$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: DQ5c8P8gZb6GGQ+FFzB1OxJ2JgM91w4La3RaRSaMlsA= Subject key identifier: 4F:28:6C:57:25:59:0D:41:FC:88:67:45:59:5D:17:6F:BE:58:09:2C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 30C53C67794E8D5D351A26F6A8B71D3E71997B75 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Mon 30 Jun 2025 17:50:04 +0000 ROA not before: Mon 30 Jun 2025 17:50:04 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:c5:3c:67:79:4e:8d:5d:35:1a:26:f6:a8:b7:1d:3e:71:99:7b:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 30 17:50:04 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=e005bea0b8e2464eb0b088d66204f1163b28864fa6c1aed56d90a8d4490633ef, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:66:53:af:32:fd:c9:82:a6:e2:ba:d0:6b:ad: 4b:46:19:fb:fc:ca:b0:28:e9:4c:06:c5:72:21:d3: a4:8b:ec:6e:8e:86:c9:35:e7:92:3b:8a:f7:18:96: 0a:89:a9:b7:b0:29:2a:b6:4e:3a:04:8d:44:8c:b6: 60:8d:dc:8a:a2:ad:b7:1f:57:45:92:a1:1d:10:e5: 48:a7:d7:6b:b5:af:17:2d:4f:9d:35:ca:67:69:23: 46:8e:fe:90:ad:66:51:dc:d4:df:63:53:20:42:77: 0f:7d:fb:de:5a:cb:df:15:b7:e9:aa:5d:e8:4a:bf: 93:67:31:de:7a:ac:be:e5:8e:55:7d:77:f7:66:02: 1d:c0:64:69:60:28:89:6e:7e:92:e8:04:6c:4b:b7: 41:70:55:74:68:c4:82:85:08:84:17:7b:3c:09:1c: 89:fb:54:c9:4a:db:8b:ad:20:b0:15:f3:36:44:2c: e0:53:46:a2:b8:5d:21:5f:74:05:4c:ce:8b:d1:bb: 4d:12:ca:ba:0a:fd:02:c8:83:cf:fb:2f:ce:01:75: 41:17:54:09:a9:b7:14:0e:5f:fa:df:25:44:30:52: b3:22:03:2f:50:6e:92:31:3c:57:f6:db:38:33:8b: 4f:a1:66:bc:a5:5b:af:02:55:1a:5d:20:52:d2:f1: ee:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:28:6C:57:25:59:0D:41:FC:88:67:45:59:5D:17:6F:BE:58:09:2C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption a1:07:e7:5a:87:d0:69:db:62:30:c9:91:f6:ca:a9:7b:44:f2: 47:37:4a:e6:49:a4:39:4d:4b:22:35:87:84:a2:3f:e1:4d:73: d8:c7:0f:c7:2d:be:01:27:09:26:5b:f7:fe:09:72:4b:b1:27: dc:fa:44:5f:eb:24:12:ed:27:1e:09:46:42:7a:0e:0a:98:42: 5f:b1:4c:8f:5e:b5:8c:1d:0a:da:a1:ca:0a:f5:1f:90:4f:0b: a7:34:ab:6c:c9:ea:f4:0c:41:27:c1:6b:ef:c1:ff:46:ae:dd: 45:7a:69:c0:7f:52:a0:c5:b8:98:2a:05:2d:b3:ca:d5:3c:b5: 6b:ea:4a:cc:ac:bc:d4:4f:aa:14:c7:ca:3c:14:b0:03:75:13: a5:0e:0b:85:4a:43:0a:e5:bd:46:c0:65:d6:f0:75:8b:58:bc: df:21:99:a8:d5:38:9e:54:fa:58:b3:84:65:1b:c7:27:54:cd: 7c:2f:a0:98:a5:00:1f:02:a4:4f:cf:ce:d2:a3:49:17:1a:8f: 3e:4d:fe:08:c4:6c:b7:64:36:7e:49:08:b9:17:7d:3b:62:ec: 52:31:47:3e:dd:14:e9:23:c0:fd:c4:45:83:15:04:f2:8a:21: dc:ee:8b:41:c7:41:21:bb:b9:3f:2c:d0:a4:16:70:03:6e:0a: 1b:87:dd:64 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMMU8Z3lOjV01Gib2qLcdPnGZe3UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjMwMTc1MDA0WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDA1YmVhMGI4ZTI0NjRlYjBiMDg4ZDY2MjA0ZjExNjNi Mjg4NjRmYTZjMWFlZDU2ZDkwYThkNDQ5MDYzM2VmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOZlOvMv3JgqbiutBrrUtGGfv8yrAo6UwGxXIh06SL7G6O hsk155I7ivcYlgqJqbewKSq2TjoEjUSMtmCN3IqirbcfV0WSoR0Q5Uin12u1rxct T501ymdpI0aO/pCtZlHc1N9jUyBCdw99+95ay98Vt+mqXehKv5NnMd56rL7ljlV9 d/dmAh3AZGlgKIlufpLoBGxLt0FwVXRoxIKFCIQXezwJHIn7VMlK24utILAV8zZE LOBTRqK4XSFfdAVMzovRu00SyroK/QLIg8/7L84BdUEXVAmptxQOX/rfJUQwUrMi Ay9QbpIxPFf22zgzi0+hZrylW68CVRpdIFLS8e7vAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTyhsVyVZDUH8iGdFWV0Xb75YCSwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAKEH51qH0GnbYjDJkfbKqXtE 8kc3SuZJpDlNSyI1h4SiP+FNc9jHD8ctvgEnCSZb9/4JckuxJ9z6RF/rJBLtJx4J RkJ6DgqYQl+xTI9etYwdCtqhygr1H5BPC6c0q2zJ6vQMQSfBa+/B/0au3UV6acB/ UqDFuJgqBS2zytU8tWvqSsysvNRPqhTHyjwUsAN1E6UOC4VKQwrlvUbAZdbwdYtY vN8hmajVOJ5U+lizhGUbxydUzXwvoJilAB8CpE/PztKjSRcajz5N/gjEbLdkNn5J CLkXfTti7FIxRz7dFOkjwP3ERYMVBPKKIdzui0HHQSG7uT8s0KQWcANuChuH3WQ= -----END CERTIFICATE-----Generated at Wed Jul 2 06:34:26 2025 by rpki-client