$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa File: 73712e14-51d5-41db-bcf2-73aa504e6eab.roa (raw, json) Hash identifier: bg9lNHYkXRpz4TSGeIf1WmcsqCqo4e8xgbeUDT//yLY= Subject key identifier: 0D:C2:BA:69:32:A0:DF:C5:70:10:7E:DA:0F:E2:7F:2C:21:A3:B1:90 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 45BEB4907C8B680215A511560E51AE47B1B2E757 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa Signing time: Tue 20 May 2025 18:00:12 +0000 ROA not before: Tue 20 May 2025 18:00:12 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:be:b4:90:7c:8b:68:02:15:a5:11:56:0e:51:ae:47:b1:b2:e7:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:12 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=eac1ab90f46c875d1cdc44cbf7ff3da41c630ba9f780141994b20ced81e343e7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1b:fc:2a:e8:13:96:ee:d9:3a:67:6a:33:d1: 58:74:63:bf:03:12:02:e6:5b:79:fe:c3:5a:a3:31: e1:29:7e:2a:1b:66:38:9c:b2:2c:7c:f4:1c:44:04: d4:23:70:41:ac:ef:c3:5e:ae:17:f4:ab:49:fe:f2: db:c5:4a:b7:a6:4f:01:e3:72:a7:db:d0:fc:55:03: bd:1a:01:d7:07:62:1a:62:06:86:3e:24:e8:61:b8: 26:61:03:a3:99:0d:e8:47:4b:7a:45:e4:4a:fe:9e: be:2f:48:80:4a:bd:be:39:68:22:ef:8f:dd:52:84: 0d:b8:45:01:56:4e:ee:d3:2f:7c:6c:11:da:a1:e0: 42:0b:81:21:9c:e7:99:9a:bc:45:2f:2e:d7:29:c6: fe:da:bd:82:d3:57:42:67:fc:39:07:83:5f:c3:1c: d5:12:36:93:d2:cd:65:f6:36:1d:b9:ad:9a:f5:a6: e4:37:c4:cf:99:e0:2b:7d:6d:4c:6d:90:23:07:1e: a8:e4:42:23:ea:74:91:ea:f7:84:d4:d8:01:88:8c: 9b:e9:30:ee:59:50:7a:c7:55:ef:0d:7e:e3:5d:c7: 63:ac:24:8e:06:12:9c:73:5a:5c:b8:e5:02:c3:14: 79:d7:9a:bd:74:eb:87:c5:e6:df:12:2e:eb:3d:d2: e8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C2:BA:69:32:A0:DF:C5:70:10:7E:DA:0F:E2:7F:2C:21:A3:B1:90 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 64:1a:8c:bf:1e:64:69:cd:c4:4b:4f:84:4a:4b:e7:7c:9d:3c: 4b:f7:4e:2e:f7:b8:1c:f2:ca:f6:16:c5:6f:a8:f3:81:4e:78: 61:77:e6:19:b7:8e:35:46:4e:f1:70:e5:df:65:f0:f7:a1:90: 4a:18:9f:3f:66:ac:02:4a:a8:b8:b6:2a:5c:7a:08:f3:d6:aa: 98:a5:69:82:7b:9c:f7:dd:b5:b0:d2:79:0f:10:fa:d1:95:40: 7c:6f:61:dd:e7:ab:bf:da:71:67:45:df:2d:ea:00:0a:5d:d6: 6c:ac:6a:8f:75:4d:31:0e:6c:59:04:91:ae:54:10:ea:6b:e3: b2:ff:79:81:13:ed:c8:da:33:8b:fa:b4:3f:33:02:a6:95:b3: 3a:1d:03:4d:5a:c3:c1:56:cc:e3:cc:38:b1:a9:ec:34:56:76: 96:40:f5:60:3f:8d:71:b0:73:52:02:22:74:52:39:bb:8c:d6: cf:8f:17:1d:ed:ca:56:a1:29:d8:c4:0e:ad:ff:e7:53:56:02: c5:9a:8a:2c:cb:fb:0d:7f:ba:69:0f:f2:7f:fa:b0:3f:0a:7e: 62:98:ff:7f:d6:b6:5e:a0:f6:55:8f:6f:73:ac:b4:33:3e:e9: 87:8d:23:9a:74:4c:1e:a7:a4:f8:52:d8:d5:cf:b7:86:2c:39: c5:b5:bd:90 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURb60kHyLaAIVpRFWDlGuR7Gy51cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDEyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYWMxYWI5MGY0NmM4NzVkMWNkYzQ0Y2JmN2ZmM2RhNDFj NjMwYmE5Zjc4MDE0MTk5NGIyMGNlZDgxZTM0M2U3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnG/wq6BOW7tk6Z2oz0Vh0Y78DEgLmW3n+w1qjMeEpfiob Zjicsix89BxEBNQjcEGs78Nerhf0q0n+8tvFSremTwHjcqfb0PxVA70aAdcHYhpi BoY+JOhhuCZhA6OZDehHS3pF5Er+nr4vSIBKvb45aCLvj91ShA24RQFWTu7TL3xs Edqh4EILgSGc55mavEUvLtcpxv7avYLTV0Jn/DkHg1/DHNUSNpPSzWX2Nh25rZr1 puQ3xM+Z4Ct9bUxtkCMHHqjkQiPqdJHq94TU2AGIjJvpMO5ZUHrHVe8NfuNdx2Os JI4GEpxzWly45QLDFHnXmr1064fF5t8SLus90uhrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDcK6aTKg38VwEH7aD+J/LCGjsZAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzczNzEyZTE0LTUxZDUtNDFkYi1iY2YyLTczYWE1MDRlNmVhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAGQajL8eZGnNxEtPhEpL53yd PEv3Ti73uBzyyvYWxW+o84FOeGF35hm3jjVGTvFw5d9l8PehkEoYnz9mrAJKqLi2 Klx6CPPWqpilaYJ7nPfdtbDSeQ8Q+tGVQHxvYd3nq7/acWdF3y3qAApd1mysao91 TTEObFkEka5UEOpr47L/eYET7cjaM4v6tD8zAqaVszodA01aw8FWzOPMOLGp7DRW dpZA9WA/jXGwc1ICInRSObuM1s+PFx3tylahKdjEDq3/51NWAsWaiizL+w1/umkP 8n/6sD8KfmKY/3/Wtl6g9lWPb3OstDM+6YeNI5p0TB6npPhS2NXPt4YsOcW1vZA= -----END CERTIFICATE-----Generated at Sun Jun 15 08:57:13 2025 by rpki-client