$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa File: 976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa (raw, json) Hash identifier: FanGzaxYK4JTv47T9iTaMi9PUwbTNSbJQs4zWGcP5zE= Subject key identifier: F2:EE:3B:82:12:D0:25:05:AA:3B:B3:9F:8C:F0:29:32:A9:4D:E8:8C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 04C31D7F7A6CB7DE4F27B487BA4EF7A1048AFEBC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa Signing time: Mon 16 Jun 2025 19:21:07 +0000 ROA not before: Mon 16 Jun 2025 19:21:07 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:c3:1d:7f:7a:6c:b7:de:4f:27:b4:87:ba:4e:f7:a1:04:8a:fe:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:21:07 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=a833a46625fce38e22095c1fa5fcf45dd857a0c2119a01c796f0ae42a0a408a4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:26:63:dc:ec:f9:7d:be:b2:be:99:33:24:12: 8c:00:ea:68:ae:85:a8:a3:6d:e2:89:77:45:d7:c0: a4:62:7f:97:d6:3d:03:de:47:54:36:e3:7d:10:fe: 1b:1c:db:ea:73:b7:8b:43:8c:60:c7:cd:99:37:d6: 7b:c0:69:64:12:b3:6e:36:35:cf:1d:6c:50:37:a1: 98:a4:ce:09:12:e7:b5:03:80:b6:66:e4:f6:3a:1f: 02:7c:2a:af:20:d1:be:3d:07:46:68:8b:86:02:f8: 39:84:7a:60:4a:b5:9f:a2:72:b0:3a:ab:7a:48:5f: 09:70:3a:73:96:01:30:c3:de:4d:17:9c:a9:94:98: 07:9a:1c:72:e6:4b:e9:a9:53:2c:dd:49:9c:30:73: fa:8c:79:43:7c:36:b3:2b:d3:58:fc:03:40:63:52: 3e:41:45:86:db:94:fb:c1:18:ae:66:cc:bc:c8:bf: fb:22:b4:6c:53:2f:11:20:d2:2e:81:2d:26:d1:2e: 7f:28:c4:b7:32:03:47:f6:4c:0e:0e:55:68:9e:5c: 94:64:cb:8f:09:07:02:07:cb:e6:e0:7f:1a:1f:b8: a8:a2:7b:73:91:f3:6a:49:37:bf:88:cf:a4:19:f1: 4d:d8:83:e2:01:2e:84:46:29:74:79:8e:bc:1b:4e: bd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EE:3B:82:12:D0:25:05:AA:3B:B3:9F:8C:F0:29:32:A9:4D:E8:8C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:f00::/48 Signature Algorithm: sha256WithRSAEncryption 90:15:23:bb:a7:ab:2d:a1:dd:59:d0:44:26:f2:30:1c:09:3a: 7e:7a:38:e4:97:43:f8:13:a7:69:d6:bc:4b:4b:28:d8:70:e8: f2:cb:4f:59:73:b5:1e:ee:74:a9:d5:db:f0:99:7e:99:b4:12: 2d:2e:cd:00:e5:ce:ab:af:a3:3d:04:6a:1d:07:72:ee:f7:24: ce:cc:45:46:eb:c3:d5:3b:1c:87:7e:68:b9:f1:f2:9e:e5:b1: 94:f5:d0:58:de:db:9d:32:bb:5e:00:80:03:d7:87:54:0a:f5: 69:e4:53:c6:13:ea:94:5c:62:ec:de:a7:52:f6:e1:2d:18:fd: 75:00:aa:89:a3:1a:a5:bf:5d:47:16:5f:ef:04:d0:3c:77:fd: 1d:7f:2e:11:14:bc:c3:7d:d1:bd:c0:8e:27:77:02:0b:1a:1c: c6:5e:b0:d4:9d:8b:a0:4a:50:a8:06:6e:e1:ad:ba:bf:2e:f1: d5:7e:55:4b:9f:c0:8a:ba:be:c9:c3:f2:22:82:f5:60:96:55: d9:9b:a7:bc:c4:ca:72:8b:18:20:3e:96:9a:77:80:15:37:61: c5:d5:26:3e:f1:e1:4c:62:a2:70:c0:19:27:80:81:97:01:59: be:1f:b4:ce:a1:d6:1e:8f:3e:82:b1:b8:7d:04:6d:46:3e:6b: 9b:62:30:cf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBMMdf3pst95PJ7SHuk73oQSK/rwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMTA3WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhODMzYTQ2NjI1ZmNlMzhlMjIwOTVjMWZhNWZjZjQ1ZGQ4 NTdhMGMyMTE5YTAxYzc5NmYwYWU0MmEwYTQwOGE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwJmPc7Pl9vrK+mTMkEowA6miuhaijbeKJd0XXwKRif5fW PQPeR1Q2430Q/hsc2+pzt4tDjGDHzZk31nvAaWQSs242Nc8dbFA3oZikzgkS57UD gLZm5PY6HwJ8Kq8g0b49B0Zoi4YC+DmEemBKtZ+icrA6q3pIXwlwOnOWATDD3k0X nKmUmAeaHHLmS+mpUyzdSZwwc/qMeUN8NrMr01j8A0BjUj5BRYbblPvBGK5mzLzI v/sitGxTLxEg0i6BLSbRLn8oxLcyA0f2TA4OVWieXJRky48JBwIHy+bgfxofuKii e3OR82pJN7+Iz6QZ8U3Yg+IBLoRGKXR5jrwbTr1LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8u47ghLQJQWqO7OfjPApMqlN6IwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3NjYyM2FkLTBiNWEtNGE1Zi1iNGEzLTYwNjgxZDJlYWM3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDwAwDQYJKoZIhvcNAQELBQADggEBAJAVI7unqy2h3VnQRCbyMBwJ On56OOSXQ/gTp2nWvEtLKNhw6PLLT1lztR7udKnV2/CZfpm0Ei0uzQDlzquvoz0E ah0Hcu73JM7MRUbrw9U7HId+aLnx8p7lsZT10Fje250yu14AgAPXh1QK9WnkU8YT 6pRcYuzep1L24S0Y/XUAqomjGqW/XUcWX+8E0Dx3/R1/LhEUvMN90b3Ajid3Agsa HMZesNSdi6BKUKgGbuGtur8u8dV+VUufwIq6vsnD8iKC9WCWVdmbp7zEynKLGCA+ lpp3gBU3YcXVJj7x4UxionDAGSeAgZcBWb4ftM6h1h6PPoKxuH0EbUY+a5tiMM8= -----END CERTIFICATE-----Generated at Tue Jun 17 16:47:32 2025 by rpki-client