$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa File: ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa (raw, json) Hash identifier: 8vfCDUUPhC2bP2kUy8Typ0+L+Ti/2w6lD41FQ8JAv4s= Subject key identifier: 99:9A:C9:23:3C:BC:97:F6:AB:B4:52:E3:D3:8F:AE:4D:EC:47:5D:ED Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 65D41F32F445164D89BD36DA579E7DFC0E7E8B47 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa Signing time: Tue 24 Jun 2025 15:00:02 +0000 ROA not before: Tue 24 Jun 2025 15:00:02 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:108::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d4:1f:32:f4:45:16:4d:89:bd:36:da:57:9e:7d:fc:0e:7e:8b:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 24 15:00:02 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=e29375a773687bdc1aaa72ab0799810b61c57b481c6985bcf2df12d42dc060e4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:77:52:d7:87:5e:97:20:90:06:1a:bb:78:68: e7:bc:76:63:05:3a:4d:8c:a7:8d:d6:6f:af:a6:f5: 89:c2:6f:e3:9f:03:cd:86:7e:88:5b:10:d4:56:e5: d6:ca:e6:b1:3e:00:7c:84:04:45:e1:0a:f3:35:48: 5f:33:c2:5b:83:a2:de:34:c8:fd:70:c5:68:c0:a2: c2:9c:39:28:27:e4:e3:25:9a:9d:23:7f:92:36:b9: 10:75:f2:74:e3:bf:0c:a3:e5:e6:98:f4:5a:e6:9b: 61:2a:58:f8:25:57:55:f7:85:0c:5d:ad:5f:d0:43: ca:52:5c:d1:15:9b:28:e4:3a:fc:92:a8:29:21:25: 9c:4b:e7:61:33:bf:ba:16:d0:75:a9:c7:b4:b2:a9: 82:39:03:30:6f:22:e5:73:43:05:ca:f7:3d:02:da: cc:53:e7:c7:46:74:1c:37:76:cf:d4:cb:36:9b:62: 35:85:94:b9:47:cb:e5:98:05:cf:b4:89:dd:af:26: bc:95:58:46:b6:48:4a:ca:b5:69:a0:71:ed:21:e1: f2:a7:20:c9:17:23:94:21:43:29:46:4b:28:97:f4: d6:8d:3c:19:24:a1:86:2f:7a:73:48:e5:1a:b2:18: d9:a3:6c:9d:13:0e:ef:fc:13:3d:8c:59:c9:74:c3: 36:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:9A:C9:23:3C:BC:97:F6:AB:B4:52:E3:D3:8F:AE:4D:EC:47:5D:ED X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:108::/47 Signature Algorithm: sha256WithRSAEncryption 1e:f8:91:6d:f3:2d:86:d7:cd:f0:1e:be:14:c5:5c:8e:c4:84: 6c:e1:17:36:4d:93:4f:48:67:2c:29:41:64:c2:9d:e1:78:25: c9:8e:c9:49:ab:78:82:c2:bc:24:a9:3e:23:40:5b:cb:39:f9: 68:30:7b:82:93:f8:cd:44:ad:85:8b:3a:54:db:1a:2b:7d:4e: ef:64:fb:20:8b:0b:9a:2a:d0:67:50:59:cf:e2:7c:69:7f:7e: db:e0:ba:72:cc:bd:9d:df:a5:9f:34:32:25:37:c7:61:4c:f4: b9:43:30:65:81:e0:aa:9c:f7:5a:12:67:02:93:b0:ba:bb:7f: da:1e:8b:a0:e6:d0:6a:bb:71:d9:5c:e7:54:76:b9:e7:cc:6d: 62:36:cf:34:7d:b6:a3:a8:d0:c9:ad:3b:42:18:64:93:f9:9b: 7c:6c:f2:1c:ad:ba:ca:51:23:b1:a5:f1:d5:60:d9:db:40:a1: 6a:43:5a:a5:61:9b:84:9a:f4:fe:ad:17:44:8e:7e:57:9d:3d: d4:0f:b9:39:ab:37:df:2b:cb:e5:61:26:e6:45:62:46:73:51: 0f:5b:26:e6:47:d2:7c:69:53:ef:d7:40:d5:d7:4f:f3:a1:eb: 55:68:a3:3a:e3:e2:53:b9:22:30:50:ff:3b:79:81:ec:fc:1b: cc:63:1e:82 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZdQfMvRFFk2JvTbaV559/A5+i0cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjI0MTUwMDAyWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjkzNzVhNzczNjg3YmRjMWFhYTcyYWIwNzk5ODEwYjYx YzU3YjQ4MWM2OTg1YmNmMmRmMTJkNDJkYzA2MGU0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTd1LXh16XIJAGGrt4aOe8dmMFOk2Mp43Wb6+m9YnCb+Of A82GfohbENRW5dbK5rE+AHyEBEXhCvM1SF8zwluDot40yP1wxWjAosKcOSgn5OMl mp0jf5I2uRB18nTjvwyj5eaY9Frmm2EqWPglV1X3hQxdrV/QQ8pSXNEVmyjkOvyS qCkhJZxL52Ezv7oW0HWpx7SyqYI5AzBvIuVzQwXK9z0C2sxT58dGdBw3ds/Uyzab YjWFlLlHy+WYBc+0id2vJryVWEa2SErKtWmgce0h4fKnIMkXI5QhQylGSyiX9NaN PBkkoYYvenNI5RqyGNmjbJ0TDu/8Ez2MWcl0wzZFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmZrJIzy8l/artFLj04+uTexHXe0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjZDRlNDA3LTFlYjAtNDRmMi1hM2E3LWQ0NzE0Y2E2M2FlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQgwDQYJKoZIhvcNAQELBQADggEBAB74kW3zLYbXzfAevhTFXI7E hGzhFzZNk09IZywpQWTCneF4JcmOyUmreILCvCSpPiNAW8s5+Wgwe4KT+M1ErYWL OlTbGit9Tu9k+yCLC5oq0GdQWc/ifGl/ftvgunLMvZ3fpZ80MiU3x2FM9LlDMGWB 4Kqc91oSZwKTsLq7f9oei6Dm0Gq7cdlc51R2uefMbWI2zzR9tqOo0MmtO0IYZJP5 m3xs8hytuspRI7Gl8dVg2dtAoWpDWqVhm4Sa9P6tF0SOfledPdQPuTmrN98ry+Vh JuZFYkZzUQ9bJuZH0nxpU+/XQNXXT/Oh61Voozrj4lO5IjBQ/zt5gez8G8xjHoI= -----END CERTIFICATE-----Generated at Sun Jun 29 01:55:02 2025 by rpki-client