$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa File: c686f937-000a-490a-846c-e2773b637b26.roa (raw, json) Hash identifier: orO0M8lp10dpO0gP4wDOwqBm7pfxrxHMFE+q+xnxhGU= Subject key identifier: 6C:01:37:07:4D:59:17:DE:43:5E:2E:97:93:B8:98:20:22:46:F6:DF Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 77BB6B51E6B50619A6BE0502342316686995274D Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa Signing time: Fri 10 Oct 2025 00:21:07 +0000 ROA not before: Fri 10 Oct 2025 00:21:07 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:bb:6b:51:e6:b5:06:19:a6:be:05:02:34:23:16:68:69:95:27:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Oct 10 00:21:07 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=cca8a2bcf1334151a498167a62270201511fd4517f75cb3c17e5bdf67027448d, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e2:ff:07:56:88:89:ca:2b:04:da:32:18:92: e3:5c:58:c7:e0:60:d3:87:1e:38:2f:cb:85:59:e2: 06:9d:53:f8:9b:1c:cf:31:b9:97:da:9e:4c:63:8b: f0:4d:f9:c7:15:9a:5b:18:fc:78:c5:e8:33:42:7b: 44:7d:08:ad:98:c2:2a:02:e5:eb:a8:a1:8d:21:60: 41:79:a7:35:05:40:03:cd:35:09:41:1e:85:56:23: 98:b8:83:c7:6d:38:ed:ba:0c:ab:6e:91:9e:5b:e2: 13:39:73:22:8e:96:c2:f8:16:4b:5d:a3:2b:63:f5: 70:20:ec:59:3c:b2:63:ad:a9:46:3e:4e:81:50:57: 91:56:c5:91:08:ac:6e:92:a1:9d:c0:b1:89:95:13: 21:fe:eb:c4:53:f9:ee:f3:30:b4:4f:f5:2d:23:12: 97:57:d9:97:12:44:43:da:25:14:e9:11:0c:f5:80: b4:d3:ab:71:da:58:85:ab:6e:64:9e:0e:0a:66:33: bc:1e:43:f1:95:57:ee:9c:d0:12:63:b1:cc:e7:12: 51:bf:8f:cf:a3:8b:86:bc:fa:fb:4c:a0:e3:92:c2: f7:6e:4b:88:20:ff:1f:fc:b4:66:56:24:a1:f2:04: 89:73:b3:b8:48:fd:03:00:60:d5:f9:6e:a2:4c:15: fb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:01:37:07:4D:59:17:DE:43:5E:2E:97:93:B8:98:20:22:46:F6:DF X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/32 Signature Algorithm: sha256WithRSAEncryption 74:81:4a:d1:8b:08:41:ac:0e:b3:ee:f0:97:fb:2e:50:47:62: 95:89:11:37:f3:9f:30:dc:9a:13:57:4b:5e:1b:f3:8e:07:60: fd:0b:c6:c8:23:2d:8e:0b:92:c5:21:1d:19:77:0c:97:97:f8: 73:07:82:90:92:c0:82:a8:1e:2e:ba:ce:c3:1b:ce:8a:f3:37: 69:a7:e5:0f:2d:a8:d8:27:cf:fa:a7:85:0b:9e:b8:62:78:34: 3d:13:48:2a:4b:d2:d2:70:6b:21:c0:83:a0:aa:3d:c2:9b:b6: d4:44:b3:6d:9e:19:cb:33:3a:82:3a:b3:b1:2a:9d:6b:b1:fe: 0b:61:6b:4d:a6:d2:81:d8:6f:c3:0c:3c:ed:76:3d:08:c2:90: de:88:40:ec:6b:6c:5f:e5:95:28:11:06:4a:71:46:96:dd:d7: 7a:52:93:16:5e:91:b9:11:5c:e0:f6:e6:eb:a2:14:6e:0b:d3: 1c:57:5c:eb:36:a8:40:7a:03:af:dd:1d:dd:4f:ff:c8:48:08: 88:28:be:c1:87:35:85:9a:3f:92:4c:83:bd:26:11:1a:85:89: 4c:85:fa:55:c5:2d:d2:bc:d8:54:43:1a:5e:49:f4:1d:c2:c8: 60:27:79:fa:de:89:cc:cf:98:d8:54:f6:b2:4e:53:3f:c2:9f: d0:d9:0d:be -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUd7trUea1BhmmvgUCNCMWaGmVJ00wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUxMDEwMDAyMTA3WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2E4YTJiY2YxMzM0MTUxYTQ5ODE2N2E2MjI3MDIwMTUx MWZkNDUxN2Y3NWNiM2MxN2U1YmRmNjcwMjc0NDhkMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl4v8HVoiJyisE2jIYkuNcWMfgYNOHHjgvy4VZ4gadU/ib HM8xuZfankxji/BN+ccVmlsY/HjF6DNCe0R9CK2YwioC5euooY0hYEF5pzUFQAPN NQlBHoVWI5i4g8dtOO26DKtukZ5b4hM5cyKOlsL4Fktdoytj9XAg7Fk8smOtqUY+ ToFQV5FWxZEIrG6SoZ3AsYmVEyH+68RT+e7zMLRP9S0jEpdX2ZcSREPaJRTpEQz1 gLTTq3HaWIWrbmSeDgpmM7weQ/GVV+6c0BJjscznElG/j8+ji4a8+vtMoOOSwvdu S4gg/x/8tGZWJKHyBIlzs7hI/QMAYNX5bqJMFfu3AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUbAE3B01ZF95DXi6Xk7iYICJG9t8wHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2M2ODZmOTM3LTAwMGEtNDkwYS04NDZjLWUyNzczYjYzN2IyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBg9AMA0GCSqGSIb3DQEBCwUAA4IBAQB0gUrRiwhBrA6z7vCX+y5QR2KV iRE3858w3JoTV0teG/OOB2D9C8bIIy2OC5LFIR0ZdwyXl/hzB4KQksCCqB4uus7D G86K8zdpp+UPLajYJ8/6p4ULnrhieDQ9E0gqS9LScGshwIOgqj3Cm7bURLNtnhnL MzqCOrOxKp1rsf4LYWtNptKB2G/DDDztdj0IwpDeiEDsa2xf5ZUoEQZKcUaW3dd6 UpMWXpG5EVzg9ubrohRuC9McV1zrNqhAegOv3R3dT//ISAiIKL7BhzWFmj+STIO9 JhEahYlMhfpVxS3SvNhUQxpeSfQdwshgJ3n63onMz5jYVPayTlM/wp/Q2Q2+ -----END CERTIFICATE-----Generated at Mon Oct 20 13:21:51 2025 by rpki-client