$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa File: 8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa (raw, json) Hash identifier: tOC0/0aK/qfJLSSclwetODBBuIOtydMyIcchq2G3Wqw= Subject key identifier: E4:95:81:4C:1F:16:1A:20:05:88:D9:D9:1A:DB:FF:35:3D:2B:15:6A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 11885CD428B4FC1790ABB772C9F59C7DEA847672 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa Signing time: Fri 30 May 2025 15:00:05 +0000 ROA not before: Fri 30 May 2025 15:00:05 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:88:5c:d4:28:b4:fc:17:90:ab:b7:72:c9:f5:9c:7d:ea:84:76:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 30 15:00:05 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=7b40c0f8e10318d3a4fc46c794c828885bb7ba62686c29b1ff54db2270c6fa05, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e8:e3:ae:ab:ff:de:56:ea:c6:83:49:3b:70: 23:28:b1:47:47:f3:48:5b:13:99:b0:01:68:97:60: 04:9f:2a:03:0e:cc:eb:a2:be:f5:e5:57:bd:44:12: c8:3a:35:a1:2d:7a:4f:0d:af:3d:0d:c7:df:81:7b: b8:4b:0e:20:ad:11:1a:16:5f:b2:8a:2b:02:e6:14: 3c:e0:c4:68:68:a0:ed:6f:4c:59:5f:8b:be:18:ff: 8b:fa:f9:26:ad:2e:a2:a5:29:e5:37:e2:d8:fc:2f: b2:c7:05:69:16:ff:0c:9b:e5:f1:cb:5a:4e:df:4e: d3:4e:a5:d6:ed:71:3c:01:43:7b:c5:42:16:b0:46: 95:af:1e:e4:c8:0b:a8:9c:a4:02:33:6f:85:c0:2f: 29:a4:c3:69:d1:12:8a:ba:8f:66:4b:0b:72:d7:da: 60:06:ad:96:87:f9:02:98:5f:6e:28:d8:f5:99:d1: a1:bf:55:93:90:a6:8d:a7:88:fb:38:07:18:ee:38: be:50:02:f8:97:2d:86:0c:c9:bb:6c:28:6a:ee:c4: 06:6b:18:53:73:99:4f:1a:1e:3a:ac:cf:c4:c0:57: 04:b7:43:d5:d4:0d:68:66:29:47:6c:08:8c:45:8f: b1:5e:08:51:97:23:3d:ed:39:9e:1c:4b:a3:19:b8: 29:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:95:81:4C:1F:16:1A:20:05:88:D9:D9:1A:DB:FF:35:3D:2B:15:6A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f020::/44 Signature Algorithm: sha256WithRSAEncryption 43:88:cf:d9:d1:1b:41:b6:af:bc:4a:ff:bf:a0:3d:1d:a6:55: a0:de:47:92:e1:7f:90:a5:2c:71:fe:d3:8e:e7:34:18:80:25: 13:7a:fb:29:03:d0:69:d3:31:12:8d:b2:79:4e:61:10:c4:b1: 45:56:6e:28:66:5b:92:b8:7c:be:0d:da:18:fa:59:3a:71:a0: a0:65:01:ee:de:9b:37:23:0f:b8:7c:a4:05:85:ed:af:27:35: 36:52:aa:b2:75:e8:e0:c0:3f:b3:a0:3c:13:fe:9f:12:0d:90: f4:e3:55:28:69:6e:ba:ca:2f:c8:7e:ec:15:a2:f7:b5:fe:af: 8e:ba:aa:0c:d7:1b:02:bd:b6:22:6d:a6:de:0d:e4:d6:d7:09: 6b:81:c8:dd:0c:b6:4b:b7:a2:2c:a1:4a:03:ee:a9:66:89:85: 5c:e6:d2:8c:39:1d:40:d7:c7:29:ff:12:8d:18:ba:da:69:bc: a8:ae:b9:74:68:f9:4a:97:bf:22:61:ee:99:e4:2d:d2:17:ae: ba:ec:c4:dd:ca:6a:23:a0:a8:61:3d:d5:45:dc:5a:86:08:46: fa:7b:dc:e1:0c:3e:40:96:1b:e6:d7:da:16:b1:4e:02:89:0b: fa:5c:d8:c8:0b:c9:df:9d:2e:9f:37:ce:f8:c4:f3:d1:b6:61: 05:93:8a:99 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEYhc1Ci0/BeQq7dyyfWcfeqEdnIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTMwMTUwMDA1WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjQwYzBmOGUxMDMxOGQzYTRmYzQ2Yzc5NGM4Mjg4ODVi YjdiYTYyNjg2YzI5YjFmZjU0ZGIyMjcwYzZmYTA1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv6OOuq//eVurGg0k7cCMosUdH80hbE5mwAWiXYASfKgMO zOuivvXlV71EEsg6NaEtek8Nrz0Nx9+Be7hLDiCtERoWX7KKKwLmFDzgxGhooO1v TFlfi74Y/4v6+SatLqKlKeU34tj8L7LHBWkW/wyb5fHLWk7fTtNOpdbtcTwBQ3vF QhawRpWvHuTIC6icpAIzb4XALymkw2nREoq6j2ZLC3LX2mAGrZaH+QKYX24o2PWZ 0aG/VZOQpo2niPs4BxjuOL5QAviXLYYMybtsKGruxAZrGFNzmU8aHjqsz8TAVwS3 Q9XUDWhmKUdsCIxFj7FeCFGXIz3tOZ4cS6MZuCklAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5JWBTB8WGiAFiNnZGtv/NT0rFWowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhjMGU2NWU1LTQzMTQtNGMyNS05NWVhLWJkNzI4YmE0MTdmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78CAwDQYJKoZIhvcNAQELBQADggEBAEOIz9nRG0G2r7xK/7+gPR2m VaDeR5Lhf5ClLHH+047nNBiAJRN6+ykD0GnTMRKNsnlOYRDEsUVWbihmW5K4fL4N 2hj6WTpxoKBlAe7emzcjD7h8pAWF7a8nNTZSqrJ16ODAP7OgPBP+nxINkPTjVShp brrKL8h+7BWi97X+r466qgzXGwK9tiJtpt4N5NbXCWuByN0Mtku3oiyhSgPuqWaJ hVzm0ow5HUDXxyn/Eo0YutppvKiuuXRo+UqXvyJh7pnkLdIXrrrsxN3KaiOgqGE9 1UXcWoYIRvp73OEMPkCWG+bX2haxTgKJC/pc2MgLyd+dLp83zvjE89G2YQWTipk= -----END CERTIFICATE-----Generated at Sat Jun 14 06:44:14 2025 by rpki-client