$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e5c3b151-f08e-44bd-b446-9a53733036dc.roa File: e5c3b151-f08e-44bd-b446-9a53733036dc.roa (raw, json) Hash identifier: L9g91vL0mPyGfDZnno09B0B5NNoX8Bt8/9fa7w92HJs= Subject key identifier: 00:2A:B0:5A:50:44:C4:D6:3F:5D:31:E2:42:4D:01:D4:C3:07:9B:14 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 746F8C000BA49733B68E8A9BE8FB5FAF4EF46199 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e5c3b151-f08e-44bd-b446-9a53733036dc.roa Signing time: Fri 15 Aug 2025 22:37:01 +0000 ROA not before: Fri 15 Aug 2025 22:37:01 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:6f:8c:00:0b:a4:97:33:b6:8e:8a:9b:e8:fb:5f:af:4e:f4:61:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 22:37:01 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=66cd6420f338c687d8f4005d73258bd2be619c332eeedda7735f00b43562556e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7b:60:29:05:47:ff:95:be:bb:1f:ec:84:b9: 91:14:20:0a:85:e5:83:9b:2a:25:c6:7e:b0:35:e5: 9b:72:4e:a8:66:5f:17:32:03:0f:50:a1:97:b2:2a: 09:bf:14:8d:f8:77:5d:03:ce:a4:8f:d3:c7:c8:5c: 88:b8:1a:11:f1:f7:d7:b8:1b:38:50:9c:be:6a:e3: 8a:e2:92:ac:82:4c:b1:68:72:75:22:6d:52:cf:f8: 22:ca:9a:93:97:43:9e:3c:64:a1:d4:19:bd:ad:73: d8:57:d1:61:cd:4b:2c:b5:9b:d1:71:bd:68:e8:45: 16:5a:4c:27:03:bc:e6:f6:0d:d3:23:f3:7d:65:c3: 4d:d4:f6:e9:64:41:77:f5:57:f2:9e:d5:71:08:00: d0:ba:e7:2b:71:a8:46:c0:5a:d2:b4:4d:4d:f8:af: e4:c0:8b:4f:10:1c:f6:2e:32:5c:1a:9d:4a:0e:44: 6c:18:76:74:ec:13:77:25:f7:49:28:5b:03:d1:30: 51:05:d5:5f:3d:c2:4f:ec:9b:b3:e0:f4:f2:19:cc: 7c:bc:d0:a1:b8:e9:6b:b5:05:69:1f:92:b9:bf:17: 1f:88:ba:d2:76:55:ce:91:a3:47:d1:4a:1f:d8:23: 80:9a:e1:47:8f:35:61:68:4e:0e:6a:9e:6a:7b:b4: 43:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2A:B0:5A:50:44:C4:D6:3F:5D:31:E2:42:4D:01:D4:C3:07:9B:14 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e5c3b151-f08e-44bd-b446-9a53733036dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6103::/48 Signature Algorithm: sha256WithRSAEncryption 1f:8a:ac:40:6e:13:d9:f3:80:17:27:36:4d:6a:50:7d:07:44: 87:7b:d3:81:67:ed:d7:e0:ff:58:da:66:cc:bf:01:77:00:97: 47:87:5d:b5:c6:57:a4:cd:0b:45:25:19:5a:73:bc:df:96:93: ff:21:8d:63:2c:39:ab:2e:dd:94:a1:48:86:d9:03:92:d3:51: 2f:56:e5:94:2b:b6:b2:dd:bc:be:e6:3d:21:74:f8:2c:eb:42: f8:5b:f3:83:a7:3a:c8:cf:34:f7:f0:69:2d:bb:fb:61:e2:20: 31:de:57:1c:28:0f:74:73:3d:72:2b:4c:b3:98:44:2d:3f:4b: 26:0d:5b:cd:50:50:71:3c:8f:1b:a8:17:64:7b:30:6b:e3:d9: 2d:7d:6a:98:9f:b3:96:25:fb:97:b6:52:7b:df:af:4b:2f:08: 96:38:5e:85:d6:2d:26:76:c5:13:16:52:c6:6b:26:4d:f4:64: 49:ee:d0:41:91:7c:a0:f6:46:be:8e:a3:41:24:5a:6d:11:4b: 5b:36:71:b4:62:10:79:e3:70:9a:6e:ef:6e:6a:f4:65:9f:9d: 65:11:29:d3:23:62:b7:ff:23:05:5c:b6:a1:06:d5:54:ae:bb: bc:ff:15:29:87:bc:91:3d:36:c2:4b:c5:e7:61:0c:3f:b2:2e: 33:b1:48:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdG+MAAuklzO2joqb6Ptfr070YZkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjIzNzAxWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NmNkNjQyMGYzMzhjNjg3ZDhmNDAwNWQ3MzI1OGJkMmJl NjE5YzMzMmVlZWRkYTc3MzVmMDBiNDM1NjI1NTZlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZe2ApBUf/lb67H+yEuZEUIAqF5YObKiXGfrA15ZtyTqhm XxcyAw9QoZeyKgm/FI34d10DzqSP08fIXIi4GhHx99e4GzhQnL5q44rikqyCTLFo cnUibVLP+CLKmpOXQ548ZKHUGb2tc9hX0WHNSyy1m9FxvWjoRRZaTCcDvOb2DdMj 831lw03U9ulkQXf1V/Ke1XEIANC65ytxqEbAWtK0TU34r+TAi08QHPYuMlwanUoO RGwYdnTsE3cl90koWwPRMFEF1V89wk/sm7Pg9PIZzHy80KG46Wu1BWkfkrm/Fx+I utJ2Vc6Ro0fRSh/YI4Ca4UePNWFoTg5qnmp7tEO5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUACqwWlBExNY/XTHiQk0B1MMHmxQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2U1YzNiMTUxLWYwOGUtNDRiZC1iNDQ2LTlhNTM3MzMwMzZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQMwDQYJKoZIhvcNAQELBQADggEBAB+KrEBuE9nzgBcnNk1qUH0H RId704Fn7dfg/1jaZsy/AXcAl0eHXbXGV6TNC0UlGVpzvN+Wk/8hjWMsOasu3ZSh SIbZA5LTUS9W5ZQrtrLdvL7mPSF0+CzrQvhb84OnOsjPNPfwaS27+2HiIDHeVxwo D3RzPXIrTLOYRC0/SyYNW81QUHE8jxuoF2R7MGvj2S19apifs5Yl+5e2Unvfr0sv CJY4XoXWLSZ2xRMWUsZrJk30ZEnu0EGRfKD2Rr6Oo0EkWm0RS1s2cbRiEHnjcJpu 725q9GWfnWURKdMjYrf/IwVctqEG1VSuu7z/FSmHvJE9NsJLxedhDD+yLjOxSFs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:11 2025 by rpki-client