$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa File: 6d504583-8250-4693-a46d-7a40db5add33.roa (raw, json) Hash identifier: 80N5uE0zQVXnODFpDdPg2nt8qHCQ7OfQ/VWEXmhSd2M= Subject key identifier: 91:5E:0C:84:83:57:D1:40:E4:03:05:19:E4:BC:63:BB:74:88:02:20 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25973F196FC999B47CC57A52BEAFA52F4C9658E0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa Signing time: Tue 20 May 2025 18:11:28 +0000 ROA not before: Tue 20 May 2025 18:11:28 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:97:3f:19:6f:c9:99:b4:7c:c5:7a:52:be:af:a5:2f:4c:96:58:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:28 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=b7ce7579af845ed4757fd390908726ff2d78a483330b99c71aac77643d859a92, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a1:4c:4e:94:4c:a5:30:c8:1d:ff:f2:0f:03: a0:a3:7b:d4:79:83:bd:6c:f2:c8:47:b7:8d:bf:bb: b8:c8:b7:cf:ba:da:f1:3c:5b:5f:8b:49:85:f9:39: 0c:e8:5a:79:a8:d5:cd:31:6d:9d:3f:81:df:cf:45: 68:21:1c:3b:48:7b:27:bd:03:e8:fa:e4:b3:79:f0: ce:ab:12:af:ae:3e:02:14:ed:50:ad:15:0d:d3:5b: 62:bf:89:7f:f1:c5:7d:51:59:32:15:f2:9a:bf:4e: c7:71:4b:55:6c:aa:cb:a7:ad:9f:8d:81:c8:ab:81: 39:66:91:44:ed:d2:80:5e:72:7e:c7:f3:44:7a:93: 9c:ac:ea:73:c1:6b:63:e0:6c:0b:bf:dd:52:87:7f: ab:97:0d:78:c0:4e:22:d1:49:70:81:e4:50:99:43: 1a:00:42:be:17:ea:f6:4c:c7:2f:2e:4b:bc:da:52: f1:da:21:13:8b:59:57:de:96:9e:09:f9:db:02:29: 29:c7:a6:db:da:72:d7:30:2c:b6:62:08:71:dd:02: ff:a0:05:8b:8b:7c:f2:1d:80:16:50:2a:06:d9:44: 17:84:44:a8:38:70:4e:62:ce:87:4f:90:ac:f7:56: ff:10:93:eb:8e:15:ba:ef:1d:a5:dd:28:29:e6:b1: 44:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:5E:0C:84:83:57:D1:40:E4:03:05:19:E4:BC:63:BB:74:88:02:20 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/40 Signature Algorithm: sha256WithRSAEncryption 13:ba:98:23:0e:91:2d:27:34:0a:18:85:ad:9b:f1:9c:f5:37: 31:22:66:46:e3:97:b9:6d:af:ae:dd:34:39:d8:7f:e8:24:3a: 25:09:19:e8:9f:f0:b6:d5:5d:46:90:0f:67:c1:b4:e7:d8:1e: c8:a4:20:19:3f:eb:b2:fa:44:47:1d:51:a9:7e:7f:da:0c:be: 72:de:f1:43:90:b1:1d:61:33:84:66:7c:7d:0c:87:09:df:79: 74:9c:cb:66:28:4c:92:a6:6e:6c:7f:43:14:e6:0e:40:2f:ab: 05:e1:f8:f2:a1:24:5d:b7:c4:5f:ce:f0:5d:2a:ff:99:9f:15: 2e:54:e9:99:ca:26:f7:f6:3e:24:d5:2c:81:10:19:db:96:86: 9f:79:19:ba:46:76:6d:37:fb:79:a2:76:94:df:7e:4a:06:17: 3e:ec:4b:5a:26:31:15:ff:09:f9:4d:56:68:9c:d9:3f:94:70: d7:66:1f:7b:a8:db:a9:25:e6:66:c8:03:16:db:88:20:8d:89: 2d:76:5f:b9:33:cd:de:9d:f2:41:c4:95:8f:36:ea:70:16:85: 15:30:3f:a1:cd:c4:6a:ce:01:ed:c8:1b:50:0c:0a:11:4e:7e: a0:c7:d1:84:ca:3d:d0:07:97:e9:c8:13:84:eb:91:29:e8:38: 70:55:0f:11 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJZc/GW/JmbR8xXpSvq+lL0yWWOAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTI4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiN2NlNzU3OWFmODQ1ZWQ0NzU3ZmQzOTA5MDg3MjZmZjJk NzhhNDgzMzMwYjk5YzcxYWFjNzc2NDNkODU5YTkyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/oUxOlEylMMgd//IPA6Cje9R5g71s8shHt42/u7jIt8+6 2vE8W1+LSYX5OQzoWnmo1c0xbZ0/gd/PRWghHDtIeye9A+j65LN58M6rEq+uPgIU 7VCtFQ3TW2K/iX/xxX1RWTIV8pq/TsdxS1VsqsunrZ+NgcirgTlmkUTt0oBecn7H 80R6k5ys6nPBa2PgbAu/3VKHf6uXDXjATiLRSXCB5FCZQxoAQr4X6vZMxy8uS7za UvHaIROLWVfelp4J+dsCKSnHptvactcwLLZiCHHdAv+gBYuLfPIdgBZQKgbZRBeE RKg4cE5izodPkKz3Vv8Qk+uOFbrvHaXdKCnmsUR1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkV4MhINX0UDkAwUZ5Lxju3SIAiAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZkNTA0NTgzLTgyNTAtNDY5My1hNDZkLTdhNDBkYjVhZGQzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75TANBgkqhkiG9w0BAQsFAAOCAQEAE7qYIw6RLSc0ChiFrZvxnPU3 MSJmRuOXuW2vrt00Odh/6CQ6JQkZ6J/wttVdRpAPZ8G059geyKQgGT/rsvpERx1R qX5/2gy+ct7xQ5CxHWEzhGZ8fQyHCd95dJzLZihMkqZubH9DFOYOQC+rBeH48qEk XbfEX87wXSr/mZ8VLlTpmcom9/Y+JNUsgRAZ25aGn3kZukZ2bTf7eaJ2lN9+SgYX PuxLWiYxFf8J+U1WaJzZP5Rw12Yfe6jbqSXmZsgDFtuIII2JLXZfuTPN3p3yQcSV jzbqcBaFFTA/oc3Eas4B7cgbUAwKEU5+oMfRhMo90AeX6cgThOuRKeg4cFUPEQ== -----END CERTIFICATE-----Generated at Sun Jun 15 07:21:50 2025 by rpki-client