$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f4627a7-ddcb-4402-bf11-3e7463b43fa9.roa File: 4f4627a7-ddcb-4402-bf11-3e7463b43fa9.roa (raw, json) Hash identifier: xEt3QK9iXlMFJQJsIJG07kYDbH6vzO7eF7aBUfu1mV4= Subject key identifier: F5:DC:59:97:A3:BD:8D:A3:7B:09:75:8E:FB:E7:19:F8:89:BA:47:2F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61231B5E5D106B242A7A196066EC5489A566D2B9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f4627a7-ddcb-4402-bf11-3e7463b43fa9.roa Signing time: Sat 24 May 2025 00:30:42 +0000 ROA not before: Sat 24 May 2025 00:30:42 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:23:1b:5e:5d:10:6b:24:2a:7a:19:60:66:ec:54:89:a5:66:d2:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 24 00:30:42 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=575887dc403c81bc5f6965237473adb05f10ede124933370f6a8e8cfc0abb83f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:da:a8:e4:c7:ae:e5:2b:61:d8:b7:ff:5f:5c: ca:88:e3:78:4b:2c:92:0a:27:58:71:33:d5:90:22: 46:7e:ab:9d:94:06:33:5c:fc:f6:a2:5a:69:00:fe: 29:13:f9:b5:dd:22:c9:a1:07:e4:24:09:bc:ee:62: 95:63:03:88:eb:9f:ef:83:74:9e:34:b8:f6:9b:d7: b1:9e:3c:93:2c:7d:50:1b:fd:6a:b1:7c:67:bd:c1: 3a:dd:af:ea:7b:34:c6:0f:9d:e7:5c:4a:65:62:41: 09:bc:0c:a0:f4:52:68:ba:e1:21:6d:38:bf:8a:d6: 99:46:60:85:be:8b:86:89:58:ea:db:68:1b:9c:9b: 93:fb:b8:6e:fd:f0:c3:34:f1:3c:39:c8:dc:ad:26: 04:98:2e:73:47:30:8f:85:0e:17:6d:4f:a4:71:2d: 63:6e:2a:86:8d:99:f4:d4:4d:4b:c1:2c:93:5f:71: a6:c2:6f:40:c4:0d:c0:e1:0c:8c:de:c3:dc:dc:06: 88:44:16:af:cb:0c:cf:90:02:5f:bd:19:ae:35:21: dd:5f:3c:79:8f:99:6c:f8:8d:77:79:9f:28:4b:3e: 4c:a9:01:04:a2:1b:0c:7c:18:b4:01:61:e2:d3:96: cb:84:a8:70:64:c6:44:ad:a3:3e:75:d9:15:b8:c5: 58:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:DC:59:97:A3:BD:8D:A3:7B:09:75:8E:FB:E7:19:F8:89:BA:47:2F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f4627a7-ddcb-4402-bf11-3e7463b43fa9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/44 Signature Algorithm: sha256WithRSAEncryption 9f:b7:fd:2c:91:bb:75:6d:eb:46:e9:ef:2a:1c:11:3b:9a:29: a9:dd:d2:66:66:14:d8:d7:c0:bd:ae:89:6b:7a:5d:7c:ff:b9: 3e:7f:70:4f:9f:05:a2:c9:44:8b:25:d9:8f:a2:42:9f:a7:9d: db:cf:68:a4:aa:f2:61:bc:90:fb:9b:35:4c:c3:a6:5f:71:50: 6d:d1:b5:86:31:a7:2a:23:4e:f1:81:31:1b:1a:38:04:fe:53: 4e:c9:b8:65:e6:f2:85:f7:98:42:97:7c:2f:f2:93:ed:bc:62: b9:83:28:41:f1:bb:2e:7c:8c:a5:4f:85:61:db:92:92:f1:68: 82:21:95:95:01:71:fe:69:91:d4:9b:0c:ab:04:25:8a:07:ea: 1c:5c:ef:f2:80:80:d7:cf:bd:5a:31:32:ed:f2:46:b7:e4:7b: ec:df:d9:64:45:76:e5:d5:28:2c:f8:fe:4c:71:0f:4c:ba:d0: ae:02:df:a3:eb:38:0e:3b:7c:0c:79:e9:b1:eb:23:32:04:c1: ee:09:de:66:5c:6e:6a:4c:e9:41:73:44:1a:57:7e:df:a8:96: c2:71:b4:71:fb:e8:2e:50:e5:78:27:88:eb:6e:ee:c8:06:57: a1:77:09:9b:e7:6d:d3:e4:2a:27:21:6f:ea:e9:7a:56:0d:d5: 77:0d:95:cb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYSMbXl0QayQqehlgZuxUiaVm0rkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTI0MDAzMDQyWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzU4ODdkYzQwM2M4MWJjNWY2OTY1MjM3NDczYWRiMDVm MTBlZGUxMjQ5MzMzNzBmNmE4ZThjZmMwYWJiODNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV2qjkx67lK2HYt/9fXMqI43hLLJIKJ1hxM9WQIkZ+q52U BjNc/PaiWmkA/ikT+bXdIsmhB+QkCbzuYpVjA4jrn++DdJ40uPab17GePJMsfVAb /WqxfGe9wTrdr+p7NMYPnedcSmViQQm8DKD0Umi64SFtOL+K1plGYIW+i4aJWOrb aBucm5P7uG798MM08Tw5yNytJgSYLnNHMI+FDhdtT6RxLWNuKoaNmfTUTUvBLJNf cabCb0DEDcDhDIzew9zcBohEFq/LDM+QAl+9Ga41Id1fPHmPmWz4jXd5nyhLPkyp AQSiGwx8GLQBYeLTlsuEqHBkxkStoz512RW4xVhBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9dxZl6O9jaN7CXWO++cZ+Im6Ry8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRmNDYyN2E3LWRkY2ItNDQwMi1iZjExLTNlNzQ2M2I0M2ZhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBAJ+3/SyRu3Vt60bp7yocETua Kand0mZmFNjXwL2uiWt6XXz/uT5/cE+fBaLJRIsl2Y+iQp+nndvPaKSq8mG8kPub NUzDpl9xUG3RtYYxpyojTvGBMRsaOAT+U07JuGXm8oX3mEKXfC/yk+28YrmDKEHx uy58jKVPhWHbkpLxaIIhlZUBcf5pkdSbDKsEJYoH6hxc7/KAgNfPvVoxMu3yRrfk e+zf2WRFduXVKCz4/kxxD0y60K4C36PrOA47fAx56bHrIzIEwe4J3mZcbmpM6UFz RBpXft+olsJxtHH76C5Q5XgniOtu7sgGV6F3CZvnbdPkKichb+rpelYN1XcNlcs= -----END CERTIFICATE-----Generated at Sat Jun 14 06:36:23 2025 by rpki-client