$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ae8e0646-a3de-4f6f-9f98-8689213b0505.roa File: ae8e0646-a3de-4f6f-9f98-8689213b0505.roa (raw, json) Hash identifier: 8VOajFvwRrUgP3AeEou6AS5ARU3U24IYusBLIFX68T8= Subject key identifier: E5:DF:22:D0:08:E8:4A:EA:3C:C4:2F:30:D4:F9:FD:9C:63:87:0A:DA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2C0EFF093BBC9565A869F234E17C965ECE51BF88 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ae8e0646-a3de-4f6f-9f98-8689213b0505.roa Signing time: Mon 16 Jun 2025 19:30:57 +0000 ROA not before: Mon 16 Jun 2025 19:30:57 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ea00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:0e:ff:09:3b:bc:95:65:a8:69:f2:34:e1:7c:96:5e:ce:51:bf:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:30:57 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=d4d4af317bf61357ec14e805d65744aadd390f5d53fe1ad2e117fff54be0b8b6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d3:e8:46:70:28:72:7d:24:09:a7:48:f8:a3: 63:66:76:d3:91:8d:72:46:5e:33:3c:fc:b2:4c:00: e6:4f:25:75:d3:82:01:3c:bf:b9:af:15:5b:15:a3: 87:f1:62:34:a0:a4:02:8d:e6:23:bd:bf:2f:c7:35: f8:be:af:b8:37:f3:4b:cb:e6:63:48:c7:9d:be:10: e1:0f:8d:a6:a1:8c:bf:57:a0:7a:94:62:c3:98:e9: f2:90:7c:93:a3:04:7d:59:ba:5d:c2:86:11:98:b1: b3:1d:c1:2c:f9:bb:f9:d0:52:82:69:8c:70:92:e4: 0d:88:ea:3d:ca:32:55:15:71:4f:93:cf:51:e3:6c: 22:c2:7f:88:c2:ff:cb:f7:28:0e:72:2e:25:89:aa: 61:95:05:04:d3:b6:c6:f7:60:73:25:43:1e:0b:2f: f7:ec:c2:c9:7b:f5:f7:57:13:2a:35:99:03:ae:df: 5d:5e:05:c5:ce:37:df:76:a9:4b:06:2f:53:56:d5: f4:8f:8f:16:85:5c:a3:fb:a2:74:4d:fa:f8:ff:3e: 31:db:1b:b0:53:b3:46:40:e6:7b:2b:4f:23:65:4d: 62:4f:d9:dd:e9:47:f0:0d:01:2c:e1:c3:d6:e3:fb: aa:d6:f2:7f:41:d7:04:ee:44:b0:e7:f2:96:f9:19: f8:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DF:22:D0:08:E8:4A:EA:3C:C4:2F:30:D4:F9:FD:9C:63:87:0A:DA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ae8e0646-a3de-4f6f-9f98-8689213b0505.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 3e:4e:1c:99:04:b4:ce:8d:c5:36:66:b6:55:24:7c:f4:2c:ac: ab:02:13:3e:63:be:d0:ea:da:4c:d4:ee:be:14:55:c6:9b:b3: e4:22:d9:c8:fc:d5:83:87:04:4a:1f:a7:d8:58:86:f1:c2:20: 01:10:94:70:cd:d2:b2:06:5f:09:e9:ce:7f:e0:77:fb:e4:47: 5a:46:40:f2:84:fb:60:3a:5e:a1:e8:16:43:45:b0:3e:e6:35: 52:7c:ce:b4:1c:d5:bd:66:43:17:2b:c0:98:b2:d3:92:23:fb: 71:9a:63:82:05:22:bf:9d:f9:d6:29:c2:d4:d1:4c:f4:f9:0f: 05:ae:42:35:53:73:6c:2d:8e:fa:29:be:1c:c1:74:24:21:dd: 9b:4d:08:29:bb:1f:e8:87:41:00:6c:64:0c:87:6d:01:de:a3: 00:02:ae:4c:77:3e:c2:59:2a:3a:76:cf:9d:06:75:28:d5:3a: bc:7b:2f:ad:b3:c8:84:b7:43:9e:77:b5:de:4b:d3:43:a2:18: c0:21:cc:1a:d7:9d:71:49:ba:de:39:b7:cf:6c:ff:a8:28:6b: 02:63:68:1f:6b:4e:76:30:6f:dd:c8:bf:4f:f3:fa:56:1b:94: d0:92:b3:40:c4:5b:39:d3:81:b3:4a:09:df:2e:92:8c:43:73: bd:92:6a:13 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULA7/CTu8lWWoafI04XyWXs5Rv4gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkzMDU3WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNGQ0YWYzMTdiZjYxMzU3ZWMxNGU4MDVkNjU3NDRhYWRk MzkwZjVkNTNmZTFhZDJlMTE3ZmZmNTRiZTBiOGI2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO0+hGcChyfSQJp0j4o2NmdtORjXJGXjM8/LJMAOZPJXXT ggE8v7mvFVsVo4fxYjSgpAKN5iO9vy/HNfi+r7g380vL5mNIx52+EOEPjaahjL9X oHqUYsOY6fKQfJOjBH1Zul3ChhGYsbMdwSz5u/nQUoJpjHCS5A2I6j3KMlUVcU+T z1HjbCLCf4jC/8v3KA5yLiWJqmGVBQTTtsb3YHMlQx4LL/fswsl79fdXEyo1mQOu 311eBcXON992qUsGL1NW1fSPjxaFXKP7onRN+vj/PjHbG7BTs0ZA5nsrTyNlTWJP 2d3pR/ANASzhw9bj+6rW8n9B1wTuRLDn8pb5GfgNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5d8i0AjoSuo8xC8w1Pn9nGOHCtowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FlOGUwNjQ2LWEzZGUtNGY2Zi05Zjk4LTg2ODkyMTNiMDUwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76jANBgkqhkiG9w0BAQsFAAOCAQEAPk4cmQS0zo3FNma2VSR89Cys qwITPmO+0OraTNTuvhRVxpuz5CLZyPzVg4cESh+n2FiG8cIgARCUcM3SsgZfCenO f+B3++RHWkZA8oT7YDpeoegWQ0WwPuY1UnzOtBzVvWZDFyvAmLLTkiP7cZpjggUi v5351inC1NFM9PkPBa5CNVNzbC2O+im+HMF0JCHdm00IKbsf6IdBAGxkDIdtAd6j AAKuTHc+wlkqOnbPnQZ1KNU6vHsvrbPIhLdDnne13kvTQ6IYwCHMGtedcUm63jm3 z2z/qChrAmNoH2tOdjBv3ci/T/P6VhuU0JKzQMRbOdOBs0oJ3y6SjENzvZJqEw== -----END CERTIFICATE-----Generated at Sun Jun 29 08:52:48 2025 by rpki-client