$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa File: 475cc5b7-0cb2-405e-b609-203b983a6087.roa (raw, json) Hash identifier: i5I44qQukgJhORsPJhkd2/udNGTAL2MOsDyDBHX6DFI= Subject key identifier: 50:7D:2F:0B:62:A4:B5:CE:5C:75:69:70:AD:85:97:94:F5:F5:94:C6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 727529E18B38CA5625D357D91BEA69E09C5742EA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa Signing time: Mon 16 Jun 2025 19:20:18 +0000 ROA not before: Mon 16 Jun 2025 19:20:18 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ed00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:75:29:e1:8b:38:ca:56:25:d3:57:d9:1b:ea:69:e0:9c:57:42:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:20:18 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=3a032edee08ff06857ed6e50eaff207b9636a266941fd32eae60ff611861efdd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:64:db:4c:7c:8a:6a:a1:6c:6e:db:cb:90:bd: 4a:4a:eb:8d:ae:f6:42:3a:65:ba:d3:cb:b5:79:a7: 3d:e0:0b:fe:93:6b:89:b0:04:c9:b9:36:49:12:d8: 7a:cc:ef:11:2f:35:c9:50:95:3a:0b:35:1e:15:45: f9:08:c2:1a:aa:88:61:9c:94:18:a0:8c:a8:f3:46: 2e:a3:36:12:28:4d:d2:37:b7:3a:c6:5d:b6:4d:f7: ef:7b:6e:8d:3b:ac:3a:53:18:45:78:72:f6:4c:6f: af:a6:a1:58:9d:32:77:1b:5d:db:cd:dc:1a:27:54: 02:87:c1:1b:f9:41:09:40:34:88:e1:c4:73:ce:64: ad:3f:8f:34:3e:ce:3d:7a:4d:c6:d6:68:e8:50:cd: 58:1a:d8:77:3a:1e:4e:10:54:07:59:51:cb:e4:c9: f0:0e:26:86:f5:f7:4e:95:41:82:2d:80:7f:83:c7: aa:76:72:cf:dd:e6:da:64:4a:4e:63:bf:c8:cb:b2: 28:02:bc:cf:20:ba:23:f0:84:46:9a:b6:13:15:b5: b0:8a:97:d1:4b:1f:00:75:da:77:93:6e:b5:d2:0b: bb:90:94:1b:70:20:00:01:15:54:1b:bc:cd:b0:3c: fc:20:bf:3c:bd:35:75:2a:e5:d5:9d:32:1f:ad:28: 28:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:7D:2F:0B:62:A4:B5:CE:5C:75:69:70:AD:85:97:94:F5:F5:94:C6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ed00::/40 Signature Algorithm: sha256WithRSAEncryption 0b:7b:35:60:61:2c:66:e6:5c:5a:9e:8a:7b:ad:81:02:a3:de: 4c:92:5d:b2:79:81:ee:95:eb:3d:45:fe:b8:0f:76:09:ac:b2: 74:d2:66:e3:75:f5:f2:68:16:16:e3:2a:76:80:df:1c:c5:0f: dd:82:79:a6:5c:50:1d:6f:bd:f6:fc:aa:72:b5:13:54:7c:75: eb:44:8b:ec:42:7a:9f:ea:b9:e0:1b:31:db:6f:bb:7c:8a:1a: c4:fe:bb:13:da:b0:05:05:9f:4d:4a:86:82:eb:4f:87:83:9f: 16:6a:30:7c:b5:1c:2c:60:aa:8f:e2:ad:b6:11:dd:36:1b:8c: 14:b9:87:6f:ce:3c:6e:6d:51:92:d8:86:25:a0:f6:04:78:21: f7:96:c0:c3:32:cd:8a:15:16:e0:c9:ed:40:25:eb:1a:5c:cb: 98:21:79:87:47:5f:b4:57:d5:48:57:89:80:99:2d:2d:7d:e2: 44:73:48:49:a9:e3:f5:9c:61:05:1f:53:bc:27:ba:2e:a9:e8: 45:99:9d:5d:d2:c7:61:2a:c7:47:57:63:07:f0:0e:63:06:6a: 00:9f:9f:20:f5:86:69:51:a5:6a:ba:43:36:84:94:eb:99:59: b0:40:34:db:0e:b0:fa:a1:3f:3a:39:31:49:25:d4:01:c2:5d: a1:79:43:33 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcnUp4Ys4ylYl01fZG+pp4JxXQuowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMDE4WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTAzMmVkZWUwOGZmMDY4NTdlZDZlNTBlYWZmMjA3Yjk2 MzZhMjY2OTQxZmQzMmVhZTYwZmY2MTE4NjFlZmRkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeZNtMfIpqoWxu28uQvUpK642u9kI6ZbrTy7V5pz3gC/6T a4mwBMm5NkkS2HrM7xEvNclQlToLNR4VRfkIwhqqiGGclBigjKjzRi6jNhIoTdI3 tzrGXbZN9+97bo07rDpTGEV4cvZMb6+moVidMncbXdvN3BonVAKHwRv5QQlANIjh xHPOZK0/jzQ+zj16TcbWaOhQzVga2Hc6Hk4QVAdZUcvkyfAOJob1906VQYItgH+D x6p2cs/d5tpkSk5jv8jLsigCvM8guiPwhEaathMVtbCKl9FLHwB12neTbrXSC7uQ lBtwIAABFVQbvM2wPPwgvzy9NXUq5dWdMh+tKCg5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUUH0vC2Kktc5cdWlwrYWXlPX1lMYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ3NWNjNWI3LTBjYjItNDA1ZS1iNjA5LTIwM2I5ODNhNjA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77TANBgkqhkiG9w0BAQsFAAOCAQEAC3s1YGEsZuZcWp6Ke62BAqPe TJJdsnmB7pXrPUX+uA92CayydNJm43X18mgWFuMqdoDfHMUP3YJ5plxQHW+99vyq crUTVHx160SL7EJ6n+q54Bsx22+7fIoaxP67E9qwBQWfTUqGgutPh4OfFmowfLUc LGCqj+KtthHdNhuMFLmHb848bm1RktiGJaD2BHgh95bAwzLNihUW4MntQCXrGlzL mCF5h0dftFfVSFeJgJktLX3iRHNISanj9ZxhBR9TvCe6LqnoRZmdXdLHYSrHR1dj B/AOYwZqAJ+fIPWGaVGlarpDNoSU65lZsEA02w6w+qE/OjkxSSXUAcJdoXlDMw== -----END CERTIFICATE-----Generated at Wed Jul 2 13:02:45 2025 by rpki-client