 53:58:3a:6d:1a:93:37:5f:75:d5:21:a1:bd:10:34: 8d:39:d0:ba:40:d1:5f:ce:08:c4:46:28:aa:48:ba: 8f:87:60:9f:e1:cc:c5:b6:d8:30:33:65:7c:c4:cc: 2a:5c:42:11:46:25:84:21:61:de:8f:d2:b0:14:e5: f2:b9:a9:b9:b0:e7:f6:b7:ea:51:72:42:31:cf:69: 31:c5:a9:4e:72:35:cd:b3:32:df:07:c5:92:f1:f0: 11:98:63:b5:b0:fd:56:87:2c:d3:bb:0f:5f:ea:df: 0d:95:8b:8c:9e:68:65:90:ab:47:4f:6d:ac:00:3b: 35:4b:49:bb:b3:48:52:a7:67:a2:af:06:c4:17:18: 2c:f3:61:80:82:84:50:ad:76:da:de:cf:95:c1:ba: 73:1d:49:0b:3f:ce:d0:4a:df:0a:b5:21:fb:85:08: e3:8d:8a:85:ef:63:d2:e8:30:48:0c:b5:de:0c:69: 91:f8:30:55:f6:56:99:f6:ab:d4:52:dd:30:d1:aa: 3d:5f:27:68:cc:f4:47:c8:2c:8c:e8:de:9e:42:9d: 8e:bc:6b:b6:64:29:b8:ab:08:c9:d8:68:7b:6e:08: c4:3d:d5:9c:9c:18:15:68:d1:a7:2b:da:27:a4:13: 98:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C3:E9:62:67:C1:61:44:A4:8E:CC:4C:5D:84:C3:B4:D5:1D:36:A8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:108::/47 Signature Algorithm: sha256WithRSAEncryption 09:d7:1a:75:10:cd:41:24:25:6d:8c:79:36:1c:e3:a0:62:88: b9:1c:53:e7:be:3a:1a:a5:90:41:6e:1a:7f:7e:14:2d:b7:4a: f1:67:eb:d3:35:2e:04:67:99:86:cd:e2:72:c7:38:26:b0:4a: 6d:19:79:8e:5c:37:96:5e:1c:ef:e1:71:88:cd:f5:fd:42:50: e4:01:bd:9b:de:0d:10:de:0e:99:42:e2:c6:49:29:fa:c5:5c: e6:95:1c:a8:d5:45:d6:6f:a9:c9:cb:c6:a5:da:d7:cb:d0:bd: e7:98:dd:5e:22:c2:13:b6:62:06:16:ff:43:2b:f6:ff:df:9d: a0:12:8a:0e:0f:79:f8:76:16:a2:7a:c7:2d:97:01:21:b4:1a: c7:a5:cc:76:a6:bb:2b:b8:4e:59:a3:f0:f3:3a:d1:47:5c:1b: 8e:c7:d0:2c:cb:96:35:ad:79:6e:30:d1:e2:02:bc:82:7f:96: 5c:e1:16:33:41:c9:de:1e:dd:24:6e:5b:7f:b5:16:c6:88:75: e4:fe:3e:f3:2a:7f:08:ed:79:12:9b:da:68:1d:3d:25:f5:50: 85:4c:5e:2d:33:9a:b7:14:c2:0c:74:36:2d:50:7d:ef:93:d1: 41:12:bf:49:c3:bd:73:75:e9:74:37:d0:d9:05:fb:17:37:68: 83:3f:96:84 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUM9jWOiL/s+CpBv84SA9uNDr5EcIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTMwMTkwNjU5WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGEzNjUzODZhZmRmMWFlM2NiZDVlNjNkZjFkNDY3MGIy ODZlYjMzYzY5Mjk1YTg1NDIxNmFmMTRjYjcyNWNjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ13h2hG9yC/vOwgLY4FNYOm0akzdfddUhob0QNI050LpA 0V/OCMRGKKpIuo+HYJ/hzMW22DAzZXzEzCpcQhFGJYQhYd6P0rAU5fK5qbmw5/a3 6lFyQjHPaTHFqU5yNc2zMt8HxZLx8BGYY7Ww/VaHLNO7D1/q3w2Vi4yeaGWQq0dP bawAOzVLSbuzSFKnZ6KvBsQXGCzzYYCChFCtdtrez5XBunMdSQs/ztBK3wq1IfuF COONioXvY9LoMEgMtd4MaZH4MFX2Vpn2q9RS3TDRqj1fJ2jM9EfILIzo3p5CnY68 a7ZkKbirCMnYaHtuCMQ91ZycGBVo0acr2iekE5jPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUH8PpYmfBYUSkjsxMXYTDtNUdNqgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ4NzEzOTA5LWMxZjMtNDY2NC05YzgzLWQzZjBiYTc3YTdmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQgwDQYJKoZIhvcNAQELBQADggEBAAnXGnUQzUEkJW2MeTYc46Bi iLkcU+e+OhqlkEFuGn9+FC23SvFn69M1LgRnmYbN4nLHOCawSm0ZeY5cN5ZeHO/h cYjN9f1CUOQBvZveDRDeDplC4sZJKfrFXOaVHKjVRdZvqcnLxqXa18vQveeY3V4i whO2YgYW/0Mr9v/fnaASig4Pefh2FqJ6xy2XASG0GselzHamuyu4Tlmj8PM60Udc G47H0CzLljWteW4w0eICvIJ/llzhFjNByd4e3SRuW3+1FsaIdeT+PvMqfwjteRKb 2mgdPSX1UIVMXi0zmrcUwgx0Ni1Qfe+T0UESv0nDvXN16XQ30NkF+xc3aIM/loQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:33:15 2025 by rpki-client