$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa File: f1746927-d9c4-41c2-8abc-289ecb180bdc.roa (raw, json) Hash identifier: Ik3kDkXOTo4dIiB4sCIf+gd0Oereit0z0Ij66LLM7Nc= Subject key identifier: 9B:9D:38:98:C8:91:51:CE:DB:1B:A8:B8:5F:10:CA:2F:79:CA:C3:B3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6C48F5B26450CB461CC96242D2686330F4EE4C99 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa Signing time: Mon 16 Jun 2025 19:31:06 +0000 ROA not before: Mon 16 Jun 2025 19:31:06 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:48:f5:b2:64:50:cb:46:1c:c9:62:42:d2:68:63:30:f4:ee:4c:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:31:06 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=93264a6e25d5e1a057a7c9b843e4ec596b9e92c5874d66f2c1fa2f18af71a876, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:05:20:9d:dd:dd:53:ce:d3:21:39:af:a4:57: 0a:80:74:5a:ae:2a:d5:ba:9e:3d:98:8a:30:4a:8e: 91:5c:ca:62:d1:35:a7:15:1d:43:41:5c:74:c5:da: c7:77:9f:8e:04:77:a2:c8:b9:e8:69:e5:56:13:21: 6a:4f:23:e0:b2:4e:f7:df:5e:fe:04:74:bb:64:98: 76:39:59:7a:1b:23:86:2b:03:26:6b:ef:82:c1:c1: 82:c4:ee:08:77:54:7a:27:3b:41:28:c9:93:45:af: 51:79:9d:04:90:81:cd:42:e1:03:db:00:02:93:04: ea:c9:02:86:41:52:ae:1c:c9:e6:de:a9:36:b0:39: 56:e9:07:57:3e:f0:71:ed:7b:4f:ad:72:6e:b3:fd: 0e:bc:b7:52:46:49:82:90:5e:f2:b7:0a:3d:81:19: 3f:95:4b:fd:77:51:f9:11:3a:07:fe:11:f8:ad:d0: aa:df:16:fe:7a:ae:16:e5:66:c6:ab:38:e1:b1:c4: 6f:87:5b:2f:be:5a:29:d5:c1:01:c6:15:1e:85:27: ad:eb:bf:72:b9:b3:1a:51:29:ff:2d:0e:dd:b2:79: c2:0e:19:0d:ff:0d:a4:2e:a4:76:21:ff:b2:04:b9: 50:ce:46:a5:52:46:d6:80:72:cd:b6:e2:dd:ff:93: b0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:9D:38:98:C8:91:51:CE:DB:1B:A8:B8:5F:10:CA:2F:79:CA:C3:B3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/40 Signature Algorithm: sha256WithRSAEncryption 6a:25:84:ec:a1:07:9f:c2:53:22:27:99:ce:dd:6d:bc:ce:04: 0a:f9:b0:b2:9b:f0:df:a2:4f:e9:ad:11:59:96:7f:bf:88:46: b0:d7:a4:e9:59:bb:e6:68:e3:71:9b:73:2f:20:19:f0:60:06: b8:79:81:e8:07:23:fa:a6:53:e8:86:3d:35:7f:d7:66:aa:ed: 2d:79:be:e1:73:1c:bf:22:3b:9f:c8:18:49:f3:93:f0:39:8b: 96:a7:28:8f:d6:bb:ac:37:e4:b3:fb:59:cb:13:a6:94:c6:13: 2a:ce:87:5b:57:3e:0d:70:2d:ef:12:66:14:16:a8:e5:ba:25: cc:25:f7:d5:a8:e8:fe:bb:61:9b:c1:e5:e5:2f:05:1b:d3:48: 7c:fd:00:af:85:c3:88:9d:c4:c6:2b:bf:8c:0c:84:12:61:86: c0:a0:8b:20:46:5a:ce:45:f2:7c:db:d4:55:69:1e:b7:3b:18: 4b:53:36:86:49:fb:b5:88:e0:fe:4f:4d:27:c1:16:b0:34:40: c8:17:04:aa:05:ff:a0:f3:ea:f5:e6:fa:aa:99:4b:a6:a3:ad: 54:42:87:16:58:aa:3a:eb:f2:3e:7a:08:86:eb:4e:f2:26:c5: 58:e5:b0:02:59:54:b7:dc:0b:e7:41:d4:1e:18:1d:be:b1:82: 97:a2:38:43 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbEj1smRQy0YcyWJC0mhjMPTuTJkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMTA2WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzI2NGE2ZTI1ZDVlMWEwNTdhN2M5Yjg0M2U0ZWM1OTZi OWU5MmM1ODc0ZDY2ZjJjMWZhMmYxOGFmNzFhODc2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9BSCd3d1TztMhOa+kVwqAdFquKtW6nj2YijBKjpFcymLR NacVHUNBXHTF2sd3n44Ed6LIuehp5VYTIWpPI+CyTvffXv4EdLtkmHY5WXobI4Yr AyZr74LBwYLE7gh3VHonO0EoyZNFr1F5nQSQgc1C4QPbAAKTBOrJAoZBUq4cyebe qTawOVbpB1c+8HHte0+tcm6z/Q68t1JGSYKQXvK3Cj2BGT+VS/13UfkROgf+Efit 0KrfFv56rhblZsarOOGxxG+HWy++WinVwQHGFR6FJ63rv3K5sxpRKf8tDt2yecIO GQ3/DaQupHYh/7IEuVDORqVSRtaAcs224t3/k7A1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUm504mMiRUc7bG6i4XxDKL3nKw7MwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YxNzQ2OTI3LWQ5YzQtNDFjMi04YWJjLTI4OWVjYjE4MGJkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75TANBgkqhkiG9w0BAQsFAAOCAQEAaiWE7KEHn8JTIieZzt1tvM4E Cvmwspvw36JP6a0RWZZ/v4hGsNek6Vm75mjjcZtzLyAZ8GAGuHmB6Acj+qZT6IY9 NX/XZqrtLXm+4XMcvyI7n8gYSfOT8DmLlqcoj9a7rDfks/tZyxOmlMYTKs6HW1c+ DXAt7xJmFBao5bolzCX31ajo/rthm8Hl5S8FG9NIfP0Ar4XDiJ3Exiu/jAyEEmGG wKCLIEZazkXyfNvUVWketzsYS1M2hkn7tYjg/k9NJ8EWsDRAyBcEqgX/oPPq9eb6 qplLpqOtVEKHFliqOuvyPnoIhutO8ibFWOWwAllUt9wL50HUHhgdvrGCl6I4Qw== -----END CERTIFICATE-----Generated at Tue Jul 1 10:46:40 2025 by rpki-client