$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa File: 9a96c02c-ad61-40ce-b5aa-def693953ba1.roa (raw, json) Hash identifier: eresx3KfJx525pefy/d+xsficowA8TMUJ1KBWrSCuB0= Subject key identifier: 79:B9:E5:E0:E6:D7:80:60:B9:1A:39:7B:D2:C9:11:C9:1D:77:23:4C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 53019C0155E6904DA83EE48C35E8E4BF584A9D37 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa Signing time: Wed 18 Jun 2025 00:30:08 +0000 ROA not before: Wed 18 Jun 2025 00:30:08 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:01:9c:01:55:e6:90:4d:a8:3e:e4:8c:35:e8:e4:bf:58:4a:9d:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 18 00:30:08 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=3009d3beae393fc97d2619db4fb3054a06f59fe9067ad0c9446b056faf34a549, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:0e:65:a3:12:89:14:ee:05:70:d6:72:49: 44:8d:8f:48:c9:72:a2:5b:86:3c:87:ef:ec:87:63: de:e1:55:a8:fd:8f:79:12:d3:e0:fd:40:66:ca:69: 48:25:70:c3:0d:e7:02:bf:dc:9c:90:ef:70:87:dc: 23:00:29:08:22:c9:24:4a:51:36:cc:31:5e:8c:c7: 55:97:4f:05:ab:7d:37:dc:67:ae:1e:b9:5b:dc:e1: ab:d7:2c:78:8f:23:23:af:2d:ad:71:6e:3e:e9:58: 4a:e7:3b:45:28:e0:90:fb:76:95:52:76:7e:cc:0b: 7a:aa:85:0d:77:0b:84:09:bb:29:6d:67:77:2c:38: 3e:8a:a3:00:8d:ae:b2:7a:11:aa:1e:b1:51:ba:5f: 02:83:61:b6:c8:59:60:92:b3:21:df:41:ad:26:2c: d4:9d:63:32:d5:3e:5b:5b:d1:67:fc:59:a4:46:84: 9b:55:11:5d:6b:70:9d:bc:97:09:78:83:72:d2:d6: 8c:93:43:ef:bd:36:36:74:56:db:cf:ee:f5:ac:44: f2:52:11:4c:5e:a1:e3:af:c3:3e:2e:94:32:91:74: 7c:f2:99:86:df:20:f1:25:cd:f7:0c:31:7c:f4:c0: 80:f4:76:39:51:80:3f:ae:bc:1b:71:5e:f8:68:dc: b5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B9:E5:E0:E6:D7:80:60:B9:1A:39:7B:D2:C9:11:C9:1D:77:23:4C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 70:9f:90:1b:6d:ce:db:b8:60:80:a9:dd:d3:81:23:50:62:ed: 2b:f3:e5:36:bb:d4:78:32:e4:92:8b:7c:16:c5:48:81:cc:6f: 4a:34:0d:c8:34:e7:c7:a6:d9:7a:48:af:07:04:2d:ee:3c:64: c1:2b:26:40:be:b1:2f:1e:17:49:a5:27:cc:5e:e1:36:49:15: 7d:e1:b0:cf:39:0a:1d:f0:1d:85:27:4c:6c:5c:a1:1c:4f:17: 4b:05:32:5e:20:55:6b:ae:43:e8:ad:3e:bf:81:f9:b3:f8:de: 1f:1c:ad:0e:31:5e:6c:27:f9:2c:54:58:b5:a9:9c:ca:66:ed: ea:e6:ac:34:fd:d1:69:dd:bb:db:d8:cd:87:6c:6a:b7:f3:b5: e1:d3:0d:f4:76:c1:e7:22:1a:1f:d2:d3:00:11:89:f2:07:e1: d6:57:94:86:85:44:da:c1:30:ab:e9:43:bf:57:0d:02:b7:a9: e3:4e:32:96:00:cb:67:67:16:31:64:3a:14:8f:26:7d:8c:f2: 00:68:89:4d:4a:42:b2:ae:7b:4a:ef:7f:8d:73:91:ca:a2:01: 77:1e:38:d1:a4:ea:4e:9a:04:76:58:2b:8b:df:99:72:af:95: 57:6e:fe:9d:c9:30:2e:6e:cb:73:8b:a1:c9:6e:24:dc:f9:7e: 9f:af:24:03 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUwGcAVXmkE2oPuSMNejkv1hKnTcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE4MDAzMDA4WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDA5ZDNiZWFlMzkzZmM5N2QyNjE5ZGI0ZmIzMDU0YTA2 ZjU5ZmU5MDY3YWQwYzk0NDZiMDU2ZmFmMzRhNTQ5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4xw5loxKJFO4FcNZySUSNj0jJcqJbhjyH7+yHY97hVaj9 j3kS0+D9QGbKaUglcMMN5wK/3JyQ73CH3CMAKQgiySRKUTbMMV6Mx1WXTwWrfTfc Z64euVvc4avXLHiPIyOvLa1xbj7pWErnO0Uo4JD7dpVSdn7MC3qqhQ13C4QJuylt Z3csOD6KowCNrrJ6EaoesVG6XwKDYbbIWWCSsyHfQa0mLNSdYzLVPltb0Wf8WaRG hJtVEV1rcJ28lwl4g3LS1oyTQ++9NjZ0VtvP7vWsRPJSEUxeoeOvwz4ulDKRdHzy mYbfIPElzfcMMXz0wID0djlRgD+uvBtxXvho3LXBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUebnl4ObXgGC5Gjl70skRyR13I0wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlhOTZjMDJjLWFkNjEtNDBjZS1iNWFhLWRlZjY5Mzk1M2JhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAHCfkBttztu4YICp3dOBI1Bi 7Svz5Ta71Hgy5JKLfBbFSIHMb0o0Dcg058em2XpIrwcELe48ZMErJkC+sS8eF0ml J8xe4TZJFX3hsM85Ch3wHYUnTGxcoRxPF0sFMl4gVWuuQ+itPr+B+bP43h8crQ4x Xmwn+SxUWLWpnMpm7ermrDT90Wndu9vYzYdsarfzteHTDfR2weciGh/S0wARifIH 4dZXlIaFRNrBMKvpQ79XDQK3qeNOMpYAy2dnFjFkOhSPJn2M8gBoiU1KQrKue0rv f41zkcqiAXceONGk6k6aBHZYK4vfmXKvlVdu/p3JMC5uy3OLocluJNz5fp+vJAM= -----END CERTIFICATE-----Generated at Tue Jul 1 13:46:56 2025 by rpki-client