$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa File: da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa (raw, json) Hash identifier: y8/bCHgI9yhrCZS/KPz56Jh6zgCCOiZYUZHNPet3L9s= Subject key identifier: 77:B2:B9:F1:67:30:44:31:E9:DF:6A:15:EB:E9:C1:5B:04:2E:66:DE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1B05D6917A0F740266D6CEF137857E9AB91D3292 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa Signing time: Tue 20 May 2025 18:00:40 +0000 ROA not before: Tue 20 May 2025 18:00:40 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:05:d6:91:7a:0f:74:02:66:d6:ce:f1:37:85:7e:9a:b9:1d:32:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:00:40 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=6bff7338bb41c68e9e1eaa98e72861ffb4638f7e89207b53487ed06dd79cc2bd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:43:ec:1e:46:b4:2d:ad:98:ea:34:d8:1f:ed: ad:ef:c6:fe:92:c4:59:2c:dd:1b:eb:5f:5f:fd:cb: 36:3e:fd:2e:d1:ca:ac:5d:39:4e:a8:56:72:5b:b6: 69:10:41:73:6b:6c:b6:ee:96:9e:65:59:0b:f0:23: 8b:db:a8:ab:f9:84:65:8c:da:12:91:91:f5:0a:46: a5:22:30:62:3b:6d:ac:da:f0:ae:8e:c6:33:8e:ca: f3:4e:9d:07:de:51:45:dd:02:6e:98:7b:ab:35:86: d4:9d:ff:87:15:4c:75:1c:bd:65:3f:be:3a:b6:1e: a2:e1:76:45:e2:3a:d5:11:aa:c1:d9:5c:7e:f6:7f: a3:d8:41:0e:f1:62:2a:c1:6e:06:d2:bb:e1:5a:ce: 2c:9a:fa:6a:6b:1a:36:fe:4d:c7:da:ee:9e:3d:f2: 73:80:2b:7a:96:8c:fa:ac:bb:35:8f:12:5a:9b:6c: 91:3b:4b:d7:6a:fc:8a:2f:0f:41:61:c0:51:70:4c: bc:ac:4e:22:17:2b:55:38:0a:c4:23:b1:bc:60:ee: b8:24:82:e0:50:7a:66:48:3e:6c:c5:4b:f1:23:3d: 09:36:41:13:f7:d5:9f:a8:59:56:c5:5a:98:10:6b: c2:c9:35:f8:6a:13:d9:4a:3a:46:96:90:53:9a:44: 06:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B2:B9:F1:67:30:44:31:E9:DF:6A:15:EB:E9:C1:5B:04:2E:66:DE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 13:a9:41:c5:33:3b:fd:c8:80:35:e0:3c:bb:62:3a:20:82:c0: ee:96:6c:d7:37:f1:3a:7b:06:4f:e1:56:da:92:42:eb:66:ac: 71:a7:14:af:66:0c:34:9c:84:7a:02:11:f9:2f:3d:30:ee:80: 80:f1:1d:92:13:5f:87:c8:0d:f5:5c:50:08:60:4e:13:c0:91: 62:7b:d3:1a:15:a1:de:d2:b4:07:66:3a:20:cb:be:d3:18:0d: 3b:9b:46:5e:29:fe:9e:db:db:e5:0f:d7:23:27:e0:d5:48:83: 41:62:95:34:ea:8b:51:b7:5e:e3:85:2d:20:85:5a:dc:9b:3f: 65:42:a1:ab:7f:10:5c:e7:b6:1e:e1:0d:ed:0a:0f:c0:0a:a1: 5b:50:62:b1:f7:4c:27:dd:1f:07:81:81:2d:a0:6a:5d:fe:30: 3b:28:2f:d2:98:cc:a5:47:29:ee:93:06:d4:ec:b2:4e:c2:d1: be:6f:ad:a7:c2:c3:bc:b7:77:ff:7d:9b:d1:d6:1f:ca:f4:13: bb:b1:5a:9c:a1:64:a7:ee:c4:9c:26:e5:30:20:49:aa:d0:f5: 71:85:66:3f:14:24:d4:62:b8:6c:55:fe:42:b0:a3:e9:10:18: 42:e0:a3:0c:6d:c7:dd:a0:f6:b1:41:53:5b:27:6e:11:2b:9a: d9:55:c6:58 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGwXWkXoPdAJm1s7xN4V+mrkdMpIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgwMDQwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmZmNzMzOGJiNDFjNjhlOWUxZWFhOThlNzI4NjFmZmI0 NjM4ZjdlODkyMDdiNTM0ODdlZDA2ZGQ3OWNjMmJkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWQ+weRrQtrZjqNNgf7a3vxv6SxFks3RvrX1/9yzY+/S7R yqxdOU6oVnJbtmkQQXNrbLbulp5lWQvwI4vbqKv5hGWM2hKRkfUKRqUiMGI7baza 8K6OxjOOyvNOnQfeUUXdAm6Ye6s1htSd/4cVTHUcvWU/vjq2HqLhdkXiOtURqsHZ XH72f6PYQQ7xYirBbgbSu+Faziya+mprGjb+Tcfa7p498nOAK3qWjPqsuzWPElqb bJE7S9dq/IovD0FhwFFwTLysTiIXK1U4CsQjsbxg7rgkguBQemZIPmzFS/EjPQk2 QRP31Z+oWVbFWpgQa8LJNfhqE9lKOkaWkFOaRAY5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUd7K58WcwRDHp32oV6+nBWwQuZt4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMGQwZjFmLWY4MmQtNDdiYi05YWM3LWVlMDlhNTFiM2YyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBABOpQcUzO/3IgDXgPLtiOiCC wO6WbNc38Tp7Bk/hVtqSQutmrHGnFK9mDDSchHoCEfkvPTDugIDxHZITX4fIDfVc UAhgThPAkWJ70xoVod7StAdmOiDLvtMYDTubRl4p/p7b2+UP1yMn4NVIg0FilTTq i1G3XuOFLSCFWtybP2VCoat/EFznth7hDe0KD8AKoVtQYrH3TCfdHweBgS2gal3+ MDsoL9KYzKVHKe6TBtTssk7C0b5vrafCw7y3d/99m9HWH8r0E7uxWpyhZKfuxJwm 5TAgSarQ9XGFZj8UJNRiuGxV/kKwo+kQGELgowxtx92g9rFBU1snbhErmtlVxlg= -----END CERTIFICATE-----Generated at Sat Jun 14 06:33:18 2025 by rpki-client