$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa File: 765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa (raw, json) Hash identifier: YgPwy2cqpf1FtDN27IY/QbVRjAYPCOyhMYOHchAIF44= Subject key identifier: 67:D7:7C:C2:13:3A:11:2C:FE:50:F5:D2:46:AD:B8:E4:AE:53:95:AE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 05A7CF236A0D32CDF187569E0A0472EB9D1D587C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa Signing time: Mon 16 Jun 2025 19:21:12 +0000 ROA not before: Mon 16 Jun 2025 19:21:12 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a7:cf:23:6a:0d:32:cd:f1:87:56:9e:0a:04:72:eb:9d:1d:58:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:21:12 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=74ab8bfe3292c860d9bf806608cc022f1bca8b30e58eaca4b80be4c6bf50bd81, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:1f:44:51:23:79:83:cf:16:3c:42:48:8f: ab:a0:4c:d4:f9:f8:89:5e:c3:e1:cc:b0:8c:90:12: 8f:40:3c:31:8b:4f:72:0c:e1:89:a4:dd:ad:ee:06: 17:60:7c:cc:0c:78:d3:c6:0d:8d:c4:60:7f:10:89: 75:76:6e:79:15:63:d2:83:3e:4b:0a:45:e6:89:bf: 92:76:b2:4c:d4:65:eb:16:26:12:55:b8:63:c8:5c: 05:d8:a2:fa:c1:45:8e:af:95:e7:30:1d:7b:e8:32: c7:bc:cf:0f:69:d7:65:c5:78:a8:33:51:0d:6c:f6: d9:52:d5:79:7a:b8:d4:94:1c:75:e8:95:3b:cc:96: 86:c8:a6:fa:47:a8:b7:1b:ac:86:ee:d1:b5:26:aa: f7:57:a3:6e:c9:eb:04:33:d4:12:47:68:33:b5:f8: 9e:55:f4:aa:a8:f6:26:9a:b0:37:f5:a2:d2:5b:11: 65:1e:ed:27:d7:f7:19:fe:5c:e7:78:06:33:98:e8: d2:59:1b:3d:23:81:83:94:0f:34:01:9c:7b:3a:c5: 1a:19:3e:b6:6f:53:44:60:6a:11:35:5b:0c:ca:d7: 25:f1:4c:80:3c:f4:08:1e:99:8d:4b:f9:dd:67:86: 76:37:7a:94:0e:c5:f8:10:86:e7:c2:d6:45:f8:d1: 69:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D7:7C:C2:13:3A:11:2C:FE:50:F5:D2:46:AD:B8:E4:AE:53:95:AE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:8::/48 Signature Algorithm: sha256WithRSAEncryption 76:39:26:e3:b5:a4:9f:51:83:8c:5c:57:55:10:20:4d:b7:99: 4d:5e:ad:e9:01:df:88:4d:75:8b:5c:d0:3b:23:bf:95:01:01: ed:83:b7:7f:ca:29:b5:5c:54:57:fa:da:d6:45:c2:38:0e:a5: fe:1c:3d:c3:4e:63:bc:8d:eb:61:e0:99:cf:f0:d2:2e:e3:9e: 9b:08:fe:f0:0e:ab:f6:fb:e7:23:81:41:cd:fd:17:c7:93:18: 45:b1:1b:4c:fa:7d:74:ea:d8:71:9a:bd:e0:3a:74:7d:1d:a4: c3:42:7c:75:cf:cc:56:63:97:a4:25:10:c5:19:16:39:63:db: 99:ae:22:17:fb:30:63:8d:28:dd:95:5d:99:56:3d:39:c6:51: 41:80:3f:67:c1:7d:a4:22:f5:09:1f:20:7d:0e:22:4c:ab:37: 55:86:ea:f0:02:e6:44:3c:03:a3:48:14:49:bd:38:46:78:14: 4f:dc:5a:08:16:0a:50:d7:00:c2:cb:38:0d:c2:fa:8e:3d:41: 9d:5b:e5:2c:b8:10:07:77:fc:af:17:3d:c9:7a:92:59:95:fc: e3:d4:07:b8:61:4d:1d:2a:58:9b:41:e1:5a:1a:f3:16:1b:09: ef:1e:f3:d4:96:f7:06:9b:59:73:10:91:12:6f:6e:d5:53:01: e5:f0:41:83 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBafPI2oNMs3xh1aeCgRy650dWHwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMTEyWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGFiOGJmZTMyOTJjODYwZDliZjgwNjYwOGNjMDIyZjFi Y2E4YjMwZTU4ZWFjYTRiODBiZTRjNmJmNTBiZDgxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4JR9EUSN5g88WPEJIj6ugTNT5+Ilew+HMsIyQEo9APDGL T3IM4Ymk3a3uBhdgfMwMeNPGDY3EYH8QiXV2bnkVY9KDPksKReaJv5J2skzUZesW JhJVuGPIXAXYovrBRY6vlecwHXvoMse8zw9p12XFeKgzUQ1s9tlS1Xl6uNSUHHXo lTvMlobIpvpHqLcbrIbu0bUmqvdXo27J6wQz1BJHaDO1+J5V9Kqo9iaasDf1otJb EWUe7SfX9xn+XOd4BjOY6NJZGz0jgYOUDzQBnHs6xRoZPrZvU0RgahE1WwzK1yXx TIA89AgemY1L+d1nhnY3epQOxfgQhufC1kX40WnRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ9d8whM6ESz+UPXSRq245K5Tla4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc2NWRmYTZjLTM1ZDEtNDJjZi1iYTg5LWVhZjg4NTc3ZTRmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAgwDQYJKoZIhvcNAQELBQADggEBAHY5JuO1pJ9Rg4xcV1UQIE23 mU1erekB34hNdYtc0Dsjv5UBAe2Dt3/KKbVcVFf62tZFwjgOpf4cPcNOY7yN62Hg mc/w0i7jnpsI/vAOq/b75yOBQc39F8eTGEWxG0z6fXTq2HGaveA6dH0dpMNCfHXP zFZjl6QlEMUZFjlj25muIhf7MGONKN2VXZlWPTnGUUGAP2fBfaQi9QkfIH0OIkyr N1WG6vAC5kQ8A6NIFEm9OEZ4FE/cWggWClDXAMLLOA3C+o49QZ1b5Sy4EAd3/K8X Pcl6klmV/OPUB7hhTR0qWJtB4Voa8xYbCe8e89SW9wabWXMQkRJvbtVTAeXwQYM= -----END CERTIFICATE-----Generated at Tue Jun 17 12:20:21 2025 by rpki-client