$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa File: 5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa (raw, json) Hash identifier: 2/1kDNEJirvfoY/I1MShACAsEA8q5wwgWPoA8Sq0T5s= Subject key identifier: B4:4D:71:64:75:B6:F6:8A:36:11:85:E0:55:D6:34:3A:33:BF:1B:3F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 553693B1E8E6DA0388B9E9BA93D0A885DD3BB3C8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa Signing time: Mon 16 Jun 2025 19:10:15 +0000 ROA not before: Mon 16 Jun 2025 19:10:15 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:36:93:b1:e8:e6:da:03:88:b9:e9:ba:93:d0:a8:85:dd:3b:b3:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:10:15 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=83dddee545d58e271b96110885cee502378b1cb67e9d3c6e97024ec3afc6da8d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:97:8d:bf:fb:f7:93:06:6b:15:09:20:7d:81: 56:8d:df:20:e2:32:b3:c7:d8:55:0b:aa:16:ca:d4: dc:35:c9:dd:65:84:84:37:31:3c:26:a4:a4:ce:50: 70:55:85:26:07:f6:2b:3d:e6:ee:41:b2:86:46:0c: bd:1c:e7:28:4a:23:9d:b1:52:fb:37:4b:8b:41:84: 4a:19:d4:80:51:30:65:31:f2:04:89:1b:e1:a1:46: 72:52:6e:0d:ab:36:b8:80:13:7c:c3:1c:a7:a8:dd: a5:85:33:b0:64:4a:54:56:0b:ae:b8:ab:ca:72:18: b7:c8:e6:61:22:19:32:8f:2a:5d:0e:b6:10:d7:2e: a3:28:0e:03:b5:89:2b:c0:d5:a3:55:1a:4f:0f:9c: 81:50:04:aa:d1:f6:ed:71:3c:92:0e:ea:03:aa:c4: 84:c3:fb:96:59:7c:9c:5b:e3:ca:16:74:96:fc:2c: 1f:37:03:ba:f1:a3:17:3c:f7:52:b6:82:91:93:18: cc:31:26:40:35:3f:1a:c4:f0:3c:58:91:1a:d2:2e: 28:23:ef:da:a5:03:7f:a4:3b:0c:4c:ae:e5:e4:83: db:ca:9c:74:f6:4a:0d:d9:0d:2f:ae:d3:79:a4:24: 8a:06:05:2a:dc:66:d8:6f:2d:5f:49:0a:c6:f0:14: 81:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:4D:71:64:75:B6:F6:8A:36:11:85:E0:55:D6:34:3A:33:BF:1B:3F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551a::/48 Signature Algorithm: sha256WithRSAEncryption 4c:11:a4:09:5d:8d:7a:1b:ce:fc:38:fe:79:9a:5f:88:be:be: 96:3c:d9:0a:a0:f4:94:4b:8d:42:44:c6:15:7c:b7:91:91:59: ba:85:fb:dd:f2:f7:72:32:01:ba:ab:b1:b1:38:04:06:55:cb: 51:b8:ec:a0:73:1c:f3:2f:0b:c1:b2:73:32:cb:5f:6e:8a:70: 3f:09:9e:1c:01:d9:94:12:a0:dd:57:97:f0:63:07:b1:be:bc: bb:03:c4:38:fa:af:08:30:7d:e2:33:dd:90:df:5f:85:63:f6: 7e:67:04:3d:f0:29:14:37:7a:bf:40:9c:68:4d:4e:2a:44:28: 52:06:91:33:16:8b:5a:de:0e:c4:8e:d9:03:42:47:c0:f3:ef: 6c:bb:d8:be:13:c2:4a:b0:b1:cf:6d:1e:c7:77:6f:75:99:a2: 4a:9e:06:18:a7:4d:84:b7:87:fc:4f:71:43:54:42:05:32:55: cc:d9:c0:16:f5:a6:23:eb:1c:ae:80:5c:8e:47:0c:4d:a4:e1: e4:88:c2:45:6b:55:f6:44:1a:83:9e:85:80:25:7d:36:3c:0f: 05:17:b7:fe:99:12:c7:a5:ee:14:24:6f:0a:b6:01:fc:5c:1e: 12:ba:af:81:f4:ea:82:71:98:8f:78:c3:2f:99:aa:aa:23:90: 19:66:03:b4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVTaTsejm2gOIuem6k9Cohd07s8gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkxMDE1WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2RkZGVlNTQ1ZDU4ZTI3MWI5NjExMDg4NWNlZTUwMjM3 OGIxY2I2N2U5ZDNjNmU5NzAyNGVjM2FmYzZkYThkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbl42/+/eTBmsVCSB9gVaN3yDiMrPH2FULqhbK1Nw1yd1l hIQ3MTwmpKTOUHBVhSYH9is95u5BsoZGDL0c5yhKI52xUvs3S4tBhEoZ1IBRMGUx 8gSJG+GhRnJSbg2rNriAE3zDHKeo3aWFM7BkSlRWC664q8pyGLfI5mEiGTKPKl0O thDXLqMoDgO1iSvA1aNVGk8PnIFQBKrR9u1xPJIO6gOqxITD+5ZZfJxb48oWdJb8 LB83A7rxoxc891K2gpGTGMwxJkA1PxrE8DxYkRrSLigj79qlA3+kOwxMruXkg9vK nHT2Sg3ZDS+u03mkJIoGBSrcZthvLV9JCsbwFIEjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtE1xZHW29oo2EYXgVdY0OjO/Gz8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVhZTM1N2UxLWVmOTUtNGY1Zi1hNmMzLThhZDRmNGZhMzAxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRowDQYJKoZIhvcNAQELBQADggEBAEwRpAldjXobzvw4/nmaX4i+ vpY82Qqg9JRLjUJExhV8t5GRWbqF+93y93IyAbqrsbE4BAZVy1G47KBzHPMvC8Gy czLLX26KcD8JnhwB2ZQSoN1Xl/BjB7G+vLsDxDj6rwgwfeIz3ZDfX4Vj9n5nBD3w KRQ3er9AnGhNTipEKFIGkTMWi1reDsSO2QNCR8Dz72y72L4Twkqwsc9tHsd3b3WZ okqeBhinTYS3h/xPcUNUQgUyVczZwBb1piPrHK6AXI5HDE2k4eSIwkVrVfZEGoOe hYAlfTY8DwUXt/6ZEsel7hQkbwq2AfxcHhK6r4H06oJxmI94wy+ZqqojkBlmA7Q= -----END CERTIFICATE-----Generated at Wed Jul 2 12:22:56 2025 by rpki-client