$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/692c7242-c4b2-4ece-8520-4fff6db89e7e.roa File: 692c7242-c4b2-4ece-8520-4fff6db89e7e.roa (raw, json) Hash identifier: ntRY3f6l9SVDjvAb4/gKlnt6jXZKY4VnBtrx7Pwh2HQ= Subject key identifier: 16:7D:53:51:84:E0:F9:EF:9D:83:3F:B3:82:B1:42:22:9D:5C:7D:4A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 41EBC6FF29C1B4173670F9C83BA8DCA84ED4D08C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/692c7242-c4b2-4ece-8520-4fff6db89e7e.roa Signing time: Fri 15 Aug 2025 21:22:26 +0000 ROA not before: Fri 15 Aug 2025 21:22:26 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6115::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:eb:c6:ff:29:c1:b4:17:36:70:f9:c8:3b:a8:dc:a8:4e:d4:d0:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 21:22:26 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=36f88d996592bec672e8e59b7ab258d9c06982c929219b7cb2be3e8d68532061, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e4:f1:6e:9f:71:2a:b9:10:d0:5d:b6:c6:7a: 72:ce:e1:7b:b0:c2:34:63:ae:ee:00:fc:33:1a:e8: 19:89:80:ca:c8:8b:f4:04:c6:98:54:78:c2:70:40: bd:47:b2:34:4e:38:42:7c:d6:e3:c1:56:d9:d2:85: dd:b3:8a:1f:15:ff:57:f6:25:6f:ef:bf:8e:af:a1: dc:ad:c2:32:05:8e:1f:03:3f:f9:2d:59:ee:a1:1e: 58:b5:c5:b5:be:9e:49:1c:5f:9d:e2:96:9f:ba:0f: d1:42:77:bd:ed:f9:99:5a:69:b5:cc:3c:8e:b6:3c: 13:0a:bb:a7:0f:90:3a:3f:f5:90:85:14:22:b3:b8: 50:ed:95:7f:19:de:de:99:b5:72:65:bc:71:e4:2b: fc:64:8e:4f:e2:5c:50:4d:3c:b7:30:2b:36:2b:a4: f3:4f:67:6c:2f:18:bb:27:a6:b7:45:5e:73:2e:98: bc:6e:07:19:7e:d8:3e:1d:4b:14:30:19:37:e3:2d: 00:e4:3b:99:a3:cb:73:11:e0:02:b9:35:18:20:77: 56:f1:85:cc:f3:dd:0a:b2:af:98:51:36:c8:85:20: d8:44:57:d0:33:99:2b:f5:e2:df:52:55:31:04:41: 6a:f1:45:9a:97:7a:9d:eb:27:1e:ec:8a:d3:4c:cf: ba:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7D:53:51:84:E0:F9:EF:9D:83:3F:B3:82:B1:42:22:9D:5C:7D:4A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/692c7242-c4b2-4ece-8520-4fff6db89e7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6115::/48 Signature Algorithm: sha256WithRSAEncryption 24:93:d3:e7:ba:c7:d5:85:d4:95:7f:63:87:37:0a:2f:d2:5f: 1f:05:c1:56:28:09:61:62:51:40:e7:a5:c3:fe:62:5e:23:b5: 62:fe:1f:eb:37:8c:a4:d4:bd:e9:98:59:a2:72:8e:17:43:8d: 61:0e:61:c2:37:ed:55:89:ae:b0:9e:02:07:cb:07:03:c0:44: af:46:33:cf:83:2c:ea:a0:3f:f9:03:00:65:b9:51:9e:04:cb: 3c:3b:8b:9e:71:7e:d1:62:90:9a:d1:77:ec:bc:37:02:fc:48: dd:ab:89:9d:60:4f:d1:9f:e5:c0:ee:79:cf:77:68:55:a2:26: be:44:79:c7:dc:05:12:b7:d2:3e:8b:6b:14:3e:ef:db:9d:76: 6b:b9:a6:1d:73:af:e5:dd:63:75:e0:99:11:60:52:64:c2:8e: 58:05:e3:42:85:4f:29:65:0e:ad:3f:3b:24:8c:53:69:9b:6f: 58:10:63:1b:1c:c6:f6:cd:56:84:f6:70:20:76:86:b0:cb:50: 2a:d3:e4:b2:b9:3b:c8:73:08:8c:6c:32:5e:22:48:65:82:3b: 4b:54:35:16:f6:23:fe:ea:eb:67:03:dd:59:29:39:df:41:27: 08:4b:d3:5f:bc:38:a0:8d:e6:aa:9d:f3:7c:c6:b9:2e:df:be: 1e:b7:db:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQevG/ynBtBc2cPnIO6jcqE7U0IwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjEyMjI2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmY4OGQ5OTY1OTJiZWM2NzJlOGU1OWI3YWIyNThkOWMw Njk4MmM5MjkyMTliN2NiMmJlM2U4ZDY4NTMyMDYxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz5PFun3EquRDQXbbGenLO4XuwwjRjru4A/DMa6BmJgMrI i/QExphUeMJwQL1HsjROOEJ81uPBVtnShd2zih8V/1f2JW/vv46vodytwjIFjh8D P/ktWe6hHli1xbW+nkkcX53ilp+6D9FCd73t+ZlaabXMPI62PBMKu6cPkDo/9ZCF FCKzuFDtlX8Z3t6ZtXJlvHHkK/xkjk/iXFBNPLcwKzYrpPNPZ2wvGLsnprdFXnMu mLxuBxl+2D4dSxQwGTfjLQDkO5mjy3MR4AK5NRggd1bxhczz3Qqyr5hRNsiFINhE V9AzmSv14t9SVTEEQWrxRZqXep3rJx7sitNMz7o5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFn1TUYTg+e+dgz+zgrFCIp1cfUowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY5MmM3MjQyLWM0YjItNGVjZS04NTIwLTRmZmY2ZGI4OWU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRUwDQYJKoZIhvcNAQELBQADggEBACST0+e6x9WF1JV/Y4c3Ci/S Xx8FwVYoCWFiUUDnpcP+Yl4jtWL+H+s3jKTUvemYWaJyjhdDjWEOYcI37VWJrrCe AgfLBwPARK9GM8+DLOqgP/kDAGW5UZ4Eyzw7i55xftFikJrRd+y8NwL8SN2riZ1g T9Gf5cDuec93aFWiJr5EecfcBRK30j6LaxQ+79uddmu5ph1zr+XdY3XgmRFgUmTC jlgF40KFTyllDq0/OySMU2mbb1gQYxscxvbNVoT2cCB2hrDLUCrT5LK5O8hzCIxs Ml4iSGWCO0tUNRb2I/7q62cD3VkpOd9BJwhL01+8OKCN5qqd83zGuS7fvh632+A= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:36 2025 by rpki-client