$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa File: a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa (raw, json) Hash identifier: I6tyNXY3ZQi/vCE1L19xUf77XsDyWnZYUzRPM8ahDg4= Subject key identifier: 5A:DC:75:D7:6E:CE:DC:46:2C:11:7D:9F:09:E5:FD:08:DE:1B:9C:1A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 547BCE6ACD210E4867C0954196ADA93216E96B1F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa Signing time: Mon 16 Jun 2025 19:30:11 +0000 ROA not before: Mon 16 Jun 2025 19:30:11 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e600::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:7b:ce:6a:cd:21:0e:48:67:c0:95:41:96:ad:a9:32:16:e9:6b:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:30:11 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=1f06a7dca172911bb9f9921833bb866b2b937016963517eecb38b14dd418a692, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:6f:17:69:c9:b1:9c:48:fc:da:bc:0f:96:84: 8d:0c:a1:60:4d:82:58:e1:49:ca:45:08:b9:4a:2b: 19:06:18:40:fe:79:1e:26:23:e2:88:7e:5c:dd:e0: 64:b6:c4:45:20:8a:ab:87:a2:07:bb:8a:d7:d4:00: cb:7e:6a:52:fe:83:15:24:b9:e6:35:53:3a:04:f0: bc:a2:4b:d0:00:aa:7f:75:90:df:12:39:16:f2:0a: 2d:9c:7c:c2:cc:bc:78:f8:57:91:11:f6:07:4e:72: b0:4b:71:61:96:71:cb:49:af:09:ff:f2:e0:dc:74: d1:f4:17:7c:11:99:0c:e2:95:f0:cd:7e:54:21:70: 7b:3f:07:b7:3b:1a:31:25:46:c9:b7:c2:aa:85:2f: 57:bb:23:2f:b7:00:ec:36:9e:80:00:57:66:31:9e: e7:ed:a2:db:b3:5c:3f:b8:85:79:ad:0c:c1:e2:85: 09:29:a3:55:91:54:c8:a0:f2:12:0b:59:9f:62:2d: 1a:0e:b8:ca:6b:85:f8:37:bc:80:ae:e6:d4:cc:74: 28:b7:66:e9:2b:8f:c5:61:3a:88:cd:f8:cd:97:eb: f3:d8:54:3b:c3:0b:e8:28:6a:c4:00:32:8f:05:75: bf:11:21:b8:ca:86:04:30:67:db:fd:21:e4:8f:d0: d7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DC:75:D7:6E:CE:DC:46:2C:11:7D:9F:09:E5:FD:08:DE:1B:9C:1A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/42 Signature Algorithm: sha256WithRSAEncryption 19:01:65:57:c5:b0:87:e4:f6:f2:ba:bb:02:12:ac:dc:d0:d0: fb:a4:d0:5b:78:7e:97:eb:d1:e2:8c:74:5e:7b:f4:53:ed:7b: ed:00:38:74:6c:9b:30:dc:ba:5d:14:cd:c9:b0:e5:5e:a8:28: 93:19:4d:0e:76:6f:45:7f:5e:4c:54:c3:20:a4:ef:67:b5:64: f5:6c:91:18:61:28:6e:65:63:f4:e2:f2:bd:83:b1:e0:2f:e5: 56:48:20:f8:22:07:62:99:ae:b7:b6:03:b1:14:6f:64:01:49: 47:73:44:8a:f7:4f:65:ef:a6:ad:e5:94:d0:75:c1:11:a9:4a: 53:41:e2:7c:dc:1f:64:1f:02:8c:69:31:e6:8e:64:55:53:55: cd:be:aa:86:77:51:7b:ad:1b:48:29:5a:fd:f5:29:7b:aa:11: 83:10:50:73:d2:3a:f9:26:6a:8e:fe:6d:4d:e3:09:6e:2f:d7: b2:ff:73:b1:c4:96:18:16:99:2d:6c:14:0e:72:fd:d8:e9:f5: 68:c5:a3:7d:e7:87:dc:1d:79:cb:30:73:fd:25:2a:5b:e5:f6: 0d:a8:23:fe:44:4d:8f:a5:d1:58:af:2d:98:35:e8:75:40:75: d5:65:a5:dd:f6:34:4f:d1:0b:cc:89:7d:08:4b:63:44:d4:f4: bc:fa:c2:65 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVHvOas0hDkhnwJVBlq2pMhbpax8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMDExWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjA2YTdkY2ExNzI5MTFiYjlmOTkyMTgzM2JiODY2YjJi OTM3MDE2OTYzNTE3ZWVjYjM4YjE0ZGQ0MThhNjkyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCObxdpybGcSPzavA+WhI0MoWBNgljhScpFCLlKKxkGGED+ eR4mI+KIflzd4GS2xEUgiquHoge7itfUAMt+alL+gxUkueY1UzoE8LyiS9AAqn91 kN8SORbyCi2cfMLMvHj4V5ER9gdOcrBLcWGWcctJrwn/8uDcdNH0F3wRmQzilfDN flQhcHs/B7c7GjElRsm3wqqFL1e7Iy+3AOw2noAAV2YxnuftotuzXD+4hXmtDMHi hQkpo1WRVMig8hILWZ9iLRoOuMprhfg3vICu5tTMdCi3Zukrj8VhOojN+M2X6/PY VDvDC+goasQAMo8Fdb8RIbjKhgQwZ9v9IeSP0NcdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWtx1127O3EYsEX2fCeX9CN4bnBowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzN2FmNmQ3LTBiMzEtNGE0Ni1iOGQ5LTA4ZWZjZjhmZWY1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75gAwDQYJKoZIhvcNAQELBQADggEBABkBZVfFsIfk9vK6uwISrNzQ 0Puk0Ft4fpfr0eKMdF579FPte+0AOHRsmzDcul0Uzcmw5V6oKJMZTQ52b0V/XkxU wyCk72e1ZPVskRhhKG5lY/Ti8r2DseAv5VZIIPgiB2KZrre2A7EUb2QBSUdzRIr3 T2Xvpq3llNB1wRGpSlNB4nzcH2QfAoxpMeaOZFVTVc2+qoZ3UXutG0gpWv31KXuq EYMQUHPSOvkmao7+bU3jCW4v17L/c7HElhgWmS1sFA5y/djp9WjFo33nh9wdecsw c/0lKlvl9g2oI/5ETY+l0VivLZg16HVAddVlpd32NE/RC8yJfQhLY0TU9Lz6wmU= -----END CERTIFICATE-----Generated at Sun Jun 29 14:20:13 2025 by rpki-client