$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa File: f6334ad8-04a1-4b1e-af68-368584971f2f.roa (raw, json) Hash identifier: DxgRGpSzKwCN0sAW13IsbAccbPEfMamXU5D2C3WOp5w= Subject key identifier: E5:6B:9F:66:1A:80:A7:B3:B6:57:1B:ED:DF:D6:FB:21:28:77:E9:60 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6D00BE9AAE277053A81C694FA57E4D6439031970 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa Signing time: Mon 16 Jun 2025 19:31:03 +0000 ROA not before: Mon 16 Jun 2025 19:31:03 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:00:be:9a:ae:27:70:53:a8:1c:69:4f:a5:7e:4d:64:39:03:19:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:31:03 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=68d2b633eb3663e9347994a85cb7ea57628236cd16547eb36450cb18f721a2a0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5a:39:3a:17:ff:dd:f1:52:f2:88:d6:fb:04: c2:0e:cd:58:5e:d4:87:a9:f6:f4:5e:ef:cd:66:3e: 69:66:9a:a4:a3:87:07:ab:30:96:66:53:81:de:12: b3:4a:e7:7e:e5:70:8c:12:0c:ae:85:23:35:e1:d6: 57:b3:76:aa:ff:69:99:fd:19:0e:0e:b5:43:a4:d8: 75:fa:82:98:0e:bb:e5:e1:22:b8:08:4f:09:d1:92: bd:5c:b6:40:23:01:13:3c:ca:84:76:71:29:af:b1: 9d:7e:b2:66:50:db:5a:77:bf:86:83:87:11:ea:6c: 5e:96:3e:16:0e:06:49:77:95:b5:25:f5:21:64:45: bc:f6:90:51:ea:ce:98:8a:bf:ab:ba:5d:b4:ac:3a: 77:1e:14:df:70:dc:27:26:22:98:0f:77:f5:8e:3a: 5a:51:7f:61:a1:57:93:bd:19:c0:f5:fb:28:af:22: 75:86:ae:4d:2d:7a:00:30:f3:cf:99:b3:0f:4c:a8: bc:61:af:08:a9:0d:c8:ed:e3:e7:0d:ad:07:21:d5: 4d:b1:4b:a1:74:db:d4:6e:68:2a:c5:1e:7c:a7:3b: 3c:99:db:5a:8d:e0:b7:48:6d:e5:6b:2c:e6:1b:4a: a2:5d:8f:e3:c4:f9:8e:f6:07:44:f6:56:08:f0:83: 85:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:6B:9F:66:1A:80:A7:B3:B6:57:1B:ED:DF:D6:FB:21:28:77:E9:60 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 60:1d:2b:8e:4f:0a:87:3a:5e:6b:2e:a6:6b:0b:61:f7:b5:c5: 8a:0f:bb:0a:23:13:7a:3a:1c:c0:30:eb:14:26:e9:dd:ea:83: 29:f5:d1:b4:57:8d:84:d4:f0:69:39:67:76:25:9b:25:9b:66: 5f:66:f2:63:07:50:bd:e1:06:4b:9c:a2:0b:7a:52:86:69:23: 74:57:b0:f2:42:d8:20:b9:e9:61:1c:7d:34:7f:f7:e7:e3:9b: ff:49:20:0c:bb:e7:12:a1:6b:71:08:77:aa:05:f0:a5:a6:ce: c7:9a:f5:2b:1f:f4:e1:b8:29:01:95:89:29:4e:ef:f5:f5:c5: af:5d:55:69:9c:bc:95:f4:0c:27:36:98:73:d0:b1:e5:8f:61: fe:9d:a1:7e:59:5c:0a:45:49:e0:00:06:df:ea:99:43:e6:b7: 2a:4a:e7:13:25:56:94:f2:bb:c1:c0:2c:97:f5:8f:41:1e:b9: f2:53:ff:32:91:bc:0f:5c:dc:0f:28:9c:77:2d:df:bf:0c:d3: 6f:c1:b9:f8:c7:9d:de:a4:0f:e8:49:44:e9:53:9f:85:e8:c1: b0:7e:4c:6a:0d:cc:e0:cd:99:53:e7:94:c0:ab:41:c2:d9:fa: ca:f6:75:8e:69:39:7b:c2:a8:9b:7d:d8:de:31:46:f7:21:c3: 0e:bb:81:a6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbQC+mq4ncFOoHGlPpX5NZDkDGXAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMTAzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OGQyYjYzM2ViMzY2M2U5MzQ3OTk0YTg1Y2I3ZWE1NzYy ODIzNmNkMTY1NDdlYjM2NDUwY2IxOGY3MjFhMmEwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4Wjk6F//d8VLyiNb7BMIOzVhe1Iep9vRe781mPmlmmqSj hwerMJZmU4HeErNK537lcIwSDK6FIzXh1lezdqr/aZn9GQ4OtUOk2HX6gpgOu+Xh IrgITwnRkr1ctkAjARM8yoR2cSmvsZ1+smZQ21p3v4aDhxHqbF6WPhYOBkl3lbUl 9SFkRbz2kFHqzpiKv6u6XbSsOnceFN9w3CcmIpgPd/WOOlpRf2GhV5O9GcD1+yiv InWGrk0tegAw88+Zsw9MqLxhrwipDcjt4+cNrQch1U2xS6F029RuaCrFHnynOzyZ 21qN4LdIbeVrLOYbSqJdj+PE+Y72B0T2Vgjwg4VrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5WufZhqAp7O2Vxvt39b7ISh36WAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2MzM0YWQ4LTA0YTEtNGIxZS1hZjY4LTM2ODU4NDk3MWYyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEAYB0rjk8Khzpeay6mawth97XF ig+7CiMTejocwDDrFCbp3eqDKfXRtFeNhNTwaTlndiWbJZtmX2byYwdQveEGS5yi C3pShmkjdFew8kLYILnpYRx9NH/35+Ob/0kgDLvnEqFrcQh3qgXwpabOx5r1Kx/0 4bgpAZWJKU7v9fXFr11VaZy8lfQMJzaYc9Cx5Y9h/p2hfllcCkVJ4AAG3+qZQ+a3 KkrnEyVWlPK7wcAsl/WPQR658lP/MpG8D1zcDyicdy3fvwzTb8G5+Med3qQP6ElE 6VOfhejBsH5Mag3M4M2ZU+eUwKtBwtn6yvZ1jmk5e8Kom33Y3jFG9yHDDruBpg== -----END CERTIFICATE-----Generated at Mon Jun 30 15:52:57 2025 by rpki-client