$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa File: fc2b5e45-8344-4038-8f8f-6229cecec136.roa (raw, json) Hash identifier: MNpaCAG4W+l7h57fFko83FlQtxTVQMVPARy49PMxLD0= Subject key identifier: 98:D6:98:17:AE:11:0F:BB:FC:17:D2:CE:07:68:43:55:51:35:07:61 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 239A951A0DBC35C1163096BD7BAB68C74A1E9DE6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa Signing time: Fri 20 Jun 2025 20:07:12 +0000 ROA not before: Fri 20 Jun 2025 20:07:12 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:9a:95:1a:0d:bc:35:c1:16:30:96:bd:7b:ab:68:c7:4a:1e:9d:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 20 20:07:12 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=98895fb0d0d4b8f295ce8affb521136cc4dcfcad2b0e2aa3d7de387f3654f878, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:29:e2:45:e1:5c:a3:01:c2:82:01:f4:b5:10: bf:fe:f3:fc:86:eb:4e:9f:82:62:3c:4d:e0:ed:58: 9c:af:34:94:b9:88:cc:5f:a4:da:e9:46:c9:13:ac: c1:54:81:7b:6a:9c:0e:6a:d3:bc:89:cd:5c:4c:aa: 7e:48:bf:3b:bb:60:b0:e0:8e:98:ff:13:2d:b6:d6: 8c:73:37:1d:a0:1d:09:51:8f:6b:44:6f:3c:3f:b6: ce:e6:cd:96:ec:5d:33:7f:68:8b:cf:17:00:87:50: 8a:95:97:80:72:9b:c4:20:9d:2d:d5:6c:ee:e5:fe: a7:5e:b7:eb:19:cf:f3:f7:45:db:0c:45:78:71:a6: 40:a4:c4:2e:29:02:fb:9b:d0:21:24:ec:f2:bc:89: 89:cf:ae:d7:1a:1a:ed:a9:2b:c4:44:d3:1c:2a:d8: c5:a1:4f:0f:67:b3:bb:1a:fe:1e:11:93:1f:9c:50: cd:49:56:a3:71:3e:27:36:dc:9a:66:85:d5:45:2d: 81:f3:5f:93:3e:af:44:b9:2b:cb:e6:bd:50:52:d7: 77:42:35:d4:2b:98:63:54:db:45:4d:bb:1b:4c:59: 33:14:e8:ad:95:1e:12:10:09:13:e3:cb:66:f0:ed: cc:ee:89:fc:0c:1d:b1:c8:78:80:80:90:00:24:ac: f8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D6:98:17:AE:11:0F:BB:FC:17:D2:CE:07:68:43:55:51:35:07:61 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 77:a5:ac:46:4e:10:e6:70:b4:6e:2a:30:e6:a7:52:9d:02:d3: a4:29:0d:bd:bd:e6:9f:88:4d:e9:45:20:3e:c3:a7:10:fa:ac: 05:16:aa:af:4e:93:9b:05:c9:5d:01:34:2d:8c:6c:ae:0c:91: a8:f0:0e:ba:bd:4c:5f:b8:56:65:aa:98:34:32:70:9b:c0:08: 54:e6:eb:3a:00:3c:44:b4:62:77:06:cb:0e:9a:dc:08:10:a7: 2a:9f:d7:15:71:3d:c9:1c:e7:c7:5e:ee:9f:17:bb:31:33:42: 84:ef:83:9b:51:35:cf:3e:5b:4a:1f:02:e6:0c:82:eb:17:e8: d7:b4:67:e5:46:82:02:cc:54:fd:96:e6:3c:d9:c6:0f:82:97: d8:9f:04:22:26:df:69:53:e8:44:ca:11:ea:c1:a5:62:f6:05: fc:9f:c9:9f:4e:47:d4:2d:1a:8f:8b:3a:2b:27:dc:d3:1a:83: 55:f0:b8:ed:7c:63:63:dd:6b:b2:02:ef:c0:4b:2b:9c:5f:72: 88:12:b1:43:96:41:aa:6b:48:de:66:a9:8a:af:b3:41:ef:d6: 97:23:db:74:5d:60:a9:f8:70:6f:b6:0f:a5:30:f4:04:63:98: dd:9b:ae:79:37:63:4e:8b:9a:09:81:a9:99:2e:b5:c5:7f:90: 18:a4:15:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI5qVGg28NcEWMJa9e6tox0oeneYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjIwMjAwNzEyWhcNMjUwNzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODg5NWZiMGQwZDRiOGYyOTVjZThhZmZiNTIxMTM2Y2M0 ZGNmY2FkMmIwZTJhYTNkN2RlMzg3ZjM2NTRmODc4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdKeJF4VyjAcKCAfS1EL/+8/yG606fgmI8TeDtWJyvNJS5 iMxfpNrpRskTrMFUgXtqnA5q07yJzVxMqn5Ivzu7YLDgjpj/Ey221oxzNx2gHQlR j2tEbzw/ts7mzZbsXTN/aIvPFwCHUIqVl4Bym8QgnS3VbO7l/qdet+sZz/P3RdsM RXhxpkCkxC4pAvub0CEk7PK8iYnPrtcaGu2pK8RE0xwq2MWhTw9ns7sa/h4Rkx+c UM1JVqNxPic23JpmhdVFLYHzX5M+r0S5K8vmvVBS13dCNdQrmGNU20VNuxtMWTMU 6K2VHhIQCRPjy2bw7czuifwMHbHIeICAkAAkrPirAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmNaYF64RD7v8F9LOB2hDVVE1B2EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjMmI1ZTQ1LTgzNDQtNDAzOC04ZjhmLTYyMjljZWNlYzEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAHelrEZOEOZwtG4qMOanUp0C 06QpDb295p+ITelFID7DpxD6rAUWqq9Ok5sFyV0BNC2MbK4MkajwDrq9TF+4VmWq mDQycJvACFTm6zoAPES0YncGyw6a3AgQpyqf1xVxPckc58de7p8XuzEzQoTvg5tR Nc8+W0ofAuYMgusX6Ne0Z+VGggLMVP2W5jzZxg+Cl9ifBCIm32lT6ETKEerBpWL2 BfyfyZ9OR9QtGo+LOisn3NMag1XwuO18Y2Pda7IC78BLK5xfcogSsUOWQaprSN5m qYqvs0Hv1pcj23RdYKn4cG+2D6Uw9ARjmN2brnk3Y06LmgmBqZkutcV/kBikFS4= -----END CERTIFICATE-----Generated at Wed Jul 2 07:32:43 2025 by rpki-client