$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa File: a1083a01-360a-4b23-a3a3-630df82536fc.roa (raw, json) Hash identifier: AlCTggDhhT6AkBPghfMUaAcdvByuETfIEnCIqD5YDj4= Subject key identifier: 00:0D:45:97:65:D7:AD:4E:81:3A:5D:11:07:FB:07:B7:BC:AA:1E:83 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2A504E32E913E394F98DC3CA7F9CF24C0DA92F8B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa Signing time: Tue 20 May 2025 18:00:13 +0000 ROA not before: Tue 20 May 2025 18:00:13 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:50:4e:32:e9:13:e3:94:f9:8d:c3:ca:7f:9c:f2:4c:0d:a9:2f:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:13 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=75e273e7d3d9e91d39f84872a64192791e94a9ec5f5db6b78a50d275fcbb8ee9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b9:d6:ca:9e:ec:f2:b7:b2:a3:f8:ae:25:33: 26:c5:b4:3c:04:40:30:cd:8f:5c:ec:3d:66:aa:81: e0:10:b7:ec:ca:2c:15:7e:6b:80:c1:cf:d0:2d:15: 1a:81:78:2f:e5:4e:45:1a:75:03:35:af:3f:2a:21: e1:82:49:03:4f:39:0e:52:c4:68:96:ed:b3:6b:77: 53:07:f1:44:e5:e8:1a:51:2c:a5:d2:58:7d:78:e5: 97:dc:fc:f9:11:db:8c:2f:3c:2c:d4:47:1a:1a:75: 8d:46:a6:4d:2d:7f:6c:ba:b5:05:de:31:c9:58:a6: 6d:fb:6d:59:58:00:c2:78:fc:62:08:86:0b:c9:b6: 61:f6:03:4b:e5:e7:3b:c2:32:05:53:39:78:57:51: 0d:3b:3c:58:48:a2:b5:f9:54:05:c3:b6:04:b0:15: e2:a3:cb:3d:06:ee:fe:73:99:28:e0:3b:b7:6e:f8: 1e:c8:90:b7:5e:17:49:96:bf:b9:88:93:5a:03:21: 97:42:6e:1b:be:2a:1e:29:d4:f6:9a:04:5c:a7:ae: 8f:7b:a1:a7:cc:ea:c8:98:83:80:8a:ef:43:c9:c5: be:6d:8d:a5:5f:c1:51:cb:1c:94:4b:d9:ba:03:35: a3:91:90:40:6c:3a:58:ee:ff:e8:75:9b:f1:84:e6: e7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0D:45:97:65:D7:AD:4E:81:3A:5D:11:07:FB:07:B7:BC:AA:1E:83 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 8a:c1:29:87:9e:8f:29:7d:3a:a9:f8:57:64:1c:9d:1d:ab:e2: 1d:bf:96:7c:e2:65:af:e8:34:d3:89:6e:4c:91:3a:98:00:f6: af:77:87:16:f7:0e:34:bc:02:ac:7d:9a:8e:d3:2e:b9:3f:5b: 40:2d:41:a0:17:50:d7:ca:4d:24:6e:99:d8:15:38:0f:a9:7a: fa:a5:a6:1b:f8:93:7a:61:09:4e:f3:71:3d:af:9c:94:4a:77: 87:cc:15:fe:6e:ff:6e:8e:77:6b:5e:e6:d2:76:7a:ab:98:a3: c1:b2:fc:93:2f:10:6e:7e:f1:ea:a6:99:f7:2e:e9:2b:99:fa: e7:1b:9e:8c:7f:90:60:33:04:5c:fd:1a:2e:d3:f0:d0:be:99: 76:76:4a:f1:9f:d7:5f:a8:12:6b:12:dc:a9:70:41:4c:f5:a6: 1f:4c:5f:de:f1:c1:d2:45:55:a3:36:a8:c1:5b:0a:bb:df:e7: cd:6c:a8:ab:72:ef:53:8b:c5:56:1a:38:11:a3:1d:81:dc:18: 6d:ed:d8:55:3d:06:ab:36:7c:ca:9d:c7:fc:32:d8:3c:19:d3: 8b:e6:ed:fc:04:eb:1d:40:2e:5e:53:b8:4e:c3:00:c6:18:af: 3f:3b:91:f2:4e:b7:cf:6b:b8:ac:d5:91:e8:d3:4b:21:40:ce: 97:df:5a:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKlBOMukT45T5jcPKf5zyTA2pL4swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDEzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NWUyNzNlN2QzZDllOTFkMzlmODQ4NzJhNjQxOTI3OTFl OTRhOWVjNWY1ZGI2Yjc4YTUwZDI3NWZjYmI4ZWU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJudbKnuzyt7Kj+K4lMybFtDwEQDDNj1zsPWaqgeAQt+zK LBV+a4DBz9AtFRqBeC/lTkUadQM1rz8qIeGCSQNPOQ5SxGiW7bNrd1MH8UTl6BpR LKXSWH145Zfc/PkR24wvPCzURxoadY1Gpk0tf2y6tQXeMclYpm37bVlYAMJ4/GII hgvJtmH2A0vl5zvCMgVTOXhXUQ07PFhIorX5VAXDtgSwFeKjyz0G7v5zmSjgO7du +B7IkLdeF0mWv7mIk1oDIZdCbhu+Kh4p1PaaBFynro97oafM6siYg4CK70PJxb5t jaVfwVHLHJRL2boDNaORkEBsOlju/+h1m/GE5ufBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAA1Fl2XXrU6BOl0RB/sHt7yqHoMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExMDgzYTAxLTM2MGEtNGIyMy1hM2EzLTYzMGRmODI1MzZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAIrBKYeejyl9Oqn4V2QcnR2r 4h2/lnziZa/oNNOJbkyROpgA9q93hxb3DjS8Aqx9mo7TLrk/W0AtQaAXUNfKTSRu mdgVOA+pevqlphv4k3phCU7zcT2vnJRKd4fMFf5u/26Od2te5tJ2equYo8Gy/JMv EG5+8eqmmfcu6SuZ+ucbnox/kGAzBFz9Gi7T8NC+mXZ2SvGf11+oEmsS3KlwQUz1 ph9MX97xwdJFVaM2qMFbCrvf581sqKty71OLxVYaOBGjHYHcGG3t2FU9Bqs2fMqd x/wy2DwZ04vm7fwE6x1ALl5TuE7DAMYYrz87kfJOt89ruKzVkejTSyFAzpffWio= -----END CERTIFICATE-----Generated at Sat Jun 14 06:45:42 2025 by rpki-client