$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa File: f6cf58cb-08de-4e22-be98-43e3537a793b.roa (raw, json) Hash identifier: 5AHxYAzbOQzdLzwhHC2+pJ0sO0mh6KLm9ZeJdwiR5Oo= Subject key identifier: 59:13:02:32:C4:5F:01:75:77:A7:61:74:78:83:C5:C8:CE:8F:37:04 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 49EDA8FD8C9C384F66861D0824644F4411DD2314 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa Signing time: Tue 20 May 2025 18:11:32 +0000 ROA not before: Tue 20 May 2025 18:11:32 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:ed:a8:fd:8c:9c:38:4f:66:86:1d:08:24:64:4f:44:11:dd:23:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 18:11:32 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=42ac6918d84bdb08e835227d29dc36c547b28e6473cf6cda9e195d01f4454930, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b9:99:49:47:01:3e:74:45:93:b2:1b:61:a3: da:d9:f9:50:29:89:56:a2:35:a4:6e:3d:50:c1:06: 24:05:36:c1:7e:7d:8e:fa:ec:fb:ba:d1:14:35:fd: 44:65:5f:8a:8d:c3:da:c5:e1:8a:d1:aa:c6:02:bd: ac:0e:18:7d:66:ba:51:9f:2d:30:6a:30:6d:1f:58: 83:d3:bd:0d:54:2c:b0:5c:13:fa:88:ed:b2:92:52: b4:a3:66:4d:84:ad:ef:24:92:1a:e2:aa:07:02:90: 55:73:a3:c3:f6:78:73:0d:e6:a0:32:c1:cb:ae:52: b6:ec:92:80:96:c0:91:1e:6f:04:71:fe:a3:2a:bc: ba:c0:46:d0:54:08:fa:fb:6f:07:d2:81:75:19:90: ed:ac:0f:fd:05:95:09:7b:73:2c:d0:62:69:a8:68: 8b:6b:8b:19:63:6d:44:2e:11:bb:e4:df:bf:18:5a: c2:e5:63:cc:84:b3:cc:99:c2:69:7b:71:39:9f:0d: a5:c4:66:bc:e9:86:bc:7d:ff:0f:1a:c8:cc:7e:32: 0c:bf:ef:49:63:1e:d5:25:7c:7b:c3:3b:5b:8a:4b: 68:8e:90:f4:67:6c:1e:c9:00:03:c4:cc:d9:9b:2f: 09:8e:b7:be:83:bf:07:63:12:66:b9:0b:b6:de:3c: 37:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:13:02:32:C4:5F:01:75:77:A7:61:74:78:83:C5:C8:CE:8F:37:04 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption 6f:da:d9:8d:c6:ae:4a:7f:4c:eb:3a:ab:41:16:2f:05:57:31: 3e:e6:9a:b2:cb:08:ff:48:36:45:d5:56:77:44:c1:c8:c7:f8: e5:51:a2:57:99:60:bf:92:74:ed:ca:ac:8b:a8:a3:fd:f0:97: 97:bf:df:08:28:e3:32:f2:3c:34:30:3e:fc:74:37:da:41:9f: aa:1f:05:9e:27:3c:77:8e:74:59:eb:dc:9a:10:f2:9e:bd:53: 15:86:97:82:88:50:5b:63:93:3a:a1:5e:a3:24:2c:d0:2d:61: ce:95:ed:8d:b6:e7:ff:47:34:7b:ac:8a:4e:0f:3d:72:f8:0e: 3e:e2:57:46:f6:3f:41:34:2d:46:d1:26:2a:d7:3e:38:15:f0: fe:86:57:56:ca:36:0b:22:35:e4:02:85:cc:85:4c:57:2f:b0: 1a:76:d4:c0:4f:e0:05:6a:f4:ea:a3:9c:ed:75:88:5d:23:87: 0b:2a:50:cf:a0:46:5e:76:59:70:63:ed:22:72:14:28:29:32: f5:16:cf:ef:1e:73:8e:2c:cf:19:7b:e1:c9:76:ce:97:e1:47: b5:67:ad:5d:02:df:6c:0c:d8:6d:69:a8:b5:3b:46:cf:1f:14: 83:ce:29:1a:21:63:24:a2:15:65:74:ba:b4:c4:a6:c0:28:ef: 33:06:40:9d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSe2o/YycOE9mhh0IJGRPRBHdIxQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTIwMTgxMTMyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmFjNjkxOGQ4NGJkYjA4ZTgzNTIyN2QyOWRjMzZjNTQ3 YjI4ZTY0NzNjZjZjZGE5ZTE5NWQwMWY0NDU0OTMwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtuZlJRwE+dEWTshtho9rZ+VApiVaiNaRuPVDBBiQFNsF+ fY767Pu60RQ1/URlX4qNw9rF4YrRqsYCvawOGH1mulGfLTBqMG0fWIPTvQ1ULLBc E/qI7bKSUrSjZk2Ere8kkhriqgcCkFVzo8P2eHMN5qAywcuuUrbskoCWwJEebwRx /qMqvLrARtBUCPr7bwfSgXUZkO2sD/0FlQl7cyzQYmmoaItrixljbUQuEbvk378Y WsLlY8yEs8yZwml7cTmfDaXEZrzphrx9/w8ayMx+Mgy/70ljHtUlfHvDO1uKS2iO kPRnbB7JAAPEzNmbLwmOt76DvwdjEma5C7bePDexAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUWRMCMsRfAXV3p2F0eIPFyM6PNwQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2Y2Y1OGNiLTA4ZGUtNGUyMi1iZTk4LTQzZTM1MzdhNzkzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74TANBgkqhkiG9w0BAQsFAAOCAQEAb9rZjcauSn9M6zqrQRYvBVcx PuaasssI/0g2RdVWd0TByMf45VGiV5lgv5J07cqsi6ij/fCXl7/fCCjjMvI8NDA+ /HQ32kGfqh8Fnic8d450WevcmhDynr1TFYaXgohQW2OTOqFeoyQs0C1hzpXtjbbn /0c0e6yKTg89cvgOPuJXRvY/QTQtRtEmKtc+OBXw/oZXVso2CyI15AKFzIVMVy+w GnbUwE/gBWr06qOc7XWIXSOHCypQz6BGXnZZcGPtInIUKCky9RbP7x5zjizPGXvh yXbOl+FHtWetXQLfbAzYbWmotTtGzx8Ug84pGiFjJKIVZXS6tMSmwCjvMwZAnQ== -----END CERTIFICATE-----Generated at Sat Jun 14 07:01:15 2025 by rpki-client