$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa File: ceacf551-02ee-4f40-8abd-053509a65c13.roa (raw, json) Hash identifier: RmSG41bqzNCnUoAmz9N2KkZSpAXqdzKKt/C6i2dT5xo= Subject key identifier: ED:CF:D4:DD:23:F9:5B:2A:61:D2:41:7C:8C:88:5B:3D:ED:95:BB:52 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1C7A934E62A2B5D42106DAFEF5A96F66A70CEE61 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa Signing time: Tue 05 Aug 2025 18:40:05 +0000 ROA not before: Tue 05 Aug 2025 18:40:05 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ea00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7a:93:4e:62:a2:b5:d4:21:06:da:fe:f5:a9:6f:66:a7:0c:ee:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:40:05 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=f91249747e9b3cf0e447291cb2c81d2735e2b0f2624a8ae690289bbb37465a20, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5a:87:e3:23:09:bb:15:b4:b9:0c:50:0c:83: 3a:a3:ba:ce:d5:d3:cd:9b:d5:e1:60:08:e6:85:97: 30:0c:3c:f9:d8:55:c2:69:76:7b:4d:01:5e:7d:49: 2a:1d:ec:62:8d:fb:70:e5:d9:65:98:7d:64:1c:cf: 95:80:72:b7:e1:c9:9e:c3:37:f6:d2:04:ef:3e:e7: 87:bb:9b:e5:f9:26:ec:67:0a:13:7e:ec:12:2f:a6: 14:ae:c7:a9:ea:ba:29:f1:65:ca:c0:1a:01:1d:50: 48:09:5e:d4:19:e0:bb:87:61:9d:80:73:da:c7:b7: 83:4c:93:35:73:3b:e6:d1:f3:55:0f:da:4e:12:8d: 16:ce:cb:76:42:bc:a3:f4:4d:8e:c5:35:66:32:4a: 94:b3:26:1c:43:8e:d1:69:a9:ff:4b:5f:6a:25:4a: 13:82:c0:62:7d:95:12:c8:99:3c:11:cf:79:83:b1: 93:1b:ff:1c:c6:6d:cd:69:fc:98:47:74:ef:6a:56: 26:c7:ef:66:24:74:0f:12:f2:f7:3f:fa:e0:cd:0b: d1:e2:4b:9f:58:a8:eb:78:e8:28:6e:57:aa:da:ec: 77:5d:5f:9f:fe:36:88:2a:16:ee:f5:d0:83:7b:b3: e1:a9:42:e6:de:d3:c8:a0:d8:aa:58:85:be:e9:9c: 6c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:CF:D4:DD:23:F9:5B:2A:61:D2:41:7C:8C:88:5B:3D:ED:95:BB:52 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/42 Signature Algorithm: sha256WithRSAEncryption 02:23:30:ef:d7:66:9c:2b:3c:8e:a7:f9:27:92:cc:eb:ea:23: 38:17:0a:08:9d:1e:41:3b:5c:04:ef:97:df:a0:44:78:44:bc: 06:af:54:19:d3:dd:a3:c0:22:64:5b:05:ff:39:17:c1:43:b2: 31:d1:7b:a2:d7:07:88:1f:b0:8f:14:e5:b6:56:19:1d:c7:d2: 81:b1:2e:3e:0d:b3:e0:5f:ab:fe:86:12:97:77:5f:f5:5a:14: ad:22:eb:43:fa:7d:8a:3e:d5:03:d8:b4:43:d1:70:25:27:14: 41:50:2f:34:a3:bd:da:79:f5:e6:06:8c:f9:43:59:e7:a1:1d: c7:31:55:6d:37:33:3f:fa:1f:0d:79:a4:97:bc:55:69:90:ae: 77:6f:0e:6e:cf:3d:28:d7:dd:5e:90:26:31:f2:45:18:38:16: c6:0e:0a:96:ac:1e:06:ad:a1:7c:a2:6a:6a:fc:94:fe:c0:84: 4d:ff:b6:6e:32:bd:39:aa:b8:c1:58:86:67:04:fb:85:4a:15: 71:43:40:6d:9f:61:a4:25:a4:cb:4f:7f:62:78:6b:48:74:21: 7a:9d:0a:b7:ee:e3:b8:49:6c:27:6b:dd:0e:22:af:a2:c4:4c: 13:e2:fc:32:5f:a6:a9:9e:0c:2e:e2:86:30:69:5c:83:67:f2: 9b:4a:98:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHHqTTmKitdQhBtr+9alvZqcM7mEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTg0MDA1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTEyNDk3NDdlOWIzY2YwZTQ0NzI5MWNiMmM4MWQyNzM1 ZTJiMGYyNjI0YThhZTY5MDI4OWJiYjM3NDY1YTIwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChWofjIwm7FbS5DFAMgzqjus7V082b1eFgCOaFlzAMPPnY VcJpdntNAV59SSod7GKN+3Dl2WWYfWQcz5WAcrfhyZ7DN/bSBO8+54e7m+X5Juxn ChN+7BIvphSux6nquinxZcrAGgEdUEgJXtQZ4LuHYZ2Ac9rHt4NMkzVzO+bR81UP 2k4SjRbOy3ZCvKP0TY7FNWYySpSzJhxDjtFpqf9LX2olShOCwGJ9lRLImTwRz3mD sZMb/xzGbc1p/JhHdO9qVibH72YkdA8S8vc/+uDNC9HiS59YqOt46ChuV6ra7Hdd X5/+NogqFu710IN7s+GpQube08ig2KpYhb7pnGzDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7c/U3SP5Wyph0kF8jIhbPe2Vu1IwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NlYWNmNTUxLTAyZWUtNGY0MC04YWJkLTA1MzUwOWE2NWMxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76gAwDQYJKoZIhvcNAQELBQADggEBAAIjMO/XZpwrPI6n+SeSzOvq IzgXCgidHkE7XATvl9+gRHhEvAavVBnT3aPAImRbBf85F8FDsjHRe6LXB4gfsI8U 5bZWGR3H0oGxLj4Ns+Bfq/6GEpd3X/VaFK0i60P6fYo+1QPYtEPRcCUnFEFQLzSj vdp59eYGjPlDWeehHccxVW03Mz/6Hw15pJe8VWmQrndvDm7PPSjX3V6QJjHyRRg4 FsYOCpasHgatoXyiamr8lP7AhE3/tm4yvTmquMFYhmcE+4VKFXFDQG2fYaQlpMtP f2J4a0h0IXqdCrfu47hJbCdr3Q4ir6LETBPi/DJfpqmeDC7ihjBpXINn8ptKmEo= -----END CERTIFICATE-----Generated at Fri Aug 8 13:06:37 2025 by rpki-client