$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa File: 71a2a2c0-b8db-4847-a756-b7515aa42b07.roa (raw, json) Hash identifier: dDfiWXZP+W1qXTx69beROiWoEO6D1nLpcIRtKOY/ILY= Subject key identifier: 97:E0:65:8C:64:34:7A:D9:8B:77:BE:D6:D0:C9:9D:C9:51:AD:E9:7A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7197DB28C2EA7E5852EBA7D2E45DAAAE2B02C28E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa Signing time: Tue 20 May 2025 18:00:46 +0000 ROA not before: Tue 20 May 2025 18:00:46 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5510::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:97:db:28:c2:ea:7e:58:52:eb:a7:d2:e4:5d:aa:ae:2b:02:c2:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:46 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=63a7ea26e7fbdb3a3b263b9be583219a9948baf12e61db6bf9f9f9cdf6271544, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6b:8f:fe:ad:9f:e5:77:d4:84:28:f2:aa:62: da:71:6c:23:e6:d7:3a:bc:6b:6d:3f:c1:e3:2e:17: 21:e8:09:72:84:a8:68:9f:7a:e7:aa:a3:16:19:e9: 4f:b7:18:97:92:46:43:a8:ce:61:cb:03:bf:79:0a: e2:60:82:8a:a8:13:ef:18:73:48:03:56:c6:62:18: 4a:f2:10:65:5f:4b:ab:c6:38:f3:17:79:af:2b:2b: af:e7:95:97:c2:ef:28:1e:eb:02:2f:32:e7:c5:42: 47:eb:0b:aa:a6:4a:64:6d:52:c9:f8:59:07:31:de: 1b:40:34:98:b1:18:58:51:07:53:51:f6:f4:f7:e3: 95:4f:41:a3:75:6a:62:26:9b:f3:ed:12:a8:86:39: f1:83:ff:22:ed:43:25:53:07:7a:bc:9a:3d:d5:3f: e5:4b:46:90:25:fa:6a:92:f7:8b:8d:97:16:25:d5: 1d:17:fb:12:a8:7b:45:74:7d:bd:82:c5:01:25:12: 8e:e6:dc:f7:84:fd:aa:a6:b3:01:ba:39:7a:0e:03: 12:97:04:21:5e:da:d9:ed:5e:d0:30:8a:dd:21:d7: 85:26:98:29:60:76:7b:97:69:e8:4d:a5:09:17:61: 11:b8:13:93:76:8b:95:4a:ba:56:f5:14:44:2c:ea: 41:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E0:65:8C:64:34:7A:D9:8B:77:BE:D6:D0:C9:9D:C9:51:AD:E9:7A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5510::/44 Signature Algorithm: sha256WithRSAEncryption 5b:6f:e9:f0:2f:61:f5:47:c2:25:53:a9:fa:96:e1:27:8f:32: d4:02:d8:dd:c7:58:50:7b:f9:58:b2:26:f2:d7:f8:9c:d8:4e: e7:15:fa:a2:ba:1b:24:63:e0:46:01:e6:5f:72:c7:e1:4f:d9: bf:48:8d:6e:8a:ac:3d:45:9c:52:e3:f0:a5:8d:26:be:1c:a8: 61:ca:88:4a:32:0a:0a:35:e9:e1:40:4b:ea:52:77:0a:87:62: 80:64:b5:7a:5d:65:99:b9:39:ea:11:7d:37:6a:4e:2f:df:68: 10:ed:c2:de:01:36:70:c2:34:ba:c8:34:f5:87:ce:f4:6a:96: 09:0d:22:5b:62:fe:f0:1c:61:2e:76:8b:e7:7b:7a:da:5b:26: 8f:7e:23:52:ea:ff:0c:5e:8f:44:53:ee:3e:fb:29:67:12:83: c6:35:f2:66:58:12:f0:20:75:7a:20:47:fe:3b:8f:c9:5d:bf: dd:4d:fe:aa:db:06:ba:4d:07:65:95:e5:82:15:52:31:6b:4e: 65:bd:3e:ac:14:fb:eb:20:9b:5e:1d:07:8c:e7:fd:ef:6a:26: 02:10:e8:26:66:df:a0:51:eb:4a:a6:b4:c7:12:ea:4d:92:22: c0:77:3f:a4:42:ad:bc:ea:3f:04:e1:08:17:cd:1a:18:c6:1d: 5c:7b:9a:30 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcZfbKMLqflhS66fS5F2qrisCwo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDQ2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2E3ZWEyNmU3ZmJkYjNhM2IyNjNiOWJlNTgzMjE5YTk5 NDhiYWYxMmU2MWRiNmJmOWY5ZjljZGY2MjcxNTQ0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCca4/+rZ/ld9SEKPKqYtpxbCPm1zq8a20/weMuFyHoCXKE qGifeueqoxYZ6U+3GJeSRkOozmHLA795CuJggoqoE+8Yc0gDVsZiGEryEGVfS6vG OPMXea8rK6/nlZfC7yge6wIvMufFQkfrC6qmSmRtUsn4WQcx3htANJixGFhRB1NR 9vT345VPQaN1amImm/PtEqiGOfGD/yLtQyVTB3q8mj3VP+VLRpAl+mqS94uNlxYl 1R0X+xKoe0V0fb2CxQElEo7m3PeE/aqmswG6OXoOAxKXBCFe2tntXtAwit0h14Um mClgdnuXaehNpQkXYRG4E5N2i5VKulb1FEQs6kHBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUl+BljGQ0etmLd77W0MmdyVGt6XowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxYTJhMmMwLWI4ZGItNDg0Ny1hNzU2LWI3NTE1YWE0MmIwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVRAwDQYJKoZIhvcNAQELBQADggEBAFtv6fAvYfVHwiVTqfqW4SeP MtQC2N3HWFB7+ViyJvLX+JzYTucV+qK6GyRj4EYB5l9yx+FP2b9IjW6KrD1FnFLj 8KWNJr4cqGHKiEoyCgo16eFAS+pSdwqHYoBktXpdZZm5OeoRfTdqTi/faBDtwt4B NnDCNLrINPWHzvRqlgkNIlti/vAcYS52i+d7etpbJo9+I1Lq/wxej0RT7j77KWcS g8Y18mZYEvAgdXogR/47j8ldv91N/qrbBrpNB2WV5YIVUjFrTmW9PqwU++sgm14d B4zn/e9qJgIQ6CZm36BR60qmtMcS6k2SIsB3P6RCrbzqPwThCBfNGhjGHVx7mjA= -----END CERTIFICATE-----Generated at Sat Jun 14 06:10:32 2025 by rpki-client