$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa File: 3eb80061-d999-4560-9395-9a007e8e03f9.roa (raw, json) Hash identifier: fHqHZ/wn/mOBpu2+Fh/xSuIkSflrW/nxtu9lBe29Sp4= Subject key identifier: 47:BA:F1:E4:38:C2:59:7F:46:D9:7E:BA:80:11:09:69:43:96:18:53 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 599099B543558B68591552D935B6FBF1C3264C96 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa Signing time: Tue 24 Jun 2025 15:00:08 +0000 ROA not before: Tue 24 Jun 2025 15:00:08 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:90:99:b5:43:55:8b:68:59:15:52:d9:35:b6:fb:f1:c3:26:4c:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 24 15:00:08 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=8da062714755e931be48f2f70bb55913f4b9216c8916f46258ba27e85328404e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:93:1c:22:38:b5:9a:a5:0d:b6:fd:0d:a6:ac: 5b:2e:a8:0e:8e:11:c3:80:a5:4b:71:1e:2c:67:da: 88:37:f0:77:97:77:33:83:b0:35:b8:55:03:7e:13: 3d:11:d5:83:92:3b:f3:f2:34:3d:ca:b4:c1:86:d6: bd:27:3e:77:32:b4:36:10:9a:95:e4:7d:0f:a8:59: f7:69:f9:ee:37:33:74:d9:7b:a8:91:68:7a:5a:19: 73:32:64:89:6a:f4:de:9d:b8:1c:e9:a5:0e:20:59: ce:fb:34:3d:ef:d9:ef:33:ce:f6:f6:c4:92:95:b0: 29:df:a7:dc:90:17:8d:de:7a:cc:46:45:3b:5f:ec: 45:48:33:33:36:4d:ba:a1:dd:46:5b:fa:7d:1c:08: f4:89:a2:d0:28:9d:84:d7:1e:11:6b:06:60:e2:ab: da:59:b5:08:11:fe:e4:d3:05:5c:90:d8:87:3a:72: 0b:41:68:79:52:4f:41:6d:dd:38:7d:0f:d3:46:e0: b4:3c:35:96:93:99:5e:9c:9f:24:3e:65:78:68:dd: 18:6a:09:47:32:1a:b2:b2:f5:6d:f6:bc:40:2b:8d: 5e:27:69:96:1a:3e:1f:8f:89:be:53:db:10:ab:dc: 61:83:8f:c8:bc:3c:df:ec:5d:7c:86:f8:c9:08:91: af:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:BA:F1:E4:38:C2:59:7F:46:D9:7E:BA:80:11:09:69:43:96:18:53 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 6a:e0:a7:81:b2:b4:67:a7:eb:55:dd:ed:5c:07:53:10:67:6e: c8:a0:a8:7f:83:12:4e:ca:68:4f:ad:c2:b7:66:cd:0a:6d:df: ea:85:83:74:67:68:01:69:55:a1:1f:ab:ed:04:3e:74:ad:cf: 5f:3c:35:35:35:3d:5a:a7:6c:45:c7:17:24:65:bd:9b:a0:f5: a9:5a:40:e9:79:64:59:ee:46:4d:a2:8a:2b:9a:91:e7:de:5f: 1a:db:91:1a:d3:ba:26:9b:af:0d:c0:41:7f:e6:ca:af:67:0d: dc:a2:55:06:54:71:45:d1:1e:41:c3:0f:f9:05:6d:f8:b9:d2: 54:6e:6c:2c:7f:5c:53:b9:c8:0b:76:b9:90:a6:33:4e:aa:ff: e3:bf:16:4b:1f:fc:36:f3:f9:4b:38:91:b7:6a:54:1d:97:e6: b7:39:f7:ac:b6:0a:f9:44:1a:0b:01:4f:cf:14:07:0c:19:c1: b2:57:74:c3:0d:b4:55:64:35:bb:d7:d3:6e:d3:85:49:2f:05: ad:9d:06:eb:3e:be:aa:0e:31:e9:d6:36:3b:6f:e9:be:08:fc: 4e:79:4f:30:7f:9f:46:8f:1e:23:87:1e:dc:1b:e9:86:b5:70: 6e:69:e1:52:e0:33:9f:fc:a2:ea:d0:c9:4d:db:52:19:62:21: b7:c6:e8:e9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWZCZtUNVi2hZFVLZNbb78cMmTJYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjI0MTUwMDA4WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZGEwNjI3MTQ3NTVlOTMxYmU0OGYyZjcwYmI1NTkxM2Y0 YjkyMTZjODkxNmY0NjI1OGJhMjdlODUzMjg0MDRlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRkxwiOLWapQ22/Q2mrFsuqA6OEcOApUtxHixn2og38HeX dzODsDW4VQN+Ez0R1YOSO/PyND3KtMGG1r0nPncytDYQmpXkfQ+oWfdp+e43M3TZ e6iRaHpaGXMyZIlq9N6duBzppQ4gWc77ND3v2e8zzvb2xJKVsCnfp9yQF43eesxG RTtf7EVIMzM2Tbqh3UZb+n0cCPSJotAonYTXHhFrBmDiq9pZtQgR/uTTBVyQ2Ic6 cgtBaHlST0Ft3Th9D9NG4LQ8NZaTmV6cnyQ+ZXho3RhqCUcyGrKy9W32vEArjV4n aZYaPh+Pib5T2xCr3GGDj8i8PN/sXXyG+MkIka9DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUR7rx5DjCWX9G2X66gBEJaUOWGFMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNlYjgwMDYxLWQ5OTktNDU2MC05Mzk1LTlhMDA3ZThlMDNmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAGrgp4GytGen61Xd7VwHUxBn bsigqH+DEk7KaE+twrdmzQpt3+qFg3RnaAFpVaEfq+0EPnStz188NTU1PVqnbEXH FyRlvZug9alaQOl5ZFnuRk2iiiuakefeXxrbkRrTuiabrw3AQX/myq9nDdyiVQZU cUXRHkHDD/kFbfi50lRubCx/XFO5yAt2uZCmM06q/+O/Fksf/Dbz+Us4kbdqVB2X 5rc596y2CvlEGgsBT88UBwwZwbJXdMMNtFVkNbvX027ThUkvBa2dBus+vqoOMenW Njtv6b4I/E55TzB/n0aPHiOHHtwb6Ya1cG5p4VLgM5/8ourQyU3bUhliIbfG6Ok= -----END CERTIFICATE-----Generated at Thu Jul 3 10:12:12 2025 by rpki-client