$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa File: a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa (raw, json) Hash identifier: x0LvhLwZSJbvrQBcq9pd/jFxhtRzNW+Z3NqvLRNS6u8= Subject key identifier: FF:ED:FC:35:8E:B4:36:FF:F1:27:5A:A2:9C:8C:2C:D7:6A:61:6B:1B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1B83E6FD95B762C970B3AD562379946B5B1F5D20 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa Signing time: Tue 20 May 2025 18:00:11 +0000 ROA not before: Tue 20 May 2025 18:00:11 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:83:e6:fd:95:b7:62:c9:70:b3:ad:56:23:79:94:6b:5b:1f:5d:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:11 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=6439cfd194bc4edbba19aa5dd4d75bb201e991048dcfc8947468a79b08009f6c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:af:50:f1:47:44:1a:3e:9b:9d:df:c7:5c:0a: ed:fc:c2:ff:91:ab:12:c5:f5:11:06:eb:5e:fc:f0: fe:17:3b:2b:53:49:3d:9a:49:c1:3c:b7:e3:61:a7: f9:d0:74:5c:8d:c6:2d:9b:d6:85:1c:09:e1:6e:f8: 4a:bb:3f:b8:76:c4:7b:ae:39:1d:7d:a7:e1:6f:02: 96:70:cb:e5:2f:9a:48:75:26:e1:f8:94:bf:21:72: 2f:57:7f:c0:3d:77:fa:12:75:f8:d4:3e:c9:6a:eb: bb:c6:79:ec:55:fd:bd:c1:89:3d:94:1a:5d:51:91: 9b:a0:7e:84:86:34:b7:a4:fd:49:49:ff:bd:21:e4: 78:a1:d1:36:d2:64:b5:77:91:4e:70:76:5e:fc:66: 3c:04:ab:7e:0f:76:ff:f7:ff:96:4a:56:48:91:65: 58:98:b3:cf:30:18:f3:a8:08:99:0d:95:76:c7:94: 49:7d:c0:d0:72:b0:79:61:71:aa:1b:15:31:59:55: 1b:12:0f:a9:bc:83:b0:38:a8:7c:92:01:62:fd:2c: 9e:0d:fe:95:00:15:04:8d:e6:56:1f:30:fa:ea:31: 2b:33:ec:80:ef:03:6f:69:e8:88:06:ce:f7:d3:88: 80:17:af:23:9d:2c:d2:f1:01:60:ed:a4:68:2b:f6: a5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:ED:FC:35:8E:B4:36:FF:F1:27:5A:A2:9C:8C:2C:D7:6A:61:6B:1B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 7a:a9:86:dc:f4:2b:ce:8b:73:3d:31:27:43:8c:71:90:5e:d2: 78:6a:d0:4b:55:b0:a9:55:fb:d6:69:86:f8:2c:ab:9f:b4:68: 20:2d:3d:f0:32:64:c2:d3:fd:6c:98:38:e0:37:58:d6:fb:97: 80:16:a3:bb:6d:82:5c:d6:13:bf:0a:52:fd:06:85:89:10:18: f9:88:f8:f8:48:4d:fd:46:07:87:07:f3:07:3d:e8:bc:ae:3c: 1f:0e:38:42:eb:62:cb:99:ff:29:41:42:ea:5a:30:d0:a9:f9: 1e:f9:31:fe:22:99:e0:1f:ce:fb:81:d2:e5:9d:39:6a:01:23: 3d:ff:d7:0f:59:19:34:6e:c7:2d:0f:4b:bd:de:96:d3:1d:be: bd:e4:5b:eb:4c:14:2b:cb:62:a7:a8:6b:3a:42:cd:c0:59:29: b2:2a:cd:4e:09:07:13:ef:3c:ba:72:39:22:5f:51:d4:62:be: 71:4b:84:c1:be:8a:f2:39:69:c5:9b:99:3f:01:46:c1:e4:10: f5:89:19:41:0b:05:66:0b:16:a7:b0:c5:1d:22:5f:ff:f6:6b: cc:56:28:16:b9:59:9b:cc:5a:f1:e5:7a:1b:94:51:af:48:75: 1a:d7:54:cf:b2:a8:43:50:d9:5e:d8:da:4e:15:c7:89:c1:d4: 7d:38:08:43 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG4Pm/ZW3Yslws61WI3mUa1sfXSAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDExWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDM5Y2ZkMTk0YmM0ZWRiYmExOWFhNWRkNGQ3NWJiMjAx ZTk5MTA0OGRjZmM4OTQ3NDY4YTc5YjA4MDA5ZjZjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2r1DxR0QaPpud38dcCu38wv+RqxLF9REG61788P4XOytT ST2aScE8t+Nhp/nQdFyNxi2b1oUcCeFu+Eq7P7h2xHuuOR19p+FvApZwy+Uvmkh1 JuH4lL8hci9Xf8A9d/oSdfjUPslq67vGeexV/b3BiT2UGl1RkZugfoSGNLek/UlJ /70h5Hih0TbSZLV3kU5wdl78ZjwEq34Pdv/3/5ZKVkiRZViYs88wGPOoCJkNlXbH lEl9wNBysHlhcaobFTFZVRsSD6m8g7A4qHySAWL9LJ4N/pUAFQSN5lYfMPrqMSsz 7IDvA29p6IgGzvfTiIAXryOdLNLxAWDtpGgr9qX1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/+38NY60Nv/xJ1qinIws12phaxswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2NWRjNTc5LTU1ZDAtNDY0MC04ZWU1LTZiZDcwZTNkZDcyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAHqphtz0K86Lcz0xJ0OMcZBe 0nhq0EtVsKlV+9Zphvgsq5+0aCAtPfAyZMLT/WyYOOA3WNb7l4AWo7ttglzWE78K Uv0GhYkQGPmI+PhITf1GB4cH8wc96LyuPB8OOELrYsuZ/ylBQupaMNCp+R75Mf4i meAfzvuB0uWdOWoBIz3/1w9ZGTRuxy0PS73eltMdvr3kW+tMFCvLYqeoazpCzcBZ KbIqzU4JBxPvPLpyOSJfUdRivnFLhMG+ivI5acWbmT8BRsHkEPWJGUELBWYLFqew xR0iX//2a8xWKBa5WZvMWvHlehuUUa9IdRrXVM+yqENQ2V7Y2k4Vx4nB1H04CEM= -----END CERTIFICATE-----Generated at Sat Jun 14 18:59:48 2025 by rpki-client