$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa File: 462f61ba-5748-496a-8795-61c32daf9775.roa (raw, json) Hash identifier: LlV1sj0wDdRhs4bhErjPRwFwp98hT76xADMt5oNGlrM= Subject key identifier: 85:C2:B1:9A:66:15:C8:48:32:21:80:D2:42:F7:83:9B:45:57:D5:9B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2666862E9A67505470508684A977433CAF61C863 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa Signing time: Fri 15 Aug 2025 15:21:10 +0000 ROA not before: Fri 15 Aug 2025 15:21:10 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c17::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:66:86:2e:9a:67:50:54:70:50:86:84:a9:77:43:3c:af:61:c8:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 15 15:21:10 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=fa6b07918faf5be405af175471e228f9b3245b14f739fc07d47b6fca2bea7fff, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:29:86:20:8a:dd:0c:40:22:82:a5:67:3c:cf: 48:31:8a:97:3d:97:cd:fd:7d:e7:b5:e1:4d:90:98: 45:d8:c0:c9:e1:3c:15:4d:d0:c8:13:b9:58:97:25: 87:95:5b:0a:18:c4:01:32:9d:41:ce:4b:e3:2b:38: c5:9e:fe:6f:38:94:1a:06:36:d3:ff:b3:02:b4:a4: 43:00:b9:4b:2a:ab:0e:ae:a1:5d:d7:0a:45:30:bc: 21:96:4b:03:3a:9c:56:e0:c0:74:73:df:4c:45:9d: 1c:d2:e6:23:59:8f:7e:ed:41:25:92:e8:81:f9:8a: e3:23:94:80:cb:ac:c5:2c:10:d9:06:63:2d:7d:68: 11:1e:cd:b8:dd:65:d2:d5:6f:65:af:9a:48:82:68: 59:b2:e2:e1:50:0f:c0:9d:b5:f2:7f:2a:20:0e:f6: 60:f8:e2:8d:46:cc:ce:8c:bf:4d:4b:b9:18:0f:ed: 56:db:e2:cd:84:1a:a0:a2:3c:cb:4b:f4:03:35:41: 6d:0e:be:27:15:59:78:3f:8f:05:5d:2d:84:8c:6f: 78:f4:c5:07:09:ba:20:59:58:0d:2c:82:08:3f:96: 01:a7:5c:64:ed:5c:7e:d2:6f:23:a0:a1:e6:d0:3c: b2:ec:71:e7:63:7a:ac:54:6a:d9:48:52:3a:4c:ec: 78:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C2:B1:9A:66:15:C8:48:32:21:80:D2:42:F7:83:9B:45:57:D5:9B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c17::/48 Signature Algorithm: sha256WithRSAEncryption 32:b1:d2:e5:b3:05:e3:61:a2:85:09:8b:cb:4d:53:75:7e:8d: 35:04:fb:1e:96:0f:df:3c:84:61:ee:f9:df:cc:e8:f0:69:79: 4a:dd:74:48:e7:cb:79:28:89:e0:00:ac:2c:0c:33:6e:5b:7f: 65:e2:4e:23:e6:24:0b:0a:3e:08:ee:02:56:f9:8b:d4:cf:a1: c5:b9:dd:7b:3a:cf:07:98:47:74:40:5f:3a:32:4b:48:f2:2d: 60:89:cf:51:ce:1b:78:c5:0f:a1:0c:e6:e4:5e:f3:e0:12:6b: 0c:0e:2c:d9:35:b6:90:dd:88:f9:9d:8b:7e:2f:c0:ce:9c:fe: 71:6e:ac:b4:7c:f0:35:7b:ce:ee:6b:62:de:c9:72:da:4f:ab: ba:a1:2a:16:26:2b:8d:63:fc:0a:de:6f:a5:33:37:f5:a9:86: 36:44:8b:15:b9:4a:ff:a2:1f:94:f4:23:7e:f1:70:36:97:cd: fb:62:c5:30:4e:59:fe:19:9c:57:e7:00:7d:cb:dd:d1:f2:5b: 0e:cf:e9:02:32:17:68:5f:50:4e:be:62:5a:24:66:42:93:74: 6b:ad:79:57:26:bf:44:b3:63:5a:b4:0b:4b:01:b7:c4:4c:5e: ae:98:44:fd:e4:ed:f2:05:1a:ac:08:3e:8c:b8:54:bc:ac:91: b1:b5:cd:3a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJmaGLppnUFRwUIaEqXdDPK9hyGMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE1MTUyMTEwWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTZiMDc5MThmYWY1YmU0MDVhZjE3NTQ3MWUyMjhmOWIz MjQ1YjE0ZjczOWZjMDdkNDdiNmZjYTJiZWE3ZmZmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvKYYgit0MQCKCpWc8z0gxipc9l839fee14U2QmEXYwMnh PBVN0MgTuViXJYeVWwoYxAEynUHOS+MrOMWe/m84lBoGNtP/swK0pEMAuUsqqw6u oV3XCkUwvCGWSwM6nFbgwHRz30xFnRzS5iNZj37tQSWS6IH5iuMjlIDLrMUsENkG Yy19aBEezbjdZdLVb2WvmkiCaFmy4uFQD8CdtfJ/KiAO9mD44o1GzM6Mv01LuRgP 7Vbb4s2EGqCiPMtL9AM1QW0OvicVWXg/jwVdLYSMb3j0xQcJuiBZWA0sggg/lgGn XGTtXH7SbyOgoebQPLLscedjeqxUatlIUjpM7Hj5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhcKxmmYVyEgyIYDSQveDm0VX1ZswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQ2MmY2MWJhLTU3NDgtNDk2YS04Nzk1LTYxYzMyZGFmOTc3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBcwDQYJKoZIhvcNAQELBQADggEBADKx0uWzBeNhooUJi8tNU3V+ jTUE+x6WD988hGHu+d/M6PBpeUrddEjny3koieAArCwMM25bf2XiTiPmJAsKPgju Alb5i9TPocW53Xs6zweYR3RAXzoyS0jyLWCJz1HOG3jFD6EM5uRe8+ASawwOLNk1 tpDdiPmdi34vwM6c/nFurLR88DV7zu5rYt7JctpPq7qhKhYmK41j/Areb6UzN/Wp hjZEixW5Sv+iH5T0I37xcDaXzftixTBOWf4ZnFfnAH3L3dHyWw7P6QIyF2hfUE6+ YlokZkKTdGuteVcmv0SzY1q0C0sBt8RMXq6YRP3k7fIFGqwIPoy4VLyskbG1zTo= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:57 2025 by rpki-client