$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa File: 455cc001-6d98-49b1-ab73-9a1e06726f9f.roa (raw, json) Hash identifier: h6QYSkFBll8s2FkVPE9SdLEdZ2wxepqFXs8OCG9COlU= Subject key identifier: 4B:26:24:4B:FF:06:7D:87:DA:CD:16:AB:77:9C:F6:85:FD:49:B4:9E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 23D14919AE6466B0619EA56284C34358D45E1415 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa Signing time: Mon 30 Jun 2025 17:50:06 +0000 ROA not before: Mon 30 Jun 2025 17:50:06 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d1:49:19:ae:64:66:b0:61:9e:a5:62:84:c3:43:58:d4:5e:14:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 30 17:50:06 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=43258d6bed6c752c33227769ffd0bcf8e1bb62231cc92a61282372a2c41dbcaf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:cc:21:a9:64:25:58:40:1e:4d:cd:a6:7d:a7: d7:68:63:7f:ca:83:68:53:04:b7:0c:8a:20:c1:32: 1c:bc:71:47:56:63:92:ae:de:fc:76:0c:ae:3e:4f: 98:9b:13:a6:6f:21:24:63:33:3c:8c:18:4e:0c:79: c6:fa:0d:ce:36:37:7c:e0:83:99:9f:6f:42:66:e6: b9:69:aa:0d:ac:69:9f:17:29:bf:f1:dc:78:40:2d: 2a:ea:61:1d:5d:37:dc:4b:b1:47:59:43:10:e2:05: 98:ca:8e:71:74:7f:56:ea:77:d7:5f:0b:91:05:cb: c9:8c:4a:40:3e:b3:04:47:8e:c5:c3:3f:07:c3:e9: 70:07:a3:4d:da:77:86:5b:da:b5:eb:ae:16:2b:6f: 05:27:d7:bf:82:28:a4:f9:4f:e4:5d:dd:b7:28:24: e7:49:b6:b6:be:56:c3:37:eb:37:83:97:10:d2:2a: 9e:e1:f5:7a:2f:31:88:f8:11:f9:a6:7f:7c:65:d7: c8:e1:b0:87:01:4e:8a:2e:fd:00:96:c3:7e:e9:dd: 04:3c:6d:05:73:c7:3a:31:e4:32:16:ad:87:50:39: 65:25:c5:ac:a1:64:73:7e:51:4b:55:84:b4:ff:ab: 3b:03:e9:c4:50:a9:32:96:18:f4:e9:4f:81:58:35: 88:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:26:24:4B:FF:06:7D:87:DA:CD:16:AB:77:9C:F6:85:FD:49:B4:9E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 6e:77:9e:64:8e:d9:75:9f:2e:59:f5:09:74:d1:57:a4:07:de: 2c:3b:91:a9:00:56:98:5a:71:1a:a4:49:78:d2:ec:ac:47:4c: 78:52:76:95:b4:71:f4:54:73:fc:83:8d:ec:fc:a2:ad:7a:aa: 64:33:e4:45:e0:49:e5:d6:9b:24:87:1a:6b:7b:fd:a9:1b:1e: bb:96:62:fc:d6:87:3f:f0:44:09:fb:08:e5:1e:7c:52:2c:a8: 23:2a:69:70:b5:ad:18:49:97:6b:c9:c4:05:6d:96:7a:f3:69: 1b:ad:62:01:98:ea:1f:71:2d:c6:b1:34:6e:d7:09:be:e6:52: a7:3c:b1:92:7e:41:de:f7:52:d0:95:50:c2:2c:d4:f2:fa:e2: ef:3c:60:73:84:df:41:60:a4:a9:2a:e3:1d:72:ea:ed:de:b3: 63:97:2e:f6:43:9b:22:43:e6:36:2c:f4:6a:78:ae:2a:00:a6: bb:28:ba:d1:53:ea:79:72:0d:11:04:ec:33:13:52:f7:16:d8: df:d7:d2:1d:c4:4d:63:10:38:68:d4:b7:5e:64:4c:78:ff:96: fa:65:e5:1f:45:f7:81:ad:ad:86:9d:19:90:36:04:fc:be:5d: 00:b6:31:e1:57:34:5d:37:bf:e9:3c:6a:f1:93:f6:73:fc:55: 56:7a:6e:af -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI9FJGa5kZrBhnqVihMNDWNReFBUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjMwMTc1MDA2WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzI1OGQ2YmVkNmM3NTJjMzMyMjc3NjlmZmQwYmNmOGUx YmI2MjIzMWNjOTJhNjEyODIzNzJhMmM0MWRiY2FmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrzCGpZCVYQB5NzaZ9p9doY3/Kg2hTBLcMiiDBMhy8cUdW Y5Ku3vx2DK4+T5ibE6ZvISRjMzyMGE4Mecb6Dc42N3zgg5mfb0Jm5rlpqg2saZ8X Kb/x3HhALSrqYR1dN9xLsUdZQxDiBZjKjnF0f1bqd9dfC5EFy8mMSkA+swRHjsXD PwfD6XAHo03ad4Zb2rXrrhYrbwUn17+CKKT5T+Rd3bcoJOdJtra+VsM36zeDlxDS Kp7h9XovMYj4Efmmf3xl18jhsIcBToou/QCWw37p3QQ8bQVzxzox5DIWrYdQOWUl xayhZHN+UUtVhLT/qzsD6cRQqTKWGPTpT4FYNYj3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSyYkS/8GfYfazRard5z2hf1JtJ4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NWNjMDAxLTZkOTgtNDliMS1hYjczLTlhMWUwNjcyNmY5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAG53nmSO2XWfLln1CXTRV6QH 3iw7kakAVphacRqkSXjS7KxHTHhSdpW0cfRUc/yDjez8oq16qmQz5EXgSeXWmySH Gmt7/akbHruWYvzWhz/wRAn7COUefFIsqCMqaXC1rRhJl2vJxAVtlnrzaRutYgGY 6h9xLcaxNG7XCb7mUqc8sZJ+Qd73UtCVUMIs1PL64u88YHOE30FgpKkq4x1y6u3e s2OXLvZDmyJD5jYs9Gp4rioAprsoutFT6nlyDREE7DMTUvcW2N/X0h3ETWMQOGjU t15kTHj/lvpl5R9F94GtrYadGZA2BPy+XQC2MeFXNF03v+k8avGT9nP8VVZ6bq8= -----END CERTIFICATE-----Generated at Tue Jul 1 15:18:21 2025 by rpki-client