$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d914165-a3e7-48af-b624-8691c64e5360.roa File: 8d914165-a3e7-48af-b624-8691c64e5360.roa (raw, json) Hash identifier: K421YzWbQ/Y09VBKSLCRsCfOu3c5GayfONkJTGotDWI= Subject key identifier: 2C:E5:B4:AF:31:3C:5C:78:E5:32:EB:62:44:58:AA:2D:8B:A6:F4:82 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3468C4D8EBF86BE0FEE1C6931F44E2A7AD0EAE51 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d914165-a3e7-48af-b624-8691c64e5360.roa Signing time: Mon 16 Jun 2025 19:31:28 +0000 ROA not before: Mon 16 Jun 2025 19:31:28 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/28 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:68:c4:d8:eb:f8:6b:e0:fe:e1:c6:93:1f:44:e2:a7:ad:0e:ae:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:31:28 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=702d50b2c5e8c20089d5d61d4c4144a8a74307236f5866e3be60690ead69cb3f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d9:9b:a6:a8:7c:ab:01:46:a2:0f:c8:46:73: 20:fa:4f:99:6f:fa:b8:f9:a5:d3:91:c0:d1:cd:1f: 36:dc:8d:d9:5b:2f:6c:b8:a3:e0:cb:4c:5b:fa:b9: 46:6c:33:33:d4:43:9a:a6:15:3a:dc:45:6b:51:dd: b6:e1:44:ce:94:c0:85:0d:41:36:73:e4:3c:ae:a1: b1:2c:a7:28:55:ec:00:40:40:c4:66:4c:03:24:66: 8c:f2:5b:35:01:43:30:c0:65:93:a9:ee:aa:67:eb: 21:e3:f2:96:fb:4a:17:c9:37:f8:ae:94:ab:c8:db: 3b:c9:7a:0a:2b:21:5b:07:5f:d4:ef:0c:d5:c7:a4: 45:ee:56:ae:c4:8f:77:3b:2f:16:26:87:80:b7:08: e0:f3:d4:e1:38:3d:8f:ba:e5:54:4b:13:fe:ea:73: 46:67:b9:2f:be:0f:9d:41:cb:e0:ee:37:01:64:97: 27:91:84:6b:7e:26:7a:5b:20:8f:a7:93:06:db:53: d4:d1:b7:bb:45:79:91:9a:86:8b:0d:d6:7e:24:8f: d3:9a:8b:e9:75:3a:b9:70:42:0b:3d:51:e2:5c:22: 2d:1f:63:bc:83:dd:ab:26:33:41:12:54:46:24:62: 83:89:cc:f0:5a:24:c8:d5:6d:73:4f:08:dd:25:de: aa:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:E5:B4:AF:31:3C:5C:78:E5:32:EB:62:44:58:AA:2D:8B:A6:F4:82 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d914165-a3e7-48af-b624-8691c64e5360.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/28 Signature Algorithm: sha256WithRSAEncryption 30:ef:26:5c:41:63:2b:ce:37:d3:d7:d4:1a:09:4d:c1:89:05: c5:d3:a6:f6:f4:50:c1:6c:6f:ec:9a:d5:1e:5b:c4:c8:8a:17: e2:0d:78:e4:79:7b:53:70:c7:14:47:31:e2:51:52:81:7a:5b: 76:9c:08:dd:dc:81:e0:e6:cb:1c:65:e0:d3:07:0c:9a:ac:ac: 28:b3:21:22:e7:ce:2e:74:1a:22:76:84:53:c6:3c:f1:83:a6: 8d:f2:1d:ba:25:cc:a0:84:3b:e2:55:3c:e1:a9:23:4b:fe:f9: 80:07:41:42:3a:7c:21:ba:29:c6:bc:5a:d3:7b:9e:91:b1:7d: ef:fc:e8:4b:1d:8c:95:07:37:5e:34:a3:4d:f7:2e:1c:c3:95: 71:0b:65:c5:45:9c:a7:0d:4b:f3:70:27:e1:6d:81:d1:03:28: 93:bd:fb:ee:42:8e:f3:c6:e4:72:06:ee:ba:73:ee:9c:49:7a: 3d:79:c6:56:bc:6d:1c:0d:d1:cf:12:de:48:d5:ca:23:af:3b: e4:b9:42:40:7f:bc:46:16:c4:4a:d5:eb:ce:a1:00:17:aa:fa: a5:f8:14:a4:18:91:98:07:0a:d6:d3:a5:cc:20:ba:b9:a6:b2: 6c:86:95:28:ad:f7:c2:34:d1:fb:0c:11:24:20:82:d9:9e:9a: aa:53:11:86 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUNGjE2Ov4a+D+4caTH0Tip60OrlEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMTI4WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDJkNTBiMmM1ZThjMjAwODlkNWQ2MWQ0YzQxNDRhOGE3 NDMwNzIzNmY1ODY2ZTNiZTYwNjkwZWFkNjljYjNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/2ZumqHyrAUaiD8hGcyD6T5lv+rj5pdORwNHNHzbcjdlb L2y4o+DLTFv6uUZsMzPUQ5qmFTrcRWtR3bbhRM6UwIUNQTZz5DyuobEspyhV7ABA QMRmTAMkZozyWzUBQzDAZZOp7qpn6yHj8pb7ShfJN/iulKvI2zvJegorIVsHX9Tv DNXHpEXuVq7Ej3c7LxYmh4C3CODz1OE4PY+65VRLE/7qc0ZnuS++D51By+DuNwFk lyeRhGt+JnpbII+nkwbbU9TRt7tFeZGahosN1n4kj9Oai+l1OrlwQgs9UeJcIi0f Y7yD3asmM0ESVEYkYoOJzPBaJMjVbXNPCN0l3qo3AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQULOW0rzE8XHjlMutiRFiqLYum9IIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhkOTE0MTY1LWEzZTctNDhhZi1iNjI0LTg2OTFjNjRlNTM2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPAAMA0GCSqGSIb3DQEBCwUAA4IBAQAw7yZcQWMrzjfT19QaCU3BiQXF 06b29FDBbG/smtUeW8TIihfiDXjkeXtTcMcURzHiUVKBelt2nAjd3IHg5sscZeDT BwyarKwosyEi584udBoidoRTxjzxg6aN8h26JcyghDviVTzhqSNL/vmAB0FCOnwh uinGvFrTe56RsX3v/OhLHYyVBzdeNKNN9y4cw5VxC2XFRZynDUvzcCfhbYHRAyiT vfvuQo7zxuRyBu66c+6cSXo9ecZWvG0cDdHPEt5I1cojrzvkuUJAf7xGFsRK1evO oQAXqvql+BSkGJGYBwrW06XMILq5prJshpUorffCNNH7DBEkIILZnpqqUxGG -----END CERTIFICATE-----Generated at Wed Jun 18 13:28:31 2025 by rpki-client