$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa File: ef295804-89a7-4ec3-826e-73e32733dc02.roa (raw, json) Hash identifier: aNca15n1dy2bVv6dj4JqLFSlS9gkuANhp+ZlEpF1e6U= Subject key identifier: AE:45:AC:3F:DE:9F:72:C5:2E:82:28:3D:6B:10:13:E1:47:B1:CB:ED Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6AB53E6D5C7D4DA0AEF69051E281A53393456475 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa Signing time: Tue 05 Aug 2025 18:20:07 +0000 ROA not before: Tue 05 Aug 2025 18:20:07 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:b5:3e:6d:5c:7d:4d:a0:ae:f6:90:51:e2:81:a5:33:93:45:64:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:07 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=d9a7007dfd4b1958fb9c2df6ceff320c067ed0a7b65910e3769b8310a927c603, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:da:4d:ad:86:89:37:df:85:40:88:6a:6e:c8: f2:fb:fb:4b:41:f9:52:cc:47:98:21:88:12:be:64: aa:c5:89:47:22:f4:7f:6b:58:0c:d1:6f:d8:48:ca: 78:82:10:e6:33:05:ee:38:1d:60:fe:52:7f:14:29: 7f:d2:93:4d:ea:74:a5:b9:5d:8b:be:20:eb:e4:4d: 0f:09:87:89:1b:9d:45:bb:97:9a:e5:b1:d1:ae:bb: 6d:b4:6e:e0:7a:24:d8:13:42:61:d5:77:ff:be:8a: 7c:1e:0a:6f:1a:03:7a:6b:3d:6e:f9:f6:e4:13:c3: ae:e8:76:8c:0a:fe:fc:80:a0:89:b6:74:60:83:ff: 9a:36:68:a2:4d:10:ed:8e:df:8d:b9:17:79:91:98: d9:cd:6b:61:6a:d5:44:f8:3f:fd:3d:bc:83:d3:94: f4:0a:23:58:a7:9d:42:63:42:86:6b:36:54:ac:34: 6c:6e:fb:c0:69:65:86:6f:44:eb:71:cf:6f:60:cd: 92:91:19:df:64:6a:66:59:0c:da:5a:0a:c3:18:ac: 8c:8a:a8:4e:9f:e4:fb:9a:8c:4c:d5:16:c3:94:e7: 88:c9:b9:87:0a:ce:c4:46:58:87:5f:40:f5:61:f0: 67:9f:e9:73:f2:f3:04:d7:0d:85:19:62:a5:7f:84: af:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:45:AC:3F:DE:9F:72:C5:2E:82:28:3D:6B:10:13:E1:47:B1:CB:ED X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 99:18:56:3f:0f:8e:fb:ac:db:08:ae:5a:c5:84:c1:88:59:1c: 84:bf:48:6a:e5:b5:f7:6e:a8:32:cd:ec:d6:6a:3c:72:8c:74: 3d:c1:ce:09:fc:6e:a1:0d:c5:18:5d:68:24:54:8e:ba:3c:60: 49:bf:2a:37:d0:e2:dd:13:24:7d:1e:3a:a0:28:08:93:57:6f: 3c:5a:7f:d1:41:bd:95:df:b1:73:29:9b:99:2d:60:ca:93:6f: ce:35:a8:ef:92:93:b6:ff:68:24:c0:f0:55:f0:c0:69:5c:6f: 08:65:2c:98:5b:36:4f:61:6a:2e:90:4b:8b:1a:21:59:e1:50: d3:5a:58:c2:f7:0e:fd:78:36:76:cd:a0:1b:13:c5:ea:7c:3f: 9b:3e:8c:6e:fb:e8:ef:bb:ec:db:d3:1f:2d:63:97:a6:5d:16: 70:cc:83:81:a0:d4:c5:6d:cb:93:76:ee:7e:c5:e7:1b:40:16: b4:72:ec:56:62:33:53:fd:ff:1f:37:91:fd:4e:2b:53:5c:77: e0:80:6f:4e:44:bf:a0:7e:66:5c:b9:58:4c:2a:dd:e6:f8:39: 9e:6a:67:f7:6d:2e:ac:b5:e9:d2:25:7d:4c:de:79:8c:bd:26: ee:2f:34:34:c4:e5:a8:2d:ae:47:06:c5:c2:d8:9a:0f:5c:5a: 0e:48:ee:3b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUarU+bVx9TaCu9pBR4oGlM5NFZHUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDA3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWE3MDA3ZGZkNGIxOTU4ZmI5YzJkZjZjZWZmMzIwYzA2 N2VkMGE3YjY1OTEwZTM3NjliODMxMGE5MjdjNjAzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe2k2thok334VAiGpuyPL7+0tB+VLMR5ghiBK+ZKrFiUci 9H9rWAzRb9hIyniCEOYzBe44HWD+Un8UKX/Sk03qdKW5XYu+IOvkTQ8Jh4kbnUW7 l5rlsdGuu220buB6JNgTQmHVd/++inweCm8aA3prPW759uQTw67odowK/vyAoIm2 dGCD/5o2aKJNEO2O3425F3mRmNnNa2Fq1UT4P/09vIPTlPQKI1innUJjQoZrNlSs NGxu+8BpZYZvROtxz29gzZKRGd9kamZZDNpaCsMYrIyKqE6f5PuajEzVFsOU54jJ uYcKzsRGWIdfQPVh8Gef6XPy8wTXDYUZYqV/hK+fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrkWsP96fcsUugig9axAT4Uexy+0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmMjk1ODA0LTg5YTctNGVjMy04MjZlLTczZTMyNzMzZGMwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAJkYVj8Pjvus2wiuWsWEwYhZ HIS/SGrltfduqDLN7NZqPHKMdD3Bzgn8bqENxRhdaCRUjro8YEm/KjfQ4t0TJH0e OqAoCJNXbzxaf9FBvZXfsXMpm5ktYMqTb841qO+Sk7b/aCTA8FXwwGlcbwhlLJhb Nk9hai6QS4saIVnhUNNaWML3Dv14NnbNoBsTxep8P5s+jG776O+77NvTHy1jl6Zd FnDMg4Gg1MVty5N27n7F5xtAFrRy7FZiM1P9/x83kf1OK1Ncd+CAb05Ev6B+Zly5 WEwq3eb4OZ5qZ/dtLqy16dIlfUzeeYy9Ju4vNDTE5agtrkcGxcLYmg9cWg5I7js= -----END CERTIFICATE-----Generated at Thu Aug 7 04:33:24 2025 by rpki-client