$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/0c492edd-c347-4b97-a816-01566f9d097b.roa File: 0c492edd-c347-4b97-a816-01566f9d097b.roa (raw, json) Hash identifier: CkECVWPLhGnLhp7CH4zShS5/WeRf5W/AW1D1j7Au+4s= Subject key identifier: C0:EB:C3:CD:17:3B:B2:A7:D3:69:10:CA:FE:E7:2E:01:96:3C:D1:28 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 73F821336B385072556DA55B62771768C5026787 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/0c492edd-c347-4b97-a816-01566f9d097b.roa Signing time: Wed 20 Aug 2025 00:20:49 +0000 ROA not before: Wed 20 Aug 2025 00:20:49 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:f8:21:33:6b:38:50:72:55:6d:a5:5b:62:77:17:68:c5:02:67:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Aug 20 00:20:49 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=d73cf144604fa0db26dcea422b43ffc571cd47e3e9f30c4b7b52531e3bb6ab3b, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8e:55:c7:41:c4:52:d1:6d:9e:fd:23:3c:d1: ac:7b:d2:42:7a:99:4d:3f:cc:5e:39:87:21:48:21: a3:9e:25:36:a8:ed:80:73:dd:be:23:b7:ce:dd:aa: a7:93:b2:cf:86:b2:89:50:b1:74:75:4b:7a:7f:05: 20:74:04:97:0c:0d:26:b4:fc:e7:17:d1:a6:89:3f: ec:65:19:8f:db:a3:32:97:1c:46:e7:a7:1d:59:f5: 0f:80:9c:9a:42:1b:ec:98:8f:60:ab:f5:63:de:c8: 55:c2:c2:97:20:21:3a:af:3d:3d:90:89:43:89:69: fd:9d:7e:dd:9d:b2:64:22:eb:d8:b6:aa:ba:05:2c: f4:91:58:58:d0:7d:87:02:43:7e:59:5c:ba:70:b8: ec:fc:74:da:ba:c7:de:79:bd:67:0a:e2:7b:08:bf: 30:be:c2:31:0a:6c:92:e0:ac:52:b6:a6:4e:af:29: c0:97:75:05:96:64:2e:f2:e7:b2:ca:41:8b:c8:b9: b8:20:12:0b:ad:3d:ee:3d:a8:f1:73:3f:f6:57:53: dc:04:5f:5d:6f:f4:97:c7:95:a0:ec:0a:3d:da:ed: 1c:31:0c:74:82:63:3f:29:57:33:b3:b2:23:75:2b: 88:cd:47:8a:bf:aa:9f:bf:bf:57:e5:73:94:c0:1e: 46:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:EB:C3:CD:17:3B:B2:A7:D3:69:10:CA:FE:E7:2E:01:96:3C:D1:28 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/0c492edd-c347-4b97-a816-01566f9d097b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:8000::/39 Signature Algorithm: sha256WithRSAEncryption 39:83:86:5f:d2:74:7e:b7:7d:d1:06:3b:bd:bd:07:05:aa:b3: ec:cb:8e:55:29:09:ad:c6:3a:50:6b:48:dc:9b:0d:39:c2:db: 59:86:26:14:6d:3a:4a:44:7a:8f:87:41:3f:1d:38:a8:6e:a5: 24:8e:c3:b0:03:78:ff:de:88:c0:a7:50:31:ea:a7:96:6c:0b: 8a:c4:44:44:01:d3:40:3d:fa:ab:a1:3a:20:69:71:28:b8:a0: 5d:7f:88:08:38:83:69:94:53:bd:f6:e2:a2:5c:1e:bc:35:0b: d5:ac:bf:64:e5:30:70:8b:38:a6:57:25:60:92:22:59:25:35: 05:b7:d5:f1:75:73:90:88:fc:0b:17:fa:fa:46:d4:6f:5a:b9: 5e:f0:a4:e8:fb:1b:31:c0:e7:a5:d1:07:06:4f:ec:23:c7:58: 01:d7:43:f7:d3:b7:c6:3a:ec:0b:ab:8c:a8:cc:a2:88:1e:13: 4f:0c:1d:69:83:d4:16:90:87:33:c2:98:26:bb:73:ee:93:61: 24:17:a7:c1:5b:d9:27:fc:0c:7f:a6:5b:57:fd:f7:ac:6b:92: 0b:f6:56:27:7e:cb:1a:84:b3:63:8a:a2:19:58:83:0f:99:63: 63:48:c2:f3:9c:17:8a:60:e1:ae:5d:3b:0b:af:ce:52:e1:d8: 6d:41:7e:33 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUc/ghM2s4UHJVbaVbYncXaMUCZ4cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwODIwMDAyMDQ5WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzNjZjE0NDYwNGZhMGRiMjZkY2VhNDIyYjQzZmZjNTcx Y2Q0N2UzZTlmMzBjNGI3YjUyNTMxZTNiYjZhYjNiMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBjlXHQcRS0W2e/SM80ax70kJ6mU0/zF45hyFIIaOeJTao 7YBz3b4jt87dqqeTss+GsolQsXR1S3p/BSB0BJcMDSa0/OcX0aaJP+xlGY/bozKX HEbnpx1Z9Q+AnJpCG+yYj2Cr9WPeyFXCwpcgITqvPT2QiUOJaf2dft2dsmQi69i2 qroFLPSRWFjQfYcCQ35ZXLpwuOz8dNq6x955vWcK4nsIvzC+wjEKbJLgrFK2pk6v KcCXdQWWZC7y57LKQYvIubggEgutPe49qPFzP/ZXU9wEX11v9JfHlaDsCj3a7Rwx DHSCYz8pVzOzsiN1K4jNR4q/qp+/v1flc5TAHka9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUwOvDzRc7sqfTaRDK/ucuAZY80SgwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzBjNDkyZWRkLWMzNDctNGI5Ny1hODE2LTAxNTY2ZjlkMDk3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AgDANBgkqhkiG9w0BAQsFAAOCAQEAOYOGX9J0frd90QY7vb0HBaqz 7MuOVSkJrcY6UGtI3JsNOcLbWYYmFG06SkR6j4dBPx04qG6lJI7DsAN4/96IwKdQ MeqnlmwLisRERAHTQD36q6E6IGlxKLigXX+ICDiDaZRTvfbiolwevDUL1ay/ZOUw cIs4plclYJIiWSU1BbfV8XVzkIj8Cxf6+kbUb1q5XvCk6PsbMcDnpdEHBk/sI8dY AddD99O3xjrsC6uMqMyiiB4TTwwdaYPUFpCHM8KYJrtz7pNhJBenwVvZJ/wMf6Zb V/33rGuSC/ZWJ37LGoSzY4qiGViDD5ljY0jC85wXimDhrl07C6/OUuHYbUF+Mw== -----END CERTIFICATE-----Generated at Sat Aug 23 08:11:22 2025 by rpki-client