$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa File: aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa (raw, json) Hash identifier: Zv19Amd/t6zZDss40iWS2v3IDraVG4I7bg+vbwmPIqE= Subject key identifier: 20:A9:DA:25:F8:F6:F5:DB:60:33:58:C7:0D:98:58:70:01:AD:B7:F8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 306161561E22E850A95D925FACD718146B64FC5F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa Signing time: Wed 25 Jun 2025 00:50:08 +0000 ROA not before: Wed 25 Jun 2025 00:50:08 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5502::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:61:61:56:1e:22:e8:50:a9:5d:92:5f:ac:d7:18:14:6b:64:fc:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 25 00:50:08 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=6bcf5f92f20575387ae3141d37f37aea9e5f07e42d4abd71595cab1a526a6086, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:02:49:1a:5c:ab:38:70:60:1b:72:1d:0e:e0: 37:52:e7:cf:df:d7:48:c9:23:b3:60:23:d8:6b:61: e6:d2:11:41:0f:6b:d9:02:08:82:40:3c:61:d2:33: c1:a5:1f:ea:eb:96:51:b1:15:87:09:cb:9f:5a:a1: ec:cf:83:ef:24:f7:d6:2f:f1:62:a3:b2:56:bf:f7: c4:60:56:cc:e9:1e:12:7b:a4:77:1b:cf:1d:b2:23: 9d:22:4d:75:14:3f:e8:9c:88:21:28:08:e5:58:7f: 3d:be:8c:88:76:43:bd:28:14:2f:b6:24:85:18:fa: 5c:a3:17:9d:c7:7d:41:d7:48:db:aa:f0:7c:f9:8d: 12:72:16:62:5e:b3:f0:80:0f:93:6d:66:c9:95:0b: 3f:d7:ca:c1:6e:d0:94:a0:05:6e:90:d4:4c:d6:05: 01:24:4f:82:cc:98:6f:1c:14:f9:30:48:42:2e:33: 7a:aa:3d:ba:d2:2e:19:94:f8:8c:c6:f9:cf:27:2b: 8a:50:ef:66:20:c7:95:0d:c8:a6:f6:3a:7f:e8:48: 7f:04:3b:07:4f:b8:c4:3a:45:7e:c4:23:16:c8:0a: a1:14:54:47:a3:0c:46:06:38:ee:ce:52:d7:a2:5b: fb:d9:fd:d5:cf:65:01:0b:43:bc:82:f4:f8:cf:fc: 70:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A9:DA:25:F8:F6:F5:DB:60:33:58:C7:0D:98:58:70:01:AD:B7:F8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5502::/48 Signature Algorithm: sha256WithRSAEncryption 13:78:2d:c2:23:96:26:a6:4f:ac:36:90:6d:ef:25:a1:1d:69: 77:d9:30:00:35:54:b5:b5:8d:2e:15:cb:92:3a:92:e0:98:76: 9c:bf:fe:3c:98:62:e0:57:75:cc:5e:90:22:e4:31:27:54:5b: 71:e5:24:34:ee:ad:c3:0e:9c:9f:73:98:83:93:80:16:d0:86: aa:19:b8:49:82:a5:d0:72:ab:7c:dc:b3:3d:b7:a8:31:a3:94: 65:30:92:3a:d7:8f:59:a4:31:c1:9a:6c:22:a4:a4:08:f9:60: a8:55:7a:de:92:d0:58:b4:24:04:2b:37:3e:7e:db:c1:ae:30: 5e:0d:b7:01:9f:2e:60:24:e8:bb:29:40:c9:e4:fa:1d:4b:8d: c6:54:39:fb:72:22:59:c5:c1:f8:20:11:1a:50:2d:ca:7f:13: 18:1d:6f:5d:20:1c:0b:64:b6:d2:73:b4:45:1c:6f:97:2d:7a: a5:9c:cc:08:4b:24:6b:13:c8:61:c9:13:28:30:05:f9:5a:6a: 70:12:77:9d:61:ff:1b:af:00:84:c4:65:46:a6:12:b9:39:e0: 3b:f0:cd:70:bd:8d:e4:18:19:a8:39:8a:4a:8f:69:33:f3:44: 5e:6c:b8:99:f1:45:8c:48:df:89:f3:8f:8a:d8:4c:f5:cc:46: 86:d9:95:07 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMGFhVh4i6FCpXZJfrNcYFGtk/F8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjI1MDA1MDA4WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmNmNWY5MmYyMDU3NTM4N2FlMzE0MWQzN2YzN2FlYTll NWYwN2U0MmQ0YWJkNzE1OTVjYWIxYTUyNmE2MDg2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqAkkaXKs4cGAbch0O4DdS58/f10jJI7NgI9hrYebSEUEP a9kCCIJAPGHSM8GlH+rrllGxFYcJy59aoezPg+8k99Yv8WKjsla/98RgVszpHhJ7 pHcbzx2yI50iTXUUP+iciCEoCOVYfz2+jIh2Q70oFC+2JIUY+lyjF53HfUHXSNuq 8Hz5jRJyFmJes/CAD5NtZsmVCz/XysFu0JSgBW6Q1EzWBQEkT4LMmG8cFPkwSEIu M3qqPbrSLhmU+IzG+c8nK4pQ72Ygx5UNyKb2On/oSH8EOwdPuMQ6RX7EIxbICqEU VEejDEYGOO7OUteiW/vZ/dXPZQELQ7yC9PjP/HDrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIKnaJfj29dtgM1jHDZhYcAGtt/gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZDI0YTJlLWY2MWItNDJiNC05NTA5LTllMDZhMTM2ZWIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQIwDQYJKoZIhvcNAQELBQADggEBABN4LcIjliamT6w2kG3vJaEd aXfZMAA1VLW1jS4Vy5I6kuCYdpy//jyYYuBXdcxekCLkMSdUW3HlJDTurcMOnJ9z mIOTgBbQhqoZuEmCpdByq3zcsz23qDGjlGUwkjrXj1mkMcGabCKkpAj5YKhVet6S 0Fi0JAQrNz5+28GuMF4NtwGfLmAk6LspQMnk+h1LjcZUOftyIlnFwfggERpQLcp/ Exgdb10gHAtkttJztEUcb5cteqWczAhLJGsTyGHJEygwBflaanASd51h/xuvAITE ZUamErk54DvwzXC9jeQYGag5ikqPaTPzRF5suJnxRYxI34nzj4rYTPXMRobZlQc= -----END CERTIFICATE-----Generated at Sun Jun 29 04:07:30 2025 by rpki-client