$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa File: b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa (raw, json) Hash identifier: eDis2jI+ng6fc9iZlUqDNisbVC5B9EG/P4HlIzWerio= Subject key identifier: A8:A6:3E:30:DD:5F:E7:7E:41:A4:05:3F:70:5C:DA:F3:0A:30:91:F6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2061E9543BA89EE27897878993C801BD387A7B73 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa Signing time: Wed 18 Jun 2025 00:30:13 +0000 ROA not before: Wed 18 Jun 2025 00:30:13 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:e00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:61:e9:54:3b:a8:9e:e2:78:97:87:89:93:c8:01:bd:38:7a:7b:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 18 00:30:13 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=86a6167e070408fe37d024db0b37d2747b54dfe8eacfb9391731be72f0296e1a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a9:f5:f6:33:be:b7:2e:92:dc:76:50:52:d4: 83:23:ea:44:92:07:de:0c:12:1c:51:c5:b8:42:c7: e4:a1:8f:f6:b1:25:52:01:8b:71:ad:29:61:bb:26: 44:de:60:74:45:ce:a9:08:ec:d7:8b:ef:86:94:12: 3a:12:8d:92:1d:fa:9f:6c:93:e6:b7:e5:a6:a2:8c: ac:1d:60:53:ba:71:0d:c0:c2:73:df:97:2b:25:38: f1:8e:c0:f2:8a:d7:e7:91:8e:26:ee:9b:b4:31:65: 57:32:d3:b1:4a:37:c1:41:4b:8a:fa:4b:c7:45:63: dd:aa:af:0c:d9:c8:c7:20:fe:37:6d:fb:10:30:28: 5e:b8:fc:25:84:20:c7:70:e9:78:04:72:22:bd:78: bb:9b:23:70:b8:c5:ff:d9:57:19:9e:0b:ad:1b:ba: 1a:2a:a7:b7:55:d7:5e:66:af:90:de:70:b6:4a:52: 74:8e:61:ab:b1:ec:95:38:16:de:c4:9d:08:54:c3: f1:18:6b:8d:1d:ff:4a:49:10:90:f1:b5:42:98:4a: f7:a3:33:4f:67:f8:0c:2c:38:e8:a9:46:f9:0f:49: 4b:f7:bc:47:9e:30:9b:13:c4:fc:9b:a2:15:fd:7a: 13:a8:ae:53:ca:b1:26:94:b6:46:f6:5e:26:20:85: 29:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A6:3E:30:DD:5F:E7:7E:41:A4:05:3F:70:5C:DA:F3:0A:30:91:F6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:e00::/40 Signature Algorithm: sha256WithRSAEncryption 97:16:2a:62:42:f1:fe:4c:f5:d0:68:4c:27:e8:47:0f:b7:d2: 9c:6b:f5:9a:c4:b3:4b:be:e6:f6:1f:24:0b:15:f4:28:c2:0e: 2b:8a:6c:e3:36:ed:63:95:f2:74:1a:ff:01:30:de:f0:a5:be: 97:f7:ca:45:73:c5:87:6f:92:b2:84:05:77:ce:29:60:59:c2: 93:c6:90:9e:49:16:29:c6:63:31:5e:d5:6e:b6:aa:e2:aa:0b: 0d:32:3c:bf:e3:2d:ef:15:0e:8a:6f:6d:aa:10:22:80:8a:06: be:5b:07:99:27:92:af:ee:2d:1b:52:df:28:05:75:da:95:5d: 7f:c3:47:08:8c:39:8b:f9:bb:6f:7d:05:ed:d3:88:21:11:e2: 53:7c:7f:d8:a6:9b:ae:a3:3f:15:a6:e2:64:d5:9b:f6:2f:c6: 44:a8:c2:02:ce:b5:90:55:f4:3d:81:4b:31:11:17:d8:93:bb: 3e:cd:cc:d4:4c:aa:47:36:ca:3a:4d:60:60:c0:e6:8e:a8:38: 4d:38:09:42:af:f5:3f:34:be:52:2e:8e:89:ea:cc:14:c6:58: dd:b3:ba:77:88:3c:63:95:db:de:1e:e6:3a:d0:fe:81:24:29: 5b:f6:57:78:b1:b9:f9:39:e1:c3:f4:e0:c6:15:43:1e:ac:3a: fc:8b:ff:b8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIGHpVDuonuJ4l4eJk8gBvTh6e3MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE4MDAzMDEzWhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmE2MTY3ZTA3MDQwOGZlMzdkMDI0ZGIwYjM3ZDI3NDdi NTRkZmU4ZWFjZmI5MzkxNzMxYmU3MmYwMjk2ZTFhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYqfX2M763LpLcdlBS1IMj6kSSB94MEhxRxbhCx+Shj/ax JVIBi3GtKWG7JkTeYHRFzqkI7NeL74aUEjoSjZId+p9sk+a35aaijKwdYFO6cQ3A wnPflyslOPGOwPKK1+eRjibum7QxZVcy07FKN8FBS4r6S8dFY92qrwzZyMcg/jdt +xAwKF64/CWEIMdw6XgEciK9eLubI3C4xf/ZVxmeC60buhoqp7dV115mr5DecLZK UnSOYaux7JU4Ft7EnQhUw/EYa40d/0pJEJDxtUKYSvejM09n+AwsOOipRvkPSUv3 vEeeMJsTxPybohX9ehOorlPKsSaUtkb2XiYghSk9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUqKY+MN1f535BpAU/cFza8wowkfYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I2ZjhjNzQ1LTg4MDctNDJiZC05MjRlLThhZmM1ZjY3Y2IwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwDjANBgkqhkiG9w0BAQsFAAOCAQEAlxYqYkLx/kz10GhMJ+hHD7fS nGv1msSzS77m9h8kCxX0KMIOK4ps4zbtY5XydBr/ATDe8KW+l/fKRXPFh2+SsoQF d84pYFnCk8aQnkkWKcZjMV7Vbraq4qoLDTI8v+Mt7xUOim9tqhAigIoGvlsHmSeS r+4tG1LfKAV12pVdf8NHCIw5i/m7b30F7dOIIRHiU3x/2KabrqM/FabiZNWb9i/G RKjCAs61kFX0PYFLMREX2JO7Ps3M1EyqRzbKOk1gYMDmjqg4TTgJQq/1PzS+Ui6O ierMFMZY3bO6d4g8Y5Xb3h7mOtD+gSQpW/ZXeLG5+Tnhw/TgxhVDHqw6/Iv/uA== -----END CERTIFICATE-----Generated at Sun Jun 29 16:58:34 2025 by rpki-client