$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa File: b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa (raw, json) Hash identifier: DGaPkkaZBdf2c6IsCxlCEZYf54ahAGqqS6ZjQisKmLI= Subject key identifier: 48:2B:CF:F4:75:69:17:8C:BA:79:C6:16:3D:03:5D:D7:94:FB:8D:52 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3EFCD91A1F995EC54427CADC4B9E0F0E0C33193E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa Signing time: Mon 30 Jun 2025 17:50:07 +0000 ROA not before: Mon 30 Jun 2025 17:50:07 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:fc:d9:1a:1f:99:5e:c5:44:27:ca:dc:4b:9e:0f:0e:0c:33:19:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 30 17:50:07 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=85da36b0ee990ec2e0cd1facd3dcb6bc9898a03c7d23dde38527e5019cf7838f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:10:ca:fc:d4:10:54:8f:7c:5e:3d:b2:ff:9d: 47:db:ca:c4:84:bf:9f:e2:78:c3:b4:76:57:fe:52: 40:b5:8c:d2:42:42:41:df:11:ac:dc:6e:b0:b0:98: 86:cd:39:af:6c:9a:20:61:f8:28:00:67:0f:50:37: ec:e5:83:9e:99:ad:d9:e7:79:f6:c1:42:ec:f3:10: 13:c5:81:b2:12:dd:d8:5c:ed:89:43:ea:71:72:7a: 94:71:c9:0f:1c:0b:4b:c1:43:a1:4c:5a:7d:5a:c8: c2:9d:c9:87:ef:0f:80:3d:a3:60:84:b9:33:10:70: b7:f5:0c:73:70:84:87:11:bc:89:ab:c8:0d:2a:36: e2:ba:a2:74:0c:42:22:52:0b:c4:47:ab:d2:d3:03: 21:d1:1f:d5:1c:ca:95:40:a7:a7:49:41:9a:49:c7: 55:47:ec:ee:ef:aa:06:45:b2:19:34:65:29:d4:3e: 97:f7:2d:41:f0:69:4e:ca:03:8d:f1:28:96:9e:47: 67:c0:42:a9:9c:84:ef:95:33:76:8b:a1:e8:6a:5e: 67:48:27:7b:ef:cb:73:16:27:6b:46:36:c1:51:00: fe:84:25:e8:fe:4e:5d:95:99:08:b3:c8:0f:5e:27: de:6c:70:5d:c0:b6:f9:85:dc:70:50:d0:b1:21:56: f2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2B:CF:F4:75:69:17:8C:BA:79:C6:16:3D:03:5D:D7:94:FB:8D:52 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0::/28 Signature Algorithm: sha256WithRSAEncryption 92:7d:e4:08:69:8f:12:f5:fc:ba:64:2f:7c:71:88:4e:e7:f4: 3d:f0:79:6d:c1:4a:ec:6d:ed:8e:be:16:b5:14:34:86:30:3d: 0b:90:53:9d:e4:d1:77:90:c7:e0:06:cd:e6:d8:be:3a:e1:1d: 70:55:19:d3:e0:94:38:8d:5d:b4:da:48:93:0f:61:39:ec:a7: 75:8d:fa:3d:02:4f:d7:77:66:86:fc:f5:2a:45:71:3c:69:47: f8:a8:a0:32:a4:b0:41:07:0f:3d:5b:06:ee:b4:d0:21:d8:35: b5:dc:4b:02:66:2f:d6:e2:65:23:c4:d5:3b:08:4a:bc:45:62: ef:62:1d:13:e1:97:b9:9b:b8:46:f3:7e:fe:66:77:84:44:54: fc:94:78:99:71:50:f5:8c:10:ef:e7:f7:b6:6f:91:82:9c:84: f1:35:ae:f3:f7:c6:6f:ce:93:10:09:99:66:26:a2:c7:21:53: 75:05:19:be:bd:b5:ed:64:14:32:51:b9:ef:91:d8:e1:a3:79: 2c:e8:1e:4c:16:c7:6f:05:c5:d8:01:6f:39:04:f9:73:e4:8c: d4:d4:c7:27:f1:b8:77:32:4c:c0:c0:2f:60:9a:db:5b:c2:55: 5e:30:bc:c7:73:57:16:5c:c0:7e:3f:1d:dd:07:66:f4:bb:ce: f9:8c:31:92 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUPvzZGh+ZXsVEJ8rcS54PDgwzGT4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjMwMTc1MDA3WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWRhMzZiMGVlOTkwZWMyZTBjZDFmYWNkM2RjYjZiYzk4 OThhMDNjN2QyM2RkZTM4NTI3ZTUwMTljZjc4MzhmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsEMr81BBUj3xePbL/nUfbysSEv5/ieMO0dlf+UkC1jNJC QkHfEazcbrCwmIbNOa9smiBh+CgAZw9QN+zlg56ZrdnnefbBQuzzEBPFgbIS3dhc 7YlD6nFyepRxyQ8cC0vBQ6FMWn1ayMKdyYfvD4A9o2CEuTMQcLf1DHNwhIcRvImr yA0qNuK6onQMQiJSC8RHq9LTAyHRH9UcypVAp6dJQZpJx1VH7O7vqgZFshk0ZSnU Ppf3LUHwaU7KA43xKJaeR2fAQqmchO+VM3aLoehqXmdIJ3vvy3MWJ2tGNsFRAP6E Jej+Tl2VmQizyA9eJ95scF3AtvmF3HBQ0LEhVvJ9AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUSCvP9HVpF4y6ecYWPQNd15T7jVIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3YmJhZmJmLWU2ZDQtNDQ4Ny05ZWJiLWNiZDcyYjNkNmM3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPDwMA0GCSqGSIb3DQEBCwUAA4IBAQCSfeQIaY8S9fy6ZC98cYhO5/Q9 8HltwUrsbe2Ovha1FDSGMD0LkFOd5NF3kMfgBs3m2L464R1wVRnT4JQ4jV202kiT D2E57Kd1jfo9Ak/Xd2aG/PUqRXE8aUf4qKAypLBBBw89WwbutNAh2DW13EsCZi/W 4mUjxNU7CEq8RWLvYh0T4Ze5m7hG837+ZneERFT8lHiZcVD1jBDv5/e2b5GCnITx Na7z98ZvzpMQCZlmJqLHIVN1BRm+vbXtZBQyUbnvkdjho3ks6B5MFsdvBcXYAW85 BPlz5IzU1Mcn8bh3MkzAwC9gmttbwlVeMLzHc1cWXMB+Px3dB2b0u875jDGS -----END CERTIFICATE-----Generated at Tue Jul 1 02:48:15 2025 by rpki-client