$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa File: 4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa (raw, json) Hash identifier: fPl5/94NPBHrTDkOe6zEOm7W/n+RCgUenmdWpgaIbYE= Subject key identifier: 09:13:9E:7C:A9:8F:71:C7:4D:F8:F8:27:D2:3F:4B:ED:9C:18:FD:3B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61B53C2137CA456D75DBCC893684DC37321D2160 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa Signing time: Mon 16 Jun 2025 19:21:13 +0000 ROA not before: Mon 16 Jun 2025 19:21:13 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b5:3c:21:37:ca:45:6d:75:db:cc:89:36:84:dc:37:32:1d:21:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:21:13 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=b575f0793529ff0f4661bb46fffecba814cfc523be3ff44a334d82d81ac9d265, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:87:b2:e8:33:1e:63:6d:f0:36:d7:db:b0:3f: 05:7d:76:42:a2:75:cc:80:f2:08:2b:1b:35:55:dc: 92:d9:9d:0d:35:3b:59:c2:5d:23:f6:18:24:4d:ce: 89:a6:ba:f0:47:b6:e8:73:fc:80:61:1d:10:d9:1b: 79:0e:ce:5f:a7:43:24:59:14:c3:ed:07:46:8e:3a: 6a:24:51:e5:74:7f:3f:d9:c0:c8:95:60:ca:0c:08: 6a:6d:4a:9a:63:b7:16:f1:f9:9e:1c:c9:cc:76:3d: 80:ad:2e:c8:af:18:6b:89:2f:92:d2:98:60:23:f8: df:24:5e:47:66:55:71:4d:34:3c:63:ff:a4:9e:2c: cf:0a:95:9c:d1:c0:8f:fd:ae:04:29:97:dd:c8:db: 21:c2:2c:36:1f:8e:05:3f:fb:bf:ba:45:41:10:f2: 39:4c:3b:36:6c:c5:9a:70:d4:16:54:d9:77:b8:d4: 32:05:40:ca:c9:82:35:8e:a7:79:8a:8f:b6:50:82: 51:45:54:aa:ba:fa:ce:a2:f2:12:29:7a:56:1c:44: 80:24:68:02:6b:f3:3c:b4:04:a6:dc:2d:23:41:7a: e7:95:f1:d7:40:da:24:96:12:c2:cd:6b:33:be:1f: 87:20:b1:14:9c:95:11:b3:93:74:e3:23:45:ba:97: 0f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:13:9E:7C:A9:8F:71:C7:4D:F8:F8:27:D2:3F:4B:ED:9C:18:FD:3B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a0::/48 Signature Algorithm: sha256WithRSAEncryption 24:40:78:b7:3d:2c:8d:bd:d6:23:71:82:7e:84:b2:b8:be:ce: d6:fe:56:77:67:58:4c:1c:5d:bb:61:49:aa:d2:86:50:c5:46: 5e:e2:ec:cf:9c:c4:00:5b:f7:45:0a:f3:af:aa:32:cf:ad:77: 67:6e:65:38:32:b4:99:27:30:5f:21:46:77:33:6b:7f:3a:d5: 99:6c:01:0c:c6:72:e6:76:83:50:66:97:14:3c:55:0b:bf:4d: 6b:4a:97:79:dc:63:3f:0e:ca:0c:46:71:7a:ad:93:f2:fb:8e: 37:22:5d:70:f2:1b:db:e1:fc:3e:9c:42:b4:73:2e:77:99:4e: 2b:52:eb:33:37:7a:66:bd:78:c4:27:86:05:10:06:dc:79:37: 19:59:dd:53:5f:42:19:42:cc:8a:0c:f6:3c:97:a6:ea:9d:ab: 2f:17:94:b7:b9:fb:3d:dc:ec:d4:e4:dc:21:04:ef:0a:3e:37: 99:75:78:b5:e7:8f:97:49:be:40:a1:c5:02:17:a8:a8:70:57: b8:25:24:ba:12:9d:ba:63:75:8a:02:9e:91:d0:e3:fd:df:0d: 6c:4e:94:56:e3:62:92:16:10:58:da:88:0c:bf:50:1b:ea:ea: c8:9e:d2:43:8f:a3:84:58:2b:be:14:8c:87:17:11:ab:17:74: ff:bb:9f:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYbU8ITfKRW1128yJNoTcNzIdIWAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMTEzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTc1ZjA3OTM1MjlmZjBmNDY2MWJiNDZmZmZlY2JhODE0 Y2ZjNTIzYmUzZmY0NGEzMzRkODJkODFhYzlkMjY1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCph7LoMx5jbfA219uwPwV9dkKidcyA8ggrGzVV3JLZnQ01 O1nCXSP2GCRNzommuvBHtuhz/IBhHRDZG3kOzl+nQyRZFMPtB0aOOmokUeV0fz/Z wMiVYMoMCGptSppjtxbx+Z4cycx2PYCtLsivGGuJL5LSmGAj+N8kXkdmVXFNNDxj /6SeLM8KlZzRwI/9rgQpl93I2yHCLDYfjgU/+7+6RUEQ8jlMOzZsxZpw1BZU2Xe4 1DIFQMrJgjWOp3mKj7ZQglFFVKq6+s6i8hIpelYcRIAkaAJr8zy0BKbcLSNBeueV 8ddA2iSWEsLNazO+H4cgsRSclRGzk3TjI0W6lw83AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCROefKmPccdN+Pgn0j9L7ZwY/TswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRhODYyM2M0LTEwYTAtNDZiNi1hNWY1LWM5NGU4NGM1Njg2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAKAwDQYJKoZIhvcNAQELBQADggEBACRAeLc9LI291iNxgn6Esri+ ztb+VndnWEwcXbthSarShlDFRl7i7M+cxABb90UK86+qMs+td2duZTgytJknMF8h Rncza3861ZlsAQzGcuZ2g1BmlxQ8VQu/TWtKl3ncYz8OygxGcXqtk/L7jjciXXDy G9vh/D6cQrRzLneZTitS6zM3ema9eMQnhgUQBtx5NxlZ3VNfQhlCzIoM9jyXpuqd qy8XlLe5+z3c7NTk3CEE7wo+N5l1eLXnj5dJvkChxQIXqKhwV7glJLoSnbpjdYoC npHQ4/3fDWxOlFbjYpIWEFjaiAy/UBvq6sie0kOPo4RYK74UjIcXEasXdP+7nyw= -----END CERTIFICATE-----Generated at Sun Jun 29 04:07:19 2025 by rpki-client