$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa File: 644f882a-d42c-4c76-bb70-882838f6e3e0.roa (raw, json) Hash identifier: qPe0J5Oc7bzZgHicMGQaBhttgiYQCN1rqhMwd7DeVUM= Subject key identifier: EE:A3:5C:65:DE:BC:88:6B:75:75:06:DD:46:DE:25:BC:AF:32:73:61 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7680C0693F558CBB74E11F955F2354CB53A1D454 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa Signing time: Tue 20 May 2025 18:11:23 +0000 ROA not before: Tue 20 May 2025 18:11:23 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:80:c0:69:3f:55:8c:bb:74:e1:1f:95:5f:23:54:cb:53:a1:d4:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:23 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=87760858cdb60c7b3c50c69e4e7d9dd3e9db472ba922d41628f94034ab0b86ff, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1e:15:c5:23:9d:c1:49:7c:80:67:5c:f7:c7: 95:38:da:38:ab:24:85:a3:af:75:be:33:37:c2:dc: 41:9f:36:7b:f8:25:5c:2b:9e:8d:93:fa:2a:2c:98: 3a:e6:bf:b6:e0:64:0c:29:18:86:6b:fc:5c:f6:b6: 60:27:05:06:26:20:00:a9:f4:1c:b0:f1:3f:e3:12: 00:14:79:31:94:e1:27:e8:7e:be:cc:64:9a:d9:5c: be:e9:47:d3:3b:35:c4:dc:68:ec:81:95:64:73:8f: 78:b5:46:01:b5:00:c6:f2:e5:90:c9:c1:46:9a:bf: f2:59:14:50:30:05:83:d1:fa:28:8d:d7:3d:a8:82: 80:a0:71:a1:a7:72:8a:a3:aa:bb:fa:77:3b:9e:47: eb:23:fd:88:02:c7:9e:a5:95:3e:ab:f3:3e:06:13: 37:5a:a5:b1:0c:98:9e:49:30:15:66:b7:73:80:55: 56:81:56:6a:3d:f0:39:71:46:cd:85:75:c8:fe:ad: ec:4c:c1:1b:f5:90:2f:e4:26:af:50:55:96:a0:bb: 4d:46:2c:9a:ba:87:69:ed:37:be:ee:07:db:eb:24: 5b:65:ff:d2:51:a3:cd:a2:33:a7:5b:68:44:e0:f2: 29:4f:48:92:69:ce:cf:27:72:73:96:88:ef:18:90: 11:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A3:5C:65:DE:BC:88:6B:75:75:06:DD:46:DE:25:BC:AF:32:73:61 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/40 Signature Algorithm: sha256WithRSAEncryption a7:0c:17:1a:c5:ce:39:c3:56:c2:eb:0f:4a:ae:7c:06:9f:3e: 1c:3e:51:a2:a4:41:22:77:a5:23:88:75:15:5a:a3:14:a7:24: 43:cd:6a:9c:fd:0d:5f:d7:5b:67:14:52:d1:0c:92:e0:c7:77: 82:0f:6d:be:87:d1:b2:15:74:0e:29:35:2b:61:50:83:cc:5e: 3f:78:d4:9f:3f:e8:8d:78:f3:0d:50:29:03:6a:c4:84:1c:0b: c3:a7:76:49:61:dc:81:59:6e:2e:db:6d:fe:3d:4a:ed:83:c8: 93:40:ad:e4:c1:01:69:69:e2:23:54:36:0f:c8:f8:60:16:5c: b3:19:93:3e:f4:df:65:9b:f0:d7:02:60:b8:00:8d:44:b7:7e: 2a:6e:00:eb:a6:9b:ea:33:0d:c5:6a:95:fc:89:44:cd:2d:91: 16:74:8c:7a:db:af:75:1a:99:b3:6b:57:26:ad:e8:36:58:8e: 68:82:d1:17:4e:07:09:88:93:bb:83:d0:4b:4a:c1:88:9c:01: 6b:b0:03:95:ab:b2:d7:ee:80:be:e3:20:87:a1:90:a7:f0:8e: cc:0b:cc:be:f5:30:50:53:02:9a:aa:da:c2:7e:8b:76:8d:6a: 5b:1f:09:8d:d1:2c:c5:58:36:c4:3b:36:8a:f1:22:4c:ac:31: 27:5a:98:6b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdoDAaT9VjLt04R+VXyNUy1Oh1FQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTIzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4Nzc2MDg1OGNkYjYwYzdiM2M1MGM2OWU0ZTdkOWRkM2U5 ZGI0NzJiYTkyMmQ0MTYyOGY5NDAzNGFiMGI4NmZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfHhXFI53BSXyAZ1z3x5U42jirJIWjr3W+MzfC3EGfNnv4 JVwrno2T+iosmDrmv7bgZAwpGIZr/Fz2tmAnBQYmIACp9Byw8T/jEgAUeTGU4Sfo fr7MZJrZXL7pR9M7NcTcaOyBlWRzj3i1RgG1AMby5ZDJwUaav/JZFFAwBYPR+iiN 1z2ogoCgcaGncoqjqrv6dzueR+sj/YgCx56llT6r8z4GEzdapbEMmJ5JMBVmt3OA VVaBVmo98DlxRs2Fdcj+rexMwRv1kC/kJq9QVZagu01GLJq6h2ntN77uB9vrJFtl /9JRo82iM6dbaETg8ilPSJJpzs8ncnOWiO8YkBFtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU7qNcZd68iGt1dQbdRt4lvK8yc2EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0NGY4ODJhLWQ0MmMtNGM3Ni1iYjcwLTg4MjgzOGY2ZTNlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75jANBgkqhkiG9w0BAQsFAAOCAQEApwwXGsXOOcNWwusPSq58Bp8+ HD5RoqRBInelI4h1FVqjFKckQ81qnP0NX9dbZxRS0QyS4Md3gg9tvofRshV0Dik1 K2FQg8xeP3jUnz/ojXjzDVApA2rEhBwLw6d2SWHcgVluLttt/j1K7YPIk0Ct5MEB aWniI1Q2D8j4YBZcsxmTPvTfZZvw1wJguACNRLd+Km4A66ab6jMNxWqV/IlEzS2R FnSMetuvdRqZs2tXJq3oNliOaILRF04HCYiTu4PQS0rBiJwBa7ADlauy1+6AvuMg h6GQp/COzAvMvvUwUFMCmqrawn6Ldo1qWx8JjdEsxVg2xDs2ivEiTKwxJ1qYaw== -----END CERTIFICATE-----Generated at Sun Jun 15 00:35:07 2025 by rpki-client