$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa File: 943694fe-e278-4d76-b786-7df26f151dd9.roa (raw, json) Hash identifier: dfnUACfEadw2UAG9YMu24QFFT6yzAdaukQCGDj34yQM= Subject key identifier: D4:12:7D:E9:49:64:0B:EA:BD:5C:BB:A7:7B:CE:9A:F4:75:1E:44:5A Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 08A5F24C5BC757A990DCCB5C56FD18E5FF9EE6EF Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa Signing time: Mon 06 Oct 2025 16:41:08 +0000 ROA not before: Mon 06 Oct 2025 16:41:08 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:a5:f2:4c:5b:c7:57:a9:90:dc:cb:5c:56:fd:18:e5:ff:9e:e6:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Oct 6 16:41:08 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=ccc1c51f7f572e236fb0cd3963fc352c21119baef760995b696fe47a8bc9eb8d, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d1:0a:be:98:8d:b3:c3:6b:42:ab:7b:ba:57: 67:55:97:20:6b:1e:66:67:0a:a8:80:bf:84:76:37: 0d:ef:cb:9f:79:97:59:f5:d9:73:24:5c:61:16:c6: c8:a2:eb:41:03:b3:8f:27:16:48:81:a1:93:9e:04: 06:78:af:d2:0e:28:ce:36:3e:95:8d:c0:c6:c0:0c: ec:6e:cb:19:6b:cf:d5:a5:80:1d:d1:6d:b7:99:16: d6:c1:71:c5:9d:88:04:0a:1b:3f:c7:69:e8:e6:f0: d3:bb:8d:44:30:b4:6c:33:a0:04:86:97:85:05:c8: 44:0a:05:5a:29:52:3b:d8:ed:45:a4:f4:9a:9b:97: f5:0a:71:4e:e4:ae:d5:fd:63:f0:1c:c9:c3:ab:8d: 0c:bb:37:dd:d9:c5:ab:c3:0a:b6:82:7c:56:fc:89: 3b:cb:45:f5:b1:03:c4:f1:1d:b3:11:1e:e7:ba:de: 5f:c2:69:d6:f9:36:92:9e:7a:9d:e6:28:66:f6:5b: db:e3:b9:e7:ae:ba:17:2d:c4:f2:4a:c4:e9:e3:45: 3f:19:e8:2c:a9:4d:3a:38:4d:b2:7e:ac:73:46:8e: 3b:c3:8c:11:22:79:22:69:83:7a:0c:2a:42:59:5c: 97:f5:95:13:bc:b9:d1:aa:1c:5d:b1:ca:77:54:bd: 35:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:12:7D:E9:49:64:0B:EA:BD:5C:BB:A7:7B:CE:9A:F4:75:1E:44:5A X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption 8a:aa:b4:d9:b4:8e:62:c8:b9:2e:1d:38:42:a3:d6:3c:31:e6: 7e:9d:e8:2d:16:43:81:ca:85:de:00:e7:7e:36:b8:7f:6b:40: 21:1a:16:26:8f:c3:8b:94:04:fe:cc:65:14:8c:fa:2c:5e:e5: 7a:cf:5b:e7:46:4b:db:47:7b:70:41:d3:e8:2b:7a:59:d2:9f: c8:de:c2:39:39:4d:8e:bf:27:46:5f:08:c6:29:60:35:31:84: 82:95:ff:d1:3b:0f:2e:bf:b3:96:00:16:c4:2e:49:a9:fc:95: e9:26:43:c4:c3:0c:d8:07:95:10:25:67:08:b6:12:70:dd:f0: 51:0c:fd:60:6d:f3:51:a1:ac:31:d4:e9:60:8c:d4:5c:5c:90: 24:f0:32:87:3e:30:a9:75:22:ec:6d:a6:f9:29:88:8a:a4:36: c8:42:5b:46:d9:7a:ba:e5:37:d0:b5:c2:e9:35:e5:a4:a0:26: 39:13:5b:42:98:ab:fd:66:39:d3:c5:15:19:53:f0:90:76:f0: 90:ed:60:9c:19:be:f2:99:1d:3e:75:c7:06:7f:9a:80:2f:32: a9:79:13:0d:81:9f:87:72:6c:85:cd:a7:ce:5b:99:0f:c2:d9: 94:57:0e:d8:60:f4:3d:8a:ec:af:7f:c1:d3:34:48:e1:2a:ee: 21:18:86:21 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCKXyTFvHV6mQ3MtcVv0Y5f+e5u8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUxMDA2MTY0MTA4WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2MxYzUxZjdmNTcyZTIzNmZiMGNkMzk2M2ZjMzUyYzIx MTE5YmFlZjc2MDk5NWI2OTZmZTQ3YThiYzllYjhkMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL0Qq+mI2zw2tCq3u6V2dVlyBrHmZnCqiAv4R2Nw3vy595 l1n12XMkXGEWxsii60EDs48nFkiBoZOeBAZ4r9IOKM42PpWNwMbADOxuyxlrz9Wl gB3RbbeZFtbBccWdiAQKGz/Haejm8NO7jUQwtGwzoASGl4UFyEQKBVopUjvY7UWk 9Jqbl/UKcU7krtX9Y/AcycOrjQy7N93ZxavDCraCfFb8iTvLRfWxA8TxHbMRHue6 3l/Cadb5NpKeep3mKGb2W9vjueeuuhctxPJKxOnjRT8Z6CypTTo4TbJ+rHNGjjvD jBEieSJpg3oMKkJZXJf1lRO8udGqHF2xyndUvTXvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1BJ96UlkC+q9XLune86a9HUeRFowHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzk0MzY5NGZlLWUyNzgtNGQ3Ni1iNzg2LTdkZjI2ZjE1MWRkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBAIqqtNm0jmLIuS4dOEKj1jwx 5n6d6C0WQ4HKhd4A5342uH9rQCEaFiaPw4uUBP7MZRSM+ixe5XrPW+dGS9tHe3BB 0+grelnSn8jewjk5TY6/J0ZfCMYpYDUxhIKV/9E7Dy6/s5YAFsQuSan8lekmQ8TD DNgHlRAlZwi2EnDd8FEM/WBt81GhrDHU6WCM1FxckCTwMoc+MKl1IuxtpvkpiIqk NshCW0bZerrlN9C1wuk15aSgJjkTW0KYq/1mOdPFFRlT8JB28JDtYJwZvvKZHT51 xwZ/moAvMql5Ew2Bn4dybIXNp85bmQ/C2ZRXDthg9D2K7K9/wdM0SOEq7iEYhiE= -----END CERTIFICATE-----Generated at Sun Oct 19 23:05:05 2025 by rpki-client