$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa File: 828860c7-04d3-410e-a0e6-5d8782c6c573.roa (raw, json) Hash identifier: BP4tU4t+QiZWgj0HNsBZ7Bnj7HIPpBXEDmFNclyXAx8= Subject key identifier: ED:B6:64:0E:08:4D:33:9B:78:40:C6:72:57:1A:3A:14:02:B0:61:A3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 22CD7A7D5217BEDC07BF32AAEE517A3B788C335B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa Signing time: Wed 25 Jun 2025 00:50:10 +0000 ROA not before: Wed 25 Jun 2025 00:50:10 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10a::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:cd:7a:7d:52:17:be:dc:07:bf:32:aa:ee:51:7a:3b:78:8c:33:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 25 00:50:10 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=8b4e30e44b06d0bb9c768c66f2a830a7c76ee30fa5d359dcaa18bef495c6278a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bf:a1:95:da:7a:e0:ad:88:95:3e:8a:eb:d5: bd:cc:e2:43:7c:29:59:53:3a:46:36:74:a1:fe:16: ca:e3:9c:1a:1f:44:39:72:a0:fe:e6:09:ad:b9:89: 11:6c:2f:1a:e1:e1:3e:35:e6:c9:20:97:dc:0d:ee: c7:aa:4b:a5:3d:06:b0:88:6e:82:07:f2:40:c8:9c: c5:9d:cc:65:45:cb:7c:08:78:f5:00:5e:14:9f:39: 5f:06:02:e8:ca:d6:ea:1c:b6:80:45:5c:b7:00:2f: 8b:ac:cc:8a:1c:39:fe:ae:e4:f3:6c:39:bb:af:1c: 35:af:f8:96:7a:dc:48:2a:7c:ad:ff:01:c7:99:a9: a9:be:a4:34:3a:0a:92:68:ae:40:75:cf:14:2a:54: 45:c8:67:74:56:98:3c:16:65:dc:d1:63:22:09:ff: 3e:52:37:d8:21:b2:29:73:6d:c2:75:01:8e:0c:b4: e2:1d:00:95:bd:d6:44:e4:54:15:e0:8f:53:8a:83: 24:0c:e0:80:ab:a3:57:87:ce:38:92:5d:ba:fd:8a: 88:36:d1:83:c5:37:e9:00:64:38:97:52:0f:24:4f: b2:24:de:f5:5a:78:2c:ee:27:94:45:fa:67:ea:3b: 7d:04:f4:2d:b2:27:86:3b:77:b4:94:fe:27:b2:d7: cb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B6:64:0E:08:4D:33:9B:78:40:C6:72:57:1A:3A:14:02:B0:61:A3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10a::/47 Signature Algorithm: sha256WithRSAEncryption 76:c2:5a:5f:a1:fb:66:28:8e:ea:5a:46:43:42:7b:9e:20:ab: fc:46:bc:67:f2:c9:47:b7:50:3c:95:bb:bd:5e:07:2f:2a:dd: 8b:ce:e5:c8:26:20:18:3e:e8:0b:b4:8c:15:67:4b:b0:48:36: 79:2a:96:af:9b:83:eb:04:3b:00:20:a0:ab:5d:71:55:95:b1: de:7e:68:cd:65:0f:c2:29:46:3c:72:16:38:ff:43:3f:b7:c2: 8b:ea:a9:42:7e:91:3b:e1:3f:05:06:b5:8b:1d:33:fb:00:14: 87:61:93:bb:e5:1a:e0:7e:19:53:6f:db:58:20:f9:80:39:3f: 71:5b:1b:d1:2b:5a:a6:37:eb:09:b6:21:b6:2a:12:c9:4f:1a: a2:3f:d9:7e:91:58:3f:b8:7e:80:a0:2e:91:79:4e:40:7c:23: b1:63:e9:09:c6:cf:76:6e:10:7d:e8:14:5e:9d:e1:86:6c:b8: 41:bc:8f:eb:dd:0e:34:35:b1:9f:89:fe:99:09:9f:04:d6:77: 60:b1:53:08:f0:05:4f:fb:67:52:d9:b4:cc:6c:2e:fd:17:cc: d1:5a:43:09:9d:db:49:f3:2f:51:eb:3f:0a:68:98:59:15:a2: 83:da:35:7e:04:80:ff:42:c7:9f:94:3e:04:18:27:0b:71:30: 3c:71:7e:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIs16fVIXvtwHvzKq7lF6O3iMM1swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjI1MDA1MDEwWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjRlMzBlNDRiMDZkMGJiOWM3NjhjNjZmMmE4MzBhN2M3 NmVlMzBmYTVkMzU5ZGNhYTE4YmVmNDk1YzYyNzhhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcv6GV2nrgrYiVPorr1b3M4kN8KVlTOkY2dKH+FsrjnBof RDlyoP7mCa25iRFsLxrh4T415skgl9wN7seqS6U9BrCIboIH8kDInMWdzGVFy3wI ePUAXhSfOV8GAujK1uoctoBFXLcAL4uszIocOf6u5PNsObuvHDWv+JZ63EgqfK3/ AceZqam+pDQ6CpJorkB1zxQqVEXIZ3RWmDwWZdzRYyIJ/z5SN9ghsilzbcJ1AY4M tOIdAJW91kTkVBXgj1OKgyQM4ICro1eHzjiSXbr9iog20YPFN+kAZDiXUg8kT7Ik 3vVaeCzuJ5RF+mfqO30E9C2yJ4Y7d7SU/iey18u3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7bZkDghNM5t4QMZyVxo6FAKwYaMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzgyODg2MGM3LTA0ZDMtNDEwZS1hMGU2LTVkODc4MmM2YzU3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQowDQYJKoZIhvcNAQELBQADggEBAHbCWl+h+2YojupaRkNCe54g q/xGvGfyyUe3UDyVu71eBy8q3YvO5cgmIBg+6Au0jBVnS7BINnkqlq+bg+sEOwAg oKtdcVWVsd5+aM1lD8IpRjxyFjj/Qz+3wovqqUJ+kTvhPwUGtYsdM/sAFIdhk7vl GuB+GVNv21gg+YA5P3FbG9ErWqY36wm2IbYqEslPGqI/2X6RWD+4foCgLpF5TkB8 I7Fj6QnGz3ZuEH3oFF6d4YZsuEG8j+vdDjQ1sZ+J/pkJnwTWd2CxUwjwBU/7Z1LZ tMxsLv0XzNFaQwmd20nzL1HrPwpomFkVooPaNX4EgP9Cx5+UPgQYJwtxMDxxfuY= -----END CERTIFICATE-----Generated at Sun Jun 29 09:28:41 2025 by rpki-client