$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa File: ec42dc47-0cc9-474a-9470-19700f756d36.roa (raw, json) Hash identifier: NXmtaXdAvF6Xf3a83P1tknicsSUmijZpc2+YETEDMFM= Subject key identifier: 13:45:EF:59:62:5E:17:5B:88:C1:8E:12:43:38:AB:34:BB:5C:AA:01 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5F3F484B1DE1272EDA0E32770B17DC60438F2C63 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa Signing time: Tue 05 Aug 2025 18:20:52 +0000 ROA not before: Tue 05 Aug 2025 18:20:52 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:3f:48:4b:1d:e1:27:2e:da:0e:32:77:0b:17:dc:60:43:8f:2c:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:52 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=5fc8f96eaf117a1132cc5231059c8af59bb2415ca45e894e7c4b157b58638166, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4a:4f:39:f3:f3:04:c1:19:4b:93:ad:31:07: 58:5a:ef:7f:6d:7d:a0:b1:66:84:ee:0c:63:8c:f2: 5c:3e:56:c4:1c:45:9d:91:43:7b:c0:51:7f:a1:ce: a6:b9:b1:36:0a:0f:14:e7:00:3d:63:b1:7b:48:c9: d8:cc:e5:57:b0:94:38:f2:c4:18:5c:ee:7d:bf:47: 96:91:bc:97:b0:b9:11:8f:45:9a:0b:9e:7e:ec:a8: 2a:89:15:61:4e:90:d0:fc:c1:6b:49:66:14:cb:09: ba:43:f6:58:34:93:48:5a:fe:42:bb:23:49:25:f0: cf:06:83:96:2a:7f:6e:b8:22:07:ca:19:40:2e:7d: eb:37:06:c3:43:ea:4c:92:21:6d:5b:a1:f3:50:58: 38:c6:b5:56:74:28:21:5c:7b:a4:7c:2a:72:58:60: 7c:8f:b9:2a:76:e6:ee:39:cd:0a:d7:43:25:8d:0b: 99:29:61:af:42:f3:c9:26:2d:e7:f7:20:36:f0:76: 8c:44:19:57:a8:0e:e3:ab:ad:b6:63:09:20:18:fc: 92:1d:1c:ba:27:f6:69:ce:d5:55:2d:27:e6:d0:a7: 1b:43:f4:08:e9:7d:85:5c:7a:98:aa:1a:1f:90:3f: 22:ad:ce:9b:f1:27:fb:f3:f9:be:c3:27:bd:44:21: 20:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:45:EF:59:62:5E:17:5B:88:C1:8E:12:43:38:AB:34:BB:5C:AA:01 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 05:8b:08:ae:68:cf:c8:3d:e9:8a:75:14:2a:2e:0b:e7:1e:8e: 2d:0c:89:65:20:cd:98:52:90:69:1c:b6:5b:7d:c9:1e:26:7c: 90:38:8e:9a:80:18:fd:3a:4d:a5:10:e7:94:1c:63:4f:c1:81: 0c:72:98:75:a1:65:c4:f1:a5:b2:e8:de:e9:8a:b8:12:6f:36: 67:cf:0a:a1:85:a9:00:5d:c7:44:a0:af:d3:86:44:1f:92:91: e6:d0:e8:d6:cb:25:f5:d4:14:eb:e0:72:0f:b0:0f:ee:00:c4: d6:2a:ec:8b:e9:f2:3f:ee:ea:15:7d:f0:9e:73:54:45:19:90: f2:e5:69:57:8d:a7:6b:29:8e:f1:92:7b:17:0f:46:6d:d7:a7: 61:5b:ae:56:e1:77:a6:a7:dc:81:8e:61:c7:8f:0b:dd:87:dd: 44:00:bb:8d:8e:12:fb:71:c8:57:6e:3c:cf:93:0a:f5:73:7e: 64:13:59:a7:4e:14:6e:4d:90:ef:e3:ee:5a:fe:a6:95:d6:e7: 4f:1d:2b:1b:bb:d5:b1:ab:0f:5c:a1:8f:9e:32:94:16:c7:9c: 58:c1:9b:a4:a1:8b:cf:5d:46:4d:7d:8c:06:fc:62:be:fc:8e: 8c:18:c8:d7:bc:9f:f8:b9:a4:7f:d8:dd:ae:5e:e1:ad:b5:4e: 36:f4:24:4c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXz9ISx3hJy7aDjJ3CxfcYEOPLGMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDUyWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmM4Zjk2ZWFmMTE3YTExMzJjYzUyMzEwNTljOGFmNTli YjI0MTVjYTQ1ZTg5NGU3YzRiMTU3YjU4NjM4MTY2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXSk858/MEwRlLk60xB1ha739tfaCxZoTuDGOM8lw+VsQc RZ2RQ3vAUX+hzqa5sTYKDxTnAD1jsXtIydjM5VewlDjyxBhc7n2/R5aRvJewuRGP RZoLnn7sqCqJFWFOkND8wWtJZhTLCbpD9lg0k0ha/kK7I0kl8M8Gg5Yqf264IgfK GUAufes3BsND6kySIW1bofNQWDjGtVZ0KCFce6R8KnJYYHyPuSp25u45zQrXQyWN C5kpYa9C88kmLef3IDbwdoxEGVeoDuOrrbZjCSAY/JIdHLon9mnO1VUtJ+bQpxtD 9AjpfYVcepiqGh+QPyKtzpvxJ/vz+b7DJ71EISDNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUE0XvWWJeF1uIwY4SQzirNLtcqgEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjNDJkYzQ3LTBjYzktNDc0YS05NDcwLTE5NzAwZjc1NmQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAAWLCK5oz8g96Yp1FCouC+ce ji0MiWUgzZhSkGkctlt9yR4mfJA4jpqAGP06TaUQ55QcY0/BgQxymHWhZcTxpbLo 3umKuBJvNmfPCqGFqQBdx0Sgr9OGRB+SkebQ6NbLJfXUFOvgcg+wD+4AxNYq7Ivp 8j/u6hV98J5zVEUZkPLlaVeNp2spjvGSexcPRm3Xp2Fbrlbhd6an3IGOYcePC92H 3UQAu42OEvtxyFduPM+TCvVzfmQTWadOFG5NkO/j7lr+ppXW508dKxu71bGrD1yh j54ylBbHnFjBm6Shi89dRk19jAb8Yr78jowYyNe8n/i5pH/Y3a5e4a21Tjb0JEw= -----END CERTIFICATE-----Generated at Fri Aug 8 19:34:56 2025 by rpki-client