$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa File: b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa (raw, json) Hash identifier: 2QpfK6aW8hQoj9e1HEobWUXSOgI+B1I/AMpFTnsVBMg= Subject key identifier: AD:1E:F0:B1:E0:89:78:01:3B:44:73:48:C2:6D:4B:01:D5:29:6A:8A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7C154EF2414BE91810DDD02F80805022DF6DC56D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa Signing time: Fri 13 Jun 2025 18:30:08 +0000 ROA not before: Fri 13 Jun 2025 18:30:08 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:15:4e:f2:41:4b:e9:18:10:dd:d0:2f:80:80:50:22:df:6d:c5:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 13 18:30:08 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=06cd6542711ee600f4819a62c0f7ca3b4120e61f8db138e18c553505187dcacd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:75:7b:7b:d6:17:4c:b1:8b:65:03:ff:20:a2: db:b8:5a:a8:89:f6:42:7f:4c:ce:83:c9:a0:e7:5d: a9:fe:cf:82:cf:23:ea:97:15:16:81:5d:33:12:8c: 5a:1d:33:c5:dd:3e:b4:a1:29:b7:63:a1:ae:c1:24: ba:2a:5b:3b:c3:d2:2a:56:6c:69:b0:f5:d5:1a:c0: 95:53:6d:4b:0d:b0:ef:c5:07:ea:24:38:b8:40:ee: 26:b3:7c:f2:18:1a:9b:0d:ea:b5:43:e7:3a:80:45: 51:8c:3c:45:3f:1d:b4:f1:96:a9:68:c8:49:82:21: 18:96:96:2c:44:9d:e8:cb:b6:5e:30:0c:51:38:05: db:7c:17:94:40:83:bb:c6:f1:7d:36:27:72:b5:ed: 11:a5:b9:10:2e:50:fd:9a:04:cc:26:c0:eb:86:07: 8b:ce:68:95:96:99:40:cb:cf:9d:1b:23:a8:66:65: b1:d0:7f:1a:2c:2d:a6:a3:5d:40:80:f3:fa:d1:61: 5e:f1:83:55:1e:b9:82:d6:e6:a4:f3:e4:4b:ac:b7: 0b:88:11:14:18:32:04:5a:cb:e1:40:63:42:b6:ef: 9d:1e:65:3c:8a:54:87:18:77:7a:22:e5:24:80:37: c7:49:2d:5d:1c:e1:44:f4:8a:e5:82:0b:f4:3c:d6: 93:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:1E:F0:B1:E0:89:78:01:3B:44:73:48:C2:6D:4B:01:D5:29:6A:8A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0::/28 Signature Algorithm: sha256WithRSAEncryption 1a:99:aa:7c:0c:28:ac:4c:37:41:62:04:96:c1:7d:b0:5f:23: 5d:eb:f2:47:c8:b7:58:73:0f:29:dc:56:01:b3:5c:eb:63:70: 14:07:7f:04:32:01:a1:81:02:cc:2b:aa:09:4e:5f:79:4b:cd: b9:80:63:78:13:bc:d5:70:aa:0d:00:cc:2e:57:ae:1a:ee:99: a2:a1:9b:a6:62:9b:2f:c5:62:10:85:08:ac:58:d8:74:50:f7: 28:98:45:e1:72:cc:79:56:6d:8d:03:f1:73:2b:4d:39:78:54: 83:68:82:4c:0c:75:69:9d:71:70:75:c7:08:20:55:a8:a8:3d: 61:4d:0f:b6:66:31:44:e4:96:a6:ee:5d:49:6b:87:f5:12:32: 1c:5d:5a:7e:80:87:95:5f:50:d1:3b:f8:e3:b9:5d:5a:78:fa: ec:6a:8e:65:26:44:b0:d0:b0:d1:cd:6e:69:ba:09:ac:81:e4: 94:ed:c8:52:1d:aa:d9:fe:70:f8:6b:23:c5:6b:55:35:af:16: e3:41:64:6b:68:3b:40:ed:46:20:10:3a:94:b3:f1:be:57:c8: e6:ce:05:3d:a1:1a:1f:ad:37:6c:e2:b4:bf:a4:fa:c3:6b:72: db:8e:b6:61:cb:8e:18:be:60:1f:64:4d:ed:2a:36:2a:e1:e7: a4:17:b8:30 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUfBVO8kFL6RgQ3dAvgIBQIt9txW0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjEzMTgzMDA4WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmNkNjU0MjcxMWVlNjAwZjQ4MTlhNjJjMGY3Y2EzYjQx MjBlNjFmOGRiMTM4ZTE4YzU1MzUwNTE4N2RjYWNkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTdXt71hdMsYtlA/8gotu4WqiJ9kJ/TM6DyaDnXan+z4LP I+qXFRaBXTMSjFodM8XdPrShKbdjoa7BJLoqWzvD0ipWbGmw9dUawJVTbUsNsO/F B+okOLhA7iazfPIYGpsN6rVD5zqARVGMPEU/HbTxlqloyEmCIRiWlixEnejLtl4w DFE4Bdt8F5RAg7vG8X02J3K17RGluRAuUP2aBMwmwOuGB4vOaJWWmUDLz50bI6hm ZbHQfxosLaajXUCA8/rRYV7xg1UeuYLW5qTz5EustwuIERQYMgRay+FAY0K2750e ZTyKVIcYd3oi5SSAN8dJLV0c4UT0iuWCC/Q81pOzAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUrR7wseCJeAE7RHNIwm1LAdUpaoowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3YmJhZmJmLWU2ZDQtNDQ4Ny05ZWJiLWNiZDcyYjNkNmM3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPDwMA0GCSqGSIb3DQEBCwUAA4IBAQAamap8DCisTDdBYgSWwX2wXyNd 6/JHyLdYcw8p3FYBs1zrY3AUB38EMgGhgQLMK6oJTl95S825gGN4E7zVcKoNAMwu V64a7pmioZumYpsvxWIQhQisWNh0UPcomEXhcsx5Vm2NA/FzK005eFSDaIJMDHVp nXFwdccIIFWoqD1hTQ+2ZjFE5Jam7l1Ja4f1EjIcXVp+gIeVX1DRO/jjuV1aePrs ao5lJkSw0LDRzW5pugmsgeSU7chSHarZ/nD4ayPFa1U1rxbjQWRraDtA7UYgEDqU s/G+V8jmzgU9oRofrTds4rS/pPrDa3LbjrZhy44YvmAfZE3tKjYq4eekF7gw -----END CERTIFICATE-----Generated at Sat Jun 14 06:49:49 2025 by rpki-client