$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa File: f8738a51-4689-46b8-a472-d4d0afaca2d7.roa (raw, json) Hash identifier: X+7oAjVbhpyiJdWc8v0gewwkXP2vjOG4rOU2g8Npx2E= Subject key identifier: 45:1A:5A:E1:82:02:E1:3A:40:3A:28:E8:31:3D:69:A4:F3:7C:19:CC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 09CD2F41A56DA0107487BF061E9B7BD0EF37E6A0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa Signing time: Sat 31 May 2025 00:50:04 +0000 ROA not before: Sat 31 May 2025 00:50:04 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:cd:2f:41:a5:6d:a0:10:74:87:bf:06:1e:9b:7b:d0:ef:37:e6:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 31 00:50:04 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=31fd4569e32ffafa592622e2d0d9ff2bdbcf228f02b584712b95d62cbd21ea51, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:83:51:ab:ac:48:fb:d7:e5:b3:f0:83:9d:bb: 0c:c0:ec:5e:ad:90:3f:46:08:68:8b:f1:31:4a:bd: 36:20:72:5f:64:28:95:a7:ee:58:78:69:a0:f4:bb: ac:41:a5:62:02:c7:82:fc:46:b0:88:1c:a5:e2:4d: 6a:ca:cc:80:44:08:ad:0e:78:4e:a3:e5:f2:b0:4e: 30:cf:7e:8d:60:f8:bd:b0:69:e1:6d:f8:7b:59:15: db:b2:e8:e2:84:97:8d:53:4b:14:c4:c7:84:da:ab: ad:3b:37:41:89:f1:67:75:19:37:71:ac:0d:5e:fe: 6a:96:5a:fe:f2:d1:a7:d9:c4:bc:91:c4:e2:c6:f9: f3:6b:f9:ae:df:e1:f2:7b:a0:2f:4d:fe:8f:89:72: ec:c7:f8:a4:0c:52:d0:1a:6b:2b:aa:ae:58:0e:41: ce:76:60:18:de:40:6e:7f:7f:b0:f7:6c:f6:ed:19: 9f:c0:e8:c9:19:8c:86:05:92:07:de:db:8b:d5:b0: 83:30:68:27:22:7a:f1:17:c5:c4:82:a5:05:03:72: 9e:ab:71:30:68:32:f0:48:24:21:4c:44:45:f9:20: 36:7e:75:0a:2b:9b:c6:8b:64:4e:d1:e4:3c:e0:76: 32:95:14:52:35:11:bd:ed:06:92:8d:28:47:c7:dc: 0f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:1A:5A:E1:82:02:E1:3A:40:3A:28:E8:31:3D:69:A4:F3:7C:19:CC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4::/48 Signature Algorithm: sha256WithRSAEncryption 1a:4f:9f:3b:73:3d:9a:84:07:b0:02:96:5c:6f:e9:c5:66:f8: f3:5f:22:c3:5e:2e:78:35:b1:87:07:34:e0:45:16:ae:6c:2b: cf:78:73:25:ae:e0:8e:40:52:de:b9:34:9e:97:9f:fa:0f:c1: c6:24:ca:72:cc:e1:52:3b:bc:c8:66:0f:98:62:66:eb:5a:12: 39:e9:bb:de:f2:d3:a9:28:01:2e:bb:61:cf:8a:b2:1f:f8:a7: 42:27:01:93:ca:fe:ec:4f:13:a5:5f:7f:5e:d9:a0:24:76:2c: cd:cf:be:00:38:41:94:2b:97:2a:48:84:df:8f:89:d2:7e:9b: 4d:f7:4d:fe:c0:5b:18:64:7a:cd:25:c0:d3:7b:c8:66:8b:cd: 9d:d2:b6:5f:17:f2:ee:be:22:25:9f:0d:bc:9f:a3:34:3a:c3: 42:0a:e1:6b:0e:ee:4e:3c:fc:0c:22:39:33:5e:0f:20:24:66: a1:e2:07:41:31:b3:1c:6b:e2:f1:c1:32:0b:04:bf:a8:b6:bf: e9:96:b3:08:aa:45:15:a2:9b:89:07:4e:eb:c2:d9:82:72:7e: 8a:8f:64:a0:13:b2:25:e2:0f:9b:af:9a:c8:11:a5:63:8c:18: df:2f:a8:3e:3e:60:c3:09:51:a8:cd:b9:11:c7:63:b2:87:58: 19:38:3a:64 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCc0vQaVtoBB0h78GHpt70O835qAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNTMxMDA1MDA0WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWZkNDU2OWUzMmZmYWZhNTkyNjIyZTJkMGQ5ZmYyYmRi Y2YyMjhmMDJiNTg0NzEyYjk1ZDYyY2JkMjFlYTUxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCug1GrrEj71+Wz8IOduwzA7F6tkD9GCGiL8TFKvTYgcl9k KJWn7lh4aaD0u6xBpWICx4L8RrCIHKXiTWrKzIBECK0OeE6j5fKwTjDPfo1g+L2w aeFt+HtZFduy6OKEl41TSxTEx4Taq607N0GJ8Wd1GTdxrA1e/mqWWv7y0afZxLyR xOLG+fNr+a7f4fJ7oC9N/o+JcuzH+KQMUtAaayuqrlgOQc52YBjeQG5/f7D3bPbt GZ/A6MkZjIYFkgfe24vVsIMwaCcievEXxcSCpQUDcp6rcTBoMvBIJCFMREX5IDZ+ dQorm8aLZE7R5DzgdjKVFFI1Eb3tBpKNKEfH3A8VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURRpa4YIC4TpAOijoMT1ppPN8GcwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y4NzM4YTUxLTQ2ODktNDZiOC1hNDcyLWQ0ZDBhZmFjYTJkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAQwDQYJKoZIhvcNAQELBQADggEBABpPnztzPZqEB7ACllxv6cVm +PNfIsNeLng1sYcHNOBFFq5sK894cyWu4I5AUt65NJ6Xn/oPwcYkynLM4VI7vMhm D5hiZutaEjnpu97y06koAS67Yc+Ksh/4p0InAZPK/uxPE6Vff17ZoCR2LM3PvgA4 QZQrlypIhN+PidJ+m033Tf7AWxhkes0lwNN7yGaLzZ3Stl8X8u6+IiWfDbyfozQ6 w0IK4WsO7k48/AwiOTNeDyAkZqHiB0Exsxxr4vHBMgsEv6i2v+mWswiqRRWim4kH TuvC2YJyfoqPZKATsiXiD5uvmsgRpWOMGN8vqD4+YMMJUajNuRHHY7KHWBk4OmQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:43:21 2025 by rpki-client