$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa File: 72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa (raw, json) Hash identifier: u1EB1N6OlExb/odRydp2ply8d0QqRSKbst3BADEln0E= Subject key identifier: 9B:53:11:E6:3A:CC:7B:3F:0A:F3:47:D9:A1:AA:FD:BE:37:89:1E:15 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 50969E8D9ACA864534F0BD00D90CF9CEF65BC877 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa Signing time: Mon 16 Jun 2025 19:20:43 +0000 ROA not before: Mon 16 Jun 2025 19:20:43 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ee00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:96:9e:8d:9a:ca:86:45:34:f0:bd:00:d9:0c:f9:ce:f6:5b:c8:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:20:43 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=7df757ef21a690fa04b500f84be859d56810d4722ba13f392c99aff735b2fa19, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ae:33:7c:0a:ae:07:40:72:13:d2:59:ec:6d: ad:7e:e1:09:af:c4:08:fc:52:40:18:45:5b:8a:6f: e4:87:79:88:16:6d:70:f8:72:ca:33:c5:62:ac:52: 49:28:df:1f:28:40:f4:aa:e2:a1:ac:4c:ea:2f:91: df:dd:4f:ed:12:37:1f:d2:41:1f:25:f1:26:1f:0e: 42:68:6c:00:57:2d:42:f0:3b:32:7c:8e:59:d1:76: 23:61:85:25:5d:cf:fa:d9:b7:ce:e4:1b:c4:76:f8: a1:f0:3c:24:88:16:a0:6f:f6:2f:56:63:ba:2c:03: 2b:2e:34:7a:c1:e7:99:fe:31:d3:f4:37:ec:ff:cc: 2a:96:e4:50:d4:71:f7:92:00:70:f7:34:e7:57:5b: 16:1d:db:aa:45:6b:80:39:f4:97:67:30:2d:dd:dc: 88:d4:af:47:b0:73:4d:75:0f:00:bc:1c:7f:cc:5b: 1d:87:21:d8:ea:21:56:84:4b:d6:3e:cf:7d:66:c0: b6:79:94:d4:7a:5b:5d:64:6f:d7:b7:44:4f:0d:53: 48:59:d4:54:be:15:46:0e:92:b1:1f:f1:c1:8b:52: 86:ab:2f:02:ec:cb:53:cb:87:54:1a:ae:de:d8:45: 6a:9e:7e:35:5e:18:67:d7:dd:a7:8b:97:f5:a1:da: 47:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:53:11:E6:3A:CC:7B:3F:0A:F3:47:D9:A1:AA:FD:BE:37:89:1E:15 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ee00::/42 Signature Algorithm: sha256WithRSAEncryption 1c:52:cd:61:24:87:12:0b:5e:f8:43:57:6c:09:91:5d:68:03: 2f:42:3b:2c:56:83:66:de:2e:f9:ae:29:0e:5c:61:03:92:57: 5b:0e:99:38:9a:71:fa:ce:67:7d:a5:3f:e5:ec:a5:3c:a7:d1: 77:c8:d8:bf:e7:7c:02:3f:a9:9c:75:b7:45:3e:01:68:44:05: 77:76:ad:b7:e0:6f:62:33:3b:a3:86:e8:2d:cc:83:a8:b6:30: d7:45:45:5b:b0:aa:6e:b4:4f:03:a8:7b:25:af:77:62:13:01: d0:97:75:ca:a5:ee:13:76:b2:56:61:55:99:39:2d:6a:7f:bc: 02:5a:5f:27:9f:a8:13:e7:85:44:c4:fc:9f:aa:79:40:ac:4c: 00:97:f0:d4:4e:c6:58:8f:84:a7:bb:b5:d9:73:f1:84:5c:75: ba:fa:ef:b0:84:76:d0:99:ee:d6:22:54:ed:c0:2f:f9:0c:28: cb:12:dc:26:ec:88:eb:4f:c9:98:de:72:c7:7d:44:07:03:75: da:86:75:77:5b:e8:b1:9f:4a:6a:74:33:4f:23:4d:fd:fb:49: e5:52:a3:92:85:77:11:d5:ba:48:d3:c8:4c:bc:13:07:4a:bd: 1e:1f:28:5f:1c:b7:54:6d:bb:b2:b3:e9:28:aa:1f:81:ed:1f: 58:17:69:79 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUJaejZrKhkU08L0A2Qz5zvZbyHcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMDQzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZGY3NTdlZjIxYTY5MGZhMDRiNTAwZjg0YmU4NTlkNTY4 MTBkNDcyMmJhMTNmMzkyYzk5YWZmNzM1YjJmYTE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTrjN8Cq4HQHIT0lnsba1+4QmvxAj8UkAYRVuKb+SHeYgW bXD4csozxWKsUkko3x8oQPSq4qGsTOovkd/dT+0SNx/SQR8l8SYfDkJobABXLULw OzJ8jlnRdiNhhSVdz/rZt87kG8R2+KHwPCSIFqBv9i9WY7osAysuNHrB55n+MdP0 N+z/zCqW5FDUcfeSAHD3NOdXWxYd26pFa4A59JdnMC3d3IjUr0ewc011DwC8HH/M Wx2HIdjqIVaES9Y+z31mwLZ5lNR6W11kb9e3RE8NU0hZ1FS+FUYOkrEf8cGLUoar LwLsy1PLh1Qart7YRWqefjVeGGfX3aeLl/Wh2kfbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUm1MR5jrMez8K80fZoar9vjeJHhUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMjQxZGM2LTU2YWUtNDMzNy1iYjRiLWI4NGZiZGFlNTFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77gAwDQYJKoZIhvcNAQELBQADggEBABxSzWEkhxILXvhDV2wJkV1o Ay9COyxWg2beLvmuKQ5cYQOSV1sOmTiacfrOZ32lP+XspTyn0XfI2L/nfAI/qZx1 t0U+AWhEBXd2rbfgb2IzO6OG6C3Mg6i2MNdFRVuwqm60TwOoeyWvd2ITAdCXdcql 7hN2slZhVZk5LWp/vAJaXyefqBPnhUTE/J+qeUCsTACX8NROxliPhKe7tdlz8YRc dbr677CEdtCZ7tYiVO3AL/kMKMsS3CbsiOtPyZjecsd9RAcDddqGdXdb6LGfSmp0 M08jTf37SeVSo5KFdxHVukjTyEy8EwdKvR4fKF8ct1Rtu7Kz6SiqH4HtH1gXaXk= -----END CERTIFICATE-----Generated at Mon Jun 30 18:39:08 2025 by rpki-client