$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/60ba2726-e7de-4e0c-acfb-e096c701569c.roa File: 60ba2726-e7de-4e0c-acfb-e096c701569c.roa (raw, json) Hash identifier: YiB2Y/25hoEGfKCWxUwNJMUNH+ZaLNfRsTzetDWNs20= Subject key identifier: 82:21:20:F2:F2:A8:05:F4:9B:17:3B:5E:FC:FF:6E:D7:18:1F:D1:26 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6E86EC482177C8479185C70E85DD09C14EA73BF8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/60ba2726-e7de-4e0c-acfb-e096c701569c.roa Signing time: Tue 17 Jun 2025 20:51:49 +0000 ROA not before: Tue 17 Jun 2025 20:51:49 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 7224 IP address blocks: 2600:f0f0:5501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:86:ec:48:21:77:c8:47:91:85:c7:0e:85:dd:09:c1:4e:a7:3b:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 17 20:51:49 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=483a3f704fc69e4f41553d992042e166fe62af09ef5be190d3dd4202e3fdb23d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3c:7a:2b:ca:bf:5f:c0:66:b9:0e:18:7b:ee: 1c:38:f9:f7:7f:34:0a:a0:73:92:33:d8:1d:5f:66: 0c:a6:56:5a:9a:07:ca:72:30:34:f9:5e:0e:c5:75: 4b:38:29:10:29:8d:1d:d5:44:27:e3:79:d5:7c:b4: 52:dd:b0:17:8f:e8:52:5f:d4:4e:20:62:c8:e4:b3: 8b:bc:f5:eb:a9:4b:fe:f5:19:26:ed:78:e1:60:64: 22:7b:d1:92:1c:8d:da:4c:74:80:20:7b:6f:1b:29: 17:a5:0a:d6:be:ab:f4:50:46:e3:e3:0d:ad:7a:e4: 86:81:a6:b1:1d:9a:ed:89:1d:c5:7f:d7:4c:65:cc: 70:97:91:75:19:c7:ff:0b:72:35:e9:b2:79:03:1b: b4:83:21:8d:8a:2b:42:39:bd:89:f1:b3:73:4a:69: 63:6f:03:20:32:ea:2a:1f:d3:45:a7:8a:27:c5:f9: 1e:62:ee:91:27:93:06:16:01:25:5c:2d:0c:2c:04: bc:86:f2:75:bd:06:24:40:f6:43:cf:13:ed:e9:4b: 75:a7:db:97:cd:3e:71:e7:a8:4f:a6:88:0c:6b:9d: b9:95:20:b1:d3:6d:a7:0c:f7:fc:8c:c7:cd:cc:96: ff:18:43:50:8e:ab:52:5b:f6:63:f1:95:d2:33:3d: 0a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:21:20:F2:F2:A8:05:F4:9B:17:3B:5E:FC:FF:6E:D7:18:1F:D1:26 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/60ba2726-e7de-4e0c-acfb-e096c701569c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5501::/48 Signature Algorithm: sha256WithRSAEncryption 26:cc:3d:8c:cc:71:6e:0e:1f:aa:d7:67:c8:78:b4:69:59:7e: 0f:d2:e0:7f:72:d7:69:91:41:aa:53:b8:c4:66:0d:7f:f6:7e: 1b:3a:e0:5d:98:19:07:4e:76:8f:3c:59:2b:98:dd:cb:a8:f2: 48:03:91:e5:a5:c7:66:b8:8d:ff:88:8c:eb:d5:37:b6:b2:cf: e0:1a:87:31:9a:c3:27:39:d9:05:ed:fb:78:fb:d1:47:9d:6d: eb:46:57:f5:1a:43:58:81:8e:42:79:93:a2:b6:dc:08:42:fc: c2:31:34:8e:35:f7:c5:45:5d:72:7c:36:3c:97:53:9f:3a:5f: a1:55:60:0f:f6:2b:cc:72:e8:90:e2:4d:f8:4b:d1:3b:19:40: af:81:71:ed:c9:65:93:7c:6f:ab:2c:9a:90:f8:f5:6e:56:47: 30:c3:5d:52:f2:54:c0:84:7d:3e:7f:8c:67:28:2a:a0:ef:4d: 80:fa:f9:5a:6c:1a:08:fb:a2:97:71:fe:eb:43:90:b8:5a:5e: 2b:e8:c3:e3:32:2c:9a:c5:f8:33:2f:69:7b:f1:dd:3c:80:82: 6f:f0:df:57:9c:ee:c1:ec:52:6b:da:00:2b:51:a3:d7:b1:4b: 07:55:2e:a7:76:c9:05:a5:f5:86:66:2b:32:8f:05:3a:bc:ce: 0e:db:71:6d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbobsSCF3yEeRhccOhd0JwU6nO/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE3MjA1MTQ5WhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODNhM2Y3MDRmYzY5ZTRmNDE1NTNkOTkyMDQyZTE2NmZl NjJhZjA5ZWY1YmUxOTBkM2RkNDIwMmUzZmRiMjNkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMPHoryr9fwGa5Dhh77hw4+fd/NAqgc5Iz2B1fZgymVlqa B8pyMDT5Xg7FdUs4KRApjR3VRCfjedV8tFLdsBeP6FJf1E4gYsjks4u89eupS/71 GSbteOFgZCJ70ZIcjdpMdIAge28bKRelCta+q/RQRuPjDa165IaBprEdmu2JHcV/ 10xlzHCXkXUZx/8LcjXpsnkDG7SDIY2KK0I5vYnxs3NKaWNvAyAy6iof00WniifF +R5i7pEnkwYWASVcLQwsBLyG8nW9BiRA9kPPE+3pS3Wn25fNPnHnqE+miAxrnbmV ILHTbacM9/yMx83Mlv8YQ1COq1Jb9mPxldIzPQplAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgiEg8vKoBfSbFzte/P9u1xgf0SYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzYwYmEyNzI2LWU3ZGUtNGUwYy1hY2ZiLWUwOTZjNzAxNTY5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQEwDQYJKoZIhvcNAQELBQADggEBACbMPYzMcW4OH6rXZ8h4tGlZ fg/S4H9y12mRQapTuMRmDX/2fhs64F2YGQdOdo88WSuY3cuo8kgDkeWlx2a4jf+I jOvVN7ayz+AahzGawyc52QXt+3j70UedbetGV/UaQ1iBjkJ5k6K23AhC/MIxNI41 98VFXXJ8NjyXU586X6FVYA/2K8xy6JDiTfhL0TsZQK+Bce3JZZN8b6ssmpD49W5W RzDDXVLyVMCEfT5/jGcoKqDvTYD6+VpsGgj7opdx/utDkLhaXivow+MyLJrF+DMv aXvx3TyAgm/w31ec7sHsUmvaACtRo9exSwdVLqd2yQWl9YZmKzKPBTq8zg7bcW0= -----END CERTIFICATE-----Generated at Wed Jun 18 10:38:41 2025 by rpki-client