$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa File: 1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa (raw, json) Hash identifier: ChN2gJo2mxbdv2PyBIax2tzrhAp5og2kSiDMs5cpCJk= Subject key identifier: 68:F0:59:99:7D:E6:C8:53:C9:FA:C9:C9:27:0D:54:A8:DA:29:ED:D9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5A1695B0846C9A1069D852D8BFDC12F3C83CC497 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa Signing time: Wed 18 Jun 2025 00:30:06 +0000 ROA not before: Wed 18 Jun 2025 00:30:06 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:16:95:b0:84:6c:9a:10:69:d8:52:d8:bf:dc:12:f3:c8:3c:c4:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 18 00:30:06 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=ea7b3148177c9ee8fba61f650cf82e8ae723b49d0e8a30550d8e5a14faabfa98, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7c:d2:b8:29:87:bb:8f:9f:18:a6:f1:3a:6e: ff:b7:91:3c:99:6a:d6:ca:ca:15:8c:1d:c1:9e:df: 5b:c3:21:d4:37:9d:cd:89:0d:34:91:55:ce:1e:4a: 90:d6:9d:12:20:cb:82:c1:d3:50:6d:3e:6c:33:95: 9b:a5:a3:03:a2:56:f1:aa:78:71:26:0a:12:f0:6f: 7d:97:00:95:8b:45:60:5e:f6:38:ac:c9:9b:15:e5: 6f:09:f0:93:bc:10:1a:6b:df:8b:fe:04:3c:c2:0d: e5:80:b9:01:76:c9:d3:0f:78:21:a9:63:42:7e:27: c4:c6:56:f2:5a:11:0f:66:94:b8:40:af:85:d9:f3: f2:43:db:9a:22:1f:b1:0e:c6:9f:40:cf:d7:98:40: 44:4b:de:3e:8a:a3:07:56:10:6c:47:03:d2:a1:c0: d5:fd:eb:08:3a:0b:9d:e7:e3:be:33:bf:0d:cf:25: 0d:04:bc:e6:f6:85:4b:aa:5e:c6:29:fa:55:e6:08: be:00:6e:51:be:62:be:a2:8f:de:0e:14:43:fa:fc: 59:34:f2:12:36:d4:bb:4a:00:13:46:21:4e:a7:19: 60:58:e0:bb:f2:b5:b3:cd:40:12:be:e0:24:c2:c4: a3:6e:a6:fc:29:dc:f8:b0:28:13:28:4d:b7:7c:25: c8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F0:59:99:7D:E6:C8:53:C9:FA:C9:C9:27:0D:54:A8:DA:29:ED:D9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8800::/40 Signature Algorithm: sha256WithRSAEncryption 4d:fb:8d:eb:de:3f:9f:33:4a:d4:9d:43:cd:20:56:72:63:63: 0f:f8:e5:23:54:c6:17:f2:dd:35:7e:de:a5:0b:fc:8a:3e:7e: 80:e5:19:d6:0b:ec:a4:f3:88:e2:f1:2a:3d:70:d6:41:4e:f9: 77:7c:1d:e0:7c:77:35:6b:ae:39:a9:b0:8d:46:a1:9b:df:51: 93:a2:32:6b:b8:e2:5b:f9:21:68:0f:42:cb:15:80:f2:db:c3: 8f:b5:c4:b8:a7:53:ce:3f:7c:17:6f:eb:3a:34:f3:c0:a4:12: d9:f5:00:88:66:21:b0:5f:2f:3f:fa:5e:05:a2:68:38:ac:6c: ab:71:2a:86:73:88:19:47:d7:b9:09:c6:83:72:34:d6:24:92: c5:81:17:1b:46:90:1d:06:65:4c:8d:48:4d:5c:76:5e:cd:ab: 54:32:2a:70:cc:28:d2:38:62:1a:a4:cf:dd:2f:bb:65:e4:d3: 8a:f5:83:d6:89:bf:3b:8e:39:ca:41:1d:4f:b4:5d:08:62:04: 5f:53:36:37:14:7e:2f:66:51:97:ae:3f:27:bf:d7:79:bc:f8: 6d:47:95:07:94:36:2d:cc:21:09:eb:5c:08:0f:55:4a:4c:aa: b4:78:8f:80:ed:6a:d1:dd:8d:55:e1:46:79:76:35:4c:74:03: fa:df:9a:f2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWhaVsIRsmhBp2FLYv9wS88g8xJcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE4MDAzMDA2WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTdiMzE0ODE3N2M5ZWU4ZmJhNjFmNjUwY2Y4MmU4YWU3 MjNiNDlkMGU4YTMwNTUwZDhlNWExNGZhYWJmYTk4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZfNK4KYe7j58YpvE6bv+3kTyZatbKyhWMHcGe31vDIdQ3 nc2JDTSRVc4eSpDWnRIgy4LB01BtPmwzlZulowOiVvGqeHEmChLwb32XAJWLRWBe 9jisyZsV5W8J8JO8EBpr34v+BDzCDeWAuQF2ydMPeCGpY0J+J8TGVvJaEQ9mlLhA r4XZ8/JD25oiH7EOxp9Az9eYQERL3j6KowdWEGxHA9KhwNX96wg6C53n474zvw3P JQ0EvOb2hUuqXsYp+lXmCL4AblG+Yr6ij94OFEP6/Fk08hI21LtKABNGIU6nGWBY 4LvytbPNQBK+4CTCxKNupvwp3PiwKBMoTbd8Jci3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUaPBZmX3myFPJ+snJJw1UqNop7dkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFkZjRhODJhLTA4NzUtNDdiNi05ZmMwLWI2N2MwOTdiYzQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxiDANBgkqhkiG9w0BAQsFAAOCAQEATfuN694/nzNK1J1DzSBWcmNj D/jlI1TGF/LdNX7epQv8ij5+gOUZ1gvspPOI4vEqPXDWQU75d3wd4Hx3NWuuOamw jUahm99Rk6Iya7jiW/khaA9CyxWA8tvDj7XEuKdTzj98F2/rOjTzwKQS2fUAiGYh sF8vP/peBaJoOKxsq3EqhnOIGUfXuQnGg3I01iSSxYEXG0aQHQZlTI1ITVx2Xs2r VDIqcMwo0jhiGqTP3S+7ZeTTivWD1om/O445ykEdT7RdCGIEX1M2NxR+L2ZRl64/ J7/Xebz4bUeVB5Q2LcwhCetcCA9VSkyqtHiPgO1q0d2NVeFGeXY1THQD+t+a8g== -----END CERTIFICATE-----Generated at Sun Jun 29 08:58:25 2025 by rpki-client