$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa File: c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa (raw, json) Hash identifier: /9mdaeU2hsE+X02IeCT5vMaQ1UyQqX3goROZ9vSKIzo= Subject key identifier: 2B:A5:92:91:B5:A9:EC:C3:FC:7D:1B:FC:01:B7:BF:05:79:CE:BB:B5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5C087911A82AB5FAB7020811BD072B4D2C091C6D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa Signing time: Wed 25 Jun 2025 00:50:11 +0000 ROA not before: Wed 25 Jun 2025 00:50:11 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:08:79:11:a8:2a:b5:fa:b7:02:08:11:bd:07:2b:4d:2c:09:1c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 25 00:50:11 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=23360a4bae64129776ea9eb7208e401d97f9a6c620014aaf0c32c83da1455032, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7c:5c:33:7e:a5:6c:2a:c0:c1:9e:5e:1a:11: 82:25:81:54:bf:d7:c3:5d:56:67:01:ee:96:cb:23: 27:fd:15:4c:5f:9d:49:8b:71:1d:1e:d5:16:03:bd: 94:2c:8b:14:07:22:89:91:ec:85:fa:d6:3c:69:78: eb:40:b8:3a:b4:ec:72:3e:1a:07:d7:e9:fc:ab:8d: c6:0b:4d:eb:3a:91:84:3b:2a:cc:a9:c1:62:9c:0c: 4c:5d:c3:c0:33:67:d3:f3:a5:8c:50:42:cb:e6:91: c0:6a:8d:c1:22:54:e1:8b:6d:ee:77:d6:67:57:9e: 16:fe:07:60:a2:08:76:db:2c:88:a0:c0:46:ce:80: 0e:fd:44:77:a9:dd:08:89:3b:6b:e0:b8:da:84:a3: 90:ef:37:86:e6:d1:e5:60:fa:bd:4b:3c:1d:bf:1c: b1:05:f5:1a:af:9e:e0:32:d3:3e:8b:4d:45:8c:eb: aa:17:1c:5b:25:44:41:56:ef:3f:77:37:a8:b9:56: 69:1b:a0:9a:f6:5b:65:1e:b9:fa:e1:26:99:e0:d5: a8:1d:53:4d:b5:66:02:f0:0d:4f:7a:a2:26:1b:f6: 22:67:6c:2b:7b:cd:57:bf:b4:d8:a9:e5:4f:5f:c5: 03:ba:b6:53:1e:cf:d8:b7:88:f9:f4:49:46:c5:b4: e7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A5:92:91:B5:A9:EC:C3:FC:7D:1B:FC:01:B7:BF:05:79:CE:BB:B5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:100::/40 Signature Algorithm: sha256WithRSAEncryption 34:05:d2:84:fd:bb:40:77:05:d2:56:ab:23:30:10:75:e9:d4: 61:ad:03:23:1e:91:1c:a8:ce:18:b1:84:ef:97:27:c3:d3:44: a1:1a:e6:34:e3:87:53:9d:4e:f8:b3:c3:0b:fc:47:7d:03:6e: bc:2c:4e:ec:86:0a:47:96:b7:3b:19:fd:ca:62:c8:46:8a:4a: 3e:27:29:89:4a:10:64:a2:3b:1c:19:3f:fd:f4:71:b2:b0:c8: c8:ff:4e:1b:0f:0c:67:fd:87:26:b6:34:16:ae:17:36:c1:04: 75:ab:bb:b8:ec:8a:3e:55:d3:18:1e:0c:e4:10:25:8e:41:51: 4f:ff:8c:39:c1:8f:81:b2:25:81:f1:aa:fa:77:27:08:30:a5: 21:d3:f2:cf:1c:15:ab:3e:d5:69:1e:d4:e0:69:bf:f9:e1:97: 93:2e:8a:52:97:e9:dd:8b:cc:32:c0:8a:30:c4:9a:b9:fb:47: e5:a3:f7:4c:22:47:0a:4e:f2:f9:46:38:bb:6f:bb:6e:cc:ac: bd:ca:bb:84:15:37:eb:31:16:11:a8:59:ca:e2:05:58:56:b8: 8e:f5:44:3b:86:17:5f:10:51:d6:59:45:ed:6d:c6:63:0a:61: 90:85:3e:c4:7a:bc:1e:2e:00:ab:4d:f2:08:df:0f:1a:a5:16: 33:af:d2:9f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXAh5Eagqtfq3AggRvQcrTSwJHG0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjI1MDA1MDExWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzM2MGE0YmFlNjQxMjk3NzZlYTllYjcyMDhlNDAxZDk3 ZjlhNmM2MjAwMTRhYWYwYzMyYzgzZGExNDU1MDMyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYfFwzfqVsKsDBnl4aEYIlgVS/18NdVmcB7pbLIyf9FUxf nUmLcR0e1RYDvZQsixQHIomR7IX61jxpeOtAuDq07HI+GgfX6fyrjcYLTes6kYQ7 KsypwWKcDExdw8AzZ9PzpYxQQsvmkcBqjcEiVOGLbe531mdXnhb+B2CiCHbbLIig wEbOgA79RHep3QiJO2vguNqEo5DvN4bm0eVg+r1LPB2/HLEF9RqvnuAy0z6LTUWM 66oXHFslREFW7z93N6i5VmkboJr2W2UeufrhJpng1agdU021ZgLwDU96oiYb9iJn bCt7zVe/tNip5U9fxQO6tlMez9i3iPn0SUbFtOdRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUK6WSkbWp7MP8fRv8Abe/BXnOu7UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MWRjMTEwLWU0ZDYtNGE3OC05MGRjLTk0ZTRkMjA4M2M4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwATANBgkqhkiG9w0BAQsFAAOCAQEANAXShP27QHcF0larIzAQdenU Ya0DIx6RHKjOGLGE75cnw9NEoRrmNOOHU51O+LPDC/xHfQNuvCxO7IYKR5a3Oxn9 ymLIRopKPicpiUoQZKI7HBk//fRxsrDIyP9OGw8MZ/2HJrY0Fq4XNsEEdau7uOyK PlXTGB4M5BAljkFRT/+MOcGPgbIlgfGq+ncnCDClIdPyzxwVqz7VaR7U4Gm/+eGX ky6KUpfp3YvMMsCKMMSauftH5aP3TCJHCk7y+UY4u2+7bsysvcq7hBU36zEWEahZ yuIFWFa4jvVEO4YXXxBR1llF7W3GYwphkIU+xHq8Hi4Aq03yCN8PGqUWM6/Snw== -----END CERTIFICATE-----Generated at Sun Jun 29 03:54:10 2025 by rpki-client