$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa File: ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa (raw, json) Hash identifier: D/1MJUf7jO0+OsAAGklr0BKVsElXLzt9LlC5y/WWtrY= Subject key identifier: 61:00:42:CD:A2:3C:C8:DD:D7:EF:2F:C9:84:96:EA:89:B2:D4:69:F7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5B86D9AB753A01D4131671EB82C2F9358A1CFEBD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa Signing time: Fri 15 Aug 2025 15:30:16 +0000 ROA not before: Fri 15 Aug 2025 15:30:16 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:108::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:86:d9:ab:75:3a:01:d4:13:16:71:eb:82:c2:f9:35:8a:1c:fe:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 15:30:16 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=6b234f3162484cbdce35df27e225d709c37452caf16c49ba3706e2707dc0f105, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:92:b5:7d:ac:22:1a:9b:86:4c:ed:fc:e4:0f: f1:2f:1f:96:11:18:5c:23:7f:73:a7:56:ce:9e:92: 2a:98:37:d5:2f:b8:28:a9:ec:fe:42:0d:c3:5f:bc: 66:21:24:6d:31:b2:65:19:07:93:bb:ca:84:fb:6b: df:c6:18:f3:10:88:c6:5b:32:7c:67:bd:ad:ec:d6: 9e:dc:41:71:fe:d1:67:6d:0b:44:d1:98:c4:59:49: f0:f0:25:c9:79:4d:a4:50:a4:77:3b:7d:80:fc:cd: 4b:0c:95:ff:3b:6c:c4:7e:e5:40:dc:56:07:18:0c: c7:8b:76:ec:81:cc:44:29:9f:ac:50:40:98:f5:a1: 8e:84:b3:1f:c8:e3:b4:fa:8c:02:5e:7c:33:3a:bc: a4:f0:83:eb:8b:65:3f:35:e3:3e:c4:6c:17:94:1a: 68:27:cf:75:b6:04:3a:9e:e4:df:63:76:67:8b:5c: 04:04:8d:4c:4b:3d:81:d5:8f:fc:a9:31:b7:55:cd: 24:0c:ed:0d:5b:23:8c:53:8b:72:30:da:91:18:f2: 35:dd:18:16:d0:3c:8d:76:ee:cb:05:3e:f1:49:9f: ef:2a:50:23:8b:cc:93:06:67:8b:2e:38:d9:4a:94: db:5b:7a:f6:06:09:69:6b:3a:48:04:68:fc:27:e1: 34:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:00:42:CD:A2:3C:C8:DD:D7:EF:2F:C9:84:96:EA:89:B2:D4:69:F7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:108::/47 Signature Algorithm: sha256WithRSAEncryption 96:56:db:58:af:8e:19:4d:28:aa:19:dd:95:14:56:f4:0a:29: 94:66:cf:b5:e5:06:1a:40:8f:1c:9a:f2:6f:00:ed:82:66:30: ba:61:ed:67:24:96:d1:8b:3a:ea:7f:28:23:b6:bf:5b:d3:81: d4:fc:db:26:80:55:fd:b5:bd:1a:2d:f6:5b:51:84:15:03:86: d6:65:31:be:66:84:52:b6:46:b3:30:3e:d0:d8:7a:b0:8d:b0: ec:9e:45:f0:3d:a0:66:ca:47:1b:3f:18:de:44:b0:8b:07:d2: c8:ee:e0:0a:68:b2:52:6f:67:85:7c:ce:ef:ea:a3:8c:a8:ac: 21:89:19:e8:f2:ac:3d:55:45:1d:a4:0d:a1:db:2c:18:f2:a2: 67:d5:aa:47:9f:19:d1:54:95:c3:36:c8:2a:be:5f:a6:b9:68: 86:a2:4d:b7:dc:f8:90:c0:0d:dd:dd:22:ba:ea:67:3c:a0:84: 76:04:1c:ff:87:d0:d2:da:82:df:40:4f:0d:87:29:a9:03:bf: 36:57:e5:57:8a:aa:86:71:8f:30:32:72:c2:4a:4b:cd:79:42: 83:41:0a:ed:e0:44:fa:34:4c:7a:19:e8:17:c9:64:b4:8c:08: cc:64:d4:15:b6:50:ee:a6:60:c0:7b:08:59:fc:3d:b4:75:38: de:21:10:1e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW4bZq3U6AdQTFnHrgsL5NYoc/r0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MTUzMDE2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjIzNGYzMTYyNDg0Y2JkY2UzNWRmMjdlMjI1ZDcwOWMz NzQ1MmNhZjE2YzQ5YmEzNzA2ZTI3MDdkYzBmMTA1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGkrV9rCIam4ZM7fzkD/EvH5YRGFwjf3OnVs6ekiqYN9Uv uCip7P5CDcNfvGYhJG0xsmUZB5O7yoT7a9/GGPMQiMZbMnxnva3s1p7cQXH+0Wdt C0TRmMRZSfDwJcl5TaRQpHc7fYD8zUsMlf87bMR+5UDcVgcYDMeLduyBzEQpn6xQ QJj1oY6Esx/I47T6jAJefDM6vKTwg+uLZT814z7EbBeUGmgnz3W2BDqe5N9jdmeL XAQEjUxLPYHVj/ypMbdVzSQM7Q1bI4xTi3Iw2pEY8jXdGBbQPI127ssFPvFJn+8q UCOLzJMGZ4suONlKlNtbevYGCWlrOkgEaPwn4TQdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYQBCzaI8yN3X7y/JhJbqibLUafcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjZDRlNDA3LTFlYjAtNDRmMi1hM2E3LWQ0NzE0Y2E2M2FlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQgwDQYJKoZIhvcNAQELBQADggEBAJZW21ivjhlNKKoZ3ZUUVvQK KZRmz7XlBhpAjxya8m8A7YJmMLph7WckltGLOup/KCO2v1vTgdT82yaAVf21vRot 9ltRhBUDhtZlMb5mhFK2RrMwPtDYerCNsOyeRfA9oGbKRxs/GN5EsIsH0sju4Apo slJvZ4V8zu/qo4yorCGJGejyrD1VRR2kDaHbLBjyomfVqkefGdFUlcM2yCq+X6a5 aIaiTbfc+JDADd3dIrrqZzyghHYEHP+H0NLagt9ATw2HKakDvzZX5VeKqoZxjzAy csJKS815QoNBCu3gRPo0THoZ6BfJZLSMCMxk1BW2UO6mYMB7CFn8PbR1ON4hEB4= -----END CERTIFICATE-----Generated at Sat Aug 23 08:12:47 2025 by rpki-client