$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa File: a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa (raw, json) Hash identifier: fR2vbulqTltogNF/Ht6ffnw8ldpaob+owHxVHzbKdYs= Subject key identifier: DE:08:6F:A5:CC:9D:6F:64:FD:50:01:A5:E9:9F:75:DF:9F:24:C8:22 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 10EE64C856FDAA60A17FB0EC082294BC66CE667B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa Signing time: Mon 16 Jun 2025 19:30:04 +0000 ROA not before: Mon 16 Jun 2025 19:30:04 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:eb00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ee:64:c8:56:fd:aa:60:a1:7f:b0:ec:08:22:94:bc:66:ce:66:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:30:04 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=5b6d9038079356c966726dfd4ff4b0f1d95fd3ced9704c5d2a030485c55be1d4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:68:a4:0e:bc:c1:4c:41:ac:a3:27:58:b5:73: 5c:bd:7f:e8:c4:28:ff:c7:5f:e1:87:99:00:74:47: da:9a:21:23:2e:a2:25:e4:60:28:8f:c0:93:81:0a: b1:26:05:d6:4e:f2:7a:0a:e8:ff:fc:f7:67:bd:15: 60:7a:40:a7:29:04:77:74:3b:b5:90:dd:84:92:cc: 4e:5a:3d:1a:cb:98:90:0b:c9:b2:84:2b:4c:b8:9b: 20:0b:3f:9f:45:bb:5b:09:85:d1:f5:85:ab:9c:0f: bf:f2:70:f6:f6:74:0c:d8:65:60:94:d9:b7:dc:a7: b8:5a:fd:1d:c7:3b:b7:3a:9a:63:46:68:48:66:6e: 68:69:6e:2f:7e:39:03:78:c7:9c:56:80:a1:b6:16: 60:f7:61:10:dd:e7:1e:ba:69:a2:c5:b8:e1:a2:2c: 6c:e4:6c:6a:17:e5:cb:05:9e:34:6d:ab:ef:fd:2a: 29:27:eb:3f:d2:2a:1e:14:54:ab:5c:09:ea:7a:c7: aa:db:6d:29:9f:b9:37:7d:6f:27:87:9a:0c:c5:92: 22:db:9e:2f:c9:45:ed:b6:b9:bb:1a:72:5a:ff:9c: ec:bb:e8:b5:52:c9:e1:65:ec:f5:2c:63:07:94:dd: b8:e9:f1:f6:57:04:43:98:5a:ae:87:e4:8e:4b:1f: be:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:08:6F:A5:CC:9D:6F:64:FD:50:01:A5:E9:9F:75:DF:9F:24:C8:22 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/42 Signature Algorithm: sha256WithRSAEncryption 6f:76:cb:11:03:da:c4:bd:8b:57:d7:7f:1f:2b:32:42:ff:ca: 42:36:1b:a6:e9:59:32:ab:9b:04:18:7b:87:3a:0d:70:05:b0: bc:ee:3b:a4:30:b5:ac:d0:57:81:35:fa:24:0e:65:ae:dd:6e: 1f:e1:c3:04:31:00:2c:c3:d4:5f:05:2f:b5:76:73:48:3b:39: 1b:91:64:09:73:03:b9:74:f4:aa:ff:e6:9c:03:5d:5c:77:cf: e4:9e:b8:79:af:12:6c:68:51:54:6a:cc:04:7b:0b:65:91:d0: 8d:0e:5d:e2:ca:1b:68:51:7f:a5:97:2f:17:4b:ba:52:f4:4d: 9c:8d:bd:1b:bb:2e:ca:3e:e6:53:67:66:00:bd:97:35:53:a9: ba:a8:3c:c3:24:80:44:87:fb:c9:56:38:c3:1e:86:26:a2:ff: 35:72:02:11:d7:1e:22:a5:3f:0a:a2:00:59:d3:50:7c:c6:4f: 08:12:9d:1d:3e:d2:b0:80:51:7c:40:22:e5:3f:3b:11:48:00: 73:b2:2f:68:4d:be:2a:07:02:6b:d5:97:66:78:49:ec:c5:97: bb:40:84:b1:d6:7d:55:5e:a1:2b:fb:60:c6:da:70:b5:d4:b5: f7:72:0c:fe:93:b0:cc:ac:9c:f8:12:5f:d9:b9:c3:56:33:6b: 8f:8e:dd:24 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEO5kyFb9qmChf7DsCCKUvGbOZnswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMDA0WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjZkOTAzODA3OTM1NmM5NjY3MjZkZmQ0ZmY0YjBmMWQ5 NWZkM2NlZDk3MDRjNWQyYTAzMDQ4NWM1NWJlMWQ0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYaKQOvMFMQayjJ1i1c1y9f+jEKP/HX+GHmQB0R9qaISMu oiXkYCiPwJOBCrEmBdZO8noK6P/892e9FWB6QKcpBHd0O7WQ3YSSzE5aPRrLmJAL ybKEK0y4myALP59Fu1sJhdH1haucD7/ycPb2dAzYZWCU2bfcp7ha/R3HO7c6mmNG aEhmbmhpbi9+OQN4x5xWgKG2FmD3YRDd5x66aaLFuOGiLGzkbGoX5csFnjRtq+/9 Kikn6z/SKh4UVKtcCep6x6rbbSmfuTd9byeHmgzFkiLbni/JRe22ubsaclr/nOy7 6LVSyeFl7PUsYweU3bjp8fZXBEOYWq6H5I5LH741AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3ghvpcydb2T9UAGl6Z91358kyCIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2Yzk2YzQyLTQzNDQtNDRjOC1hMTk0LTRjODdmMGFkZTNjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76wAwDQYJKoZIhvcNAQELBQADggEBAG92yxED2sS9i1fXfx8rMkL/ ykI2G6bpWTKrmwQYe4c6DXAFsLzuO6QwtazQV4E1+iQOZa7dbh/hwwQxACzD1F8F L7V2c0g7ORuRZAlzA7l09Kr/5pwDXVx3z+SeuHmvEmxoUVRqzAR7C2WR0I0OXeLK G2hRf6WXLxdLulL0TZyNvRu7Lso+5lNnZgC9lzVTqbqoPMMkgESH+8lWOMMehiai /zVyAhHXHiKlPwqiAFnTUHzGTwgSnR0+0rCAUXxAIuU/OxFIAHOyL2hNvioHAmvV l2Z4SezFl7tAhLHWfVVeoSv7YMbacLXUtfdyDP6TsMysnPgSX9m5w1Yza4+O3SQ= -----END CERTIFICATE-----Generated at Sun Jun 29 09:33:39 2025 by rpki-client