$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa File: e0124927-afa7-4267-814d-16ec9e0135d2.roa (raw, json) Hash identifier: 6XrGeN1448mPDCfAg7sqbjvbuCHwLXQpTHIgjRIYS2k= Subject key identifier: 5A:1D:16:3F:B5:C9:25:77:6B:3B:9C:96:A0:7A:02:E8:2B:EF:B8:B3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2115E08A8FAF3C8E93E6A87C9B22C770A54C4BDC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa Signing time: Tue 05 Aug 2025 18:20:59 +0000 ROA not before: Tue 05 Aug 2025 18:20:59 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:15:e0:8a:8f:af:3c:8e:93:e6:a8:7c:9b:22:c7:70:a5:4c:4b:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:59 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=e79adb7a203ed6d8cfd9f2106330ca264832307e3b59ef0a9acd2c2787e2c390, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b4:22:ca:df:ae:e2:21:93:ff:e2:b4:41:6d: b8:ab:47:02:ed:bb:7f:9e:15:75:88:5c:c7:f2:9f: dc:02:19:fe:4e:86:63:4f:1e:54:7e:74:5f:f9:76: b3:54:0e:fb:99:71:c1:9e:33:48:fe:5c:a9:a5:a5: cd:3d:6c:8b:10:07:c4:a7:b3:9e:a8:71:be:b5:f1: 12:27:82:0b:8d:10:51:51:1b:dd:dc:ef:0c:1a:ed: 49:40:d6:cb:1d:22:60:31:2e:dc:60:27:bb:c1:de: fc:3e:51:9f:b6:4d:99:94:01:ce:3f:51:d0:4a:32: 85:e3:c7:4d:21:ff:b4:23:6d:7d:dc:69:28:e2:c6: 7d:21:e5:2e:8b:1f:4d:9c:2a:33:33:27:60:65:9d: 82:a9:d8:c2:d8:ab:57:1a:65:3e:9c:29:18:41:f7: 8a:9b:b8:5e:c0:54:1d:9c:49:ad:ac:e6:f6:80:55: d6:da:b8:10:8b:08:8c:cd:bc:47:17:1f:14:07:42: cd:dd:5b:9c:1c:3a:54:77:b2:7a:4c:53:01:ea:c1: a1:57:0e:15:a5:6b:4a:e4:97:99:93:82:82:1d:79: fe:14:fa:bc:7f:17:0a:fb:d5:58:2d:3c:a6:2d:5a: 0d:2e:7b:b9:35:5d:50:f2:22:40:84:05:2f:3e:e1: 18:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:1D:16:3F:B5:C9:25:77:6B:3B:9C:96:A0:7A:02:E8:2B:EF:B8:B3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:2::/48 Signature Algorithm: sha256WithRSAEncryption 4e:65:2a:c3:eb:28:45:50:8d:c4:b1:5b:49:bd:4e:e5:9d:25: 69:07:a2:a5:29:78:81:b2:b5:8d:6d:32:44:aa:f6:56:7e:d4: b9:26:a4:f7:c7:1c:86:9c:62:4a:a2:ae:c4:39:65:b5:28:82: fd:17:f2:4d:8f:c1:61:6c:1f:fe:b6:8d:db:63:10:b9:f9:23: 8e:12:0b:b5:85:0c:3f:27:7f:bf:89:85:51:c9:15:e4:d0:8c: a7:57:f0:89:43:d2:83:89:82:6a:a2:62:31:51:79:7d:12:0d: c5:a0:6b:31:27:90:8c:be:4b:71:5b:1a:40:74:74:e2:27:22: 18:07:b4:2a:4b:89:dc:0e:84:7b:a0:01:c8:82:c1:b5:ee:2d: 52:1b:cf:10:e6:36:8a:4f:40:ee:f3:25:ca:71:20:01:e9:82: ce:d2:e5:79:a4:5e:81:e9:c9:e4:2a:9d:0a:73:e5:b1:b5:61: f7:45:62:81:05:da:bf:93:c0:4d:1e:f4:6e:c0:3e:5a:56:23: 3e:f3:3c:a8:9e:ac:d8:c5:0b:57:29:17:82:2e:6c:b5:1e:78: c8:a2:d5:3c:d4:6b:61:c4:ad:43:88:69:80:9f:4f:fe:16:6a: 40:38:b4:af:f2:0d:5b:55:87:4c:39:5d:66:ba:2f:3d:44:9b: 34:ca:da:c7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIRXgio+vPI6T5qh8myLHcKVMS9wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDU5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzlhZGI3YTIwM2VkNmQ4Y2ZkOWYyMTA2MzMwY2EyNjQ4 MzIzMDdlM2I1OWVmMGE5YWNkMmMyNzg3ZTJjMzkwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDtCLK367iIZP/4rRBbbirRwLtu3+eFXWIXMfyn9wCGf5O hmNPHlR+dF/5drNUDvuZccGeM0j+XKmlpc09bIsQB8Sns56ocb618RIngguNEFFR G93c7wwa7UlA1ssdImAxLtxgJ7vB3vw+UZ+2TZmUAc4/UdBKMoXjx00h/7QjbX3c aSjixn0h5S6LH02cKjMzJ2BlnYKp2MLYq1caZT6cKRhB94qbuF7AVB2cSa2s5vaA VdbauBCLCIzNvEcXHxQHQs3dW5wcOlR3snpMUwHqwaFXDhWla0rkl5mTgoIdef4U +rx/Fwr71VgtPKYtWg0ue7k1XVDyIkCEBS8+4RhRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWh0WP7XJJXdrO5yWoHoC6CvvuLMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UwMTI0OTI3LWFmYTctNDI2Ny04MTRkLTE2ZWM5ZTAxMzVkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAIwDQYJKoZIhvcNAQELBQADggEBAE5lKsPrKEVQjcSxW0m9TuWd JWkHoqUpeIGytY1tMkSq9lZ+1LkmpPfHHIacYkqirsQ5ZbUogv0X8k2PwWFsH/62 jdtjELn5I44SC7WFDD8nf7+JhVHJFeTQjKdX8IlD0oOJgmqiYjFReX0SDcWgazEn kIy+S3FbGkB0dOInIhgHtCpLidwOhHugAciCwbXuLVIbzxDmNopPQO7zJcpxIAHp gs7S5XmkXoHpyeQqnQpz5bG1YfdFYoEF2r+TwE0e9G7APlpWIz7zPKierNjFC1cp F4IubLUeeMii1TzUa2HErUOIaYCfT/4WakA4tK/yDVtVh0w5XWa6Lz1EmzTK2sc= -----END CERTIFICATE-----Generated at Thu Aug 21 04:59:50 2025 by rpki-client