$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa File: 20df74ce-1a64-4df1-b616-115d4493a969.roa (raw, json) Hash identifier: 4rGRTkgQk/PpDNQmCzFW8Ac6jR/jtePbtdvhtQwq1mk= Subject key identifier: 06:97:71:35:E6:AE:4D:68:FC:17:F3:94:8A:DA:54:25:AB:31:9A:3A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0CC8D8072717A43067319D951AFFEAB8E49079DA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa Signing time: Mon 16 Jun 2025 19:31:01 +0000 ROA not before: Mon 16 Jun 2025 19:31:01 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c8:d8:07:27:17:a4:30:67:31:9d:95:1a:ff:ea:b8:e4:90:79:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:31:01 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=bb5fc1899e414e4a472f6fea57804e7f590250fe338a6c9f84433ce829f5561a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f5:ea:f8:fe:ce:36:3a:06:9f:ec:ab:b9:73: b9:43:b7:da:8d:90:b8:77:82:a0:a4:63:37:60:72: 59:e8:8d:ac:6e:ff:9c:6b:07:43:99:ea:4b:61:5d: e8:4e:c6:46:4f:16:d6:d3:25:0c:8a:03:17:73:17: fe:97:d1:79:ed:37:65:0a:9b:af:f5:b7:2e:f1:c6: 27:06:38:87:15:a2:b1:5c:4e:28:6e:90:d6:49:cf: 22:5e:c3:cb:d1:82:b7:37:03:f6:d2:66:01:96:0a: 7b:c0:75:bc:55:8a:da:fc:2b:9f:49:77:36:29:43: 42:35:46:97:e6:d6:fc:e1:f3:59:56:e5:23:2e:cc: b8:23:18:fc:30:ba:4b:46:ce:a3:b2:5b:61:3a:9e: 7e:88:ab:a3:34:eb:67:93:7d:7e:54:43:13:2c:71: e1:e1:3a:45:0e:05:6b:3c:14:c3:73:10:a2:ab:89: 61:9e:bd:b2:af:e4:21:cb:ed:09:23:fb:3c:9e:b3: b8:71:a1:94:6c:80:6b:de:ed:75:d8:db:21:1e:e7: e7:8b:c1:7b:a7:7c:45:5d:eb:ed:c4:aa:7f:86:0f: f0:65:81:76:6b:18:ca:ec:46:42:08:c0:39:f1:b6: b0:9d:45:df:32:b9:42:da:dc:2a:a2:b5:9a:c9:15: 04:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:97:71:35:E6:AE:4D:68:FC:17:F3:94:8A:DA:54:25:AB:31:9A:3A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:200::/40 Signature Algorithm: sha256WithRSAEncryption 13:f1:10:d7:b5:04:04:09:7f:f7:7a:57:10:9d:d2:df:1e:f0: 99:84:61:27:1c:66:3a:a5:48:c4:bf:2b:71:10:3a:ef:b7:45: c6:66:21:b5:81:df:f1:39:69:8d:11:c0:e8:e5:aa:c3:ad:54: a8:36:de:40:62:80:72:00:74:f9:93:55:50:79:d3:9f:1c:41: ad:be:37:05:0b:3e:d6:b3:ba:70:e6:01:75:41:a5:01:06:a1: 4c:13:8b:da:33:d3:f5:58:f0:0f:a3:07:6a:2c:22:5e:cb:94: 87:a6:79:79:83:80:66:e1:5a:6f:26:1b:f0:3a:5d:56:69:14: 3c:ca:b0:93:7c:7a:7b:ef:a8:1c:da:65:35:4a:5b:03:c5:26: 21:bf:bf:f2:a2:66:5e:3c:ba:7d:e2:6c:ea:4e:7b:fa:04:ef: 07:c8:89:54:c1:5d:aa:30:e0:17:85:31:b3:77:b4:49:4f:8a: 38:79:c8:c2:29:bc:45:1f:77:6b:cc:fc:0f:eb:8f:44:c5:8e: da:e8:00:01:3f:e7:53:d5:6b:40:90:6a:b5:33:0c:d3:af:0d: c0:f6:2f:29:1e:0d:3e:c6:23:b9:b1:a1:c2:b2:2c:90:92:8a: bd:c7:8d:49:ee:b3:5b:f0:cd:a9:e6:38:a0:f4:d4:17:41:86: fd:72:8d:dc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDMjYBycXpDBnMZ2VGv/quOSQedowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMTAxWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjVmYzE4OTllNDE0ZTRhNDcyZjZmZWE1NzgwNGU3ZjU5 MDI1MGZlMzM4YTZjOWY4NDQzM2NlODI5ZjU1NjFhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC69er4/s42Ogaf7Ku5c7lDt9qNkLh3gqCkYzdgclnojaxu /5xrB0OZ6kthXehOxkZPFtbTJQyKAxdzF/6X0XntN2UKm6/1ty7xxicGOIcVorFc TihukNZJzyJew8vRgrc3A/bSZgGWCnvAdbxVitr8K59JdzYpQ0I1Rpfm1vzh81lW 5SMuzLgjGPwwuktGzqOyW2E6nn6Iq6M062eTfX5UQxMsceHhOkUOBWs8FMNzEKKr iWGevbKv5CHL7Qkj+zyes7hxoZRsgGve7XXY2yEe5+eLwXunfEVd6+3Eqn+GD/Bl gXZrGMrsRkIIwDnxtrCdRd8yuULa3CqitZrJFQQzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBpdxNeauTWj8F/OUitpUJasxmjowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIwZGY3NGNlLTFhNjQtNGRmMS1iNjE2LTExNWQ0NDkzYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwAjANBgkqhkiG9w0BAQsFAAOCAQEAE/EQ17UEBAl/93pXEJ3S3x7w mYRhJxxmOqVIxL8rcRA677dFxmYhtYHf8TlpjRHA6OWqw61UqDbeQGKAcgB0+ZNV UHnTnxxBrb43BQs+1rO6cOYBdUGlAQahTBOL2jPT9VjwD6MHaiwiXsuUh6Z5eYOA ZuFabyYb8DpdVmkUPMqwk3x6e++oHNplNUpbA8UmIb+/8qJmXjy6feJs6k57+gTv B8iJVMFdqjDgF4Uxs3e0SU+KOHnIwim8RR93a8z8D+uPRMWO2ugAAT/nU9VrQJBq tTMM068NwPYvKR4NPsYjubGhwrIskJKKvceNSe6zW/DNqeY4oPTUF0GG/XKN3A== -----END CERTIFICATE-----Generated at Sun Jun 29 09:10:33 2025 by rpki-client