$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa File: 7ef9d80d-500c-4762-aefe-0aa07f82b263.roa (raw, json) Hash identifier: B+WHbTnVFR+bzzOurptEja4XEWdRkT/t42AtTuYr7gw= Subject key identifier: 45:7C:AC:CE:E5:F9:9D:8E:E8:F9:10:0B:8D:CA:83:44:EA:CF:0E:93 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 633D2B9D9991CCF53DC0ECB66B0E868040246D44 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa Signing time: Tue 20 May 2025 18:10:46 +0000 ROA not before: Tue 20 May 2025 18:10:46 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:3d:2b:9d:99:91:cc:f5:3d:c0:ec:b6:6b:0e:86:80:40:24:6d:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:46 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=869d09e32c2ba376b142cfe4c81bdf1f91e5705b923caf1e86f81650ff1018d9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e9:5f:9b:4d:bc:d4:f3:d3:7c:42:65:2a:1d: 9e:ed:17:cb:26:ec:a2:df:ac:52:f2:23:e9:9e:5e: 32:66:92:5e:8e:79:25:81:37:ed:da:5f:c0:e1:eb: 94:d7:b1:32:c3:18:d7:39:55:b3:1b:86:ff:c0:77: 62:28:fa:30:c6:cb:52:22:7a:3d:3a:46:48:b1:17: ee:d5:de:57:6a:95:1d:84:90:16:4a:19:99:36:d4: 5f:a8:fe:11:87:ea:2e:c8:2f:80:a9:58:1d:0f:bc: c3:13:20:15:2f:e7:b7:a5:db:7c:f7:05:15:97:06: b0:0c:7b:f6:88:95:c8:cb:65:e0:3f:20:26:12:ba: 23:e4:5b:dd:6a:c6:31:f7:1f:97:9c:1c:a2:d4:b1: 93:08:1d:9a:47:7d:c1:59:b1:0a:a6:5f:56:3e:af: 6b:9e:66:e2:4f:79:54:60:d5:57:22:0c:0a:48:90: f7:2f:12:2a:48:22:00:cd:51:70:7c:47:9b:1f:c3: ac:de:6b:24:91:79:5e:49:b7:0d:0f:94:2a:3b:3f: f4:ba:4e:7c:c8:66:4d:63:c1:36:21:98:5e:f9:87: b2:a8:d6:8c:38:1f:fc:9b:2c:3c:8a:a7:e6:db:49: 37:ff:fe:e0:03:fc:b3:63:fd:e0:c4:11:35:49:2a: a6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:7C:AC:CE:E5:F9:9D:8E:E8:F9:10:0B:8D:CA:83:44:EA:CF:0E:93 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/40 Signature Algorithm: sha256WithRSAEncryption 9b:ef:a2:92:4f:16:66:01:ff:7f:c6:77:f5:da:fb:23:65:6e: dd:56:e3:28:42:9b:20:e7:38:cb:ba:14:d3:72:4d:10:f1:48: be:18:41:0e:c7:36:74:e6:74:46:43:cc:b7:25:d8:94:81:53: d7:f7:85:f8:ac:bf:b3:89:9f:34:73:9a:96:c6:ab:98:e4:a5: a7:ec:b2:47:96:ae:ff:63:97:0f:13:3e:a1:3e:03:5a:ea:98: 8f:73:fd:60:1d:b3:c6:a9:2f:e1:97:e1:25:cb:00:4c:c9:65: 93:cc:e7:d5:cc:4c:a4:42:4c:e3:f3:05:78:db:6b:c4:b2:e0: 7a:00:7d:f2:dc:9c:02:1a:e2:e3:11:bc:74:4c:71:ff:16:74: a9:68:dc:ee:dc:be:19:ae:92:c5:a5:ac:a4:bb:6d:cc:f0:28: a9:8f:fa:38:01:94:7c:8e:c0:8b:6c:eb:ee:0a:75:47:e8:f2: 3f:41:16:19:73:a2:e5:e9:d9:25:18:13:b2:07:fe:2e:49:86: 64:52:94:17:2c:68:ae:e3:54:cb:22:6c:2f:c1:b7:a1:82:d3: bb:fa:c6:30:52:aa:33:d2:b4:24:39:df:22:a4:5a:ed:cc:bf: 84:37:de:79:e3:5e:66:7f:31:65:e4:13:7d:6b:e1:63:1c:7e: 9f:8e:9a:53 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYz0rnZmRzPU9wOy2aw6GgEAkbUQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDQ2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjlkMDllMzJjMmJhMzc2YjE0MmNmZTRjODFiZGYxZjkx ZTU3MDViOTIzY2FmMWU4NmY4MTY1MGZmMTAxOGQ5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC16V+bTbzU89N8QmUqHZ7tF8sm7KLfrFLyI+meXjJmkl6O eSWBN+3aX8Dh65TXsTLDGNc5VbMbhv/Ad2Io+jDGy1Iiej06RkixF+7V3ldqlR2E kBZKGZk21F+o/hGH6i7IL4CpWB0PvMMTIBUv57el23z3BRWXBrAMe/aIlcjLZeA/ ICYSuiPkW91qxjH3H5ecHKLUsZMIHZpHfcFZsQqmX1Y+r2ueZuJPeVRg1VciDApI kPcvEipIIgDNUXB8R5sfw6zeaySReV5Jtw0PlCo7P/S6TnzIZk1jwTYhmF75h7Ko 1ow4H/ybLDyKp+bbSTf//uAD/LNj/eDEETVJKqbFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURXyszuX5nY7o+RALjcqDROrPDpMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdlZjlkODBkLTUwMGMtNDc2Mi1hZWZlLTBhYTA3ZjgyYjI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75DANBgkqhkiG9w0BAQsFAAOCAQEAm++ikk8WZgH/f8Z39dr7I2Vu 3VbjKEKbIOc4y7oU03JNEPFIvhhBDsc2dOZ0RkPMtyXYlIFT1/eF+Ky/s4mfNHOa lsarmOSlp+yyR5au/2OXDxM+oT4DWuqYj3P9YB2zxqkv4ZfhJcsATMllk8zn1cxM pEJM4/MFeNtrxLLgegB98tycAhri4xG8dExx/xZ0qWjc7ty+Ga6SxaWspLttzPAo qY/6OAGUfI7Ai2zr7gp1R+jyP0EWGXOi5enZJRgTsgf+LkmGZFKUFyxoruNUyyJs L8G3oYLTu/rGMFKqM9K0JDnfIqRa7cy/hDfeeeNeZn8xZeQTfWvhYxx+n46aUw== -----END CERTIFICATE-----Generated at Sat Jun 14 18:54:42 2025 by rpki-client