$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa File: fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa (raw, json) Hash identifier: XrgZtdzHL0GfAbL+b+kXy2O73N7g4sTAmBdDKQR55N8= Subject key identifier: 31:7C:DD:A1:9C:63:8C:9C:78:5A:6F:16:D7:BC:7A:E4:A4:22:BC:03 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2DCA9F4E5582AF7B87B27FD71C7ABB65D01387CD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa Signing time: Fri 13 Jun 2025 18:30:08 +0000 ROA not before: Fri 13 Jun 2025 18:30:08 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:ca:9f:4e:55:82:af:7b:87:b2:7f:d7:1c:7a:bb:65:d0:13:87:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 13 18:30:08 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=2cb6ad66b881120a79fe1cc4db5bcf57b2961c31321bc9fd180af3280cd331c2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:dc:6b:72:a0:db:d8:86:c9:60:5c:79:e4:a4: 6a:ae:bc:38:53:bd:45:3c:9a:c2:51:8c:98:3c:50: 25:c2:5c:0f:bc:0e:da:5c:59:0d:e9:2f:c0:7d:81: 28:db:90:cd:82:09:e3:44:14:67:41:b3:df:f2:63: 6d:72:f1:ed:e2:e4:dd:5f:42:29:db:0d:fb:88:56: 69:a3:a1:8f:1d:b2:9e:50:ae:9d:2a:a5:eb:e5:6d: 92:8a:ca:0c:3f:b0:dd:f4:c5:02:87:4f:1e:08:33: 25:a5:fa:ad:05:34:0c:17:37:2c:85:70:3f:d6:19: fe:93:bd:53:9d:71:30:52:fa:56:5b:62:95:d6:ab: ec:52:3f:13:2a:00:d7:72:8b:40:65:14:cf:d2:28: 4e:50:04:9a:0a:ef:c1:65:cd:42:3c:df:0c:66:12: a7:2a:6d:21:11:fc:08:0a:17:e9:e5:bd:16:25:69: 6b:1f:d6:84:60:75:58:12:66:eb:2b:d7:0d:05:b9: 79:6a:a9:ff:95:d2:b5:41:ea:55:1b:de:97:d3:e4: 76:25:7e:51:75:95:11:7d:b5:52:1e:2f:9e:fa:56: 76:9a:ca:16:71:92:05:38:6e:3e:a6:5e:7c:01:14: 8e:e2:fc:b0:dc:67:d3:60:a1:7d:18:2c:9c:4c:43: 44:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7C:DD:A1:9C:63:8C:9C:78:5A:6F:16:D7:BC:7A:E4:A4:22:BC:03 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/24 Signature Algorithm: sha256WithRSAEncryption 3f:61:65:35:0e:f1:2a:fe:ce:e6:12:39:d8:98:7b:86:43:89: f8:b3:7a:23:81:8e:68:16:8a:0f:b4:e2:df:63:05:5c:b2:d9: 93:40:cd:d8:b8:bd:d3:8b:5f:0c:b6:f3:77:87:25:cc:ba:d7: e4:cd:f1:ba:a4:12:41:cf:45:28:d4:ab:3b:31:e0:26:2e:3f: 23:1d:d1:2c:a0:bb:e8:5a:12:ec:dd:61:94:e4:f5:4c:92:74: 3a:07:7f:96:0f:0a:d8:b9:b7:20:6f:e9:55:59:34:37:4b:3d: ba:ad:10:69:a9:af:3a:02:a9:da:35:08:47:f0:5c:f8:f8:25: c7:4d:53:63:bc:40:3e:33:7d:85:7a:87:c1:eb:c1:2a:4e:7e: 4d:17:cc:21:f3:a7:e4:20:5d:a1:87:b4:68:f6:d7:36:a6:56: 0a:ae:f7:cd:13:21:b2:d7:c7:6e:4c:1e:c6:5f:88:9e:0a:4b: 06:4d:12:9a:d8:26:20:7d:01:16:ec:77:c5:4b:6e:20:b3:49: c2:69:cc:98:72:ce:02:f3:89:27:f4:4f:e0:b1:ad:f4:0f:64: 3b:72:9d:95:d5:e5:1b:13:e1:79:f5:3a:2e:80:6b:a4:4d:dc: 32:e7:7f:94:b7:76:f4:f3:77:49:59:4d:b3:89:67:50:7d:83: b5:92:aa:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULcqfTlWCr3uHsn/XHHq7ZdATh80wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjEzMTgzMDA4WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2I2YWQ2NmI4ODExMjBhNzlmZTFjYzRkYjViY2Y1N2Iy OTYxYzMxMzIxYmM5ZmQxODBhZjMyODBjZDMzMWMyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC43GtyoNvYhslgXHnkpGquvDhTvUU8msJRjJg8UCXCXA+8 DtpcWQ3pL8B9gSjbkM2CCeNEFGdBs9/yY21y8e3i5N1fQinbDfuIVmmjoY8dsp5Q rp0qpevlbZKKygw/sN30xQKHTx4IMyWl+q0FNAwXNyyFcD/WGf6TvVOdcTBS+lZb YpXWq+xSPxMqANdyi0BlFM/SKE5QBJoK78FlzUI83wxmEqcqbSER/AgKF+nlvRYl aWsf1oRgdVgSZusr1w0FuXlqqf+V0rVB6lUb3pfT5HYlflF1lRF9tVIeL576Vnaa yhZxkgU4bj6mXnwBFI7i/LDcZ9NgoX0YLJxMQ0TxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMXzdoZxjjJx4Wm8W17x65KQivAMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjNjJhNGVkLWE0YmYtNDYzNC1iNmYzLTBjNzBiZWRiNzA2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAC MAYDBAAmAPAwDQYJKoZIhvcNAQELBQADggEBAD9hZTUO8Sr+zuYSOdiYe4ZDifiz eiOBjmgWig+04t9jBVyy2ZNAzdi4vdOLXwy283eHJcy61+TN8bqkEkHPRSjUqzsx 4CYuPyMd0Sygu+haEuzdYZTk9UySdDoHf5YPCti5tyBv6VVZNDdLPbqtEGmprzoC qdo1CEfwXPj4JcdNU2O8QD4zfYV6h8HrwSpOfk0XzCHzp+QgXaGHtGj21zamVgqu 980TIbLXx25MHsZfiJ4KSwZNEprYJiB9ARbsd8VLbiCzScJpzJhyzgLziSf0T+Cx rfQPZDtynZXV5RsT4Xn1Oi6Aa6RN3DLnf5S3dvTzd0lZTbOJZ1B9g7WSqtM= -----END CERTIFICATE-----Generated at Sat Jun 14 06:53:06 2025 by rpki-client