$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa File: ab860450-a818-47f3-a42f-5570594471c3.roa (raw, json) Hash identifier: 7iZegP7ARDlv1FeHvf/ixdWgsyMKFXs+axoKlXSNb7Q= Subject key identifier: 86:9B:9B:50:7C:39:3F:F7:18:E0:9D:F4:F4:68:F7:BB:8C:19:42:A8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 222F384ED708319D56EB4AB25E592A57F67883C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa Signing time: Mon 16 Jun 2025 19:20:19 +0000 ROA not before: Mon 16 Jun 2025 19:20:19 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:2f:38:4e:d7:08:31:9d:56:eb:4a:b2:5e:59:2a:57:f6:78:83:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:20:19 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=ad709ee9f179f32eee1cbed3b4cb6e295d9d42c110cabaa9e3da97e2aa85c608, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d5:85:f1:f2:ee:f8:59:68:21:81:57:0f:bc: 33:98:ae:21:f7:ff:bc:c0:b6:f7:a1:d7:93:81:a4: b2:0e:4a:83:4b:87:9b:4b:50:1a:fc:79:7e:87:4b: 05:91:0b:43:b8:b8:1e:1d:54:a5:8b:e8:1d:c7:61: 58:f9:00:a5:de:41:69:c1:91:cf:11:1c:92:7e:2b: f1:e8:0e:4c:e6:f9:7f:fc:90:3f:13:b6:5f:39:d5: fb:2c:de:9c:8b:a4:13:55:e0:2c:e5:db:55:0f:a3: 16:bd:31:b3:09:35:d4:2e:91:8a:cf:3b:c8:7a:ec: 86:fd:b0:71:ad:43:29:c5:ff:7d:61:e4:67:bc:f5: e4:54:bd:64:72:81:fe:6b:56:21:33:66:a1:12:7b: 6d:6f:bf:1b:b0:39:b4:2b:a4:24:27:88:3a:49:71: 7c:77:09:9f:84:33:d4:e0:36:ae:ea:54:5c:e4:a2: 7c:c5:f6:f4:f6:79:5c:d6:d1:41:01:7f:66:29:59: 37:ff:6c:2e:77:4b:71:be:63:5d:0f:e4:9b:02:ec: 4b:28:e7:e6:35:56:77:25:dd:b8:5f:28:f8:fe:42: c9:80:1c:5d:e1:3e:89:06:19:30:8e:e2:4d:e9:27: 72:6f:1e:1b:11:4f:f4:35:4a:61:fe:5e:ed:e3:01: ca:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:9B:9B:50:7C:39:3F:F7:18:E0:9D:F4:F4:68:F7:BB:8C:19:42:A8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 55:5f:f0:62:7c:d9:65:28:0e:be:41:53:b5:36:af:09:b3:2d: e3:1d:8d:60:87:98:56:d9:f2:72:ed:5e:d8:ed:2d:99:fa:06: 68:1d:a5:eb:91:9e:b9:20:d9:24:ec:8f:25:c5:32:d1:67:1b: 3c:7e:fe:72:60:dc:cd:cb:61:26:3c:c8:b6:aa:08:9c:c2:35: 45:38:20:1c:a4:19:b6:a4:35:29:e6:d4:3a:b1:94:cf:fb:be: 19:42:b1:ea:2c:db:9a:49:d1:00:a0:c4:3b:9f:19:b5:20:6c: 20:5c:04:d2:f4:37:58:dc:09:82:e9:16:65:65:b8:73:71:3f: 14:e4:74:52:b3:32:da:d8:8c:14:1c:01:1e:64:c7:04:97:25: d6:c6:b2:6f:ab:5f:f1:41:a8:9e:fa:64:02:7a:b0:05:80:67: 1a:1a:fa:e8:83:8d:2f:1f:8c:1d:5a:41:8a:d5:b2:ed:c2:57: 21:1a:fd:56:1e:75:91:33:c0:1c:93:6e:21:dd:e3:92:03:d7: 11:b6:08:f8:20:23:dd:a6:7c:ff:25:62:a7:13:38:62:4e:49: b2:0a:2e:1d:73:b6:4d:c6:e9:87:1c:b6:ae:97:b4:9b:6b:9e: 07:7b:db:8f:e2:5b:ae:38:f9:45:6d:fe:48:91:95:39:b8:dc: f5:c8:f0:75 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIi84TtcIMZ1W60qyXlkqV/Z4g8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMDE5WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDcwOWVlOWYxNzlmMzJlZWUxY2JlZDNiNGNiNmUyOTVk OWQ0MmMxMTBjYWJhYTllM2RhOTdlMmFhODVjNjA4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM1YXx8u74WWghgVcPvDOYriH3/7zAtveh15OBpLIOSoNL h5tLUBr8eX6HSwWRC0O4uB4dVKWL6B3HYVj5AKXeQWnBkc8RHJJ+K/HoDkzm+X/8 kD8Ttl851fss3pyLpBNV4Czl21UPoxa9MbMJNdQukYrPO8h67Ib9sHGtQynF/31h 5Ge89eRUvWRygf5rViEzZqESe21vvxuwObQrpCQniDpJcXx3CZ+EM9TgNq7qVFzk onzF9vT2eVzW0UEBf2YpWTf/bC53S3G+Y10P5JsC7Eso5+Y1Vncl3bhfKPj+QsmA HF3hPokGGTCO4k3pJ3JvHhsRT/Q1SmH+Xu3jAcofAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhpubUHw5P/cY4J309Gj3u4wZQqgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiODYwNDUwLWE4MTgtNDdmMy1hNDJmLTU1NzA1OTQ0NzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBAFVf8GJ82WUoDr5BU7U2rwmz LeMdjWCHmFbZ8nLtXtjtLZn6BmgdpeuRnrkg2STsjyXFMtFnGzx+/nJg3M3LYSY8 yLaqCJzCNUU4IBykGbakNSnm1DqxlM/7vhlCseos25pJ0QCgxDufGbUgbCBcBNL0 N1jcCYLpFmVluHNxPxTkdFKzMtrYjBQcAR5kxwSXJdbGsm+rX/FBqJ76ZAJ6sAWA Zxoa+uiDjS8fjB1aQYrVsu3CVyEa/VYedZEzwByTbiHd45ID1xG2CPggI92mfP8l YqcTOGJOSbIKLh1ztk3G6Ycctq6XtJtrngd724/iW644+UVt/kiRlTm43PXI8HU= -----END CERTIFICATE-----Generated at Tue Jul 1 08:15:09 2025 by rpki-client