$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa File: ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa (raw, json) Hash identifier: 8HbpfFG+Nxfxcau30KUtZQ4AwB54S4ZHScvrIteWp3g= Subject key identifier: CF:18:95:25:37:64:48:42:F5:1F:EC:58:17:AA:B2:0C:E7:29:3A:2B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2DD2428D5762F26FF950E7910A299A0E6772EF11 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa Signing time: Tue 20 May 2025 18:11:25 +0000 ROA not before: Tue 20 May 2025 18:11:25 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d2:42:8d:57:62:f2:6f:f9:50:e7:91:0a:29:9a:0e:67:72:ef:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:25 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=a2764fbc83d08ba4e9ca7e70427afb0651e77f1c79cf866be057ed87e8d66ac3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:26:90:c5:6a:d7:0d:77:aa:01:8d:37:e5:78: 21:ea:05:cc:20:a7:72:dd:21:d6:0b:3c:45:83:da: 34:e1:25:22:0a:ec:08:0d:a0:ed:dd:73:40:c3:ea: 4c:79:aa:eb:ce:55:4c:73:6d:99:3f:dc:d3:a2:35: dc:3f:57:61:75:65:3a:f0:37:8d:26:b2:39:1a:54: b7:99:c1:ee:6c:30:33:76:04:2a:e4:29:bb:b8:cc: 4a:46:4b:ed:7f:c9:36:94:1e:9a:97:80:64:b2:62: f7:e3:6a:f2:a6:76:ba:d7:8a:16:b0:9d:0c:9b:0e: 66:4d:05:c5:66:5a:16:04:1b:9e:7a:f3:88:60:f7: 15:24:55:e2:28:e4:45:82:02:c4:f6:54:3a:75:7d: e7:38:84:cd:09:93:44:d8:99:36:8f:ea:23:54:a2: 93:4c:8b:69:69:00:2e:fe:ec:32:b3:dd:1a:44:6f: 12:6c:b9:d2:6c:7b:8f:7e:25:27:50:da:77:20:62: 1a:58:1d:48:2b:2c:16:47:8f:99:f1:31:a1:57:57: ba:1b:f5:75:48:7a:12:29:3a:c0:46:64:44:0a:82: b5:82:eb:e8:0f:a6:bb:a0:d9:ae:34:14:16:fe:b4: e1:34:ab:ad:2b:87:d9:49:42:e9:0c:74:ab:20:92: b2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:18:95:25:37:64:48:42:F5:1F:EC:58:17:AA:B2:0C:E7:29:3A:2B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/40 Signature Algorithm: sha256WithRSAEncryption 5f:39:bc:fe:8f:7c:9f:92:25:f8:c9:2d:f2:e3:0c:3e:6a:92: 10:37:47:50:89:de:50:d9:3e:41:98:34:27:27:7a:9a:0d:a8: 93:49:fd:fe:4f:48:3c:e7:f5:2c:83:d1:7d:08:4d:c4:7b:30: ef:6e:b1:5a:f4:a8:c0:93:0b:a0:ee:87:fd:e6:7f:2c:43:bb: 21:df:21:a7:7a:83:d4:fd:ec:6b:c2:62:53:3e:9c:ac:0f:6a: d2:b9:59:8e:1f:b8:82:91:cd:0e:d9:14:35:c5:a2:e0:a6:f3: 9d:e5:a5:8c:2d:39:9d:74:c5:46:b8:91:1b:d8:78:54:b2:fb: f6:5d:9f:43:68:ca:ca:aa:08:74:80:d1:88:e5:93:80:cb:00: 57:12:30:6b:0e:a5:29:12:83:bf:b5:04:97:c7:08:96:38:86: 17:2c:65:38:79:f9:b4:d3:78:ca:3f:f4:8a:b6:d7:56:73:c3: 0a:de:72:cd:aa:1e:73:38:1f:3b:b7:ce:53:b0:d2:5f:06:a3: 45:94:c7:07:9b:c8:4b:37:ab:65:0e:e0:3d:d5:ef:20:eb:1f: 45:50:d4:6a:24:93:d1:cd:fa:6d:ff:99:84:a8:4c:e4:06:ff: 45:fd:ae:71:46:dd:d2:13:52:da:55:82:2a:10:dc:0c:cd:19: 86:5e:da:26 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULdJCjVdi8m/5UOeRCimaDmdy7xEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTI1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjc2NGZiYzgzZDA4YmE0ZTljYTdlNzA0MjdhZmIwNjUx ZTc3ZjFjNzljZjg2NmJlMDU3ZWQ4N2U4ZDY2YWMzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNJpDFatcNd6oBjTfleCHqBcwgp3LdIdYLPEWD2jThJSIK 7AgNoO3dc0DD6kx5quvOVUxzbZk/3NOiNdw/V2F1ZTrwN40msjkaVLeZwe5sMDN2 BCrkKbu4zEpGS+1/yTaUHpqXgGSyYvfjavKmdrrXihawnQybDmZNBcVmWhYEG556 84hg9xUkVeIo5EWCAsT2VDp1fec4hM0Jk0TYmTaP6iNUopNMi2lpAC7+7DKz3RpE bxJsudJse49+JSdQ2ncgYhpYHUgrLBZHj5nxMaFXV7ob9XVIehIpOsBGZEQKgrWC 6+gPprug2a40FBb+tOE0q60rh9lJQukMdKsgkrKdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUzxiVJTdkSEL1H+xYF6qyDOcpOiswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiNGIwMTk5LTZhNjMtNDZlMi05ZWNmLTZjMGJiZWE1NDAzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75jANBgkqhkiG9w0BAQsFAAOCAQEAXzm8/o98n5Il+Mkt8uMMPmqS EDdHUIneUNk+QZg0Jyd6mg2ok0n9/k9IPOf1LIPRfQhNxHsw726xWvSowJMLoO6H /eZ/LEO7Id8hp3qD1P3sa8JiUz6crA9q0rlZjh+4gpHNDtkUNcWi4KbzneWljC05 nXTFRriRG9h4VLL79l2fQ2jKyqoIdIDRiOWTgMsAVxIwaw6lKRKDv7UEl8cIljiG FyxlOHn5tNN4yj/0irbXVnPDCt5yzaoeczgfO7fOU7DSXwajRZTHB5vISzerZQ7g PdXvIOsfRVDUaiST0c36bf+ZhKhM5Ab/Rf2ucUbd0hNS2lWCKhDcDM0Zhl7aJg== -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:58 2025 by rpki-client