$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa File: fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa (raw, json) Hash identifier: 4fSUdt7Qo7QqRQOY56/4zsYBCtF+uCtE/vy5783Il9U= Subject key identifier: 7B:CF:84:51:97:17:80:48:A0:36:86:97:29:02:FB:FE:40:BA:33:C8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 24A08B3A71DB83E0D936AFDEB94E7EF71CE56339 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa Signing time: Mon 30 Jun 2025 17:50:07 +0000 ROA not before: Mon 30 Jun 2025 17:50:07 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:a0:8b:3a:71:db:83:e0:d9:36:af:de:b9:4e:7e:f7:1c:e5:63:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 30 17:50:07 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=8f088ef831acd5dca120259090e8f1c6cfc5c1d5c16bf4de6bf227a5cdd9c576, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f6:60:bb:2e:de:ea:0b:77:ec:91:b2:1e:48: 96:4c:38:c7:61:81:25:67:95:6d:3a:77:b4:b6:ee: 71:76:01:98:55:7e:48:69:fd:61:06:cf:83:f4:24: 3c:8f:3e:5b:16:55:96:32:20:2d:ed:1f:b6:4c:90: 88:53:28:64:b9:0f:4d:ab:fb:82:1f:48:cf:a8:11: ce:8e:38:bd:f2:6c:aa:25:27:f6:22:a9:7f:57:9e: 34:14:43:b3:b7:f6:5d:3b:8e:e9:a7:78:8f:d0:70: b4:3a:8b:6c:8c:f8:8d:4c:cb:fc:9d:2c:9b:f1:6b: b6:f3:9f:c5:a3:c3:31:20:56:52:1c:af:26:a9:3d: d3:ea:7d:f4:8e:5d:6d:08:e1:df:7b:c9:b1:aa:6e: 2b:c4:f2:ff:da:63:e2:8f:fc:68:c5:04:9e:32:fe: 8b:e0:f3:2c:4d:ab:82:14:ea:fd:ff:42:af:51:cf: 14:b6:0f:2e:39:cd:be:87:19:3c:88:1f:98:fb:54: 03:ce:80:d4:94:43:f5:bd:d5:f3:fb:b9:07:9d:cb: 4e:ca:c9:d9:ec:60:da:40:06:d1:5d:d9:c9:0a:fa: 6f:85:e3:21:b9:81:ff:03:29:1e:8c:c9:bf:79:8c: 13:c9:8b:c3:a6:67:16:fe:a9:f6:e4:21:94:47:8f: 61:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CF:84:51:97:17:80:48:A0:36:86:97:29:02:FB:FE:40:BA:33:C8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/24 Signature Algorithm: sha256WithRSAEncryption 93:93:a8:4c:47:0c:15:78:44:aa:29:f1:f9:e2:ba:b8:1c:ce: 74:5e:55:a7:b6:05:6d:9f:8d:f0:04:f3:65:00:38:73:1d:2b: 25:76:25:80:62:8d:86:e1:79:6f:e1:61:1d:ce:6a:85:97:70: 0e:0d:4f:42:c7:a4:dd:8e:f3:47:09:3f:87:06:73:7d:3e:70: 40:7c:bb:88:47:f3:e3:a6:71:75:8d:86:09:45:b7:87:b7:5a: e4:fd:d6:24:a6:4f:85:3a:4c:59:48:f0:28:fd:3f:b2:dc:ac: 80:35:2e:0c:ae:66:b9:2b:3e:35:b0:b1:5a:8c:76:9e:69:40: 94:3b:e3:46:35:64:8a:9c:40:bd:51:c3:a7:51:f9:23:4f:de: 8d:eb:95:eb:a3:7a:3a:3e:e7:55:36:23:1c:2f:f7:c7:fe:34: 0f:b5:19:57:ec:a1:db:0f:3d:c6:c5:e1:14:25:8d:cd:9c:9d: e1:ef:5d:d4:f6:8e:27:95:17:97:fb:91:5e:1c:6a:b1:7f:fb: de:fc:49:2e:78:3b:32:68:71:64:00:13:f3:b3:94:a2:97:44: 06:2c:19:4d:bc:58:85:56:04:b6:f8:68:b5:53:2a:77:02:d7: 99:15:37:d4:2d:78:2a:98:a7:0c:54:01:69:3a:b3:9d:ca:f1: d5:79:cb:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJKCLOnHbg+DZNq/euU5+9xzlYzkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjMwMTc1MDA3WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjA4OGVmODMxYWNkNWRjYTEyMDI1OTA5MGU4ZjFjNmNm YzVjMWQ1YzE2YmY0ZGU2YmYyMjdhNWNkZDljNTc2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDo9mC7Lt7qC3fskbIeSJZMOMdhgSVnlW06d7S27nF2AZhV fkhp/WEGz4P0JDyPPlsWVZYyIC3tH7ZMkIhTKGS5D02r+4IfSM+oEc6OOL3ybKol J/YiqX9XnjQUQ7O39l07jumneI/QcLQ6i2yM+I1My/ydLJvxa7bzn8WjwzEgVlIc ryapPdPqffSOXW0I4d97ybGqbivE8v/aY+KP/GjFBJ4y/ovg8yxNq4IU6v3/Qq9R zxS2Dy45zb6HGTyIH5j7VAPOgNSUQ/W91fP7uQedy07KydnsYNpABtFd2ckK+m+F 4yG5gf8DKR6Myb95jBPJi8OmZxb+qfbkIZRHj2EXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUe8+EUZcXgEigNoaXKQL7/kC6M8gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjNjJhNGVkLWE0YmYtNDYzNC1iNmYzLTBjNzBiZWRiNzA2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAC MAYDBAAmAPAwDQYJKoZIhvcNAQELBQADggEBAJOTqExHDBV4RKop8fniurgcznRe Vae2BW2fjfAE82UAOHMdKyV2JYBijYbheW/hYR3OaoWXcA4NT0LHpN2O80cJP4cG c30+cEB8u4hH8+OmcXWNhglFt4e3WuT91iSmT4U6TFlI8Cj9P7LcrIA1LgyuZrkr PjWwsVqMdp5pQJQ740Y1ZIqcQL1Rw6dR+SNP3o3rleujejo+51U2Ixwv98f+NA+1 GVfsodsPPcbF4RQljc2cneHvXdT2jieVF5f7kV4carF/+978SS54OzJocWQAE/Oz lKKXRAYsGU28WIVWBLb4aLVTKncC15kVN9QteCqYpwxUAWk6s53K8dV5y70= -----END CERTIFICATE-----Generated at Mon Jun 30 21:06:26 2025 by rpki-client