$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa File: 4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa (raw, json) Hash identifier: DVqr5m6F4M4kwigv7sJIUmkhj7pOyaDwBdJNWw0NBHU= Subject key identifier: B3:99:3E:45:7A:53:AA:04:C6:D1:CA:CD:BE:56:92:03:ED:06:22:A1 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 38A12B547226F60EEC05CB3B5008752FB57AC03B Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa Signing time: Mon 06 Oct 2025 16:41:10 +0000 ROA not before: Mon 06 Oct 2025 16:41:10 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a1:2b:54:72:26:f6:0e:ec:05:cb:3b:50:08:75:2f:b5:7a:c0:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Oct 6 16:41:10 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=73a7f7c343797fe112a6778de7a9600961f46d4c9fd01d298f9f9dc8ad9b0adb, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:96:90:8a:75:b5:b6:af:70:a6:09:41:61:0b: 6b:05:b6:03:a3:75:d5:b5:75:18:8d:14:c8:8f:97: db:7a:70:ad:3b:f0:01:f9:24:a8:f0:06:33:40:14: 10:72:a3:ad:92:f5:66:ed:1c:4b:85:89:4c:bc:a3: 67:53:3f:62:05:5c:fb:97:e9:dc:32:59:c4:51:1b: 1d:c1:da:00:29:b7:ab:ab:46:00:c9:0a:d0:55:7a: 70:b8:d3:7d:e9:06:e0:bd:43:4b:b2:b2:79:19:05: 13:57:45:1b:3f:ad:b6:81:eb:44:1c:4e:aa:93:ed: da:97:13:e0:a6:1e:ef:27:1d:31:f8:0d:67:41:97: c9:34:39:52:79:51:2a:2e:fa:9d:3c:20:55:10:ea: e2:84:60:af:b1:16:06:8b:8e:b8:49:30:76:e4:c7: 82:f5:df:30:87:3b:f9:19:74:24:f7:44:96:da:a3: f3:91:cd:54:20:c6:ae:b5:d1:da:28:2b:6f:f2:51: 89:88:ee:0d:aa:76:f3:07:02:8b:6b:36:8d:f8:77: 7d:65:36:a3:8b:60:b9:95:bc:d5:ff:9d:db:7e:4e: dd:dd:4c:ee:94:0e:c9:64:4f:ed:e3:aa:d3:2f:de: 26:4d:ca:ff:38:e1:5f:c1:c8:4a:d1:26:58:fb:25: c0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:99:3E:45:7A:53:AA:04:C6:D1:CA:CD:BE:56:92:03:ED:06:22:A1 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffc::/48 Signature Algorithm: sha256WithRSAEncryption 38:dc:ec:78:11:4a:55:f4:99:66:cd:9d:8d:6e:b8:d7:c1:bb: a4:61:97:85:7a:0e:cf:a4:44:66:7d:a5:7e:96:5d:34:3b:43: a2:19:ec:cf:0b:98:01:b9:01:b4:c6:77:be:dc:b0:0f:9a:dd: d5:25:1d:33:8b:ad:81:82:d4:1b:d3:ac:cb:84:aa:ed:3e:5d: 76:d9:e8:da:46:52:f7:bc:b3:e1:ff:6c:9e:c5:a4:2c:4f:0d: 94:24:30:0c:0b:de:02:d6:e3:ea:15:83:ff:fe:d1:88:65:0b: 21:ba:9e:bb:90:fe:7c:66:9b:f4:a8:1e:9b:68:e5:28:67:14: 2a:36:3a:54:36:fb:f4:c8:97:3d:8a:73:d2:8f:6a:ea:0a:1c: e7:dd:39:11:32:d6:64:db:3a:0d:64:72:f2:1f:fb:a9:11:f8: da:23:d0:de:f1:dc:fa:aa:9a:4a:80:f8:00:8a:84:63:6c:d3: 0a:ca:5b:97:ff:90:9e:d9:34:dc:8a:2e:5d:60:b2:c0:f4:d4: 40:86:bc:3d:e7:34:b3:f9:1e:0f:3d:e4:c1:3d:ff:a8:f5:a2: 2b:d7:73:34:a6:ca:a8:ea:ec:d7:0c:12:82:54:3d:62:98:15: 7e:6f:dc:8e:bf:ff:b7:19:0f:50:ec:ca:02:5d:87:12:d1:61: cc:b9:a1:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOKErVHIm9g7sBcs7UAh1L7V6wDswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUxMDA2MTY0MTEwWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3M2E3ZjdjMzQzNzk3ZmUxMTJhNjc3OGRlN2E5NjAwOTYx ZjQ2ZDRjOWZkMDFkMjk4ZjlmOWRjOGFkOWIwYWRiMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6lpCKdbW2r3CmCUFhC2sFtgOjddW1dRiNFMiPl9t6cK07 8AH5JKjwBjNAFBByo62S9WbtHEuFiUy8o2dTP2IFXPuX6dwyWcRRGx3B2gApt6ur RgDJCtBVenC4033pBuC9Q0uysnkZBRNXRRs/rbaB60QcTqqT7dqXE+CmHu8nHTH4 DWdBl8k0OVJ5USou+p08IFUQ6uKEYK+xFgaLjrhJMHbkx4L13zCHO/kZdCT3RJba o/ORzVQgxq610dooK2/yUYmI7g2qdvMHAotrNo34d31lNqOLYLmVvNX/ndt+Tt3d TO6UDslkT+3jqtMv3iZNyv844V/ByErRJlj7JcBvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUs5k+RXpTqgTG0crNvlaSA+0GIqEwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzRhZWY3NWY0LTg3ZWYtNDZkMy05NmQ3LWRjNTNiZTE3OGViZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//wwDQYJKoZIhvcNAQELBQADggEBADjc7HgRSlX0mWbNnY1uuNfB u6Rhl4V6Ds+kRGZ9pX6WXTQ7Q6IZ7M8LmAG5AbTGd77csA+a3dUlHTOLrYGC1BvT rMuEqu0+XXbZ6NpGUve8s+H/bJ7FpCxPDZQkMAwL3gLW4+oVg//+0YhlCyG6nruQ /nxmm/SoHpto5ShnFCo2OlQ2+/TIlz2Kc9KPauoKHOfdOREy1mTbOg1kcvIf+6kR +Noj0N7x3PqqmkqA+ACKhGNs0wrKW5f/kJ7ZNNyKLl1gssD01ECGvD3nNLP5Hg89 5ME9/6j1oivXczSmyqjq7NcMEoJUPWKYFX5v3I6//7cZD1DsygJdhxLRYcy5oS4= -----END CERTIFICATE-----Generated at Mon Oct 20 10:26:29 2025 by rpki-client