$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa File: 50aa830a-891f-4ae0-bee7-f2758c54eae3.roa (raw, json) Hash identifier: B4BC1cFwZW+ZNoCwpiBpsWovA75Eomq5YEAgAOaP/Jk= Subject key identifier: E3:91:76:67:A0:CA:D9:7D:42:CC:03:7D:F4:8E:51:7C:94:E7:EE:09 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 10B2E7B34D808BD0402500AB2D30D94BCADF312D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa Signing time: Tue 20 May 2025 18:10:02 +0000 ROA not before: Tue 20 May 2025 18:10:02 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:b2:e7:b3:4d:80:8b:d0:40:25:00:ab:2d:30:d9:4b:ca:df:31:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:02 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c6920876a858112a7ce15d353f1789a3f488775a0316aec17e68fca444fa11cd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a1:5c:4c:eb:09:7d:96:f3:26:e6:93:e6:cc: c7:05:93:49:76:ee:d8:8a:a0:a5:92:f1:c9:cf:5e: ff:a7:bc:f1:68:b5:5b:87:e2:f4:4b:5e:ba:c1:9a: 02:3f:5a:35:0d:19:0d:f2:a7:aa:3f:cf:80:a5:81: 4b:a5:c3:e2:a2:3d:7c:4c:6b:f2:aa:2a:c6:77:ed: a6:f7:36:08:22:5f:ae:71:19:fa:2e:02:f7:c5:2d: 93:6c:53:80:9b:79:9d:5b:45:68:e2:57:ad:78:46: 5a:73:c5:fa:d1:ba:28:56:4e:cc:6b:0d:e7:87:62: a5:fe:8f:be:27:59:5f:ad:1d:4c:e2:77:67:19:3b: 5e:50:d0:d0:ca:6c:20:79:66:47:47:ed:8f:3d:83: 82:36:f7:7c:1c:cb:4f:71:02:ca:95:5c:0b:37:ad: 8c:1a:27:f7:5c:cd:34:c5:a5:64:2e:9c:4e:8f:4b: 52:e9:50:88:43:61:a8:70:48:77:a1:41:9c:92:63: 54:c7:0f:ae:9e:f2:8d:b9:af:68:b8:f2:1b:7e:57: a7:0f:1e:5b:97:6a:75:fc:c0:6e:ad:90:a8:88:b8: 6f:c8:eb:7b:6e:29:f4:ec:0d:ff:83:a7:df:48:03: b3:2a:0a:38:f5:6e:03:04:4c:46:4f:b7:ea:35:8f: 92:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:91:76:67:A0:CA:D9:7D:42:CC:03:7D:F4:8E:51:7C:94:E7:EE:09 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:50::/44 Signature Algorithm: sha256WithRSAEncryption 3f:49:cf:4c:f0:33:7a:84:97:cc:e6:e9:7b:90:aa:20:ba:74: b4:c0:21:1a:5d:eb:18:0a:b4:e4:6d:07:4c:df:72:7a:25:70: da:51:a6:61:38:6d:f5:9d:48:bb:f3:d3:6e:7b:d6:e5:a1:6e: ff:fe:04:aa:e0:44:d2:8d:02:36:5b:52:98:6c:79:1b:d4:c5: 1b:ed:ae:9e:b1:a2:a0:19:42:33:ab:85:84:a3:ae:a8:8a:ee: db:03:4c:fb:80:5b:61:cb:70:6f:4f:0b:c3:f9:e4:f1:af:c4: 41:b2:c8:15:0b:62:09:b6:a7:2c:54:2c:4d:8b:02:11:fe:a7: fd:35:f0:09:9b:43:4e:e2:46:c5:ba:8b:b3:5f:22:46:3a:91: 95:64:e2:3d:1f:57:77:8b:b5:c1:75:59:98:6e:c0:da:fc:f9: 95:8e:aa:fa:76:4a:d9:35:17:b9:b0:a6:8f:2e:aa:b1:6f:37: 1f:17:20:25:dc:20:38:7b:2e:a0:f9:fe:28:73:f6:83:9e:93: 5c:e6:29:f7:cc:68:e0:4f:27:95:a4:b6:74:d9:e0:c0:fe:73: cf:d9:9c:f6:99:7a:3e:65:16:57:b8:b6:dd:23:55:27:f1:c8: cb:11:e0:0a:31:66:ca:de:cb:57:af:00:00:0a:db:dc:da:23: e2:da:66:36 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUELLns02Ai9BAJQCrLTDZS8rfMS0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDAyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjkyMDg3NmE4NTgxMTJhN2NlMTVkMzUzZjE3ODlhM2Y0 ODg3NzVhMDMxNmFlYzE3ZTY4ZmNhNDQ0ZmExMWNkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGoVxM6wl9lvMm5pPmzMcFk0l27tiKoKWS8cnPXv+nvPFo tVuH4vRLXrrBmgI/WjUNGQ3yp6o/z4ClgUulw+KiPXxMa/KqKsZ37ab3NggiX65x GfouAvfFLZNsU4CbeZ1bRWjiV614RlpzxfrRuihWTsxrDeeHYqX+j74nWV+tHUzi d2cZO15Q0NDKbCB5ZkdH7Y89g4I293wcy09xAsqVXAs3rYwaJ/dczTTFpWQunE6P S1LpUIhDYahwSHehQZySY1THD66e8o25r2i48ht+V6cPHluXanX8wG6tkKiIuG/I 63tuKfTsDf+Dp99IA7MqCjj1bgMETEZPt+o1j5JRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU45F2Z6DK2X1CzAN99I5RfJTn7gkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUwYWE4MzBhLTg5MWYtNGFlMC1iZWU3LWYyNzU4YzU0ZWFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAFAwDQYJKoZIhvcNAQELBQADggEBAD9Jz0zwM3qEl8zm6XuQqiC6 dLTAIRpd6xgKtORtB0zfcnolcNpRpmE4bfWdSLvz02571uWhbv/+BKrgRNKNAjZb UphseRvUxRvtrp6xoqAZQjOrhYSjrqiK7tsDTPuAW2HLcG9PC8P55PGvxEGyyBUL Ygm2pyxULE2LAhH+p/018AmbQ07iRsW6i7NfIkY6kZVk4j0fV3eLtcF1WZhuwNr8 +ZWOqvp2Stk1F7mwpo8uqrFvNx8XICXcIDh7LqD5/ihz9oOek1zmKffMaOBPJ5Wk tnTZ4MD+c8/ZnPaZej5lFle4tt0jVSfxyMsR4AoxZsrey1evAAAK29zaI+LaZjY= -----END CERTIFICATE-----Generated at Sat Jun 14 07:00:34 2025 by rpki-client