$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa File: 6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa (raw, json) Hash identifier: BpxrTRU8GoEuHdZItrtWJ8Chb6A74i3AXzgGD0Vls4w= Subject key identifier: EC:D6:52:8E:58:94:02:6A:5E:DE:B6:0B:9D:2C:C4:B9:AA:BB:32:10 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 4E04710F0C09B67EB08E9772C7462B79A9D1A2A9 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa Signing time: Mon 06 Oct 2025 16:41:09 +0000 ROA not before: Mon 06 Oct 2025 16:41:09 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:04:71:0f:0c:09:b6:7e:b0:8e:97:72:c7:46:2b:79:a9:d1:a2:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Oct 6 16:41:09 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=00f16b85c8bb8dfb03d0ed4e5ed97ead4ad65aff74b3f55554672ba3375bbecd, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:8a:63:f9:02:c8:3e:b1:79:86:3f:38:13: 08:b6:36:c8:97:24:76:15:48:02:fa:bf:c6:3b:a0: 4f:d7:40:6c:00:35:88:b1:60:6b:6a:1b:e4:9c:89: 15:88:a6:5b:4a:de:45:69:92:4b:1d:c0:10:d7:91: d0:c5:89:96:82:e4:bf:1f:cb:e5:76:16:d5:83:8b: 51:35:ea:54:02:dc:3f:b6:40:15:c4:2e:36:3b:63: 4c:43:0f:16:e0:2d:9d:fd:85:be:c1:ec:78:39:60: 9b:e3:0c:03:67:7b:df:20:d8:2d:d6:02:4a:52:b2: 62:73:2e:b1:e1:31:cb:bd:46:7c:84:d1:0f:98:16: a3:61:2f:3e:d9:cb:dd:b6:50:4d:c0:a7:6a:1f:14: 77:af:ab:1a:b9:bc:32:e6:16:28:b7:31:98:68:17: 7f:75:7e:ad:59:34:20:e9:d8:c3:5c:75:9d:c2:ac: 40:61:2b:d6:fa:37:f7:25:9f:b6:ea:2d:f3:25:a1: b4:bc:1f:73:4b:b7:7e:ce:47:8f:29:6a:64:42:c8: 8f:c0:48:6a:c1:76:4c:e5:53:49:cf:a0:cd:d9:4b: 58:b9:b5:75:0f:f5:d6:7f:d3:f5:e2:ec:2b:6e:e8: 40:50:d8:4f:51:d7:d1:a9:02:fe:42:f7:33:91:89: 47:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D6:52:8E:58:94:02:6A:5E:DE:B6:0B:9D:2C:C4:B9:AA:BB:32:10 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption 8f:0e:22:a0:15:7b:85:ca:e8:4c:86:63:6f:39:7f:a2:a4:03: 3a:30:dc:03:d5:61:1b:12:f3:cc:e9:16:df:16:5c:b5:b9:e8: 33:4b:0c:89:bb:a1:fc:fc:76:9a:5c:83:ac:75:39:28:68:86: 4c:bb:c9:83:47:1c:eb:c6:e0:62:fa:f6:ff:05:5a:c9:5c:ff: 3a:63:1f:40:01:b9:42:7b:29:62:f6:d4:91:f9:f0:33:9e:66: fb:bf:01:88:a7:57:f2:80:28:e6:53:8e:95:b6:e1:65:1c:fe: f3:e3:6e:86:85:1a:3d:5e:ab:e8:00:8c:95:04:e1:2a:a2:f5: ba:fc:f5:67:38:b2:62:ed:21:29:87:7c:aa:d5:8c:7f:e8:71: d5:a3:b6:cd:27:af:ad:0a:d6:c4:4f:da:1a:dc:81:75:5e:c5: 70:1d:ca:0b:71:78:15:1d:e7:4c:a3:4d:bd:06:05:2e:e8:bf: 7d:18:80:9e:87:09:69:f7:c3:96:15:e2:c5:0e:81:3f:ac:83: 74:57:bd:0f:ee:39:c9:26:24:ec:6c:fc:e0:06:cf:8e:ba:8d: 7c:80:81:ae:a6:ac:b0:d8:93:8c:41:4d:19:8b:b7:f5:be:d2: 8e:0d:f8:3c:12:30:0b:76:6b:73:ad:4b:16:c3:b2:83:23:73: ef:02:2a:13 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTgRxDwwJtn6wjpdyx0YreanRoqkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUxMDA2MTY0MTA5WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGYxNmI4NWM4YmI4ZGZiMDNkMGVkNGU1ZWQ5N2VhZDRh ZDY1YWZmNzRiM2Y1NTU1NDY3MmJhMzM3NWJiZWNkMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6F4pj+QLIPrF5hj84Ewi2NsiXJHYVSAL6v8Y7oE/XQGwA NYixYGtqG+SciRWIpltK3kVpkksdwBDXkdDFiZaC5L8fy+V2FtWDi1E16lQC3D+2 QBXELjY7Y0xDDxbgLZ39hb7B7Hg5YJvjDANne98g2C3WAkpSsmJzLrHhMcu9RnyE 0Q+YFqNhLz7Zy922UE3Ap2ofFHevqxq5vDLmFii3MZhoF391fq1ZNCDp2MNcdZ3C rEBhK9b6N/cln7bqLfMlobS8H3NLt37OR48pamRCyI/ASGrBdkzlU0nPoM3ZS1i5 tXUP9dZ/0/Xi7Ctu6EBQ2E9R19GpAv5C9zORiUcxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7NZSjliUAmpe3rYLnSzEuaq7MhAwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzZiYTBjMWYzLTJiMmUtNGQ4YS1iZWYxLTUyZTA3YTRhNWE0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBAI8OIqAVe4XK6EyGY285f6Kk Azow3APVYRsS88zpFt8WXLW56DNLDIm7ofz8dppcg6x1OShohky7yYNHHOvG4GL6 9v8FWslc/zpjH0ABuUJ7KWL21JH58DOeZvu/AYinV/KAKOZTjpW24WUc/vPjboaF Gj1eq+gAjJUE4Sqi9br89Wc4smLtISmHfKrVjH/ocdWjts0nr60K1sRP2hrcgXVe xXAdygtxeBUd50yjTb0GBS7ov30YgJ6HCWn3w5YV4sUOgT+sg3RXvQ/uOckmJOxs /OAGz466jXyAga6mrLDYk4xBTRmLt/W+0o4N+DwSMAt2a3OtSxbDsoMjc+8CKhM= -----END CERTIFICATE-----Generated at Mon Oct 20 15:50:16 2025 by rpki-client