$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa File: e1f114b0-d940-4fa0-8376-bac93d2868fc.roa (raw, json) Hash identifier: TJnTMZ7ZY2Jqv+fBImWDDNS23UAxAfNv2xejhEo09cE= Subject key identifier: F9:B0:31:20:3A:D7:01:93:B0:43:A3:98:BD:68:F7:10:33:A1:E9:B5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0A287F6D1B4A0D8B7FA0A27ED7DF3DBEF1DEF058 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa Signing time: Wed 06 Aug 2025 00:40:20 +0000 ROA not before: Wed 06 Aug 2025 00:40:20 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:28:7f:6d:1b:4a:0d:8b:7f:a0:a2:7e:d7:df:3d:be:f1:de:f0:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 6 00:40:20 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=74abfa6d678c5cb2429e1f611f7a3a3f55ed0f93d9b7e0e4ef1a1a9a1dd85077, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7c:86:d2:f9:49:dd:f4:f7:81:65:aa:51:c4: 1d:60:20:c8:ea:e4:a0:71:04:27:e6:92:5a:6a:16: 4d:cf:03:03:1c:69:5a:a0:81:22:37:42:03:5d:46: ed:1f:17:fe:2b:0e:32:34:35:b3:54:9a:96:f2:0c: c9:31:19:57:c9:21:a8:1d:e1:f8:db:7a:ca:c2:0b: de:c4:4d:01:9c:5f:ed:f5:d8:55:e8:0a:52:74:82: 41:f3:3e:5e:ed:4d:48:77:ee:57:5d:be:76:f7:28: 41:ff:ab:df:60:0e:4c:ef:74:34:ba:ca:ac:5d:cb: d1:e1:69:ee:36:28:ad:18:c5:85:09:4d:10:57:0a: 35:39:74:43:a0:8c:53:84:f4:cc:00:a6:84:9a:da: 87:1e:27:09:6c:a6:71:90:39:bf:d5:39:09:0f:23: df:b0:68:5c:b7:57:f7:db:2e:07:b3:46:36:17:ff: 7d:87:bd:56:9b:01:24:19:44:7b:14:c9:d1:20:2d: ff:01:a6:1f:e7:c4:66:c8:bd:ae:90:d3:6a:c3:b0: 2e:a2:76:8c:53:b8:0f:73:a2:d8:90:10:a8:52:a6: 16:48:d3:54:2d:3e:67:c6:f7:a3:af:e6:c9:78:ca: 78:0d:3e:f1:c7:9f:ad:e3:5b:0c:9e:e6:f5:de:e6: e2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B0:31:20:3A:D7:01:93:B0:43:A3:98:BD:68:F7:10:33:A1:E9:B5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 7b:47:dc:d0:8e:06:fc:6b:95:34:e6:84:61:5b:b7:74:f0:d2: 46:2c:2b:a8:c3:e3:a4:6c:a7:38:ab:56:3f:9a:92:37:f1:d0: 93:74:a5:36:8a:8a:83:3c:22:29:82:e5:25:1d:14:17:1e:09: a9:d6:97:24:ea:83:36:b4:28:f8:cc:06:8c:fe:4b:5f:cf:9a: 7c:44:15:a7:9e:95:12:bd:79:09:46:ea:70:5b:d8:47:45:71: 39:3f:41:11:cc:c9:34:b1:29:51:8c:60:7d:ae:f0:fe:39:04: 48:bf:67:3b:d9:39:c8:1a:7b:21:7d:b5:6c:67:4a:b6:b5:20: 37:ed:dd:df:16:b5:8a:9d:aa:69:e7:01:3e:80:b5:61:d0:5a: 61:9a:e5:67:1e:cb:8b:25:e6:a9:d1:ed:33:18:b8:2f:19:df: 6d:1e:9f:f0:63:17:47:fa:d8:28:de:ef:00:60:f1:2d:42:1e: 0c:e2:59:a0:9d:9d:8c:9d:53:49:eb:d7:01:28:2e:13:0a:bb: 2b:f5:25:6a:24:22:21:a1:40:a6:96:88:32:79:52:38:85:b8: c4:0b:32:bc:aa:7e:c6:e0:de:ea:a4:f3:b3:fa:c0:49:b6:49: b6:db:5c:1e:3e:c1:7b:1d:70:46:0a:55:57:13:13:bd:f9:01: a2:11:4d:60 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCih/bRtKDYt/oKJ+1989vvHe8FgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA2MDA0MDIwWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGFiZmE2ZDY3OGM1Y2IyNDI5ZTFmNjExZjdhM2EzZjU1 ZWQwZjkzZDliN2UwZTRlZjFhMWE5YTFkZDg1MDc3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpfIbS+Und9PeBZapRxB1gIMjq5KBxBCfmklpqFk3PAwMc aVqggSI3QgNdRu0fF/4rDjI0NbNUmpbyDMkxGVfJIagd4fjbesrCC97ETQGcX+31 2FXoClJ0gkHzPl7tTUh37lddvnb3KEH/q99gDkzvdDS6yqxdy9Hhae42KK0YxYUJ TRBXCjU5dEOgjFOE9MwApoSa2oceJwlspnGQOb/VOQkPI9+waFy3V/fbLgezRjYX /32HvVabASQZRHsUydEgLf8Bph/nxGbIva6Q02rDsC6idoxTuA9zotiQEKhSphZI 01QtPmfG96Ov5sl4yngNPvHHn63jWwye5vXe5uKrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU+bAxIDrXAZOwQ6OYvWj3EDOh6bUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxZjExNGIwLWQ5NDAtNGZhMC04Mzc2LWJhYzkzZDI4NjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAe0fc0I4G/GuVNOaEYVu3dPDS RiwrqMPjpGynOKtWP5qSN/HQk3SlNoqKgzwiKYLlJR0UFx4JqdaXJOqDNrQo+MwG jP5LX8+afEQVp56VEr15CUbqcFvYR0VxOT9BEczJNLEpUYxgfa7w/jkESL9nO9k5 yBp7IX21bGdKtrUgN+3d3xa1ip2qaecBPoC1YdBaYZrlZx7LiyXmqdHtMxi4Lxnf bR6f8GMXR/rYKN7vAGDxLUIeDOJZoJ2djJ1TSevXASguEwq7K/UlaiQiIaFAppaI MnlSOIW4xAsyvKp+xuDe6qTzs/rASbZJtttcHj7Bex1wRgpVVxMTvfkBohFNYA== -----END CERTIFICATE-----Generated at Fri Aug 8 21:00:44 2025 by rpki-client