$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa File: 56527727-111d-4d4a-9da3-1e8d68e15a4c.roa (raw, json) Hash identifier: rTLyyPBukZ4KM+5dqwNJEh7DuHQ1eMJHOWUEwo29XyI= Subject key identifier: 28:0E:B7:D3:1D:EB:04:6E:CF:BC:55:9C:F5:A6:B4:4B:6B:67:DF:86 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 19DEEF5A1593468C45A0F6A3F66C0B5331492C73 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa Signing time: Mon 16 Jun 2025 19:10:13 +0000 ROA not before: Mon 16 Jun 2025 19:10:13 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:de:ef:5a:15:93:46:8c:45:a0:f6:a3:f6:6c:0b:53:31:49:2c:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:10:13 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=f9ed43dc0189acd9a69c7e024adef9c0edc4988eb6ddfbe94c267004a4e443b1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2b:4e:ff:3b:a3:69:77:1a:32:cb:54:ab:1e: 99:4c:64:5b:12:f5:6f:bc:57:e3:07:f9:ef:d5:fc: 5e:36:82:53:3c:1a:26:a2:b1:66:c5:30:e9:25:a0: 31:de:57:fb:ac:42:7d:89:61:65:1d:49:b5:8a:c4: 5b:5d:a4:5c:2e:5a:f2:6e:99:2b:84:77:c3:8d:aa: 40:01:54:ba:69:d4:08:09:4d:27:05:5b:54:1d:1b: 2c:16:b8:81:7d:64:2d:04:b2:5f:dc:f7:33:6c:83: 24:3a:ac:c2:f9:ed:e2:df:e6:1c:0d:7e:fe:4b:f0: 17:ad:67:05:66:f2:49:d2:13:fb:46:dd:96:26:fe: 9e:32:78:3f:dd:b1:2a:7f:84:36:79:09:bf:d3:18: 7c:8d:34:46:c4:57:69:ab:c5:c9:d3:10:f6:5f:6a: 60:15:f1:73:f1:af:0a:fc:5f:e3:cc:58:d1:13:d1: 5c:83:66:bc:67:0b:e8:03:ee:a5:3e:5c:e5:8f:d3: 8d:ca:8b:df:0f:a0:91:02:65:f2:d6:56:b8:a2:d3: 03:1f:31:36:30:03:de:c2:7d:a9:9f:da:10:e6:37: c8:59:16:ad:44:8b:08:b4:4e:f5:a7:c2:31:9a:f3: 75:0b:fe:2d:f7:b6:da:1d:a7:3a:2f:b8:3b:5a:a1: a7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0E:B7:D3:1D:EB:04:6E:CF:BC:55:9C:F5:A6:B4:4B:6B:67:DF:86 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/44 Signature Algorithm: sha256WithRSAEncryption 1f:9f:85:c8:96:83:4d:ca:d3:f4:de:3d:4d:f4:8b:57:51:64: 24:0f:24:cc:b6:9e:a3:5f:88:c1:2e:33:08:cc:ee:ae:b5:12: 3b:51:8b:0e:08:9c:be:ba:8b:2d:19:29:a0:75:72:3d:49:4c: a5:69:53:4c:3c:76:38:16:67:80:60:58:e3:84:00:5c:02:cb: b4:51:87:67:44:2f:4a:e0:e2:c8:e4:c3:62:ed:a1:60:97:91: 7d:72:9e:be:25:c5:96:fb:a4:87:39:d9:e4:1f:c4:a7:6d:a0: 39:d9:85:2c:bc:6d:b0:bd:79:bf:b4:a9:1e:d0:83:89:a4:92: 37:ec:09:73:42:4c:e2:99:29:df:53:01:43:17:aa:9b:e7:00: 34:52:d8:ad:5e:5f:6c:16:fd:99:82:0b:cf:4a:4d:a3:73:61: 7d:5d:9f:48:91:3c:d1:4b:62:7d:66:5d:34:2f:73:50:14:8f: 8f:0c:22:94:14:1f:83:bd:8a:9b:5f:e2:05:ca:48:c7:48:ee: 99:98:2e:10:d4:b8:41:9b:8d:0f:9c:69:5b:d0:04:ab:cc:1c: 2b:e9:56:4f:da:86:0d:15:e0:b0:19:be:35:84:46:09:90:43: 15:12:6a:90:d3:0d:df:69:ea:72:fb:83:df:6e:01:4f:b8:49: b1:f6:1f:98 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGd7vWhWTRoxFoPaj9mwLUzFJLHMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkxMDEzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWVkNDNkYzAxODlhY2Q5YTY5YzdlMDI0YWRlZjljMGVk YzQ5ODhlYjZkZGZiZTk0YzI2NzAwNGE0ZTQ0M2IxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXK07/O6Npdxoyy1SrHplMZFsS9W+8V+MH+e/V/F42glM8 GiaisWbFMOkloDHeV/usQn2JYWUdSbWKxFtdpFwuWvJumSuEd8ONqkABVLpp1AgJ TScFW1QdGywWuIF9ZC0Esl/c9zNsgyQ6rML57eLf5hwNfv5L8BetZwVm8knSE/tG 3ZYm/p4yeD/dsSp/hDZ5Cb/TGHyNNEbEV2mrxcnTEPZfamAV8XPxrwr8X+PMWNET 0VyDZrxnC+gD7qU+XOWP043Ki98PoJECZfLWVrii0wMfMTYwA97Cfamf2hDmN8hZ Fq1Eiwi0TvWnwjGa83UL/i33ttodpzovuDtaoad3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKA630x3rBG7PvFWc9aa0S2tn34YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU2NTI3NzI3LTExMWQtNGQ0YS05ZGEzLTFlOGQ2OGUxNWE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAB+fhciWg03K0/TePU30i1dR ZCQPJMy2nqNfiMEuMwjM7q61EjtRiw4InL66iy0ZKaB1cj1JTKVpU0w8djgWZ4Bg WOOEAFwCy7RRh2dEL0rg4sjkw2LtoWCXkX1ynr4lxZb7pIc52eQfxKdtoDnZhSy8 bbC9eb+0qR7Qg4mkkjfsCXNCTOKZKd9TAUMXqpvnADRS2K1eX2wW/ZmCC89KTaNz YX1dn0iRPNFLYn1mXTQvc1AUj48MIpQUH4O9iptf4gXKSMdI7pmYLhDUuEGbjQ+c aVvQBKvMHCvpVk/ahg0V4LAZvjWERgmQQxUSapDTDd9p6nL7g99uAU+4SbH2H5g= -----END CERTIFICATE-----Generated at Sun Jun 29 14:43:49 2025 by rpki-client