$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa File: 0b0acdef-c848-447c-9624-6a4634464aaa.roa (raw, json) Hash identifier: l3GjchQqmjNCHYnMy0bMjyAe+0asLrwBuwdLXxk95rQ= Subject key identifier: A9:3B:3F:DD:D1:6E:7E:77:BD:1B:7E:C5:C3:10:BD:33:21:7F:24:CC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 446076348FE0A0B9FB1D8FA121AF659AC725D4F3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa Signing time: Mon 16 Jun 2025 19:20:40 +0000 ROA not before: Mon 16 Jun 2025 19:20:40 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:60:76:34:8f:e0:a0:b9:fb:1d:8f:a1:21:af:65:9a:c7:25:d4:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:20:40 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=998a9dfbfea68449480d037200b322918a210ee53f8578441609fa7bdace5da9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ef:6e:1b:47:88:92:14:fc:2a:61:da:10:8e: 69:f9:b0:10:8c:1c:86:50:fb:c3:10:4e:66:39:af: eb:e2:bf:c4:14:51:cd:17:00:a8:34:32:e3:fb:c3: 2b:61:5b:24:74:6a:46:10:ea:81:44:04:61:9a:a4: c0:56:01:58:db:00:2a:07:c3:05:6e:61:28:89:c0: 44:33:f5:c5:dc:e3:96:4f:56:6f:35:62:d7:c3:e6: b1:15:f7:9c:5b:bf:d5:af:b0:52:da:92:b5:32:5e: a0:8e:83:4b:e2:c6:c4:73:41:13:f3:92:21:de:a7: fb:86:92:00:be:b4:56:e7:0d:7c:73:d6:ee:0f:da: e3:09:39:d3:24:27:3b:e0:ee:52:1e:62:29:e9:ac: 31:1a:bb:f9:58:68:ea:f7:ec:f1:0d:3a:e0:ae:09: 36:db:d5:3a:fd:bd:c6:5d:b6:bc:de:ea:7c:16:2c: c6:09:bb:a1:c6:99:06:3c:ee:15:b5:76:27:55:c9: b8:1c:11:ca:58:7c:17:7f:b8:88:af:46:cf:68:77: b8:33:de:24:a4:37:cd:fd:c7:3c:ca:77:a4:8e:71: 12:04:f0:d6:70:fd:c4:47:ee:48:bb:62:4f:d1:78: 3c:ab:c3:c6:e5:e5:37:70:2b:a5:75:ab:8f:4b:bf: ea:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:3B:3F:DD:D1:6E:7E:77:BD:1B:7E:C5:C3:10:BD:33:21:7F:24:CC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption 6d:a9:5a:57:d2:e1:cd:31:f0:11:59:01:e3:c4:e9:e6:5e:c8: f4:b1:6f:0e:cd:b1:96:e0:88:bd:de:7c:86:a5:7d:b5:ff:5b: 64:c7:8a:b5:2a:1a:c4:b5:de:26:e7:c5:60:c3:a1:49:f2:09: fb:68:60:3a:be:0c:ab:90:c1:7e:dc:e8:df:2a:61:b4:e5:d2: f3:a3:ae:7c:4e:01:2a:4d:cd:bd:d8:fb:3c:bb:63:d6:ca:d0: 4a:a5:db:be:19:db:2a:4f:da:b4:a7:4c:4b:83:14:56:15:46: 63:30:3c:fe:22:59:cd:e6:91:1a:b5:88:72:00:58:a1:86:14: 9f:f6:dc:51:7e:bf:d6:27:f2:41:fd:e6:9b:db:0c:75:3c:08: 54:75:fa:27:1b:5e:fe:09:b5:27:4d:8d:88:61:6e:8c:43:c3: 0b:92:7d:06:4c:27:84:19:15:d8:fc:2f:9b:9d:53:67:be:ae: c2:99:9a:67:6a:20:09:b6:21:37:3a:d4:12:41:d5:23:7a:c1: 8a:0e:f0:9b:52:97:2a:fa:0c:d4:ed:73:b3:bd:61:4c:fd:c8: a6:4c:04:3d:5b:1e:3a:7c:fd:99:c1:99:3c:20:e3:d2:86:fd: 8a:b5:f2:6a:8b:ab:2d:14:3b:e5:63:bc:21:bb:f4:4b:5f:25: 9e:31:11:13 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURGB2NI/goLn7HY+hIa9lmscl1PMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMDQwWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OThhOWRmYmZlYTY4NDQ5NDgwZDAzNzIwMGIzMjI5MThh MjEwZWU1M2Y4NTc4NDQxNjA5ZmE3YmRhY2U1ZGE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS724bR4iSFPwqYdoQjmn5sBCMHIZQ+8MQTmY5r+viv8QU Uc0XAKg0MuP7wythWyR0akYQ6oFEBGGapMBWAVjbACoHwwVuYSiJwEQz9cXc45ZP Vm81YtfD5rEV95xbv9WvsFLakrUyXqCOg0vixsRzQRPzkiHep/uGkgC+tFbnDXxz 1u4P2uMJOdMkJzvg7lIeYinprDEau/lYaOr37PENOuCuCTbb1Tr9vcZdtrze6nwW LMYJu6HGmQY87hW1didVybgcEcpYfBd/uIivRs9od7gz3iSkN839xzzKd6SOcRIE 8NZw/cRH7ki7Yk/ReDyrw8bl5TdwK6V1q49Lv+pjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqTs/3dFufne9G37FwxC9MyF/JMwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiMGFjZGVmLWM4NDgtNDQ3Yy05NjI0LTZhNDYzNDQ2NGFhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBAG2pWlfS4c0x8BFZAePE6eZe yPSxbw7NsZbgiL3efIalfbX/W2THirUqGsS13ibnxWDDoUnyCftoYDq+DKuQwX7c 6N8qYbTl0vOjrnxOASpNzb3Y+zy7Y9bK0Eql274Z2ypP2rSnTEuDFFYVRmMwPP4i Wc3mkRq1iHIAWKGGFJ/23FF+v9Yn8kH95pvbDHU8CFR1+icbXv4JtSdNjYhhboxD wwuSfQZMJ4QZFdj8L5udU2e+rsKZmmdqIAm2ITc61BJB1SN6wYoO8JtSlyr6DNTt c7O9YUz9yKZMBD1bHjp8/ZnBmTwg49KG/Yq18mqLqy0UO+VjvCG79EtfJZ4xERM= -----END CERTIFICATE-----Generated at Sun Jun 29 05:52:58 2025 by rpki-client