$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa File: 59031a63-ea1a-4943-86ab-19221a23ca42.roa (raw, json) Hash identifier: qVfxusNlCBPMOClNa5hrq1zWWw3asy8h2Ka2dl3uXL0= Subject key identifier: 99:38:86:D9:75:85:C6:F4:1A:A7:0F:8C:99:42:54:B8:CB:83:9D:B6 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 5E6672DC683F64C569E2987C83FE8A72CDC6242E Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa Signing time: Wed 20 Aug 2025 00:20:48 +0000 ROA not before: Wed 20 Aug 2025 00:20:48 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:66:72:dc:68:3f:64:c5:69:e2:98:7c:83:fe:8a:72:cd:c6:24:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Aug 20 00:20:48 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=72b7d8ea5e31baa3857a471a9f887411f172b800563f476bd8fbefa29dad918d, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5d:0b:82:44:ac:be:74:d2:25:81:9a:fb:20: 24:ce:e8:b1:0f:fe:a5:cc:39:6d:66:8f:f1:70:8b: 59:10:88:02:e3:7e:f7:1c:28:56:13:d1:39:69:b3: 99:ef:fb:9b:2c:ab:b4:70:0f:70:e4:e3:3d:42:fe: 65:77:1b:74:6d:af:e0:88:97:88:3b:d1:fd:64:ba: 57:9b:84:89:f3:3e:40:82:93:3c:ac:90:6e:e0:b3: b3:e2:4b:6b:de:ef:8f:12:85:dd:9d:a3:f2:3b:98: b3:a6:34:81:b9:d2:68:92:54:82:e6:4c:49:8d:89: 0a:cd:6e:52:bf:14:48:91:3d:b2:d0:0a:5e:bf:df: 47:99:f1:f4:bb:14:e4:12:e2:63:a7:5e:43:0d:3f: 5d:f6:d8:f8:ad:55:06:de:10:72:5c:e2:d9:7f:b9: 05:f9:dd:d3:b1:f3:64:d9:ab:4f:21:5d:15:3d:96: 8e:8c:be:10:b7:5d:84:95:3c:be:74:2e:8e:27:84: 49:f8:c5:d0:ad:6b:00:63:24:69:cc:e8:35:5e:9f: 18:66:6f:92:09:34:14:e9:8c:3b:53:65:bb:51:d1: 10:6e:ba:9d:1b:fc:94:e4:3d:00:17:ce:68:69:b9: d0:91:c8:ae:b7:b3:ba:83:69:ff:ac:6f:44:a6:60: 60:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:38:86:D9:75:85:C6:F4:1A:A7:0F:8C:99:42:54:B8:CB:83:9D:B6 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:8000::/39 Signature Algorithm: sha256WithRSAEncryption b1:b7:39:5b:cd:a0:d6:f9:54:6e:9b:3e:ce:33:6a:a4:d2:d3: 9d:ae:7f:c2:47:33:a8:e6:52:e8:60:5f:b7:3f:c4:bd:24:37: a9:94:f8:83:5d:d0:d7:de:f4:fe:23:45:b3:61:6e:68:77:8c: 1b:5b:27:64:e3:92:ea:d3:33:46:85:13:7a:c1:61:ca:84:c4: 91:2e:db:ec:35:63:0c:e0:9c:8f:56:b8:f7:ba:77:2d:8e:df: e8:be:e6:fd:6d:39:68:fd:f8:21:5a:16:f4:d6:29:0d:52:ec: 9c:70:e9:66:da:40:81:48:82:95:62:40:db:4d:a2:2d:f5:a3: a2:28:af:e5:63:71:a2:9a:7d:b4:a8:d9:10:9a:af:78:d9:39: 9a:a8:20:15:f5:d7:5d:19:42:0f:6d:02:d0:5a:20:30:38:1f: 3d:9a:ef:73:7d:cc:4c:99:0a:d2:97:85:1f:eb:91:b9:63:d6: 0d:22:53:d2:9b:91:7d:fe:cf:60:72:55:d6:f7:32:c6:f0:e4: 07:d4:f1:cd:74:09:be:73:f6:36:ce:17:ab:ed:de:6c:b7:3a: 11:c0:3f:63:ad:8a:e9:bc:d7:80:3f:af:9f:d4:9a:80:34:1d: 5d:f9:70:e9:5e:fc:13:b1:49:b5:9d:01:9c:ad:ad:86:8c:6f: 64:09:03:11 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXmZy3Gg/ZMVp4ph8g/6Kcs3GJC4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwODIwMDAyMDQ4WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MmI3ZDhlYTVlMzFiYWEzODU3YTQ3MWE5Zjg4NzQxMWYx NzJiODAwNTYzZjQ3NmJkOGZiZWZhMjlkYWQ5MThkMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2XQuCRKy+dNIlgZr7ICTO6LEP/qXMOW1mj/Fwi1kQiALj fvccKFYT0Tlps5nv+5ssq7RwD3Dk4z1C/mV3G3Rtr+CIl4g70f1kulebhInzPkCC kzyskG7gs7PiS2ve748Shd2do/I7mLOmNIG50miSVILmTEmNiQrNblK/FEiRPbLQ Cl6/30eZ8fS7FOQS4mOnXkMNP1322PitVQbeEHJc4tl/uQX53dOx82TZq08hXRU9 lo6MvhC3XYSVPL50Lo4nhEn4xdCtawBjJGnM6DVenxhmb5IJNBTpjDtTZbtR0RBu up0b/JTkPQAXzmhpudCRyK63s7qDaf+sb0SmYGBNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUmTiG2XWFxvQapw+MmUJUuMuDnbYwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzU5MDMxYTYzLWVhMWEtNDk0My04NmFiLTE5MjIxYTIzY2E0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AgDANBgkqhkiG9w0BAQsFAAOCAQEAsbc5W82g1vlUbps+zjNqpNLT na5/wkczqOZS6GBftz/EvSQ3qZT4g13Q1970/iNFs2FuaHeMG1snZOOS6tMzRoUT esFhyoTEkS7b7DVjDOCcj1a497p3LY7f6L7m/W05aP34IVoW9NYpDVLsnHDpZtpA gUiClWJA202iLfWjoiiv5WNxopp9tKjZEJqveNk5mqggFfXXXRlCD20C0FogMDgf PZrvc33MTJkK0peFH+uRuWPWDSJT0puRff7PYHJV1vcyxvDkB9TxzXQJvnP2Ns4X q+3ebLc6EcA/Y62K6bzXgD+vn9SagDQdXflw6V78E7FJtZ0BnK2thoxvZAkDEQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:33:12 2025 by rpki-client