$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa File: ee2c3586-4c23-4045-b98b-d28000a3bd55.roa (raw, json) Hash identifier: rKPPU6Vun79doV5ZZN2gSYEFYNRBiQollqv8UMhXIbo= Subject key identifier: 38:A7:5A:17:89:94:5E:72:77:29:FD:A8:0B:06:BC:82:E2:20:53:4B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5034012C7432707C7CECF3934BBF068AAD3B9F16 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa Signing time: Wed 25 Jun 2025 00:50:06 +0000 ROA not before: Wed 25 Jun 2025 00:50:06 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:34:01:2c:74:32:70:7c:7c:ec:f3:93:4b:bf:06:8a:ad:3b:9f:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 25 00:50:06 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=cc246de6f4999d91d07bc7cfbc6c13a1c4b842c7a72efb7c2b48506f713cf953, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:89:99:61:a4:bc:e4:90:75:38:48:4c:33:9d: af:dc:87:bf:fe:b4:98:4f:6b:26:19:af:b4:e8:ec: 08:dd:8b:8f:73:15:bc:a6:83:bd:2e:e6:50:bf:12: c6:54:29:d0:a6:e8:d9:57:c5:e6:77:a6:2e:cf:bb: 67:ea:3f:80:69:59:b0:af:30:6a:1d:61:96:e8:59: f0:fa:1c:f0:5c:5d:c1:6f:60:fe:8e:e1:c9:89:b4: aa:71:7a:8b:09:eb:a6:3f:81:1c:65:45:31:9a:ae: bf:59:d2:c8:cc:33:00:98:3f:d4:a9:a9:f2:45:7c: fd:2c:ce:13:91:12:74:bf:26:52:ff:2b:9a:d5:34: 4f:41:d6:ad:60:d7:64:79:c3:54:ef:f4:a9:ae:ed: bf:64:25:7b:ab:79:6d:07:9d:25:5d:65:74:be:9b: f2:2c:e5:d8:fa:15:35:a5:6b:6a:20:1d:a2:ee:01: 6f:33:d8:db:a1:97:06:45:88:5b:d7:6b:aa:57:23: d0:65:2c:f2:4c:11:e1:a5:c0:6c:9e:51:93:00:96: de:95:d3:bf:ce:da:3e:12:9e:82:78:a3:3a:f9:7d: 9e:44:a4:76:cb:53:14:ff:59:e9:e2:90:b6:44:aa: e6:72:e4:ed:15:ab:2c:3b:c8:9e:a2:04:90:2d:6b: 57:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A7:5A:17:89:94:5E:72:77:29:FD:A8:0B:06:BC:82:E2:20:53:4B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 85:48:0e:a3:5c:72:47:5a:14:a4:3c:4d:f5:15:ad:77:53:d6: db:c5:ec:a2:ac:c2:5c:4e:be:d4:18:df:3f:19:2b:a7:a6:b6: 74:73:20:54:3d:c0:0a:98:97:28:74:5c:69:1e:11:c0:bb:10: 23:34:22:17:6e:fc:2c:73:38:ff:13:6c:32:bd:69:fb:90:1a: 25:ff:0e:8c:37:71:91:ed:1b:11:d3:06:51:48:16:19:61:d4: 61:23:53:34:e0:58:33:97:e0:ec:86:cd:c1:de:d7:7b:eb:c3: e8:d0:a9:53:32:06:95:fd:fc:41:2a:66:4d:b8:1a:b9:77:41: 24:5c:93:e2:3d:f1:78:fe:99:70:62:05:9b:f0:e5:5e:9e:5e: 25:ed:7f:43:e1:9e:1d:f1:2a:a1:fa:c6:c9:4d:64:3f:84:59: 18:54:58:5b:cf:41:d7:96:2c:1d:0d:1f:c1:df:ed:b0:aa:62: 54:e3:fb:94:2f:da:78:bd:13:b9:f7:5c:9e:c1:4e:ec:12:c4: 4b:69:54:27:17:10:4d:f5:04:4c:7b:af:b1:3c:54:51:5a:b1: 05:e7:ca:0f:d6:53:15:aa:9d:6a:b3:1c:85:31:a2:5e:0b:0b: 93:30:1d:d1:9a:d3:65:0c:71:ea:b3:07:5c:6f:b5:e1:37:c1: 80:6b:06:7d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUDQBLHQycHx87POTS78Giq07nxYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjI1MDA1MDA2WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzI0NmRlNmY0OTk5ZDkxZDA3YmM3Y2ZiYzZjMTNhMWM0 Yjg0MmM3YTcyZWZiN2MyYjQ4NTA2ZjcxM2NmOTUzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYiZlhpLzkkHU4SEwzna/ch7/+tJhPayYZr7To7Ajdi49z Fbymg70u5lC/EsZUKdCm6NlXxeZ3pi7Pu2fqP4BpWbCvMGodYZboWfD6HPBcXcFv YP6O4cmJtKpxeosJ66Y/gRxlRTGarr9Z0sjMMwCYP9SpqfJFfP0szhOREnS/JlL/ K5rVNE9B1q1g12R5w1Tv9Kmu7b9kJXureW0HnSVdZXS+m/Is5dj6FTWla2ogHaLu AW8z2NuhlwZFiFvXa6pXI9BlLPJMEeGlwGyeUZMAlt6V07/O2j4SnoJ4ozr5fZ5E pHbLUxT/WenikLZEquZy5O0Vqyw7yJ6iBJAta1fdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOKdaF4mUXnJ3Kf2oCwa8guIgU0swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VlMmMzNTg2LTRjMjMtNDA0NS1iOThiLWQyODAwMGEzYmQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBAIVIDqNcckdaFKQ8TfUVrXdT 1tvF7KKswlxOvtQY3z8ZK6emtnRzIFQ9wAqYlyh0XGkeEcC7ECM0Ihdu/CxzOP8T bDK9afuQGiX/Dow3cZHtGxHTBlFIFhlh1GEjUzTgWDOX4OyGzcHe13vrw+jQqVMy BpX9/EEqZk24Grl3QSRck+I98Xj+mXBiBZvw5V6eXiXtf0Phnh3xKqH6xslNZD+E WRhUWFvPQdeWLB0NH8Hf7bCqYlTj+5Qv2ni9E7n3XJ7BTuwSxEtpVCcXEE31BEx7 r7E8VFFasQXnyg/WUxWqnWqzHIUxol4LC5MwHdGa02UMceqzB1xvteE3wYBrBn0= -----END CERTIFICATE-----Generated at Wed Jul 2 14:47:39 2025 by rpki-client