$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa File: a0024e00-f937-4b63-91df-d45ce0a6a27d.roa (raw, json) Hash identifier: DX8FXMrZWyvbHQr28fzYknFqx4Sr/wfemMavCYG1bzI= Subject key identifier: 73:CF:95:30:31:82:12:BC:5F:BE:E7:E4:4B:1D:71:BA:15:32:EA:25 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2C23A58A419D0F7B8B5B58B881A128F1CC6888AA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa Signing time: Tue 20 May 2025 18:00:58 +0000 ROA not before: Tue 20 May 2025 18:00:58 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:23:a5:8a:41:9d:0f:7b:8b:5b:58:b8:81:a1:28:f1:cc:68:88:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:58 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=546912f7ae13e2e9e18a90071edc8e213d1e40e1af32257ed83d974d6c26be02, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ed:c6:42:84:6e:ae:7d:11:32:cf:31:10:92: 93:bf:63:41:bf:a8:e1:a0:f6:c4:08:17:2d:2f:ad: c1:37:0e:7b:bf:68:47:5e:d0:fc:9b:ad:b5:ab:fa: a1:27:20:6f:14:48:a5:a2:4a:e9:92:1e:e0:18:fc: 56:f2:07:4d:e6:91:c3:d2:01:27:b6:07:37:7a:b4: 49:05:25:1f:0b:83:29:44:ca:ad:00:5f:ec:77:90: 3d:c6:ed:4b:c4:24:79:1f:f4:a5:a8:b9:cc:93:b9: 95:dc:40:42:33:06:af:b1:3e:04:b8:8e:84:8f:8a: 78:fa:59:d9:78:8d:2f:c0:a9:37:96:9b:79:24:5c: 0e:be:ce:04:eb:dd:9a:82:34:5f:cf:a1:f4:8e:bc: 31:d6:bf:05:c2:b9:cb:c7:a3:ae:99:14:7c:5f:ac: 26:66:60:22:93:41:c0:c4:23:28:8a:22:69:65:c6: 98:7f:12:52:a8:22:09:14:c8:06:f9:c0:5e:9d:62: 6e:ca:3c:7e:4f:58:43:de:09:a8:06:54:44:c6:32: 14:5c:cf:7a:94:59:63:30:cb:e0:fb:73:e1:23:23: d3:df:61:b1:e9:17:bc:4a:25:18:12:43:94:b5:9d: bf:35:62:b9:d3:28:54:17:58:f4:84:ef:5f:3c:28: 5e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:CF:95:30:31:82:12:BC:5F:BE:E7:E4:4B:1D:71:BA:15:32:EA:25 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6010::/44 Signature Algorithm: sha256WithRSAEncryption 92:74:b6:b5:3b:1c:36:dc:60:d4:de:4e:ee:c6:97:af:da:42: 16:5c:34:c3:99:4b:3a:35:7d:cd:3d:ec:4d:38:de:6c:31:bf: ae:91:9a:d7:96:50:b4:49:da:9b:7e:e8:eb:8d:17:e9:ad:a1: 82:a4:39:83:89:89:ae:f2:a1:21:67:39:76:b7:fa:c9:53:af: 95:66:e2:4b:bf:80:17:16:8f:0a:d4:e6:ce:34:ad:5f:9a:87: d1:24:61:eb:90:8f:5b:cd:a0:61:30:0b:63:5e:e2:19:bb:de: 46:53:e6:e9:cb:39:ff:e3:3a:2c:88:7a:59:db:17:03:09:9e: fa:a7:b1:cf:b5:7b:b2:2b:de:e7:5e:48:0f:16:5a:de:94:a3: a8:a8:ca:bf:16:75:1e:2f:e0:18:26:ea:f3:d4:ac:26:83:bb: 7d:ba:8f:56:49:47:5d:f6:e5:d8:f5:3c:8e:d8:a8:d5:eb:c1: 57:53:e2:32:e9:c6:7c:b4:1b:4a:18:73:12:3f:49:ca:26:59: 2d:41:21:e2:b1:cf:d4:8c:a9:77:43:27:b5:69:ec:b2:e9:94: 7e:8c:2a:30:7d:9d:2b:cc:60:53:30:00:38:d4:e5:86:5c:a7: 1d:b7:4e:dd:3f:fd:5a:1b:84:d1:0b:60:17:8f:12:69:13:72: 3b:e3:6a:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULCOlikGdD3uLW1i4gaEo8cxoiKowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDU4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDY5MTJmN2FlMTNlMmU5ZTE4YTkwMDcxZWRjOGUyMTNk MWU0MGUxYWYzMjI1N2VkODNkOTc0ZDZjMjZiZTAyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb7cZChG6ufREyzzEQkpO/Y0G/qOGg9sQIFy0vrcE3Dnu/ aEde0PybrbWr+qEnIG8USKWiSumSHuAY/FbyB03mkcPSASe2Bzd6tEkFJR8LgylE yq0AX+x3kD3G7UvEJHkf9KWoucyTuZXcQEIzBq+xPgS4joSPinj6Wdl4jS/AqTeW m3kkXA6+zgTr3ZqCNF/PofSOvDHWvwXCucvHo66ZFHxfrCZmYCKTQcDEIyiKImll xph/ElKoIgkUyAb5wF6dYm7KPH5PWEPeCagGVETGMhRcz3qUWWMwy+D7c+EjI9Pf YbHpF7xKJRgSQ5S1nb81YrnTKFQXWPSE7188KF59AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUc8+VMDGCErxfvufkSx1xuhUy6iUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwMDI0ZTAwLWY5MzctNGI2My05MWRmLWQ0NWNlMGE2YTI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYBAwDQYJKoZIhvcNAQELBQADggEBAJJ0trU7HDbcYNTeTu7Gl6/a QhZcNMOZSzo1fc097E043mwxv66RmteWULRJ2pt+6OuNF+mtoYKkOYOJia7yoSFn OXa3+slTr5Vm4ku/gBcWjwrU5s40rV+ah9EkYeuQj1vNoGEwC2Ne4hm73kZT5unL Of/jOiyIelnbFwMJnvqnsc+1e7Ir3udeSA8WWt6Uo6ioyr8WdR4v4Bgm6vPUrCaD u326j1ZJR1325dj1PI7YqNXrwVdT4jLpxny0G0oYcxI/ScomWS1BIeKxz9SMqXdD J7Vp7LLplH6MKjB9nSvMYFMwADjU5YZcpx23Tt0//VobhNELYBePEmkTcjvjarw= -----END CERTIFICATE-----Generated at Sun Jun 15 11:36:19 2025 by rpki-client