$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa File: ee2c3586-4c23-4045-b98b-d28000a3bd55.roa (raw, json) Hash identifier: teiiqfYpVtdv28Xa74B38TbPnYj6DavZunrADSV5ivM= Subject key identifier: 61:88:23:80:2C:10:DA:C5:46:B6:BE:CB:74:4F:3C:44:26:B6:9C:71 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3E1EFE97ADC35BD8F138C409F01B8EEF922BBED4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa Signing time: Fri 15 Aug 2025 15:30:08 +0000 ROA not before: Fri 15 Aug 2025 15:30:08 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:1e:fe:97:ad:c3:5b:d8:f1:38:c4:09:f0:1b:8e:ef:92:2b:be:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 15:30:08 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=8a6f1800b7199bdd278307a8d80a73f335ff35c937ae60f3a7b32390d6b571cb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:07:78:66:68:74:1e:28:e8:83:b5:0f:18:d2: 7d:f4:9e:f4:c7:ae:07:55:3b:ec:56:59:ce:2e:59: 3f:3a:c3:5e:46:6a:fc:46:3c:7b:ed:0c:ab:ea:30: b0:79:cf:42:07:a4:e9:a0:87:ae:08:e9:ab:21:a5: 37:9e:d0:e9:95:50:85:2d:a2:4f:85:ca:79:b4:64: f4:ba:33:0f:93:aa:06:f7:e2:ce:09:59:28:6a:47: dd:3c:ab:89:b4:c3:9a:14:53:7d:52:6a:56:5a:f0: 80:48:0f:86:9e:0c:d0:26:b0:70:4e:86:db:b0:ed: 18:76:c8:bb:4d:9e:9a:56:1c:6b:c2:20:72:f9:27: 91:3b:71:c9:15:52:8f:cf:e8:4c:31:5e:97:74:48: e4:a8:76:80:2e:68:75:50:7f:a5:ee:42:7e:45:80: 7d:f2:b9:1f:af:23:57:f1:dd:27:ef:68:e7:76:a5: a7:9e:27:fd:8e:32:d2:25:9b:39:d9:77:af:e7:69: 90:c4:1d:65:a1:2c:c3:ce:a0:4d:ed:95:64:8f:a5: ed:ab:75:21:7b:fa:08:7e:39:f2:d6:d9:44:b6:23: 93:11:3f:a0:c0:84:34:cf:ae:47:35:72:54:21:82: dc:f3:25:0c:84:96:e7:87:7c:2f:ad:c8:fa:62:d5: f8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:88:23:80:2C:10:DA:C5:46:B6:BE:CB:74:4F:3C:44:26:B6:9C:71 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 26:8f:99:d3:f8:7d:da:b5:7a:e8:41:56:8f:fa:1d:0f:32:90: 3f:40:58:75:2f:c2:2f:a9:fd:76:73:1b:ec:95:09:d9:a6:6c: 8b:d7:d3:3b:30:47:d9:1a:5f:06:09:f2:35:ba:ad:d9:7b:0d: 74:7f:93:0b:ae:d8:e1:9c:86:0d:9c:21:60:e6:ab:cf:84:89: 75:3f:99:8d:16:5b:9e:ba:e1:a5:05:05:37:c0:63:81:28:28: 6b:18:21:46:57:95:92:25:77:e9:6c:10:9e:0c:23:2c:c2:fe: 46:76:19:8a:c8:81:e7:ef:21:5c:bd:65:b7:36:3d:00:4c:ef: a0:e7:ad:98:1a:da:b5:fa:5b:21:90:8f:b2:13:70:a6:e9:95: 83:ec:3b:e4:6c:b6:10:19:12:34:78:36:89:4d:0d:26:01:99: f9:75:79:f9:52:c4:35:c1:a1:dc:31:7a:3d:e1:ad:1e:c2:ec: 64:59:1e:d5:f7:d3:0a:ac:0f:5f:57:e3:59:9c:bf:87:02:41: 52:89:8f:e0:a4:9a:50:c5:f8:e9:9c:a4:4d:63:8e:2f:b9:1f: e0:da:8d:07:21:21:b8:51:e5:44:af:d2:8a:6c:b0:1b:d4:52: d3:c0:c1:b7:00:04:5a:32:a6:45:1e:2d:4d:74:a9:53:8a:3d: 0d:67:ec:9a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPh7+l63DW9jxOMQJ8BuO75IrvtQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MTUzMDA4WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTZmMTgwMGI3MTk5YmRkMjc4MzA3YThkODBhNzNmMzM1 ZmYzNWM5MzdhZTYwZjNhN2IzMjM5MGQ2YjU3MWNiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgB3hmaHQeKOiDtQ8Y0n30nvTHrgdVO+xWWc4uWT86w15G avxGPHvtDKvqMLB5z0IHpOmgh64I6ashpTee0OmVUIUtok+Fynm0ZPS6Mw+Tqgb3 4s4JWShqR908q4m0w5oUU31SalZa8IBID4aeDNAmsHBOhtuw7Rh2yLtNnppWHGvC IHL5J5E7cckVUo/P6EwxXpd0SOSodoAuaHVQf6XuQn5FgH3yuR+vI1fx3SfvaOd2 paeeJ/2OMtIlmznZd6/naZDEHWWhLMPOoE3tlWSPpe2rdSF7+gh+OfLW2US2I5MR P6DAhDTPrkc1clQhgtzzJQyElueHfC+tyPpi1fhzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYYgjgCwQ2sVGtr7LdE88RCa2nHEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VlMmMzNTg2LTRjMjMtNDA0NS1iOThiLWQyODAwMGEzYmQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBACaPmdP4fdq1euhBVo/6HQ8y kD9AWHUvwi+p/XZzG+yVCdmmbIvX0zswR9kaXwYJ8jW6rdl7DXR/kwuu2OGchg2c IWDmq8+EiXU/mY0WW5664aUFBTfAY4EoKGsYIUZXlZIld+lsEJ4MIyzC/kZ2GYrI gefvIVy9Zbc2PQBM76DnrZga2rX6WyGQj7ITcKbplYPsO+RsthAZEjR4NolNDSYB mfl1eflSxDXBodwxej3hrR7C7GRZHtX30wqsD19X41mcv4cCQVKJj+CkmlDF+Omc pE1jji+5H+DajQchIbhR5USv0opssBvUUtPAwbcABFoypkUeLU10qVOKPQ1n7Jo= -----END CERTIFICATE-----Generated at Sat Aug 23 06:54:15 2025 by rpki-client