$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa File: d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa (raw, json) Hash identifier: svzjBV0S95gCbeqrQ7fjByPEs2pwSBk6iQ+WRUKUduw= Subject key identifier: DF:FD:F5:0E:1C:00:2E:AB:01:2E:8F:56:3F:C4:67:5A:6A:24:40:A1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4F3FA05F5379EE114B3FFACBABDB41EB52253EFC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa Signing time: Fri 20 Jun 2025 20:07:12 +0000 ROA not before: Fri 20 Jun 2025 20:07:12 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:3f:a0:5f:53:79:ee:11:4b:3f:fa:cb:ab:db:41:eb:52:25:3e:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 20 20:07:12 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=54486a6bbffadae9025cdce1c3c11426659a7a0cfe43a90d1463469987faaa9f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c2:83:94:37:9a:df:cb:af:01:6e:4f:ce:23: 73:b6:f4:da:a9:4c:bf:df:a1:1e:50:4e:35:19:77: fc:0e:3c:05:36:c8:f1:c4:e3:9d:97:b5:78:fe:66: 98:65:e9:b3:49:df:36:28:55:03:a2:bb:2d:5a:e4: a4:36:7d:65:31:aa:b2:34:08:29:48:53:c1:be:d0: 04:a5:5f:37:d4:3e:7a:57:7d:7b:8d:52:3b:4f:87: 40:56:73:ab:d7:ca:8f:59:35:be:0a:95:5c:ff:a1: 61:5d:96:95:2f:ae:29:68:99:1c:f6:d6:12:2d:22: 9e:65:e5:de:7b:4e:e7:a1:7c:09:3f:cc:45:a0:79: a8:98:cd:56:b1:62:49:da:2d:d2:7d:92:ae:10:7d: 12:10:42:51:12:3c:af:cd:15:79:49:d2:c6:f3:be: 00:b7:b8:9a:a2:fe:ba:bd:f7:64:e1:26:a1:c1:e9: 09:4d:36:70:81:ed:8c:d3:76:26:66:be:ca:6e:5f: eb:5f:7a:bd:25:77:b5:9e:59:7e:a1:64:62:bd:19: 2c:af:8f:cf:4e:ae:44:22:d0:c4:3b:bf:bc:e5:93: 17:58:49:ee:b2:ab:08:41:bb:d1:db:01:86:1a:37: 82:ba:30:ed:ea:f0:72:54:98:01:d9:40:0c:2f:fe: 47:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FD:F5:0E:1C:00:2E:AB:01:2E:8F:56:3F:C4:67:5A:6A:24:40:A1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 61:b5:ba:84:39:77:47:63:8a:d1:15:c4:a4:66:49:c6:8c:18: 03:45:cb:73:5f:ff:e4:95:2a:ce:f4:cd:3c:26:71:f9:49:d8: 39:d8:86:e5:6f:f5:ae:dc:a1:01:79:6b:f7:67:92:e9:dc:35: 2f:5a:4b:f1:9c:c3:27:0c:3a:21:63:15:e1:90:e6:d9:73:dd: 18:45:8f:41:52:6a:08:07:75:d2:71:a1:bc:15:86:ab:b5:56: ac:e8:21:93:6e:3e:6f:39:ec:7a:65:21:3c:78:b8:1c:70:df: 23:3e:a1:53:6e:42:3f:b0:25:d9:a1:dd:c1:83:46:e1:95:bf: e2:eb:d5:ed:07:9d:bd:4a:29:71:22:6b:45:b8:a9:ba:b4:45: d4:c0:5b:0a:e8:c9:64:e0:bf:c1:fe:fb:98:af:4f:8a:54:4b: 8c:bc:a0:0c:30:72:bb:61:5d:c9:20:37:f6:3e:5c:df:71:a1: 46:52:78:fa:98:bd:ee:fa:d3:dd:63:66:8a:d3:58:76:21:d1: e1:c0:f4:37:5e:4d:10:50:81:3e:9d:fe:c9:59:c4:15:42:5e: 6e:c1:0d:d0:2e:f7:09:05:4f:d4:3b:29:54:6e:5e:df:14:33: 73:c5:c9:16:a6:95:a6:25:67:fe:5d:d6:92:d4:81:ed:5c:ba: 7c:f0:57:6b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTz+gX1N57hFLP/rLq9tB61IlPvwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjIwMjAwNzEyWhcNMjUwNzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDQ4NmE2YmJmZmFkYWU5MDI1Y2RjZTFjM2MxMTQyNjY1 OWE3YTBjZmU0M2E5MGQxNDYzNDY5OTg3ZmFhYTlmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcwoOUN5rfy68Bbk/OI3O29NqpTL/foR5QTjUZd/wOPAU2 yPHE452XtXj+Zphl6bNJ3zYoVQOiuy1a5KQ2fWUxqrI0CClIU8G+0ASlXzfUPnpX fXuNUjtPh0BWc6vXyo9ZNb4KlVz/oWFdlpUvrilomRz21hItIp5l5d57TuehfAk/ zEWgeaiYzVaxYknaLdJ9kq4QfRIQQlESPK/NFXlJ0sbzvgC3uJqi/rq992ThJqHB 6QlNNnCB7YzTdiZmvspuX+tfer0ld7WeWX6hZGK9GSyvj89OrkQi0MQ7v7zlkxdY Se6yqwhBu9HbAYYaN4K6MO3q8HJUmAHZQAwv/kc9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3/31DhwALqsBLo9WP8RnWmokQKEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyZTNjOTllLTNlMDMtNDExNS04NTZiLWIyNWQ3ZTk3YzRmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAGG1uoQ5d0djitEVxKRmScaM GANFy3Nf/+SVKs70zTwmcflJ2DnYhuVv9a7coQF5a/dnkuncNS9aS/GcwycMOiFj FeGQ5tlz3RhFj0FSaggHddJxobwVhqu1VqzoIZNuPm857HplITx4uBxw3yM+oVNu Qj+wJdmh3cGDRuGVv+Lr1e0Hnb1KKXEia0W4qbq0RdTAWwroyWTgv8H++5ivT4pU S4y8oAwwcrthXckgN/Y+XN9xoUZSePqYve76091jZorTWHYh0eHA9DdeTRBQgT6d /slZxBVCXm7BDdAu9wkFT9Q7KVRuXt8UM3PFyRamlaYlZ/5d1pLUge1cunzwV2s= -----END CERTIFICATE-----Generated at Sun Jun 29 04:24:40 2025 by rpki-client