$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa File: e1f114b0-d940-4fa0-8376-bac93d2868fc.roa (raw, json) Hash identifier: YolL6e366o8Jb5B2LGUyPIWz/tsRYUDd/5R6rUpmKFY= Subject key identifier: C5:A2:22:96:AD:90:2B:5C:8A:F8:BF:DC:A6:52:4D:29:7C:EF:D4:86 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 181873B77B6E07C21572F94C94AE6C623219560B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa Signing time: Sat 09 Aug 2025 00:10:43 +0000 ROA not before: Sat 09 Aug 2025 00:10:43 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:18:73:b7:7b:6e:07:c2:15:72:f9:4c:94:ae:6c:62:32:19:56:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 9 00:10:43 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=1a4669193caed3a79eb3d52dc76f54fb8a2e3cf0b325cc82845ecb3478d4506e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8a:57:23:16:04:53:cb:3a:38:45:87:50:3b: 45:64:76:7c:32:d3:f0:b0:09:7c:1c:33:59:53:69: 7c:7a:58:35:ae:23:10:71:90:22:29:c7:96:10:7d: 72:8f:fc:e7:3b:21:75:1d:34:ee:6a:6c:b4:72:2e: 85:bb:c0:06:ee:ab:a5:96:51:07:fb:cf:ba:b4:30: 98:26:8a:71:d0:2b:14:56:16:5a:48:aa:4a:19:d6: 17:1d:7e:82:ca:91:db:f7:e4:c6:99:a9:b0:26:be: ac:eb:93:27:9e:91:c3:26:51:85:b4:0e:27:74:4e: dc:d5:7b:f7:d1:62:a8:90:80:89:e5:15:74:bc:d9: e7:1b:3f:f7:c6:fb:94:3f:79:14:68:2a:84:5a:3b: 86:b2:52:e8:22:7d:05:66:e7:43:b8:e9:34:5d:09: 93:4b:4c:77:3f:79:26:21:26:79:5c:f0:d5:f7:56: 99:8e:94:4a:34:8c:9f:89:19:75:db:d6:55:91:03: b6:72:0f:e1:78:35:af:0b:e3:12:ce:08:71:ea:77: 7c:ed:44:ae:27:50:5f:9e:02:6c:e9:5d:95:dd:c8: 98:55:59:9e:64:ab:bd:4e:61:50:4f:79:9a:ba:8a: e2:53:24:e1:ce:2b:42:b9:8f:63:2e:0c:90:60:a1: 5f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A2:22:96:AD:90:2B:5C:8A:F8:BF:DC:A6:52:4D:29:7C:EF:D4:86 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 5e:de:91:e8:b6:29:76:02:93:c7:58:4e:d7:bf:47:1c:62:e1: 82:d4:ba:ae:c7:dc:0a:0f:5f:e1:77:a7:33:a2:52:04:53:b2: 37:38:1c:9e:62:02:a2:a1:f2:0c:f0:fe:f6:16:b8:4a:f8:7d: ca:46:26:87:f8:51:59:ce:45:08:a0:a9:62:d9:54:63:16:70: b8:4e:21:23:35:05:4d:ef:ad:43:74:33:bc:cc:11:a7:34:24: 5e:a4:3e:c5:1b:74:4b:5c:ab:4a:76:0b:6d:b8:15:a0:46:3d: 74:2f:05:8f:9c:76:54:f9:83:5e:a0:79:b5:d9:9a:06:f8:b1: 8a:03:e3:9f:83:c8:c3:6e:ac:03:62:1a:1e:af:31:93:5e:86: ff:80:ac:da:8c:a0:a7:97:e4:ef:cf:e2:eb:4d:47:7f:03:fe: 11:5e:1b:c8:b5:ac:35:a4:33:19:e3:1b:89:67:94:36:89:8c: 10:08:68:a3:76:1c:c4:5c:b8:5c:01:e1:17:3d:e4:16:29:83: ae:95:2c:93:f9:41:c9:ed:9f:1b:4d:d2:45:47:49:a7:04:b9: 93:cb:f2:58:40:c7:22:ce:15:db:ee:48:af:01:48:cc:93:44: 94:b2:4c:6c:7e:51:e9:41:66:d7:28:b4:9b:3a:2b:7f:1b:40: 8b:99:dd:a9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGBhzt3tuB8IVcvlMlK5sYjIZVgswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA5MDAxMDQzWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTQ2NjkxOTNjYWVkM2E3OWViM2Q1MmRjNzZmNTRmYjhh MmUzY2YwYjMyNWNjODI4NDVlY2IzNDc4ZDQ1MDZlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClilcjFgRTyzo4RYdQO0Vkdnwy0/CwCXwcM1lTaXx6WDWu IxBxkCIpx5YQfXKP/Oc7IXUdNO5qbLRyLoW7wAbuq6WWUQf7z7q0MJgminHQKxRW FlpIqkoZ1hcdfoLKkdv35MaZqbAmvqzrkyeekcMmUYW0Did0TtzVe/fRYqiQgInl FXS82ecbP/fG+5Q/eRRoKoRaO4ayUugifQVm50O46TRdCZNLTHc/eSYhJnlc8NX3 VpmOlEo0jJ+JGXXb1lWRA7ZyD+F4Na8L4xLOCHHqd3ztRK4nUF+eAmzpXZXdyJhV WZ5kq71OYVBPeZq6iuJTJOHOK0K5j2MuDJBgoV/1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUxaIilq2QK1yK+L/cplJNKXzv1IYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxZjExNGIwLWQ5NDAtNGZhMC04Mzc2LWJhYzkzZDI4NjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAXt6R6LYpdgKTx1hO179HHGLh gtS6rsfcCg9f4XenM6JSBFOyNzgcnmICoqHyDPD+9ha4Svh9ykYmh/hRWc5FCKCp YtlUYxZwuE4hIzUFTe+tQ3QzvMwRpzQkXqQ+xRt0S1yrSnYLbbgVoEY9dC8Fj5x2 VPmDXqB5tdmaBvixigPjn4PIw26sA2IaHq8xk16G/4Cs2oygp5fk78/i601HfwP+ EV4byLWsNaQzGeMbiWeUNomMEAhoo3YcxFy4XAHhFz3kFimDrpUsk/lBye2fG03S RUdJpwS5k8vyWEDHIs4V2+5IrwFIzJNElLJMbH5R6UFm1yi0mzorfxtAi5ndqQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:47:58 2025 by rpki-client