$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa File: 4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa (raw, json) Hash identifier: GZLF5qoA+yY/oEpgxZH4MxKNH+QzLLI+7I6n8EfXUyQ= Subject key identifier: 38:C8:53:37:3D:7B:AE:A4:D4:E5:B9:66:8B:88:69:11:D8:1E:B3:46 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4C613D6B77FBE9E2C65F4F172AFD5D2E4477C282 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa Signing time: Mon 16 Jun 2025 19:20:36 +0000 ROA not before: Mon 16 Jun 2025 19:20:36 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5520::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:61:3d:6b:77:fb:e9:e2:c6:5f:4f:17:2a:fd:5d:2e:44:77:c2:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:20:36 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=6c504622fd400e3acfc4046dec9bc50fc182ad54a295ae6017d8baf2d1697f28, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3c:25:e9:e8:cb:a8:84:4a:5e:fd:79:84:8d: 3a:82:c0:55:b7:54:35:61:b7:4b:a9:bb:65:55:1d: 06:e3:8a:e4:93:2e:d2:58:41:d2:66:77:5a:21:a9: c2:af:09:f5:58:b4:74:78:0d:32:62:88:05:b1:81: 8c:35:1d:f5:7a:d4:98:42:1d:31:38:3b:38:a7:25: af:f9:d4:79:14:a6:f5:50:42:54:02:5f:37:e6:52: 8f:ff:61:5b:00:7b:9f:69:61:a9:8b:f2:c6:a2:5b: ff:7e:61:71:1b:b3:0d:04:d9:d8:cb:25:26:5f:48: 64:45:99:76:36:5e:24:f0:31:ed:be:56:88:02:57: 88:0d:0f:dc:4a:dc:ee:d3:60:e5:64:95:6a:40:c8: b1:24:39:99:54:d4:42:1e:08:9c:08:bd:7a:76:27: 90:6f:8c:57:8d:77:2a:c3:78:b4:60:f7:7e:ef:4c: 31:cb:33:f3:51:6d:48:68:f7:6a:6c:f6:15:82:e1: a0:8b:eb:61:31:31:7f:45:32:d4:54:7a:13:37:f4: 5d:70:34:e1:33:13:75:6d:5f:30:fa:d2:43:21:19: ca:69:4d:2e:07:21:b5:47:ac:d1:a7:ca:b6:76:57: 80:26:83:fe:19:c1:5a:da:f9:54:4a:ac:02:5a:3f: 51:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C8:53:37:3D:7B:AE:A4:D4:E5:B9:66:8B:88:69:11:D8:1E:B3:46 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5520::/44 Signature Algorithm: sha256WithRSAEncryption 85:46:eb:8a:88:8b:24:03:fd:9e:34:d9:28:2c:0b:80:a1:5e: e2:d1:83:97:c2:20:73:4c:01:76:9a:7b:1d:62:a9:ac:de:41: 7b:54:cc:c4:ad:86:15:77:18:84:ca:69:40:de:64:b6:b3:9c: a1:d0:70:7a:f7:f4:4d:d8:21:de:f0:17:dd:96:1c:53:31:f5: 04:a1:d1:ad:bf:9d:a1:e3:c9:7b:31:bf:4e:61:a4:17:7e:62: 59:02:b1:ce:2b:b3:2c:0e:fe:9a:ee:3a:de:e1:eb:6e:90:fb: 5e:2f:13:b1:f0:64:c7:3c:00:08:84:2e:d6:20:17:13:9a:72: e4:66:80:72:67:89:6f:50:2e:d6:e8:5a:2e:45:da:06:c9:7f: 81:3c:5b:b2:dd:36:a5:2b:cd:b8:d3:e0:bf:28:8b:fa:5a:6a: e2:16:d9:1e:a4:e9:4b:38:9e:00:bb:89:70:b4:0a:c5:e7:fc: e9:cc:db:10:e9:19:ac:50:d6:44:9e:ad:76:dc:2d:5c:e0:9f: 59:49:58:55:40:8b:4f:5f:13:c8:af:e7:47:a4:17:9a:c1:2c: f1:7a:91:f1:91:b7:f7:77:e4:1a:5d:bc:3e:06:0c:33:de:b7: 55:78:a0:80:02:02:38:bf:f5:b6:6e:75:0b:1d:cb:38:15:4d: 5a:84:38:f2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTGE9a3f76eLGX08XKv1dLkR3woIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMDM2WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzUwNDYyMmZkNDAwZTNhY2ZjNDA0NmRlYzliYzUwZmMx ODJhZDU0YTI5NWFlNjAxN2Q4YmFmMmQxNjk3ZjI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvPCXp6MuohEpe/XmEjTqCwFW3VDVht0upu2VVHQbjiuST LtJYQdJmd1ohqcKvCfVYtHR4DTJiiAWxgYw1HfV61JhCHTE4OzinJa/51HkUpvVQ QlQCXzfmUo//YVsAe59pYamL8saiW/9+YXEbsw0E2djLJSZfSGRFmXY2XiTwMe2+ VogCV4gND9xK3O7TYOVklWpAyLEkOZlU1EIeCJwIvXp2J5BvjFeNdyrDeLRg937v TDHLM/NRbUho92ps9hWC4aCL62ExMX9FMtRUehM39F1wNOEzE3VtXzD60kMhGcpp TS4HIbVHrNGnyrZ2V4Amg/4ZwVra+VRKrAJaP1HpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOMhTNz17rqTU5blmi4hpEdges0YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRjZGI0M2RkLTFiNDktNGYyMi05M2U4LWIyMTUzYzJjYWM4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVSAwDQYJKoZIhvcNAQELBQADggEBAIVG64qIiyQD/Z402SgsC4Ch XuLRg5fCIHNMAXaaex1iqazeQXtUzMSthhV3GITKaUDeZLaznKHQcHr39E3YId7w F92WHFMx9QSh0a2/naHjyXsxv05hpBd+YlkCsc4rsywO/pruOt7h626Q+14vE7Hw ZMc8AAiELtYgFxOacuRmgHJniW9QLtboWi5F2gbJf4E8W7LdNqUrzbjT4L8oi/pa auIW2R6k6Us4ngC7iXC0CsXn/OnM2xDpGaxQ1kSerXbcLVzgn1lJWFVAi09fE8iv 50ekF5rBLPF6kfGRt/d35BpdvD4GDDPet1V4oIACAji/9bZudQsdyzgVTVqEOPI= -----END CERTIFICATE-----Generated at Mon Jun 30 16:00:10 2025 by rpki-client