$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa File: ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa (raw, json) Hash identifier: vq6AQ4xD+ZvlGSNfBXZKJcr102KNwBqYnu+YMql3fVM= Subject key identifier: 69:99:0F:6D:CD:48:8B:EF:CA:86:74:DF:0D:11:60:63:59:17:58:E9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4830D8AE33FBAA42C839679AA1D5473F0255F38C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa Signing time: Tue 05 Aug 2025 18:31:26 +0000 ROA not before: Tue 05 Aug 2025 18:31:26 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:30:d8:ae:33:fb:aa:42:c8:39:67:9a:a1:d5:47:3f:02:55:f3:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:26 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=4f8d4142b8a8c42b579e55aceb73b9914cac07484eb43378f0d38b569c2b69b2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:eb:6e:a6:63:2d:9a:48:ed:67:b8:10:65:f5: 20:d1:4e:75:a5:da:38:1f:06:92:54:59:f2:da:17: c8:89:a2:f5:f5:f6:dc:2b:ae:2c:0c:39:9c:97:98: fc:0a:0b:bc:11:6e:5f:62:0c:f3:a2:66:02:51:35: 16:7a:b3:8b:20:81:54:90:d2:66:e7:fe:cf:42:2c: e1:5b:91:68:dd:b1:eb:5e:af:90:b9:20:fc:29:e8: 74:fd:54:cb:5a:cf:d4:2c:b4:e9:d9:0a:5a:2d:00: ab:9a:d7:21:d7:f6:94:e1:b9:9f:3c:00:93:00:8a: 97:0f:37:ab:dd:0f:62:46:a1:9f:9c:ee:9a:75:cb: 54:3d:93:13:97:ef:25:dc:eb:6d:48:4d:83:91:93: 31:8a:44:bc:ae:b8:4f:3d:85:59:d4:c4:8c:8e:3e: 5f:59:31:1c:11:c1:f1:96:e5:48:bf:64:8d:f5:93: 1d:66:fd:2a:6f:7f:20:64:3c:fd:3c:60:95:86:7e: 6e:94:d9:97:24:51:8f:8d:0b:33:8e:5e:0f:71:69: 5b:ef:2c:80:9a:04:85:d1:91:0a:09:86:84:c5:0b: 70:ab:70:de:b4:dd:28:4d:f2:44:5d:da:18:b3:8a: ea:e7:09:b0:c6:70:51:76:c4:9a:a7:69:2a:e5:ed: de:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:99:0F:6D:CD:48:8B:EF:CA:86:74:DF:0D:11:60:63:59:17:58:E9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 6f:a9:cf:6d:bc:db:5d:a9:71:06:2a:fe:61:a5:33:68:2a:9e: c2:28:de:14:5f:f2:bc:5c:ea:d2:ca:5b:4e:26:fc:6f:c3:bb: 5c:62:41:ee:d5:e0:2f:8c:b8:b9:63:1b:31:65:d5:27:dd:7b: 3d:98:e1:6a:73:cc:87:35:bd:02:9a:e3:e8:a5:9c:55:4d:a8: ca:40:fa:f2:1d:cd:24:92:c7:50:44:0c:9d:7e:4a:ef:b2:34: cc:43:0b:69:bd:59:74:5e:d6:7f:ae:eb:dd:3d:84:02:05:f5: 68:3c:cb:ce:69:7e:41:8b:8f:80:9b:f0:5e:16:90:4f:95:13: a4:08:cf:f5:45:e3:c0:e2:6d:d7:a0:be:fb:b6:6d:b9:6f:15: 42:28:76:38:d0:8c:27:54:59:c7:b0:76:cd:f6:ab:c1:a7:d6: 1d:f5:72:92:70:e6:8b:65:b2:d4:b8:96:6d:a5:d5:82:d4:aa: 4f:c4:e0:9b:91:5c:9c:83:e7:f6:34:da:8b:87:1b:f1:86:ef: 5e:34:28:b6:a0:48:59:14:99:0f:95:27:3b:9b:fa:f6:e3:6b: 2d:3a:c0:e5:c9:ed:20:63:a9:db:81:a8:7e:93:1f:92:c7:8c: 90:d9:9f:b9:8c:82:76:32:5c:fa:fb:8d:53:3b:15:ae:8e:3b: 81:f6:3a:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSDDYrjP7qkLIOWeaodVHPwJV84wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTI2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjhkNDE0MmI4YThjNDJiNTc5ZTU1YWNlYjczYjk5MTRj YWMwNzQ4NGViNDMzNzhmMGQzOGI1NjljMmI2OWIyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX626mYy2aSO1nuBBl9SDRTnWl2jgfBpJUWfLaF8iJovX1 9twrriwMOZyXmPwKC7wRbl9iDPOiZgJRNRZ6s4sggVSQ0mbn/s9CLOFbkWjdsete r5C5IPwp6HT9VMtaz9QstOnZClotAKua1yHX9pThuZ88AJMAipcPN6vdD2JGoZ+c 7pp1y1Q9kxOX7yXc621ITYORkzGKRLyuuE89hVnUxIyOPl9ZMRwRwfGW5Ui/ZI31 kx1m/SpvfyBkPP08YJWGfm6U2ZckUY+NCzOOXg9xaVvvLICaBIXRkQoJhoTFC3Cr cN603ShN8kRd2hiziurnCbDGcFF2xJqnaSrl7d6BAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaZkPbc1Ii+/KhnTfDRFgY1kXWOkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmNDkyNDdmLWUxYmItNGUwZS05ZGYwLTZlZGI5NzQwNGY5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBAG+pz228212pcQYq/mGlM2gq nsIo3hRf8rxc6tLKW04m/G/Du1xiQe7V4C+MuLljGzFl1Sfdez2Y4WpzzIc1vQKa 4+ilnFVNqMpA+vIdzSSSx1BEDJ1+Su+yNMxDC2m9WXRe1n+u6909hAIF9Wg8y85p fkGLj4Cb8F4WkE+VE6QIz/VF48Dibdegvvu2bblvFUIodjjQjCdUWcewds32q8Gn 1h31cpJw5otlstS4lm2l1YLUqk/E4JuRXJyD5/Y02ouHG/GG7140KLagSFkUmQ+V Jzub+vbjay06wOXJ7SBjqduBqH6TH5LHjJDZn7mMgnYyXPr7jVM7Fa6OO4H2Oio= -----END CERTIFICATE-----Generated at Wed Aug 6 13:07:31 2025 by rpki-client