$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa File: 514fa870-df33-4dfe-a228-5ea96e0f3560.roa (raw, json) Hash identifier: iTmP9g+aF4gwAz+6arlCxTHi5Zvc2t0jzx//anwCB4Q= Subject key identifier: 9B:D1:81:0E:9F:3B:DB:7D:86:68:F8:94:B2:11:F0:4D:71:C2:22:A9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3CE26B1C5203E0468087785E9A82E72BC0C12262 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa Signing time: Sat 21 Jun 2025 00:20:17 +0000 ROA not before: Sat 21 Jun 2025 00:20:17 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e2:6b:1c:52:03:e0:46:80:87:78:5e:9a:82:e7:2b:c0:c1:22:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 21 00:20:17 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=af5fa46e1da9db39bd4edc075427af52d714336641b7f41634f310de2d4df2bb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:89:3b:79:32:b0:95:e7:26:c9:3a:68:f8:cc: cd:63:4b:ee:11:71:ba:51:b9:45:84:32:85:22:07: 21:4b:27:9a:38:fc:4f:ce:a5:02:ce:aa:50:e4:ea: bc:53:2b:89:51:58:63:a6:d9:33:cd:79:bc:ec:4b: 1e:27:35:be:e7:7a:a5:d7:61:2a:e6:97:c4:61:e5: b8:ef:32:1b:e5:29:79:c7:d4:1c:ba:fe:04:7f:eb: 1a:87:56:42:33:04:ff:5e:51:97:44:33:d6:21:64: 91:f6:40:b6:4d:e8:27:6e:93:bc:d4:0d:b1:af:a9: f3:d0:72:28:fc:1b:73:4f:ea:75:90:c8:ca:0e:a4: eb:3c:a3:f7:dd:ac:19:29:60:55:ce:d2:37:0b:02: 50:ef:c1:30:99:33:d8:99:31:7d:24:20:62:f6:98: 37:62:47:97:d0:1b:0e:84:c8:6e:3f:49:83:40:10: 2e:98:94:eb:1e:7b:a5:0b:3a:12:2f:32:1c:fe:20: bf:14:ad:95:67:4d:1c:39:cc:71:82:cd:6f:25:3a: a3:53:31:c0:3f:f3:16:56:7b:45:fa:69:7c:fb:97: 98:c6:cf:bd:61:ea:95:29:dd:82:32:1f:8a:f9:6d: 54:ae:8b:fb:99:99:85:cc:cf:55:d9:66:d9:b8:c9: 66:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:D1:81:0E:9F:3B:DB:7D:86:68:F8:94:B2:11:F0:4D:71:C2:22:A9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 5f:b0:dd:62:63:de:0b:50:83:06:c5:14:d4:60:55:26:aa:78: b4:c0:8a:67:19:8f:36:d6:d1:f2:fb:ac:5b:93:64:19:7b:e6: cd:ac:97:1d:c0:ec:94:0b:fd:4c:09:2d:2e:ec:f9:a4:a9:4b: 66:92:75:aa:46:7d:b3:41:6f:66:9e:56:e7:46:9a:c8:22:3c: 7d:e1:86:c6:9a:2e:16:18:c4:76:e0:5d:db:dd:d2:15:2b:4b: 87:3e:d8:15:9b:a5:4b:9c:b8:e5:1d:69:c2:b1:c1:aa:14:5a: e2:d2:32:e1:01:b2:38:71:f6:12:6d:c3:49:61:c1:09:0c:80: 22:e8:43:b5:4f:ac:ec:6c:bd:fe:27:74:f0:b5:3b:73:77:c8: 6e:40:7d:fb:96:00:05:7a:ea:ad:15:dc:d9:44:ec:e4:44:05: 79:d9:01:18:2c:a5:fe:fc:fc:e9:8b:b3:ef:85:89:f6:5d:4e: 2e:f1:2d:3a:50:00:28:df:f8:27:70:16:2b:09:87:d0:fb:f6: 96:7a:61:55:18:6d:d8:79:22:24:76:c8:6c:19:ae:c0:79:00: 37:c9:30:4e:26:0d:a5:62:b1:6e:18:fa:84:12:6b:24:48:6b: 85:ee:34:b7:c9:7a:d4:e7:8c:cc:93:8b:99:af:54:22:80:5a: c9:df:e5:76 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPOJrHFID4EaAh3hemoLnK8DBImIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjIxMDAyMDE3WhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjVmYTQ2ZTFkYTlkYjM5YmQ0ZWRjMDc1NDI3YWY1MmQ3 MTQzMzY2NDFiN2Y0MTYzNGYzMTBkZTJkNGRmMmJiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkiTt5MrCV5ybJOmj4zM1jS+4RcbpRuUWEMoUiByFLJ5o4 /E/OpQLOqlDk6rxTK4lRWGOm2TPNebzsSx4nNb7neqXXYSrml8Rh5bjvMhvlKXnH 1By6/gR/6xqHVkIzBP9eUZdEM9YhZJH2QLZN6Cduk7zUDbGvqfPQcij8G3NP6nWQ yMoOpOs8o/fdrBkpYFXO0jcLAlDvwTCZM9iZMX0kIGL2mDdiR5fQGw6EyG4/SYNA EC6YlOsee6ULOhIvMhz+IL8UrZVnTRw5zHGCzW8lOqNTMcA/8xZWe0X6aXz7l5jG z71h6pUp3YIyH4r5bVSui/uZmYXMz1XZZtm4yWaVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUm9GBDp87232GaPiUshHwTXHCIqkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUxNGZhODcwLWRmMzMtNGRmZS1hMjI4LTVlYTk2ZTBmMzU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAF+w3WJj3gtQgwbFFNRgVSaq eLTAimcZjzbW0fL7rFuTZBl75s2slx3A7JQL/UwJLS7s+aSpS2aSdapGfbNBb2ae VudGmsgiPH3hhsaaLhYYxHbgXdvd0hUrS4c+2BWbpUucuOUdacKxwaoUWuLSMuEB sjhx9hJtw0lhwQkMgCLoQ7VPrOxsvf4ndPC1O3N3yG5AffuWAAV66q0V3NlE7ORE BXnZARgspf78/OmLs++FifZdTi7xLTpQACjf+CdwFisJh9D79pZ6YVUYbdh5IiR2 yGwZrsB5ADfJME4mDaVisW4Y+oQSayRIa4XuNLfJetTnjMyTi5mvVCKAWsnf5XY= -----END CERTIFICATE-----Generated at Mon Jun 30 19:32:49 2025 by rpki-client