$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa File: cdcc47d5-338b-4adc-9bc7-703261ddd214.roa (raw, json) Hash identifier: +b81dGt6qpn9q+1KMeDMDgPJLphh/0pAnRNn1qZs4Lo= Subject key identifier: 73:7C:33:F0:B2:5F:01:57:33:71:B2:A6:5D:05:45:B6:27:99:D2:70 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7A080DB85699327A64D6B08298C5E4AF76C98019 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa Signing time: Tue 20 May 2025 18:10:05 +0000 ROA not before: Tue 20 May 2025 18:10:05 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:08:0d:b8:56:99:32:7a:64:d6:b0:82:98:c5:e4:af:76:c9:80:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:10:05 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=47eb41a19ef65758d6e672d90bc503ea3585f341c61265930177cdd0b77b002d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2c:b9:04:f6:4c:c8:3d:eb:4b:ad:0b:f2:d8: 7b:9b:53:b9:18:83:66:74:77:19:f9:83:c5:2c:0c: 8b:4c:43:61:5f:d3:b0:c6:18:0c:39:84:6f:d1:af: 86:1b:4a:16:f1:f4:11:c8:f3:d5:99:87:29:3b:9b: 6c:53:91:35:d8:9f:11:57:48:dc:05:17:c8:af:4a: 07:52:e0:20:7a:2e:77:be:2a:67:18:ad:ea:5f:70: d6:18:97:89:54:3d:f8:7c:41:b7:5e:33:d1:2e:d1: c7:15:c3:c5:7f:b1:15:36:13:0d:2a:22:54:df:82: a9:9c:46:18:9f:59:ca:e2:9b:1d:a2:ac:a0:e4:c7: 48:89:ad:2a:ef:91:ba:e2:0c:cc:da:5d:21:97:3d: 23:fc:0a:e6:52:f2:43:89:30:f5:85:d6:7f:f5:be: 4e:32:a6:be:6b:36:e6:76:76:33:5e:77:7b:ab:b7: 58:8d:e4:e9:d7:7b:21:2b:d1:f5:17:ef:f7:6b:29: c0:d1:2f:84:28:5a:1c:8b:1d:41:0b:d9:a7:d2:2a: 2e:5c:85:85:91:63:d9:b7:6b:8f:83:ed:aa:cc:93: e1:2e:78:66:0a:f9:b9:fe:8d:22:75:30:38:68:7e: 1e:8f:c5:0d:41:8c:fe:04:52:f7:a0:c2:95:94:0d: c8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:7C:33:F0:B2:5F:01:57:33:71:B2:A6:5D:05:45:B6:27:99:D2:70 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6000::/44 Signature Algorithm: sha256WithRSAEncryption 5e:15:32:80:57:4e:db:55:41:01:b4:d9:2d:c7:e8:02:b2:ec: 29:46:5b:8f:47:7b:a2:ac:ab:7a:16:b9:5e:3e:40:20:4c:6b: 3f:d4:4e:7a:04:5d:f3:df:06:b6:4c:f6:10:ef:39:5c:e6:47: 17:b4:e0:a3:ad:c7:d1:44:0a:76:af:24:a3:63:34:61:e8:5b: 97:13:bf:2e:51:2f:bf:12:3d:c3:e3:1a:b3:a6:fe:5f:e8:c9: 91:d1:db:d2:10:f4:04:46:e7:15:e0:79:ff:7a:70:0c:d8:a4: 99:84:bd:43:f9:92:98:43:bd:72:e9:aa:38:a4:1c:d7:2a:f1: 38:18:d9:3a:25:03:c7:6b:a8:45:71:9a:fa:db:68:46:25:bf: 27:98:12:61:44:87:91:d7:69:bd:e9:bc:3b:dc:61:fc:34:10: 65:24:a5:3d:04:9d:51:10:3d:75:b2:14:9a:aa:5c:d3:71:ef: ad:81:ff:ea:2e:a0:70:35:c7:d5:03:2f:50:16:8d:59:66:c6: 06:0d:74:1e:c9:8a:c7:0f:4a:e0:64:d3:08:71:38:59:5a:3d: 22:34:3b:73:83:22:ee:f0:79:0c:99:0c:a2:2f:a0:74:d3:af: b2:c2:61:59:82:51:1b:59:6b:98:0f:cc:3c:31:11:82:04:54: 39:5e:3e:77 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeggNuFaZMnpk1rCCmMXkr3bJgBkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMDA1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2ViNDFhMTllZjY1NzU4ZDZlNjcyZDkwYmM1MDNlYTM1 ODVmMzQxYzYxMjY1OTMwMTc3Y2RkMGI3N2IwMDJkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClLLkE9kzIPetLrQvy2HubU7kYg2Z0dxn5g8UsDItMQ2Ff 07DGGAw5hG/Rr4YbShbx9BHI89WZhyk7m2xTkTXYnxFXSNwFF8ivSgdS4CB6Lne+ KmcYrepfcNYYl4lUPfh8QbdeM9Eu0ccVw8V/sRU2Ew0qIlTfgqmcRhifWcrimx2i rKDkx0iJrSrvkbriDMzaXSGXPSP8CuZS8kOJMPWF1n/1vk4ypr5rNuZ2djNed3ur t1iN5OnXeyEr0fUX7/drKcDRL4QoWhyLHUEL2afSKi5chYWRY9m3a4+D7arMk+Eu eGYK+bn+jSJ1MDhofh6PxQ1BjP4EUvegwpWUDchJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUc3wz8LJfAVczcbKmXQVFtieZ0nAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NkY2M0N2Q1LTMzOGItNGFkYy05YmM3LTcwMzI2MWRkZDIxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYAAwDQYJKoZIhvcNAQELBQADggEBAF4VMoBXTttVQQG02S3H6AKy 7ClGW49He6Ksq3oWuV4+QCBMaz/UTnoEXfPfBrZM9hDvOVzmRxe04KOtx9FECnav JKNjNGHoW5cTvy5RL78SPcPjGrOm/l/oyZHR29IQ9ARG5xXgef96cAzYpJmEvUP5 kphDvXLpqjikHNcq8TgY2TolA8drqEVxmvrbaEYlvyeYEmFEh5HXab3pvDvcYfw0 EGUkpT0EnVEQPXWyFJqqXNNx762B/+ouoHA1x9UDL1AWjVlmxgYNdB7JiscPSuBk 0whxOFlaPSI0O3ODIu7weQyZDKIvoHTTr7LCYVmCURtZa5gPzDwxEYIEVDlePnc= -----END CERTIFICATE-----Generated at Sat Jun 14 06:33:17 2025 by rpki-client