$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa File: c92a8c24-62b8-4009-a51c-8908d7373850.roa (raw, json) Hash identifier: UjzyysEAlUyuNOSqoAk3ZX5wqKsJJ1de6XTk5cOfSS8= Subject key identifier: 8F:B6:77:15:B4:62:EE:BB:07:C2:51:4C:01:6E:65:45:48:74:48:70 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 21FAF816FA0BE60CB2272E52EF41215218AF1C00 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa Signing time: Tue 05 Aug 2025 18:31:21 +0000 ROA not before: Tue 05 Aug 2025 18:31:21 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e100::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:fa:f8:16:fa:0b:e6:0c:b2:27:2e:52:ef:41:21:52:18:af:1c:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:21 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=eed55398fd0f4c1bf3d87fb946877dd7ae6e7d7883edd21c149215880dcc50a7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:51:ea:2c:25:1f:8c:63:de:6e:82:67:66:83: 98:a1:92:e8:8c:71:01:c5:ae:3b:c9:30:b4:fc:48: df:f8:c0:c0:15:f4:6e:00:d2:7c:ed:64:80:dd:09: b3:15:da:68:d2:0e:92:3c:c8:b1:28:2a:4c:48:36: fe:2b:1d:71:45:ae:28:64:9f:1f:81:a2:3e:ee:d1: 9f:d3:15:2c:23:37:3e:98:aa:b7:94:ad:83:e8:44: fb:cd:76:8e:e8:24:a8:1c:d2:4b:aa:9d:90:95:ea: 9e:dc:ff:62:8a:d5:fa:03:64:5f:34:a0:b1:09:94: 4e:79:84:6b:45:ff:35:8b:82:da:80:65:01:83:6e: ea:c0:e4:a0:78:22:ac:26:ca:47:99:be:e7:ce:03: 1e:2b:fb:82:88:ec:be:b9:e8:2c:b4:f1:58:1e:0e: e4:81:fc:81:35:b9:a5:70:c0:37:ba:ad:1f:8d:d1: 03:40:c4:cd:17:98:b8:0b:51:f5:1f:e1:b5:3f:11: a4:cb:0c:25:e8:10:24:db:18:d7:7d:ad:c1:b9:42: ae:17:6f:3e:c1:4a:d3:99:db:4b:3b:a2:10:5a:24: c3:ba:82:6e:c1:db:9b:2b:68:d4:ad:32:88:25:6d: 10:53:bb:02:2e:d6:2e:29:df:17:d6:6c:40:aa:f3: ac:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B6:77:15:B4:62:EE:BB:07:C2:51:4C:01:6E:65:45:48:74:48:70 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/42 Signature Algorithm: sha256WithRSAEncryption 6e:11:8c:43:4d:ca:7d:8d:dc:c0:8f:fd:95:e8:e4:cf:ec:26: 42:85:15:b1:65:9b:a1:68:d5:8f:76:81:d3:35:fd:fa:42:8a: cd:d6:93:e3:bc:58:62:0d:a0:4b:3c:b8:e5:06:8b:55:67:37: 0a:14:27:88:91:be:14:85:c1:5b:d0:61:7a:cf:47:57:a5:1b: c3:f2:d1:94:c9:f9:ab:61:18:ff:d3:f0:01:92:0a:d1:e9:66: df:a9:7e:ff:2b:95:6e:47:81:61:d9:26:89:4c:6a:de:bb:c4: dc:e4:0e:70:bd:bf:e2:97:ea:08:61:b8:dc:2e:c7:a7:ad:0a: 5f:87:53:2e:86:b7:a7:e3:0a:56:f7:db:d1:cc:4f:98:7d:b4: 19:83:41:8d:b9:19:cb:96:18:27:64:e6:02:be:98:38:4f:37: b2:94:05:f3:c3:d3:55:cb:ff:34:c3:8e:5e:44:e9:7a:d3:ee: b2:bd:d6:57:af:92:cd:be:67:7e:b3:8b:f0:35:4d:f4:eb:03: bc:23:87:1f:ac:02:41:6d:a8:13:ab:52:b8:65:ad:5d:8d:cc: 03:62:f7:66:2b:e9:b7:f4:05:70:dc:0a:7b:f2:cb:be:72:8a: 60:8f:80:be:f6:0d:0e:d6:f7:78:37:ce:b0:49:45:89:2c:19: ea:8a:bf:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIfr4FvoL5gyyJy5S70EhUhivHAAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTIxWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWQ1NTM5OGZkMGY0YzFiZjNkODdmYjk0Njg3N2RkN2Fl NmU3ZDc4ODNlZGQyMWMxNDkyMTU4ODBkY2M1MGE3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9UeosJR+MY95ugmdmg5ihkuiMcQHFrjvJMLT8SN/4wMAV 9G4A0nztZIDdCbMV2mjSDpI8yLEoKkxINv4rHXFFrihknx+Boj7u0Z/TFSwjNz6Y qreUrYPoRPvNdo7oJKgc0kuqnZCV6p7c/2KK1foDZF80oLEJlE55hGtF/zWLgtqA ZQGDburA5KB4IqwmykeZvufOAx4r+4KI7L656Cy08VgeDuSB/IE1uaVwwDe6rR+N 0QNAxM0XmLgLUfUf4bU/EaTLDCXoECTbGNd9rcG5Qq4Xbz7BStOZ20s7ohBaJMO6 gm7B25sraNStMoglbRBTuwIu1i4p3xfWbECq86whAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUj7Z3FbRi7rsHwlFMAW5lRUh0SHAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MmE4YzI0LTYyYjgtNDAwOS1hNTFjLTg5MDhkNzM3Mzg1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74QAwDQYJKoZIhvcNAQELBQADggEBAG4RjENNyn2N3MCP/ZXo5M/s JkKFFbFlm6Fo1Y92gdM1/fpCis3Wk+O8WGINoEs8uOUGi1VnNwoUJ4iRvhSFwVvQ YXrPR1elG8Py0ZTJ+athGP/T8AGSCtHpZt+pfv8rlW5HgWHZJolMat67xNzkDnC9 v+KX6ghhuNwux6etCl+HUy6Gt6fjClb329HMT5h9tBmDQY25GcuWGCdk5gK+mDhP N7KUBfPD01XL/zTDjl5E6XrT7rK91levks2+Z36zi/A1TfTrA7wjhx+sAkFtqBOr UrhlrV2NzANi92Yr6bf0BXDcCnvyy75yimCPgL72DQ7W93g3zrBJRYksGeqKv7M= -----END CERTIFICATE-----Generated at Thu Aug 7 02:04:21 2025 by rpki-client