$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa File: 87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa (raw, json) Hash identifier: F8sZ5aS6SerWznl9f37NI44aQhMGLJPY37KUGLUQNQk= Subject key identifier: 5B:78:BB:94:BF:A3:19:40:19:10:A1:65:39:94:BE:69:47:12:AD:2A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 38437C7DBFB1C35FF08CA3ABD4EB414F35E8734F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa Signing time: Mon 16 Jun 2025 19:30:13 +0000 ROA not before: Mon 16 Jun 2025 19:30:13 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:43:7c:7d:bf:b1:c3:5f:f0:8c:a3:ab:d4:eb:41:4f:35:e8:73:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:30:13 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=8c4bcef39fabced55b0b4e6d17cdcaf9de596db210d837b7d8f71c34b8a84515, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:06:a0:6d:b1:57:9f:6f:83:17:9b:c8:cf:ef: e1:a1:b4:63:52:3c:28:0e:32:ee:57:3f:a8:53:d3: 6e:98:c3:19:54:48:67:00:3e:bc:17:c9:8d:03:db: d6:33:62:6b:57:03:ad:81:4b:6a:48:a8:11:16:2a: e7:60:11:65:17:8b:00:a1:69:04:c9:d4:ac:44:67: 51:aa:13:ad:cc:50:dc:a3:a7:e5:4b:41:42:06:33: ee:a7:42:a2:04:74:f6:0f:96:d3:b1:c5:54:63:e6: d3:c0:35:9b:4f:2e:f9:b2:df:da:1c:82:09:51:bc: b6:ef:b8:17:9a:23:c2:99:dd:c1:63:37:04:17:10: 30:75:6a:a2:1f:e7:14:bf:cf:0e:5c:3d:c3:70:01: d6:c3:a0:d6:d5:f6:d9:6b:14:86:3a:d9:07:48:5d: 00:a5:b7:b3:a0:81:4c:4c:3c:2e:18:bd:5d:15:4e: 3c:3b:21:6c:71:23:43:5a:10:75:b5:24:75:5b:54: bd:03:58:d8:00:c1:a2:f0:27:ce:77:9d:89:61:97: 69:6e:e0:dd:0e:fa:08:b7:29:d9:a3:18:00:56:06: 83:3d:3d:ec:d7:05:de:1b:9c:b7:96:56:67:f3:20: 50:1d:23:a5:0f:9a:90:c2:e4:33:85:b9:42:12:be: 4d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:78:BB:94:BF:A3:19:40:19:10:A1:65:39:94:BE:69:47:12:AD:2A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 70:30:40:e4:09:8c:2d:58:3a:d5:69:de:71:f3:b4:16:2e:e7: f3:52:23:34:61:94:dd:98:44:48:a4:61:ae:5e:39:03:a6:5b: 67:59:d6:0a:28:50:aa:b4:fa:d0:6b:97:70:6a:3d:a1:42:c1: ef:e4:7b:a7:9e:4f:83:09:7e:ee:7e:49:da:bd:a9:79:7f:81: 3c:37:50:36:db:e4:ab:ba:eb:f5:89:a3:7b:5c:40:1e:7d:8a: 22:0c:c7:ea:4f:ad:c1:99:a5:78:f7:0f:64:92:b4:36:6e:f5: 9d:c7:26:a1:de:30:55:87:64:36:fa:93:37:19:9a:c6:4d:9f: 42:c7:f2:1a:9c:6f:e2:8d:52:e6:6f:4b:7b:6b:62:c0:9d:31: c2:d7:cd:9c:d0:6a:26:1f:e2:6d:54:c6:8c:8c:d3:34:a1:78: 9c:7d:3c:58:7d:14:c4:6e:81:fa:47:9d:26:2a:ef:e5:70:52: 04:09:45:57:ab:0a:7a:c9:9d:c8:16:eb:2a:28:55:0f:1b:88: c7:13:dd:4e:c8:14:1d:a0:5d:9f:b2:5d:53:9b:5e:54:ee:91: 5f:b8:63:8f:27:94:5a:1c:7e:1d:98:0b:e3:a1:8a:c8:3e:5a: 12:fe:5c:c5:12:b4:74:6b:8f:e5:eb:9d:b4:c5:fe:1f:43:ca: 4b:f5:8b:1f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOEN8fb+xw1/wjKOr1OtBTzXoc08wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMDEzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzRiY2VmMzlmYWJjZWQ1NWIwYjRlNmQxN2NkY2FmOWRl NTk2ZGIyMTBkODM3YjdkOGY3MWMzNGI4YTg0NTE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvBqBtsVefb4MXm8jP7+GhtGNSPCgOMu5XP6hT026YwxlU SGcAPrwXyY0D29YzYmtXA62BS2pIqBEWKudgEWUXiwChaQTJ1KxEZ1GqE63MUNyj p+VLQUIGM+6nQqIEdPYPltOxxVRj5tPANZtPLvmy39ocgglRvLbvuBeaI8KZ3cFj NwQXEDB1aqIf5xS/zw5cPcNwAdbDoNbV9tlrFIY62QdIXQClt7OggUxMPC4YvV0V Tjw7IWxxI0NaEHW1JHVbVL0DWNgAwaLwJ853nYlhl2lu4N0O+gi3KdmjGABWBoM9 PezXBd4bnLeWVmfzIFAdI6UPmpDC5DOFuUISvk2lAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW3i7lL+jGUAZEKFlOZS+aUcSrSowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg3YmFmYjBkLTdjZWMtNDMzMS04YTA5LTRhNGQ1NmFiZjdkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75QAwDQYJKoZIhvcNAQELBQADggEBAHAwQOQJjC1YOtVp3nHztBYu 5/NSIzRhlN2YREikYa5eOQOmW2dZ1gooUKq0+tBrl3BqPaFCwe/ke6eeT4MJfu5+ Sdq9qXl/gTw3UDbb5Ku66/WJo3tcQB59iiIMx+pPrcGZpXj3D2SStDZu9Z3HJqHe MFWHZDb6kzcZmsZNn0LH8hqcb+KNUuZvS3trYsCdMcLXzZzQaiYf4m1UxoyM0zSh eJx9PFh9FMRugfpHnSYq7+VwUgQJRVerCnrJncgW6yooVQ8biMcT3U7IFB2gXZ+y XVObXlTukV+4Y48nlFocfh2YC+Ohisg+WhL+XMUStHRrj+XrnbTF/h9Dykv1ix8= -----END CERTIFICATE-----Generated at Sun Jun 29 01:31:14 2025 by rpki-client