$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/91a27594-a038-483a-a558-a5377f4d266f.roa File: 91a27594-a038-483a-a558-a5377f4d266f.roa (raw, json) Hash identifier: HHPsYUro+V/FkXH6gB+1djR7S8RN56l9b3CFhDAgtgM= Subject key identifier: E0:72:9B:E1:DD:5E:4D:55:64:28:79:40:47:9D:A8:17:86:3B:AC:2B Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 2363EE2833FC9E8A804CDAEF4B783A79289DF3DF Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/91a27594-a038-483a-a558-a5377f4d266f.roa Signing time: Fri 15 Aug 2025 00:50:18 +0000 ROA not before: Fri 15 Aug 2025 00:50:18 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:63:ee:28:33:fc:9e:8a:80:4c:da:ef:4b:78:3a:79:28:9d:f3:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Aug 15 00:50:18 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=32b7286905761d7777068ce7828fcb70d46281325a4e9ecdfd6c7496c060edf5, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e9:d0:79:aa:2e:1a:71:36:38:36:3b:48:d0: 44:32:da:5d:ee:80:db:83:2a:91:46:5c:cb:51:7f: 05:11:1f:e6:af:af:7c:a7:e5:9a:3f:eb:a2:2f:dc: ad:17:55:bc:1e:d2:23:ce:bc:fe:31:e6:f3:eb:69: f0:a3:ed:e0:30:84:82:48:0c:84:f6:be:f6:91:38: fc:43:d3:c9:ed:e9:a0:08:04:88:60:3d:0e:57:b2: f0:2b:a0:6c:93:8f:48:af:6c:dd:98:52:07:26:ad: e1:e3:84:ce:88:b3:43:df:51:b2:02:e5:87:d6:3f: 32:bc:1b:d2:65:9a:7b:bb:61:5b:9f:bf:a7:fe:35: 4a:4f:4f:a3:3b:06:f7:a7:19:98:7b:94:56:33:03: 10:7a:c4:5b:dc:2a:6f:1a:4d:66:14:de:14:86:0d: a0:fe:f3:1b:f6:8c:a9:48:10:41:a1:45:fd:46:7f: c1:09:91:a8:b2:81:02:81:63:5f:8f:44:d9:58:aa: 64:15:6a:bb:c8:b5:e7:21:74:70:4b:d9:0a:07:1f: 27:86:c9:3f:d9:17:ba:4b:d2:22:fd:1c:24:02:50: 11:24:72:55:3d:77:ad:fc:47:b8:e0:2f:c7:c2:13: 32:c6:60:30:75:04:f0:3b:13:2d:12:b3:f7:5d:17: fa:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:72:9B:E1:DD:5E:4D:55:64:28:79:40:47:9D:A8:17:86:3B:AC:2B X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/91a27594-a038-483a-a558-a5377f4d266f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffc::/48 Signature Algorithm: sha256WithRSAEncryption b8:f0:12:a4:41:04:bb:8c:29:16:e5:05:df:c3:44:73:d1:b5: 9a:ec:02:be:22:2e:dc:0c:eb:52:92:b3:5e:31:55:c7:7d:71: 8d:de:21:e1:a2:5d:26:42:f4:61:11:5c:de:33:ed:19:9a:66: b0:2d:d6:00:87:0c:55:30:bc:24:cf:5b:e6:3a:85:c2:39:c9: 83:82:ec:20:c6:c3:8c:1e:dc:d3:4b:1f:e8:4e:23:75:1e:9b: fd:64:d1:17:f1:69:3a:66:e0:18:73:83:d7:1c:eb:8a:71:be: 82:d9:16:51:2d:76:43:46:8e:eb:2c:4c:de:c6:88:c7:e2:fc: 50:1c:c5:aa:b5:20:e0:ae:b3:aa:95:71:10:2e:fe:a7:4e:fe: a3:3d:4c:2e:63:23:79:29:c7:b7:55:0d:57:9c:4d:03:d7:34: 2d:87:23:b6:8b:11:62:5f:e4:29:9e:ce:2a:81:61:75:2c:67: 2e:b2:49:9e:e4:bd:7b:a7:fb:da:5c:d9:f6:3e:50:e5:23:26: a8:02:dd:fa:aa:0a:f6:b6:60:43:ef:0b:ed:08:2c:41:54:0f: 46:29:2a:c8:8f:be:2c:24:1c:df:bc:33:61:12:76:ac:3b:7c: 77:2f:14:f9:a4:6f:32:9a:97:91:08:0b:a0:b1:26:35:d1:ff: 60:0d:86:e7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI2PuKDP8noqATNrvS3g6eSid898wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwODE1MDA1MDE4WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmI3Mjg2OTA1NzYxZDc3NzcwNjhjZTc4MjhmY2I3MGQ0 NjI4MTMyNWE0ZTllY2RmZDZjNzQ5NmMwNjBlZGY1MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCW6dB5qi4acTY4NjtI0EQy2l3ugNuDKpFGXMtRfwURH+av r3yn5Zo/66Iv3K0XVbwe0iPOvP4x5vPrafCj7eAwhIJIDIT2vvaROPxD08nt6aAI BIhgPQ5XsvAroGyTj0ivbN2YUgcmreHjhM6Is0PfUbIC5YfWPzK8G9Jlmnu7YVuf v6f+NUpPT6M7BvenGZh7lFYzAxB6xFvcKm8aTWYU3hSGDaD+8xv2jKlIEEGhRf1G f8EJkaiygQKBY1+PRNlYqmQVarvItechdHBL2QoHHyeGyT/ZF7pL0iL9HCQCUBEk clU9d638R7jgL8fCEzLGYDB1BPA7Ey0Ss/ddF/otAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4HKb4d1eTVVkKHlAR52oF4Y7rCswHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzkxYTI3NTk0LWEwMzgtNDgzYS1hNTU4LWE1Mzc3ZjRkMjY2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//wwDQYJKoZIhvcNAQELBQADggEBALjwEqRBBLuMKRblBd/DRHPR tZrsAr4iLtwM61KSs14xVcd9cY3eIeGiXSZC9GERXN4z7RmaZrAt1gCHDFUwvCTP W+Y6hcI5yYOC7CDGw4we3NNLH+hOI3Uem/1k0RfxaTpm4Bhzg9cc64pxvoLZFlEt dkNGjussTN7GiMfi/FAcxaq1IOCus6qVcRAu/qdO/qM9TC5jI3kpx7dVDVecTQPX NC2HI7aLEWJf5CmeziqBYXUsZy6ySZ7kvXun+9pc2fY+UOUjJqgC3fqqCva2YEPv C+0ILEFUD0YpKsiPviwkHN+8M2ESdqw7fHcvFPmkbzKal5EIC6CxJjXR/2ANhuc= -----END CERTIFICATE-----Generated at Sat Aug 23 08:13:10 2025 by rpki-client