$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa File: 8a8b863b-298e-48a9-bced-202e80d98f01.roa (raw, json) Hash identifier: NF+UsMZWDFuoET38hwY4DH4Sw57zqQ/nQAKKFPcNZb8= Subject key identifier: A4:5E:D5:39:8D:49:A2:AC:4F:E9:09:D5:05:F1:3A:02:92:85:2D:77 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 01F5C8A63A86CDACD0D9DA6D40E19CE4AEAB5AE0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa Signing time: Tue 20 May 2025 18:10:18 +0000 ROA not before: Tue 20 May 2025 18:10:18 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ee00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f5:c8:a6:3a:86:cd:ac:d0:d9:da:6d:40:e1:9c:e4:ae:ab:5a:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:18 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=2ccf348a5ae262707bd2b7f65a530f034dc3febab07e04b5c06b72362ca04ee7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:11:88:9b:39:7d:42:b5:00:41:6a:46:b8:dd: 59:12:46:a4:3e:b6:5b:ac:ac:a5:e8:e6:42:6a:e2: 0f:69:db:d8:4a:f9:bb:f7:2e:3e:5e:03:32:8d:29: fe:19:cf:67:cc:ca:7d:f1:e2:c0:ec:b8:1a:be:94: 2c:84:6f:9b:e3:8f:76:07:1d:fa:16:6e:43:83:2b: a8:09:46:2d:f9:50:c6:b0:21:10:ae:82:1e:aa:74: 39:17:45:dd:9d:fb:77:49:25:09:2e:12:10:0b:92: f5:a8:e6:32:4c:e7:8d:ed:9d:44:31:3d:a4:fe:7e: 98:e7:31:0a:04:0b:9b:cd:fe:66:4a:5f:d2:e4:4a: 98:05:b3:d8:60:ed:57:b5:66:d5:fe:8a:1d:61:d2: 49:0d:21:a1:a6:22:61:7e:42:be:35:8a:af:5b:ea: 06:59:22:22:18:4a:79:84:16:3d:7d:45:b6:c3:d4: 09:b6:9a:e0:9e:0d:85:4c:a1:4c:f7:25:f3:9b:0f: 45:ec:1b:4a:cf:27:e6:3d:77:b5:c6:94:06:f5:81: 0d:df:13:1a:b4:b7:ab:18:78:96:af:be:1a:01:37: 99:0e:59:44:3d:1b:ef:83:b1:65:1e:79:7b:e6:6f: 63:d8:e4:d3:63:ed:c8:76:0d:eb:7a:cb:52:40:c3: 89:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:5E:D5:39:8D:49:A2:AC:4F:E9:09:D5:05:F1:3A:02:92:85:2D:77 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ee00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:9b:aa:82:5c:8d:d5:4b:2d:7c:1e:1b:aa:e4:ea:0c:40:59: d4:28:58:27:49:9e:d3:cb:eb:65:0d:8c:a4:a0:31:cc:6a:fb: 98:77:bb:3d:c4:d2:7d:13:81:da:16:e8:9d:ea:67:06:4f:04: 97:69:c6:b6:96:59:6e:d0:62:bc:27:59:0b:80:33:b6:e9:18: 14:5a:cc:f5:8f:18:63:8a:fa:fb:60:d5:24:8f:89:25:2d:b2: 72:61:9b:4e:ae:70:2f:c9:54:67:7a:69:27:c5:38:34:c6:b5: 6a:66:34:72:bf:11:8f:d4:1a:47:78:12:cc:82:38:7e:d8:a0: 53:95:99:d3:06:c4:47:55:39:10:47:56:14:8c:3c:49:8f:5f: cc:63:92:1d:b0:66:a3:9f:01:94:d4:ed:18:42:51:37:df:23: 17:71:00:c1:76:b4:dc:d2:19:04:ce:31:71:55:e2:b1:d1:1d: aa:ff:3f:89:9a:ed:6e:41:27:2f:b8:66:20:08:09:cf:a4:29: 3f:db:34:99:94:f0:6d:42:fc:f4:c0:18:30:d4:a5:75:08:95: 35:7c:2d:48:a0:e2:25:39:8e:45:83:26:53:b4:37:a3:ef:a9: a6:89:19:bb:61:62:89:fa:1e:47:2d:b1:09:8d:3d:90:ea:1c: f7:6f:76:d0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAfXIpjqGzazQ2dptQOGc5K6rWuAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDE4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2NmMzQ4YTVhZTI2MjcwN2JkMmI3ZjY1YTUzMGYwMzRk YzNmZWJhYjA3ZTA0YjVjMDZiNzIzNjJjYTA0ZWU3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQEYibOX1CtQBBaka43VkSRqQ+tlusrKXo5kJq4g9p29hK +bv3Lj5eAzKNKf4Zz2fMyn3x4sDsuBq+lCyEb5vjj3YHHfoWbkODK6gJRi35UMaw IRCugh6qdDkXRd2d+3dJJQkuEhALkvWo5jJM543tnUQxPaT+fpjnMQoEC5vN/mZK X9LkSpgFs9hg7Ve1ZtX+ih1h0kkNIaGmImF+Qr41iq9b6gZZIiIYSnmEFj19RbbD 1Am2muCeDYVMoUz3JfObD0XsG0rPJ+Y9d7XGlAb1gQ3fExq0t6sYeJavvhoBN5kO WUQ9G++DsWUeeXvmb2PY5NNj7ch2Det6y1JAw4k3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUpF7VOY1JoqxP6QnVBfE6ApKFLXcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhhOGI4NjNiLTI5OGUtNDhhOS1iY2VkLTIwMmU4MGQ5OGYwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77jANBgkqhkiG9w0BAQsFAAOCAQEAnpuqglyN1UstfB4bquTqDEBZ 1ChYJ0me08vrZQ2MpKAxzGr7mHe7PcTSfROB2hbonepnBk8El2nGtpZZbtBivCdZ C4AztukYFFrM9Y8YY4r6+2DVJI+JJS2ycmGbTq5wL8lUZ3ppJ8U4NMa1amY0cr8R j9QaR3gSzII4ftigU5WZ0wbER1U5EEdWFIw8SY9fzGOSHbBmo58BlNTtGEJRN98j F3EAwXa03NIZBM4xcVXisdEdqv8/iZrtbkEnL7hmIAgJz6QpP9s0mZTwbUL89MAY MNSldQiVNXwtSKDiJTmORYMmU7Q3o++ppokZu2FiifoeRy2xCY09kOoc92920A== -----END CERTIFICATE-----Generated at Sat Jun 14 06:32:24 2025 by rpki-client