$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa File: ddabe105-17a8-4460-a8c9-18b7474ee13f.roa (raw, json) Hash identifier: 9bzks4nd0Ypy6NsZP4YrZKCsvpRsg0SM4PEWU0LtJWE= Subject key identifier: 33:9B:05:0B:69:0C:A6:30:47:8C:15:9E:92:42:99:D9:D1:38:B3:AA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0FC883F948FC0A095BAA7B397C2FEDF34D38D1FD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa Signing time: Wed 18 Jun 2025 00:30:10 +0000 ROA not before: Wed 18 Jun 2025 00:30:10 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c8:83:f9:48:fc:0a:09:5b:aa:7b:39:7c:2f:ed:f3:4d:38:d1:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 18 00:30:10 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=8ef8ab0ffaa0b7b76d12fa8098143aa976b0a14812c1219f8ef91f3291e85106, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3f:fe:17:44:95:14:dc:c1:2f:e3:bb:9e:df: 7b:a5:14:ca:3a:31:fa:76:b8:2f:ed:a9:e5:7a:4e: 87:f4:f4:26:86:fc:75:86:aa:8e:60:59:56:23:17: ba:b0:71:32:23:10:34:a8:50:02:05:52:62:09:de: 68:e6:8d:c2:d2:69:76:98:10:50:48:63:17:fc:66: bc:74:5b:c4:7d:8c:97:04:9f:d0:7a:7f:af:f5:e2: 0e:9e:08:33:19:cd:7e:bf:42:c7:28:97:cb:e8:7d: e9:87:73:b6:4a:1e:64:0f:e4:82:8d:f4:e0:07:08: 13:d8:d9:d2:e8:79:de:32:83:0d:0d:87:f9:1c:bf: c9:fd:2a:c6:4d:b2:70:c7:ec:ee:22:fb:e3:24:1c: 16:aa:d3:40:73:e3:7e:59:aa:9d:38:06:d4:d9:d0: e6:5e:95:13:46:9b:16:7c:c5:03:1a:b7:ff:13:8b: cd:42:e7:e6:80:87:3c:56:26:75:84:42:de:b9:c0: 7b:c5:f9:a4:cb:fb:17:d1:fc:3a:1e:c7:4a:c9:d0: 65:b6:81:d0:69:62:73:de:cb:37:8e:50:99:2e:0b: 22:bf:41:0d:f0:f1:c3:1f:e2:fd:9c:75:5f:de:26: c6:e7:e4:90:a7:f1:7b:0b:85:f9:2c:c8:b4:ab:43: ea:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:9B:05:0B:69:0C:A6:30:47:8C:15:9E:92:42:99:D9:D1:38:B3:AA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/44 Signature Algorithm: sha256WithRSAEncryption 7b:57:3d:41:49:76:e7:98:4b:16:dd:af:8a:1c:81:79:0c:f4: 13:95:51:fd:67:39:7d:21:cb:83:9b:ec:e9:4e:59:e6:72:ce: 49:3b:8f:f4:b9:8a:ba:41:06:e6:7c:bd:33:c6:5a:81:54:f8: 8e:40:1e:43:12:bd:04:08:3a:36:eb:d4:44:9f:b8:09:dc:5c: e1:30:3d:c4:cf:28:51:50:55:ba:24:77:23:5a:e5:a1:fc:e3: 4c:70:c0:fb:d0:92:c8:37:47:0d:c8:22:32:19:06:b6:58:cc: 57:ef:ce:53:3d:e4:27:bc:16:59:52:7b:56:53:2f:8a:ec:0c: a5:1b:ef:15:49:96:90:c9:86:0d:fc:e8:1b:e5:8c:1d:f1:18: 5d:19:20:8c:03:f3:a9:72:a2:81:ed:2f:56:c9:09:69:b9:9a: 46:1c:17:c1:01:98:f6:d4:66:6a:54:92:ba:c0:65:98:a2:09: 72:f2:e7:7a:c9:52:42:79:20:8d:40:dc:33:87:ac:7d:fd:49: 61:5b:4f:9d:d5:b7:d1:7a:7f:7c:6a:f1:ba:4e:fe:de:da:8f: e2:f4:ab:02:3a:a7:ef:80:92:2a:0b:bb:d0:de:09:fc:94:42: 63:9b:25:e7:d4:89:bb:57:c8:96:03:c1:f3:0a:8b:2c:17:93: f9:84:fc:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD8iD+Uj8Cglbqns5fC/t80040f0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE4MDAzMDEwWhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWY4YWIwZmZhYTBiN2I3NmQxMmZhODA5ODE0M2FhOTc2 YjBhMTQ4MTJjMTIxOWY4ZWY5MWYzMjkxZTg1MTA2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5P/4XRJUU3MEv47ue33ulFMo6Mfp2uC/tqeV6Tof09CaG /HWGqo5gWVYjF7qwcTIjEDSoUAIFUmIJ3mjmjcLSaXaYEFBIYxf8Zrx0W8R9jJcE n9B6f6/14g6eCDMZzX6/Qscol8vofemHc7ZKHmQP5IKN9OAHCBPY2dLoed4ygw0N h/kcv8n9KsZNsnDH7O4i++MkHBaq00Bz435Zqp04BtTZ0OZelRNGmxZ8xQMat/8T i81C5+aAhzxWJnWEQt65wHvF+aTL+xfR/Doex0rJ0GW2gdBpYnPeyzeOUJkuCyK/ QQ3w8cMf4v2cdV/eJsbn5JCn8XsLhfksyLSrQ+qhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUM5sFC2kMpjBHjBWekkKZ2dE4s6owHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RkYWJlMTA1LTE3YTgtNDQ2MC1hOGM5LTE4Yjc0NzRlZTEzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBAHtXPUFJdueYSxbdr4ocgXkM 9BOVUf1nOX0hy4Ob7OlOWeZyzkk7j/S5irpBBuZ8vTPGWoFU+I5AHkMSvQQIOjbr 1ESfuAncXOEwPcTPKFFQVbokdyNa5aH840xwwPvQksg3Rw3IIjIZBrZYzFfvzlM9 5Ce8FllSe1ZTL4rsDKUb7xVJlpDJhg386BvljB3xGF0ZIIwD86lyooHtL1bJCWm5 mkYcF8EBmPbUZmpUkrrAZZiiCXLy53rJUkJ5II1A3DOHrH39SWFbT53Vt9F6f3xq 8bpO/t7aj+L0qwI6p++AkioLu9DeCfyUQmObJefUibtXyJYDwfMKiywXk/mE/Kg= -----END CERTIFICATE-----Generated at Mon Jun 30 14:59:58 2025 by rpki-client