$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa File: 73712e14-51d5-41db-bcf2-73aa504e6eab.roa (raw, json) Hash identifier: fAAGl31TdKQ8uX/sQ/Q9Z6AOpeWpTNmSF4E9DcdRNeE= Subject key identifier: 72:28:88:36:29:0E:A9:F4:6B:82:DC:39:61:C5:30:FA:4F:6A:04:09 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6BD109D85974DBCA7C0C316ED49AC53D92C4D954 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa Signing time: Mon 16 Jun 2025 19:10:11 +0000 ROA not before: Mon 16 Jun 2025 19:10:11 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d1:09:d8:59:74:db:ca:7c:0c:31:6e:d4:9a:c5:3d:92:c4:d9:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:10:11 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=48e0b94cacf670e2f13449fc53079d1b5a860d05450f50107067dd2c874288e0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fb:7d:4a:53:09:1b:06:d5:3c:d4:0f:9e:e4: 4a:37:85:a1:91:3a:63:73:bd:5a:82:7f:66:5e:77: 0a:9b:a7:6f:d1:11:cd:d0:c2:78:f6:db:bd:16:02: 63:00:54:7b:9c:5e:64:4b:43:63:24:2a:5e:a5:2a: 9d:62:c2:ce:6a:25:a5:d9:fd:dd:43:41:fa:d0:9f: 8e:12:73:52:97:5c:bd:3b:9e:3b:cb:f0:70:6d:aa: 46:64:cb:0e:fe:a0:17:a0:cd:9c:26:29:0c:e1:a8: 48:24:e8:e6:b8:15:5e:e4:82:9e:29:f6:d0:b7:2e: c8:2a:a7:c5:a2:e3:a1:7f:0f:4f:a4:64:f8:3f:1b: 4c:63:8c:ef:dc:ca:b1:13:17:dc:8c:d3:e3:af:6c: e3:a4:f5:9d:6f:25:2f:c3:46:44:88:81:50:44:b4: ac:6b:88:2e:70:e1:9b:74:95:4a:c5:53:6d:3e:b5: 48:0d:b7:f6:70:2c:b6:e5:0b:c0:f3:04:cc:48:d0: 17:dc:e7:ea:83:3f:fd:46:1c:38:b1:74:12:30:84: a3:16:ed:eb:76:7d:40:d6:2c:4a:aa:19:65:57:14: c6:70:e8:f2:ed:63:f8:d9:1d:15:51:bd:e3:68:b3: 9c:d3:05:6c:66:9c:e6:b2:8c:89:99:8c:be:3e:a9: 8b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:28:88:36:29:0E:A9:F4:6B:82:DC:39:61:C5:30:FA:4F:6A:04:09 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 8b:4a:e2:65:75:5e:16:4e:83:01:52:16:1c:20:29:42:b5:34: 97:2d:07:83:79:d8:ca:c5:ad:39:fd:f3:93:2a:cb:d4:55:db: 3e:27:36:28:a0:76:ac:5a:05:70:d5:5f:ce:38:57:be:6f:37: 3c:75:bd:6b:bd:54:1d:71:fc:4e:5a:75:3a:84:33:2a:89:86: 6b:a3:92:b5:6c:d6:70:a8:d4:95:54:91:97:99:46:6e:9c:9b: c8:d3:56:d8:56:7c:b1:69:4b:e8:61:bc:37:5e:5b:c5:ae:e9: e5:3b:a1:2c:1c:07:18:18:d1:cf:e8:f1:03:19:0e:9a:f5:a3: fd:c3:1e:63:b0:da:5d:1e:6f:5a:b9:97:db:0b:b4:3e:ab:ba: e0:8f:d4:84:a5:45:f3:25:21:4d:b8:dc:cd:7f:22:d2:47:cd: 78:15:39:4c:b0:0d:7c:df:58:c4:13:fb:ff:5d:c7:6f:6b:7c: bb:d9:2f:a0:f6:5f:75:47:01:01:0b:71:11:a8:70:d7:7f:e8: 55:81:d6:2e:c0:51:98:8a:c9:6d:a4:ab:c2:90:20:bc:ec:4e: 64:19:79:9a:bf:c9:ca:6f:bd:5b:5b:c9:af:e4:04:39:8b:2b: 9b:ff:28:24:01:d7:87:46:82:1f:cf:1c:08:de:29:dc:e7:56: 48:3f:72:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUa9EJ2Fl028p8DDFu1JrFPZLE2VQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkxMDExWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGUwYjk0Y2FjZjY3MGUyZjEzNDQ5ZmM1MzA3OWQxYjVh ODYwZDA1NDUwZjUwMTA3MDY3ZGQyYzg3NDI4OGUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0+31KUwkbBtU81A+e5Eo3haGROmNzvVqCf2Zedwqbp2/R Ec3Qwnj2270WAmMAVHucXmRLQ2MkKl6lKp1iws5qJaXZ/d1DQfrQn44Sc1KXXL07 njvL8HBtqkZkyw7+oBegzZwmKQzhqEgk6Oa4FV7kgp4p9tC3Lsgqp8Wi46F/D0+k ZPg/G0xjjO/cyrETF9yM0+OvbOOk9Z1vJS/DRkSIgVBEtKxriC5w4Zt0lUrFU20+ tUgNt/ZwLLblC8DzBMxI0Bfc5+qDP/1GHDixdBIwhKMW7et2fUDWLEqqGWVXFMZw 6PLtY/jZHRVRveNos5zTBWxmnOayjImZjL4+qYuLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUciiINikOqfRrgtw5YcUw+k9qBAkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzczNzEyZTE0LTUxZDUtNDFkYi1iY2YyLTczYWE1MDRlNmVhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAItK4mV1XhZOgwFSFhwgKUK1 NJctB4N52MrFrTn985Mqy9RV2z4nNiigdqxaBXDVX844V75vNzx1vWu9VB1x/E5a dTqEMyqJhmujkrVs1nCo1JVUkZeZRm6cm8jTVthWfLFpS+hhvDdeW8Wu6eU7oSwc BxgY0c/o8QMZDpr1o/3DHmOw2l0eb1q5l9sLtD6ruuCP1ISlRfMlIU243M1/ItJH zXgVOUywDXzfWMQT+/9dx29rfLvZL6D2X3VHAQELcRGocNd/6FWB1i7AUZiKyW2k q8KQILzsTmQZeZq/ycpvvVtbya/kBDmLK5v/KCQB14dGgh/PHAjeKdznVkg/cj8= -----END CERTIFICATE-----Generated at Sun Jun 29 06:05:37 2025 by rpki-client