$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f5b1d1bf-721f-4a57-a400-f549c190180c.roa File: f5b1d1bf-721f-4a57-a400-f549c190180c.roa (raw, json) Hash identifier: pJSUwRWpZWT95yNtBXA+52CDAWSm/440m9RS9DAs7rA= Subject key identifier: 9C:0D:87:8B:8E:9E:D2:71:42:78:45:FD:28:54:33:55:E1:99:71:04 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4925564CC4AEF7D12112D2675765CAE7094AD031 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f5b1d1bf-721f-4a57-a400-f549c190180c.roa Signing time: Fri 15 Aug 2025 15:30:06 +0000 ROA not before: Fri 15 Aug 2025 15:30:06 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:8140:400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:25:56:4c:c4:ae:f7:d1:21:12:d2:67:57:65:ca:e7:09:4a:d0:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:06 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=dfecf01037642e73143e6bb381568ddd3618c222d53908cc676815b154c21f5e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d2:56:ec:42:29:a3:a2:1d:e5:25:02:77:9d: 85:97:24:74:ce:8b:df:3a:a7:35:4b:fe:d9:00:73: 62:b1:a4:52:99:b2:22:98:b8:94:86:a7:2c:78:97: a7:85:86:32:ac:70:6d:94:d3:19:ad:d5:1a:3e:67: 7a:b4:f0:58:e6:bd:89:3d:9a:b8:42:96:66:ca:a4: 31:5f:f9:48:16:2b:d0:36:d9:6b:c3:e0:a1:9a:7a: c2:b4:78:5c:2e:4b:48:3f:35:cb:10:a8:b4:b4:a3: 1c:31:5a:56:a2:46:c5:47:f5:ae:d5:6d:89:7d:41: e1:cf:8e:04:1a:c7:c5:1d:29:69:10:09:8c:e7:52: a2:dd:d5:1b:29:02:40:33:a8:3c:ee:73:dd:1b:51: 57:b5:5a:ab:4c:77:a7:f2:e3:18:e2:8a:ce:24:28: c5:6d:2e:7c:d7:f8:b0:2f:70:6f:d6:14:55:e9:21: 28:c5:37:53:6b:c1:34:c9:43:7b:84:30:49:26:03: 0b:3b:86:ef:4e:97:90:bf:02:83:25:35:3c:24:c9: da:8f:ac:a3:ca:c5:1c:7e:66:37:58:f7:99:c2:b3: f2:db:fa:c3:22:6b:06:4f:29:43:0c:28:f3:3f:dc: 00:a3:c3:a7:16:94:a8:67:db:44:14:18:07:23:45: f5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:0D:87:8B:8E:9E:D2:71:42:78:45:FD:28:54:33:55:E1:99:71:04 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f5b1d1bf-721f-4a57-a400-f549c190180c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140:400::/40 Signature Algorithm: sha256WithRSAEncryption 89:c6:0f:66:00:03:8a:a0:b1:c7:b8:07:23:e2:03:ef:3a:4e: 78:22:1f:0d:e0:2c:30:67:7c:2c:0e:df:ed:10:b4:77:2f:cf: bb:d7:5b:59:5d:7d:04:ca:0a:f3:34:8a:87:ab:91:5e:05:c2: 00:07:29:72:9b:a8:67:03:f2:95:7a:77:50:52:df:4d:16:23: 2d:b6:51:8f:cb:95:ca:a4:24:84:30:c7:b9:8f:c9:b4:12:22: b7:10:6f:1b:4e:5b:7c:42:0e:52:b8:c4:ea:43:4e:87:28:68: ac:8c:84:8f:8d:0f:86:d9:b7:8c:85:04:8f:b6:18:42:d0:75: 8f:3b:be:f8:ce:c2:fd:36:f3:99:b3:03:b9:39:a8:31:c3:34: fa:8c:fc:3a:07:63:15:8c:82:4c:a2:71:60:51:be:89:2a:33: b1:06:f1:89:90:29:06:87:bf:cf:00:7d:85:61:95:20:7e:ff: 66:0d:35:9b:46:36:03:01:d4:2e:cc:f8:f9:90:b6:d2:d3:63: 14:c9:43:8c:3f:19:da:25:9b:82:e2:1e:9e:22:99:98:1a:68: 2b:db:a9:4e:16:a3:5e:78:2d:10:a6:02:48:a5:49:8a:7c:9e: a3:a6:62:3f:b0:9a:b6:d1:3e:e3:df:c0:83:44:6d:eb:96:1c: 40:b0:0b:41 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSSVWTMSu99EhEtJnV2XK5wlK0DEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDA2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmVjZjAxMDM3NjQyZTczMTQzZTZiYjM4MTU2OGRkZDM2 MThjMjIyZDUzOTA4Y2M2NzY4MTViMTU0YzIxZjVlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC80lbsQimjoh3lJQJ3nYWXJHTOi986pzVL/tkAc2KxpFKZ siKYuJSGpyx4l6eFhjKscG2U0xmt1Ro+Z3q08FjmvYk9mrhClmbKpDFf+UgWK9A2 2WvD4KGaesK0eFwuS0g/NcsQqLS0oxwxWlaiRsVH9a7VbYl9QeHPjgQax8UdKWkQ CYznUqLd1RspAkAzqDzuc90bUVe1WqtMd6fy4xjiis4kKMVtLnzX+LAvcG/WFFXp ISjFN1NrwTTJQ3uEMEkmAws7hu9Ol5C/AoMlNTwkydqPrKPKxRx+ZjdY95nCs/Lb +sMiawZPKUMMKPM/3ACjw6cWlKhn20QUGAcjRfVhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnA2Hi46e0nFCeEX9KFQzVeGZcQQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Y1YjFkMWJmLTcyMWYtNGE1Ny1hNDAwLWY1NDljMTkwMTgwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBoFABDANBgkqhkiG9w0BAQsFAAOCAQEAicYPZgADiqCxx7gHI+ID7zpO eCIfDeAsMGd8LA7f7RC0dy/Pu9dbWV19BMoK8zSKh6uRXgXCAAcpcpuoZwPylXp3 UFLfTRYjLbZRj8uVyqQkhDDHuY/JtBIitxBvG05bfEIOUrjE6kNOhyhorIyEj40P htm3jIUEj7YYQtB1jzu++M7C/TbzmbMDuTmoMcM0+oz8OgdjFYyCTKJxYFG+iSoz sQbxiZApBoe/zwB9hWGVIH7/Zg01m0Y2AwHULsz4+ZC20tNjFMlDjD8Z2iWbguIe niKZmBpoK9upThajXngtEKYCSKVJinyeo6ZiP7CattE+49/Ag0Rt65YcQLALQQ== -----END CERTIFICATE-----Generated at Sat Aug 23 06:51:20 2025 by rpki-client