$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e601690-d98c-4d0d-8f50-2f457decb102.roa File: 1e601690-d98c-4d0d-8f50-2f457decb102.roa (raw, json) Hash identifier: SsE7iq9Z/t2jmBP5HVNU1jjOywMuyWH6nIPAsEMc5OE= Subject key identifier: 07:4D:89:EF:56:2E:DF:BA:CC:D6:CD:15:53:79:9D:9D:AD:19:7F:EF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4C5D57734717AF43995ACCF79BBA2B719E7EB23C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e601690-d98c-4d0d-8f50-2f457decb102.roa Signing time: Tue 05 Aug 2025 18:21:04 +0000 ROA not before: Tue 05 Aug 2025 18:21:04 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:5d:57:73:47:17:af:43:99:5a:cc:f7:9b:ba:2b:71:9e:7e:b2:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:21:04 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=430f15252f728f305d4df72d421c3211d9d09ffd84908329d95dfe2a5076711a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:23:da:b5:3e:a1:51:26:91:fa:e7:63:b7:bd: 52:b3:0e:8e:85:56:19:80:7b:f2:c0:76:32:f3:00: b9:29:ca:5e:98:75:a9:79:be:64:f6:d9:cb:eb:50: 1a:30:9f:be:55:ab:8f:7f:00:17:21:40:35:38:75: be:99:63:27:70:44:6b:bf:90:d8:96:ab:81:5f:4b: 15:85:3d:84:49:bc:f2:06:fb:ea:5f:92:1d:44:2b: d7:ed:00:5c:42:01:63:79:53:05:ed:06:0f:e4:8c: 42:31:6c:93:dd:2b:e3:24:cb:24:1c:93:69:b0:12: a7:de:2f:ce:2e:f7:02:a7:ad:a8:43:08:47:3d:ec: 39:41:07:a3:35:4c:6e:71:89:2c:50:fe:16:9f:00: 2a:f2:93:a1:cb:8c:55:63:16:ef:09:6d:a2:7f:84: 5f:b2:58:c4:d2:89:a1:5a:d9:b6:ca:e0:72:7b:5c: b9:37:9a:60:e7:d0:0a:91:46:0b:e9:0a:ce:dc:13: e3:d4:d6:aa:ef:62:b4:29:5b:5d:fd:53:88:f3:a5: b8:d8:6c:0c:64:97:87:d5:11:39:5c:3e:15:7f:bb: de:e9:b8:59:04:c6:64:51:7f:6b:1b:52:07:f6:25: 85:a6:e6:6c:35:22:84:a0:6b:5e:f6:42:6f:e0:a9: f6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:4D:89:EF:56:2E:DF:BA:CC:D6:CD:15:53:79:9D:9D:AD:19:7F:EF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e601690-d98c-4d0d-8f50-2f457decb102.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 88:cd:44:94:c2:86:30:de:55:12:6b:04:ba:15:17:b1:06:a8: 9d:3f:5e:9f:53:a6:88:84:16:4a:97:c1:03:37:7f:5c:42:a9: bc:23:a5:37:2e:e7:aa:50:49:ea:b1:b8:7f:f2:b8:63:28:bf: 37:8d:ad:a0:48:2b:21:27:88:4c:68:2c:39:fa:ad:27:f0:1d: 20:27:66:c1:b6:3c:d9:73:0f:c0:a0:2c:4a:46:5b:6b:4b:dc: 47:90:1a:c7:ea:91:76:fc:11:1a:46:10:50:40:c7:ad:37:24: c2:86:3e:21:0a:8e:81:15:91:cc:80:5b:b3:ee:49:4a:84:f1: 99:48:3b:c7:ec:09:35:a7:42:ce:d8:a3:fb:d4:fc:8b:be:90: 3b:79:09:7d:67:c8:93:21:1c:64:9d:c8:98:7a:88:05:d9:4d: 5f:90:c0:71:1f:33:ca:16:39:d1:05:21:22:80:b8:6a:70:bc: 7d:24:da:39:f0:e1:aa:87:27:ae:97:40:a2:1e:19:bf:ee:76: 5d:87:2c:9b:27:fc:b4:ba:be:9c:dd:69:5c:fc:3f:d9:3e:83: b1:9b:0f:60:40:82:40:0c:13:86:c3:d4:bd:91:16:51:15:10: 6c:3d:1a:dc:13:a9:1a:da:08:f8:6c:55:6f:59:03:ac:2e:80: ab:d6:3c:06 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTF1Xc0cXr0OZWsz3m7orcZ5+sjwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMTA0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzBmMTUyNTJmNzI4ZjMwNWQ0ZGY3MmQ0MjFjMzIxMWQ5 ZDA5ZmZkODQ5MDgzMjlkOTVkZmUyYTUwNzY3MTFhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnI9q1PqFRJpH652O3vVKzDo6FVhmAe/LAdjLzALkpyl6Y dal5vmT22cvrUBown75Vq49/ABchQDU4db6ZYydwRGu/kNiWq4FfSxWFPYRJvPIG ++pfkh1EK9ftAFxCAWN5UwXtBg/kjEIxbJPdK+MkyyQck2mwEqfeL84u9wKnrahD CEc97DlBB6M1TG5xiSxQ/hafACryk6HLjFVjFu8JbaJ/hF+yWMTSiaFa2bbK4HJ7 XLk3mmDn0AqRRgvpCs7cE+PU1qrvYrQpW139U4jzpbjYbAxkl4fVETlcPhV/u97p uFkExmRRf2sbUgf2JYWm5mw1IoSga172Qm/gqfaZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUB02J71Yu37rM1s0VU3mdna0Zf+8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFlNjAxNjkwLWQ5OGMtNGQwZC04ZjUwLTJmNDU3ZGVjYjEwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAIjNRJTChjDeVRJrBLoVF7EG qJ0/Xp9TpoiEFkqXwQM3f1xCqbwjpTcu56pQSeqxuH/yuGMovzeNraBIKyEniExo LDn6rSfwHSAnZsG2PNlzD8CgLEpGW2tL3EeQGsfqkXb8ERpGEFBAx603JMKGPiEK joEVkcyAW7PuSUqE8ZlIO8fsCTWnQs7Yo/vU/Iu+kDt5CX1nyJMhHGSdyJh6iAXZ TV+QwHEfM8oWOdEFISKAuGpwvH0k2jnw4aqHJ66XQKIeGb/udl2HLJsn/LS6vpzd aVz8P9k+g7GbD2BAgkAME4bD1L2RFlEVEGw9GtwTqRraCPhsVW9ZA6wugKvWPAY= -----END CERTIFICATE-----Generated at Wed Aug 6 04:15:15 2025 by rpki-client