$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa File: e0124927-afa7-4267-814d-16ec9e0135d2.roa (raw, json) Hash identifier: eMRVAhbucF/hvmuh1jhiJd1syabGaZ4tkQ6WnhV+ekU= Subject key identifier: B6:9F:67:E3:04:99:CC:0D:2B:C5:81:63:F4:EC:CB:93:3E:6C:74:F9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 72AA736DD0B017882547134741A97C5D3E4A8088 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa Signing time: Fri 11 Jul 2025 18:20:13 +0000 ROA not before: Fri 11 Jul 2025 18:20:13 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:aa:73:6d:d0:b0:17:88:25:47:13:47:41:a9:7c:5d:3e:4a:80:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:20:13 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=a003e3af1cbad43916a816752bd204c53f34fd590e5696150df6d8692d777e35, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:eb:e2:b3:e4:0f:7f:ce:56:73:c4:bc:0f:d6: d6:60:0d:61:2d:44:43:15:ee:2f:aa:a2:a4:31:2d: 6d:2b:2a:8f:20:c7:32:8b:43:4b:c1:63:7a:0c:25: 68:94:d0:b2:5d:b3:c9:d2:fc:14:4c:d3:41:47:5e: 99:0b:34:66:e0:a6:9b:3a:6c:f4:2f:f3:a5:50:23: 68:ea:bf:b9:c5:f5:87:63:50:6e:31:e2:13:e9:b5: fa:b9:7b:c5:ad:c0:24:14:6c:81:98:d2:6e:45:40: 3f:90:c0:7d:d2:ad:6b:8b:88:be:e2:d4:ce:88:3a: da:93:4b:9d:5e:36:15:10:45:b8:27:4e:2d:85:9f: b1:b6:e0:c6:66:9e:5f:b1:c7:d5:b0:12:f7:3b:ed: b6:c6:40:06:8e:eb:e5:66:94:df:66:77:b2:dd:5f: 48:15:7b:86:43:15:65:aa:da:35:fc:d2:a6:a9:95: 89:fb:a6:01:13:ff:cf:af:3c:79:67:3d:81:c1:4a: 10:85:47:19:85:27:6d:29:73:40:52:ae:70:22:57: 57:74:96:3b:37:40:6e:76:3d:d1:83:52:d3:a9:66: c9:ea:24:fb:08:e9:d7:25:ab:5c:d9:81:31:e0:7d: e2:69:8d:ba:0d:42:71:8c:be:70:a1:10:b5:e0:12: 9f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:9F:67:E3:04:99:CC:0D:2B:C5:81:63:F4:EC:CB:93:3E:6C:74:F9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:2::/48 Signature Algorithm: sha256WithRSAEncryption 60:9a:6f:19:ab:58:c3:d9:95:92:49:11:79:7b:67:78:34:a5: 4f:49:86:f1:7f:0d:93:0a:f8:f5:76:e3:6e:7c:07:73:07:2c: 7f:ce:d5:7b:72:b3:2d:d3:d8:19:3e:89:c7:8e:48:35:74:6f: 90:94:5b:0d:7e:df:eb:7c:fd:5c:6c:40:f5:18:5e:29:fd:e0: d0:3c:18:65:59:8f:fb:ff:c0:44:45:03:07:0d:5b:b6:73:d1: a4:d3:ea:8d:7c:fa:14:b2:be:e1:33:fb:b2:a8:29:3c:01:f4: db:d7:3a:2e:a2:09:d6:fb:a8:1b:94:76:49:13:04:07:e5:99: 1a:b8:70:57:44:14:1d:f3:44:4d:aa:6d:f7:95:39:b2:8b:cf: 65:fd:55:6d:f1:c2:a0:80:2b:b1:ee:b6:07:04:98:da:0a:96: b2:78:f9:90:fa:48:70:d6:ab:2c:76:ae:90:dc:87:e5:5a:67: e1:4d:1f:23:33:d1:ab:3e:81:72:f5:15:17:91:6c:a0:d1:3b: 57:55:9f:a7:2c:2a:06:1f:6a:74:1e:52:c1:59:df:0e:7b:64: b0:c4:61:d9:b2:b8:e6:c9:9f:50:d4:a0:d2:87:32:d8:a9:ba: f2:3c:1f:47:61:83:c0:94:96:65:54:0f:c3:08:17:de:ca:ca: 58:22:d1:0a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcqpzbdCwF4glRxNHQal8XT5KgIgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgyMDEzWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDAzZTNhZjFjYmFkNDM5MTZhODE2NzUyYmQyMDRjNTNm MzRmZDU5MGU1Njk2MTUwZGY2ZDg2OTJkNzc3ZTM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD6+Kz5A9/zlZzxLwP1tZgDWEtREMV7i+qoqQxLW0rKo8g xzKLQ0vBY3oMJWiU0LJds8nS/BRM00FHXpkLNGbgpps6bPQv86VQI2jqv7nF9Ydj UG4x4hPptfq5e8WtwCQUbIGY0m5FQD+QwH3SrWuLiL7i1M6IOtqTS51eNhUQRbgn Ti2Fn7G24MZmnl+xx9WwEvc77bbGQAaO6+VmlN9md7LdX0gVe4ZDFWWq2jX80qap lYn7pgET/8+vPHlnPYHBShCFRxmFJ20pc0BSrnAiV1d0ljs3QG52PdGDUtOpZsnq JPsI6dclq1zZgTHgfeJpjboNQnGMvnChELXgEp9rAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtp9n4wSZzA0rxYFj9OzLkz5sdPkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UwMTI0OTI3LWFmYTctNDI2Ny04MTRkLTE2ZWM5ZTAxMzVkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAIwDQYJKoZIhvcNAQELBQADggEBAGCabxmrWMPZlZJJEXl7Z3g0 pU9JhvF/DZMK+PV24258B3MHLH/O1Xtysy3T2Bk+iceOSDV0b5CUWw1+3+t8/Vxs QPUYXin94NA8GGVZj/v/wERFAwcNW7Zz0aTT6o18+hSyvuEz+7KoKTwB9NvXOi6i Cdb7qBuUdkkTBAflmRq4cFdEFB3zRE2qbfeVObKLz2X9VW3xwqCAK7HutgcEmNoK lrJ4+ZD6SHDWqyx2rpDch+VaZ+FNHyMz0as+gXL1FReRbKDRO1dVn6csKgYfanQe UsFZ3w57ZLDEYdmyuObJn1DUoNKHMtipuvI8H0dhg8CUlmVUD8MIF97Kylgi0Qo= -----END CERTIFICATE-----Generated at Mon Aug 4 16:04:38 2025 by rpki-client