$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/92842c72-d501-4996-b9a9-686d162bc8c1.roa File: 92842c72-d501-4996-b9a9-686d162bc8c1.roa (raw, json) Hash identifier: kiS0L1IwJljh4eCNFBuOR6XV3R6TrAqBCFtxdN+mshU= Subject key identifier: 96:2D:02:F5:5C:8F:5F:80:A6:DD:75:3E:44:EF:EA:F1:73:43:06:0A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 74AEE37B4920136E956C83351FDDA5DB7AFEE39B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/92842c72-d501-4996-b9a9-686d162bc8c1.roa Signing time: Fri 15 Aug 2025 15:30:07 +0000 ROA not before: Fri 15 Aug 2025 15:30:07 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:ae:e3:7b:49:20:13:6e:95:6c:83:35:1f:dd:a5:db:7a:fe:e3:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 15:30:07 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=4c4ff217e9de28be85ac8974a73335d2702d23a7084ee1f5df37201c24be5a0c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c9:3a:6c:d1:c1:7c:45:2b:39:30:92:f2:57: 85:9e:8a:df:ce:d7:12:22:f7:74:d3:00:e2:d1:74: 21:97:8e:7e:b6:0b:12:9c:74:f3:a3:de:db:2c:bf: c9:a1:55:ed:97:20:03:7c:c7:6b:ae:2e:38:4a:6f: 97:7c:81:d3:85:93:df:8e:f8:c3:03:fa:f7:25:93: 36:d3:a4:ea:b2:c6:28:66:11:85:ce:c0:09:15:9b: d1:76:ee:64:86:9d:46:fc:3d:12:85:cf:b8:fd:96: bf:d3:68:35:43:de:0f:1e:d5:aa:4a:15:30:62:9b: 30:ef:7c:8c:24:ef:46:16:72:f1:19:96:79:74:64: eb:86:4c:42:19:c2:37:ed:7e:68:ce:dd:68:11:f1: 9e:5d:a2:95:ec:a0:81:5c:f7:79:1b:63:5e:f5:68: 5b:10:6a:cb:6b:fd:4e:dd:9a:b6:78:4d:41:2a:a4: 07:aa:f9:49:09:2a:1a:1c:30:35:9f:3f:6e:3a:69: c2:15:92:c4:c3:77:b2:62:dd:38:31:b3:75:b7:c5: f8:82:c9:d5:7f:37:fa:37:1a:6e:ec:c0:50:25:57: c2:23:26:bc:ce:bf:0e:9e:9c:e8:c0:c9:9b:40:b0: 8b:4b:f9:05:21:51:a2:9d:0f:f6:8e:75:fa:c7:78: 40:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:2D:02:F5:5C:8F:5F:80:A6:DD:75:3E:44:EF:EA:F1:73:43:06:0A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/92842c72-d501-4996-b9a9-686d162bc8c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a::/48 Signature Algorithm: sha256WithRSAEncryption 81:70:1e:e8:2a:63:a1:b1:75:89:65:e8:cf:e0:84:a5:8b:c9: 1b:8d:d1:b7:6b:ab:b0:ec:2f:cb:5a:c2:d4:38:fa:c5:e3:57: d9:79:4c:6c:d0:78:be:23:99:e2:05:d9:f3:1b:ca:84:03:6a: 87:34:ae:24:b2:12:c0:88:be:51:ac:c8:50:86:56:65:9a:7d: ea:50:b0:1b:b2:28:3c:4b:04:de:b4:e9:14:40:3c:15:f9:ea: 76:5a:75:70:45:17:dd:a9:2f:9b:cf:03:b3:c0:75:14:a1:4c: 9c:2f:4b:4d:24:3d:45:4f:9f:48:7b:63:5a:6c:46:b0:59:79: c5:07:b8:f7:eb:1c:db:7c:82:2c:ff:75:71:18:1c:78:c2:6e: c9:88:8e:b1:e3:a6:4a:29:01:82:70:2f:95:a3:71:e3:13:03: e0:98:20:52:4b:0d:75:a2:4f:16:45:55:56:aa:30:75:7f:7f: 95:9b:f7:91:55:7a:a4:9f:0f:32:74:05:c3:20:0a:a3:ea:08: 30:5a:ec:ef:7e:38:b4:c6:a2:09:8f:85:1e:64:f9:64:ed:12: 2e:12:17:d8:66:00:a6:f2:5f:6c:4d:96:2c:ce:34:90:f9:33: 61:0d:1d:69:e6:c9:cb:43:2f:a2:31:c9:6c:53:b9:6a:6f:4b: 98:70:ed:33 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdK7je0kgE26VbIM1H92l23r+45swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MTUzMDA3WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzRmZjIxN2U5ZGUyOGJlODVhYzg5NzRhNzMzMzVkMjcw MmQyM2E3MDg0ZWUxZjVkZjM3MjAxYzI0YmU1YTBjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNyTps0cF8RSs5MJLyV4Weit/O1xIi93TTAOLRdCGXjn62 CxKcdPOj3tssv8mhVe2XIAN8x2uuLjhKb5d8gdOFk9+O+MMD+vclkzbTpOqyxihm EYXOwAkVm9F27mSGnUb8PRKFz7j9lr/TaDVD3g8e1apKFTBimzDvfIwk70YWcvEZ lnl0ZOuGTEIZwjftfmjO3WgR8Z5dopXsoIFc93kbY171aFsQastr/U7dmrZ4TUEq pAeq+UkJKhocMDWfP246acIVksTDd7Ji3Tgxs3W3xfiCydV/N/o3Gm7swFAlV8Ij JrzOvw6enOjAyZtAsItL+QUhUaKdD/aOdfrHeEB/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUli0C9VyPX4Cm3XU+RO/q8XNDBgowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzkyODQyYzcyLWQ1MDEtNDk5Ni1iOWE5LTY4NmQxNjJiYzhjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAowDQYJKoZIhvcNAQELBQADggEBAIFwHugqY6GxdYll6M/ghKWL yRuN0bdrq7DsL8tawtQ4+sXjV9l5TGzQeL4jmeIF2fMbyoQDaoc0riSyEsCIvlGs yFCGVmWafepQsBuyKDxLBN606RRAPBX56nZadXBFF92pL5vPA7PAdRShTJwvS00k PUVPn0h7Y1psRrBZecUHuPfrHNt8giz/dXEYHHjCbsmIjrHjpkopAYJwL5WjceMT A+CYIFJLDXWiTxZFVVaqMHV/f5Wb95FVeqSfDzJ0BcMgCqPqCDBa7O9+OLTGogmP hR5k+WTtEi4SF9hmAKbyX2xNlizONJD5M2ENHWnmyctDL6IxyWxTuWpvS5hw7TM= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:29 2025 by rpki-client