$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa File: c686f937-000a-490a-846c-e2773b637b26.roa (raw, json) Hash identifier: WC4yhsFKrtvMXiQKJH7WYVBMOJdcp0YZYuh6Ki5JKa8= Subject key identifier: C0:8E:3B:4E:05:33:BB:7C:3B:66:A4:25:D6:FD:26:23:E9:9A:1A:D2 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 38C303998FC5A9CD16C71A057BBA4710D6F7D0A5 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa Signing time: Wed 20 Aug 2025 00:20:47 +0000 ROA not before: Wed 20 Aug 2025 00:20:47 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c3:03:99:8f:c5:a9:cd:16:c7:1a:05:7b:ba:47:10:d6:f7:d0:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Aug 20 00:20:47 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=c820d2edc513e5c7a1160d844b58e82bf555fdaeabd1efbd41e8bdea1f491b08, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9b:71:04:c0:f4:ff:76:80:4c:43:4d:1a:14: 05:61:f0:62:05:e3:be:54:6c:17:ad:58:26:14:5f: ff:69:2a:59:ab:17:05:ab:e5:f9:78:94:f7:8a:5c: 0d:a1:d2:00:19:70:34:99:a1:fd:a2:85:69:e2:e0: 0b:5b:fb:d8:b1:27:4c:f5:6d:1e:86:7c:c8:2e:ab: ef:56:56:9e:a7:fd:b5:82:d9:7f:50:de:e7:23:f4: d4:b1:89:72:2d:7f:a8:07:f7:06:b7:5a:cb:11:dd: 47:f7:2a:13:d9:13:cc:e6:14:14:30:20:7b:ab:74: 22:be:df:25:51:c2:85:e3:bd:78:40:29:8c:8d:44: 30:c1:86:25:b4:95:43:fe:dc:ca:64:7c:b7:0b:a8: cd:6f:a4:ed:46:ef:5a:26:b8:14:ea:dc:4f:95:c8: e7:64:e7:8f:0b:56:c2:d2:f3:75:90:3e:14:dd:28: e6:2b:94:d1:58:f5:03:ce:c9:13:97:50:af:68:59: c2:e9:37:94:06:c6:ac:e4:7c:15:41:4a:b2:8a:b1: 2b:c2:d5:0b:bf:71:83:4e:12:2a:7f:7c:c4:33:a0: 21:8e:a0:c6:47:de:c0:11:ee:bc:dd:00:1c:30:9d: 2f:61:31:0a:02:09:71:6a:05:e2:ea:42:e3:cd:a0: f0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:8E:3B:4E:05:33:BB:7C:3B:66:A4:25:D6:FD:26:23:E9:9A:1A:D2 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/32 Signature Algorithm: sha256WithRSAEncryption 37:86:ee:ae:ad:5e:b6:e1:c3:ff:67:ac:84:45:07:b8:be:49: 7a:ec:4e:4b:96:d4:a1:37:fd:74:b0:a1:dc:70:d7:5c:d1:54: 55:9c:64:ee:f2:19:df:24:30:b9:30:34:f1:be:9d:34:cd:56: 23:33:8b:06:32:6a:c3:a4:59:5f:01:ae:81:25:02:77:a6:18: 79:bf:3a:75:d6:f7:d0:92:c5:7a:13:11:8c:a2:7f:2f:92:22: fe:fb:4f:88:f1:c8:0e:60:0e:da:a5:79:d1:dd:68:46:c2:a8: bc:54:df:68:a0:46:7e:5b:42:ef:9f:5f:45:a7:c1:40:cb:b8: 1d:03:6a:9c:7b:bb:33:3c:6e:09:e9:8a:fd:b3:4b:9a:03:1b: 0d:35:64:5b:b2:65:69:f2:10:6e:cd:4d:e1:76:05:44:83:e6: c5:a3:b4:a6:e0:e5:b2:6b:e0:05:f2:d1:96:93:6b:8c:61:f4: c2:19:f1:c2:67:fa:a3:12:57:2a:84:8f:b4:4f:a8:04:e9:7d: c8:8e:c0:0d:cf:68:c5:21:c2:59:ad:f0:75:21:7e:b2:e7:c4: 5c:d6:a5:c7:ca:17:35:c1:7c:66:00:8d:9c:5c:79:53:a2:5e: 5a:98:13:4e:10:fc:f2:32:8b:1b:14:81:65:08:b7:80:ed:6b: 10:3d:8a:ba -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUOMMDmY/Fqc0WxxoFe7pHENb30KUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwODIwMDAyMDQ3WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjODIwZDJlZGM1MTNlNWM3YTExNjBkODQ0YjU4ZTgyYmY1 NTVmZGFlYWJkMWVmYmQ0MWU4YmRlYTFmNDkxYjA4MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDam3EEwPT/doBMQ00aFAVh8GIF475UbBetWCYUX/9pKlmr FwWr5fl4lPeKXA2h0gAZcDSZof2ihWni4Atb+9ixJ0z1bR6GfMguq+9WVp6n/bWC 2X9Q3ucj9NSxiXItf6gH9wa3WssR3Uf3KhPZE8zmFBQwIHurdCK+3yVRwoXjvXhA KYyNRDDBhiW0lUP+3MpkfLcLqM1vpO1G71omuBTq3E+VyOdk548LVsLS83WQPhTd KOYrlNFY9QPOyROXUK9oWcLpN5QGxqzkfBVBSrKKsSvC1Qu/cYNOEip/fMQzoCGO oMZH3sAR7rzdABwwnS9hMQoCCXFqBeLqQuPNoPCpAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUwI47TgUzu3w7ZqQl1v0mI+maGtIwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2M2ODZmOTM3LTAwMGEtNDkwYS04NDZjLWUyNzczYjYzN2IyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBg9AMA0GCSqGSIb3DQEBCwUAA4IBAQA3hu6urV624cP/Z6yERQe4vkl6 7E5LltShN/10sKHccNdc0VRVnGTu8hnfJDC5MDTxvp00zVYjM4sGMmrDpFlfAa6B JQJ3phh5vzp11vfQksV6ExGMon8vkiL++0+I8cgOYA7apXnR3WhGwqi8VN9ooEZ+ W0Lvn19Fp8FAy7gdA2qce7szPG4J6Yr9s0uaAxsNNWRbsmVp8hBuzU3hdgVEg+bF o7Sm4OWya+AF8tGWk2uMYfTCGfHCZ/qjElcqhI+0T6gE6X3IjsANz2jFIcJZrfB1 IX6y58Rc1qXHyhc1wXxmAI2cXHlTol5amBNOEPzyMosbFIFlCLeA7WsQPYq6 -----END CERTIFICATE-----Generated at Sat Aug 23 06:40:00 2025 by rpki-client