$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa File: 16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa (raw, json) Hash identifier: peqQp9a8rfHxV7YlX6tq38gXmMAT5vC7ZzaZ0C5+Wlc= Subject key identifier: EA:DD:9B:B0:EF:4D:BF:2F:06:88:49:59:E3:F0:0B:FD:B6:64:E6:FE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 75EF2DC91F36DABE5639DBA820096088A2B660A3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa Signing time: Wed 18 Jun 2025 00:30:08 +0000 ROA not before: Wed 18 Jun 2025 00:30:08 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ef:2d:c9:1f:36:da:be:56:39:db:a8:20:09:60:88:a2:b6:60:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 18 00:30:08 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=2a49c78311e1743163ddafd7822d3c4c4eaff9da69c0fe7c11262a34995abef7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:75:b0:27:5d:18:82:54:e5:81:7a:79:a5: ed:a4:3a:b7:44:86:6f:11:7c:35:83:9d:a2:4a:e0: 57:42:8a:9b:05:ad:48:e9:4f:4a:2d:d2:1c:cb:34: f2:ab:e6:47:09:f4:62:30:75:2b:d5:e8:da:d9:35: 9b:14:e8:d8:5c:fc:cb:96:51:7b:8d:ec:44:32:3c: d3:f4:66:84:13:07:53:2b:ba:b0:18:20:b3:43:dd: 6f:a1:23:21:83:0a:a8:50:15:8b:cf:4f:d2:9f:10: 6e:74:50:57:3d:2a:ba:56:0b:10:65:bd:72:64:d1: 0e:b4:32:46:7b:47:9a:d4:8f:ee:5d:af:75:ce:37: ff:61:ae:7e:f9:3e:09:fa:8f:c6:36:bd:e6:d5:3a: 69:a7:9e:df:fa:5d:75:97:10:73:a6:37:33:30:cc: 03:41:56:ec:fe:da:ea:b8:7a:77:db:ce:6c:d0:f3: 01:23:f7:aa:d8:f8:0a:cc:0a:b4:ea:63:ef:36:fe: 59:d8:c9:ea:20:49:d2:50:81:99:59:5f:1e:bd:c4: a8:fa:9b:b1:05:5b:52:82:7f:1f:72:84:de:a3:ed: cf:52:dc:5a:86:c6:30:b9:13:5e:d2:2c:5c:93:39: e5:f3:89:2b:37:b8:11:36:e3:d8:82:53:58:e6:9c: 94:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:DD:9B:B0:EF:4D:BF:2F:06:88:49:59:E3:F0:0B:FD:B6:64:E6:FE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 6c:19:e4:97:a9:c3:00:94:37:be:2e:68:d1:29:a9:bd:0d:97: fc:4e:42:f8:9d:e0:89:0e:bd:7a:ee:9d:a1:45:eb:66:5c:ca: 61:2f:a4:f9:01:c2:30:2b:aa:55:fd:d5:b4:b5:4d:6b:7d:13: ae:80:95:1b:61:8b:55:aa:00:70:b0:a0:a3:54:df:cd:97:64: 2a:f2:d6:f7:30:b9:98:36:d8:11:8a:af:42:0f:40:25:8d:9d: c3:db:24:03:0a:a0:06:82:4e:0a:04:6c:22:20:31:77:5e:5b: 22:1a:d9:7f:03:2b:b0:d6:e9:d7:ce:b4:40:aa:ef:69:ea:42: 08:8e:ed:79:5e:18:19:68:c6:5f:1d:9a:e2:b1:60:42:a1:78: 0a:a9:bd:c7:97:13:7f:64:da:2f:d2:0b:f9:a3:ef:50:32:c8: 7a:20:0c:a4:01:6d:15:2a:2f:1d:80:e5:9b:75:4e:de:fb:73: 16:32:03:70:fc:09:90:04:10:55:00:5a:7e:e8:8c:05:44:6a: f4:6f:9f:b1:95:b7:90:25:64:b8:eb:34:98:1b:47:c2:24:49: ef:43:5c:2a:10:e4:9c:e8:a7:9a:9c:36:49:41:33:00:ad:ce: b6:b6:be:db:3a:5e:da:76:1f:8a:72:12:ee:6b:a2:cd:44:10: 1c:6d:0c:ec -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUde8tyR822r5WOduoIAlgiKK2YKMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE4MDAzMDA4WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTQ5Yzc4MzExZTE3NDMxNjNkZGFmZDc4MjJkM2M0YzRl YWZmOWRhNjljMGZlN2MxMTI2MmEzNDk5NWFiZWY3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5vXWwJ10YglTlgXp5pe2kOrdEhm8RfDWDnaJK4FdCipsF rUjpT0ot0hzLNPKr5kcJ9GIwdSvV6NrZNZsU6Nhc/MuWUXuN7EQyPNP0ZoQTB1Mr urAYILND3W+hIyGDCqhQFYvPT9KfEG50UFc9KrpWCxBlvXJk0Q60MkZ7R5rUj+5d r3XON/9hrn75Pgn6j8Y2vebVOmmnnt/6XXWXEHOmNzMwzANBVuz+2uq4enfbzmzQ 8wEj96rY+ArMCrTqY+82/lnYyeogSdJQgZlZXx69xKj6m7EFW1KCfx9yhN6j7c9S 3FqGxjC5E17SLFyTOeXziSs3uBE249iCU1jmnJRfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6t2bsO9Nvy8GiElZ4/AL/bZk5v4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE2YjIyZWE4LTRhN2MtNDMxYS1iZDc0LThhMmNjZWFhYWY0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAGwZ5JepwwCUN74uaNEpqb0N l/xOQvid4IkOvXrunaFF62ZcymEvpPkBwjArqlX91bS1TWt9E66AlRthi1WqAHCw oKNU382XZCry1vcwuZg22BGKr0IPQCWNncPbJAMKoAaCTgoEbCIgMXdeWyIa2X8D K7DW6dfOtECq72nqQgiO7XleGBloxl8dmuKxYEKheAqpvceXE39k2i/SC/mj71Ay yHogDKQBbRUqLx2A5Zt1Tt77cxYyA3D8CZAEEFUAWn7ojAVEavRvn7GVt5AlZLjr NJgbR8IkSe9DXCoQ5Jzop5qcNklBMwCtzra2vts6Xtp2H4pyEu5ros1EEBxtDOw= -----END CERTIFICATE-----Generated at Sun Jun 29 16:16:00 2025 by rpki-client