$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ae8e0646-a3de-4f6f-9f98-8689213b0505.roa File: ae8e0646-a3de-4f6f-9f98-8689213b0505.roa (raw, json) Hash identifier: gAhauEPhgIS4QZz3HTwfWh4ykUVO/iwAn7BUTAWHzNQ= Subject key identifier: 62:96:36:80:72:1F:D8:23:15:E8:78:5C:1B:28:3D:AD:54:EF:76:42 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25ECD382F3F4F524F62613C4D9FC79B7217FA67C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ae8e0646-a3de-4f6f-9f98-8689213b0505.roa Signing time: Tue 05 Aug 2025 18:40:13 +0000 ROA not before: Tue 05 Aug 2025 18:40:13 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ea00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ec:d3:82:f3:f4:f5:24:f6:26:13:c4:d9:fc:79:b7:21:7f:a6:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:40:13 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=c1ffe553f928e5fe91aa9db3079062e37b9ae0d0ae658f04722f7e4db64aa13e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:81:da:29:73:65:72:ef:32:ff:29:e3:5c:a3: 55:70:52:88:17:0f:60:88:78:c0:59:bf:19:37:34: ad:f9:39:72:89:3f:11:7a:87:b6:ef:dc:5d:b6:af: c2:54:68:53:77:22:ac:c0:0f:5e:0b:34:27:91:51: 7e:5c:be:e8:c3:8d:23:a3:96:64:f6:eb:c1:a2:50: 47:2b:7f:3b:84:56:63:89:58:58:d7:fb:22:84:81: 06:69:c3:5d:ce:18:20:5c:22:35:0a:1e:dd:31:25: 86:0c:bb:c0:0a:66:2d:5e:58:3b:68:7c:23:3c:58: 96:2b:12:75:ea:28:2b:ef:c8:3d:70:5d:46:be:78: 82:aa:de:15:b2:81:93:89:5f:5a:f9:30:91:3e:bc: a9:b8:3c:c3:43:bb:43:4e:c8:aa:44:6e:f0:eb:ec: 9b:ca:81:60:51:0f:3c:db:ae:5c:ba:35:60:d1:75: a2:af:80:97:a8:9d:9f:93:13:75:c0:d9:e5:44:e7: da:3d:fa:fa:8d:65:43:10:84:a9:a3:89:21:94:65: 42:f7:13:f9:cb:c7:c3:fc:5f:5a:1f:05:77:af:30: d1:5e:02:1b:1a:c8:6d:6a:24:bd:b0:4d:ec:6e:fa: 6e:f1:a9:09:c5:97:5b:ab:d2:62:47:e2:42:2a:16: 62:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:96:36:80:72:1F:D8:23:15:E8:78:5C:1B:28:3D:AD:54:EF:76:42 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ae8e0646-a3de-4f6f-9f98-8689213b0505.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 49:9e:59:c8:16:9f:c4:77:23:18:13:bf:4c:cd:47:5b:99:8f: 2f:ff:08:8a:c5:bf:90:f9:9f:bc:9c:c5:b2:9f:33:af:b8:c3: 19:6f:47:80:63:7e:92:21:d9:4c:37:b3:59:6e:23:65:01:22: d5:5a:e7:35:fb:87:90:8b:0a:85:2b:ef:a3:80:75:f5:8a:a2: b3:fe:48:da:24:aa:53:d1:3e:62:90:c4:40:3e:5f:9d:c9:c0: dc:c3:9e:35:99:b2:b4:bc:fc:75:6f:5d:f5:da:4c:2c:fe:67: 3e:40:38:71:3d:d5:7e:44:62:6e:9a:cd:6b:f7:3e:18:d5:57: a0:c6:d1:89:95:7a:6a:83:c5:6d:9c:ea:54:2a:ff:8e:c8:1e: 7a:23:16:23:22:f6:fd:96:cd:99:47:10:d7:8f:f9:41:2b:c1: 7e:a0:0f:d9:dd:ee:ca:cf:1c:43:d6:69:37:8f:49:a0:f6:8b: 46:8b:66:6a:4e:24:d8:42:86:77:d5:6d:22:bc:36:fa:04:97: 0f:e3:9e:c4:15:87:34:43:6c:5f:60:bc:2d:9c:2d:c7:01:07: 31:a5:28:d7:f8:7d:34:a1:93:24:33:83:c4:f1:d0:b1:e8:a4: 27:dc:35:4e:6d:8e:e5:2f:d7:1e:ca:f5:70:70:09:ca:6c:6d: 5f:07:c5:67 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJezTgvP09ST2JhPE2fx5tyF/pnwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTg0MDEzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWZmZTU1M2Y5MjhlNWZlOTFhYTlkYjMwNzkwNjJlMzdi OWFlMGQwYWU2NThmMDQ3MjJmN2U0ZGI2NGFhMTNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHgdopc2Vy7zL/KeNco1VwUogXD2CIeMBZvxk3NK35OXKJ PxF6h7bv3F22r8JUaFN3IqzAD14LNCeRUX5cvujDjSOjlmT268GiUEcrfzuEVmOJ WFjX+yKEgQZpw13OGCBcIjUKHt0xJYYMu8AKZi1eWDtofCM8WJYrEnXqKCvvyD1w XUa+eIKq3hWygZOJX1r5MJE+vKm4PMNDu0NOyKpEbvDr7JvKgWBRDzzbrly6NWDR daKvgJeonZ+TE3XA2eVE59o9+vqNZUMQhKmjiSGUZUL3E/nLx8P8X1ofBXevMNFe AhsayG1qJL2wTexu+m7xqQnFl1ur0mJH4kIqFmLjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUYpY2gHIf2CMV6HhcGyg9rVTvdkIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FlOGUwNjQ2LWEzZGUtNGY2Zi05Zjk4LTg2ODkyMTNiMDUwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76jANBgkqhkiG9w0BAQsFAAOCAQEASZ5ZyBafxHcjGBO/TM1HW5mP L/8IisW/kPmfvJzFsp8zr7jDGW9HgGN+kiHZTDezWW4jZQEi1VrnNfuHkIsKhSvv o4B19Yqis/5I2iSqU9E+YpDEQD5fncnA3MOeNZmytLz8dW9d9dpMLP5nPkA4cT3V fkRibprNa/c+GNVXoMbRiZV6aoPFbZzqVCr/jsgeeiMWIyL2/ZbNmUcQ14/5QSvB fqAP2d3uys8cQ9ZpN49JoPaLRotmak4k2EKGd9VtIrw2+gSXD+OexBWHNENsX2C8 LZwtxwEHMaUo1/h9NKGTJDODxPHQseikJ9w1Tm2O5S/XHsr1cHAJymxtXwfFZw== -----END CERTIFICATE-----Generated at Wed Aug 6 09:27:25 2025 by rpki-client