$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa File: d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa (raw, json) Hash identifier: bdgv9XA3gfXjWm+xZgH+rpGz8k0yb1P4kb+XxNRU1K0= Subject key identifier: 36:03:01:E5:D3:D4:39:80:9F:2D:C3:E0:96:7D:06:23:47:F7:9E:8F Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 31B69697E6811BFD6A6F96A04F9C2C723905282D Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa Signing time: Wed 20 Aug 2025 00:20:46 +0000 ROA not before: Wed 20 Aug 2025 00:20:46 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:b6:96:97:e6:81:1b:fd:6a:6f:96:a0:4f:9c:2c:72:39:05:28:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Aug 20 00:20:46 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=876619a75fd18afec6314165d7889ab83fe0543bcc92d7e8990cb182210ba551, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6b:a4:53:7f:21:29:c6:05:60:97:39:09:a6: 99:c7:18:3e:57:ea:15:2e:dd:73:e6:9f:21:c9:df: e4:29:5b:ac:72:cb:84:1a:0b:40:1f:e8:c0:98:d9: c9:af:7b:29:47:39:47:c5:21:5b:82:fe:8b:b5:d7: bd:3c:7c:4a:b6:ab:81:ae:81:2c:7d:a3:d9:f6:3c: fc:3d:b9:93:e3:53:b5:2c:1e:66:85:12:cc:97:d5: 40:94:9a:ae:cb:b8:ac:4c:ac:77:25:d9:c8:0a:ab: 6a:30:03:d2:81:f9:7b:0c:d0:bd:55:28:5c:0b:54: ec:56:28:11:bd:53:b4:c8:19:5d:14:ae:52:d1:7e: 68:d1:ab:6d:72:86:f3:18:1f:11:37:d7:f8:33:dc: 26:43:1f:01:f6:05:53:47:09:ed:de:f6:48:84:6f: 5e:28:66:20:bd:18:77:32:69:af:7a:08:9f:c8:92: d3:81:3b:7d:e4:6f:ce:70:55:55:ef:d7:5a:24:63: dc:43:a1:6c:5e:fe:50:82:82:c3:ca:f2:b4:5e:14: b6:f3:6d:00:f0:7a:5a:e9:77:54:27:f3:2e:54:00: eb:91:a1:f8:dc:aa:c1:d9:36:22:d5:eb:08:d9:21: cc:f4:7b:51:36:af:78:f7:53:65:2a:84:e7:06:37: d8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:03:01:E5:D3:D4:39:80:9F:2D:C3:E0:96:7D:06:23:47:F7:9E:8F X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/39 Signature Algorithm: sha256WithRSAEncryption 10:02:dc:ad:a4:77:f5:13:20:ca:a0:5c:61:96:73:2f:ce:01: ad:99:a3:b2:a4:f4:6b:e5:a8:ba:22:bd:4a:7d:22:74:e1:60: 77:9d:86:95:49:ec:d9:ac:c6:58:e8:60:93:dd:f0:d4:1a:92: a4:2e:44:42:a6:3e:80:de:7b:7e:69:81:ba:6d:ab:26:0f:1a: e6:61:a6:75:f6:e6:21:7b:1f:87:3c:33:51:ca:ec:ca:02:5a: 89:d3:ae:5d:5c:2d:0e:88:ea:f7:ff:a0:d5:b1:b0:46:e9:50: 29:0a:e6:3c:d5:2c:a9:8c:cd:e1:78:b7:10:67:16:71:f7:90: a9:83:67:5b:b4:cc:76:c3:f6:d4:45:9d:eb:2c:16:15:af:55: 06:96:9f:54:4a:35:3d:92:52:b1:1e:56:62:3c:0a:83:21:49: 9c:d7:71:4e:10:7f:2c:d2:d8:2e:78:07:c4:ab:56:c6:d8:5f: 88:15:5a:17:b4:ea:28:5e:80:e3:30:07:7a:ec:e6:ed:2e:dc: a6:84:91:43:d2:e2:2c:a0:14:b6:c8:51:2c:6b:60:7b:1b:3c: 06:2a:70:4c:6d:e3:2e:f7:16:6e:7b:6b:af:73:c1:7f:64:60: 4a:6c:b8:30:0e:d0:27:41:42:30:9a:de:45:a7:bd:74:3f:a7: 3e:25:6e:3a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMbaWl+aBG/1qb5agT5wscjkFKC0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwODIwMDAyMDQ2WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzY2MTlhNzVmZDE4YWZlYzYzMTQxNjVkNzg4OWFiODNm ZTA1NDNiY2M5MmQ3ZTg5OTBjYjE4MjIxMGJhNTUxMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCea6RTfyEpxgVglzkJppnHGD5X6hUu3XPmnyHJ3+QpW6xy y4QaC0Af6MCY2cmveylHOUfFIVuC/ou11708fEq2q4GugSx9o9n2PPw9uZPjU7Us HmaFEsyX1UCUmq7LuKxMrHcl2cgKq2owA9KB+XsM0L1VKFwLVOxWKBG9U7TIGV0U rlLRfmjRq21yhvMYHxE31/gz3CZDHwH2BVNHCe3e9kiEb14oZiC9GHcyaa96CJ/I ktOBO33kb85wVVXv11okY9xDoWxe/lCCgsPK8rReFLbzbQDwelrpd1Qn8y5UAOuR ofjcqsHZNiLV6wjZIcz0e1E2r3j3U2UqhOcGN9iPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNgMB5dPUOYCfLcPgln0GI0f3no8wHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2Q5MDRmOTkzLTVjYTktNGJhZC04YzQ3LTJkMmM2ZWY1OGIyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AADANBgkqhkiG9w0BAQsFAAOCAQEAEALcraR39RMgyqBcYZZzL84B rZmjsqT0a+WouiK9Sn0idOFgd52GlUns2azGWOhgk93w1BqSpC5EQqY+gN57fmmB um2rJg8a5mGmdfbmIXsfhzwzUcrsygJaidOuXVwtDojq9/+g1bGwRulQKQrmPNUs qYzN4Xi3EGcWcfeQqYNnW7TMdsP21EWd6ywWFa9VBpafVEo1PZJSsR5WYjwKgyFJ nNdxThB/LNLYLngHxKtWxthfiBVaF7TqKF6A4zAHeuzm7S7cpoSRQ9LiLKAUtshR LGtgexs8BipwTG3jLvcWbntrr3PBf2RgSmy4MA7QJ0FCMJreRae9dD+nPiVuOg== -----END CERTIFICATE-----Generated at Sat Aug 23 12:09:16 2025 by rpki-client