$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa File: d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa (raw, json) Hash identifier: ds0dcTa6E4KZ9UfRTfYkpOkLo9Yc/wJvI6XWVLS7Ua8= Subject key identifier: C7:CF:A9:8D:E7:57:92:EE:CC:66:96:D9:C1:ED:7D:69:B6:15:A7:20 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 1B4DF28BF1BDCFCBB657800D918A1EADA711907D Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa Signing time: Tue 01 Jul 2025 00:20:27 +0000 ROA not before: Tue 01 Jul 2025 00:20:27 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:4d:f2:8b:f1:bd:cf:cb:b6:57:80:0d:91:8a:1e:ad:a7:11:90:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Jul 1 00:20:27 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=cb394b5c7208fa90c1eb32b7970f0e1ff77e8e3dfd4560ee9ecd532dcbd32030, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4e:61:ec:ed:2b:d6:03:e7:38:39:ee:2b:2c: d1:2c:f9:d6:b3:10:ca:29:90:b1:22:14:b7:d1:3d: f9:55:3b:3f:2b:76:58:a9:91:23:40:19:f7:41:2e: 27:48:64:8b:c9:7e:6a:8e:c6:54:b7:db:8e:6a:1a: 76:7d:04:52:23:19:03:cb:17:2e:02:c1:dd:99:55: 38:59:2b:ea:e1:1d:cd:c2:fe:93:a0:92:f0:80:34: 0e:54:72:79:3e:03:b6:a8:7c:d2:4a:a0:57:cc:7d: 63:6a:c2:97:68:ea:b5:70:bb:61:05:d5:a0:15:0f: c6:bd:8d:20:0f:1b:13:4f:78:7e:5b:0c:7b:a0:20: 6e:27:8b:8e:c4:3b:44:d0:60:fe:c1:bf:e0:98:da: 6f:c7:46:5c:5d:cc:3a:be:94:2b:1f:9f:a1:4c:04: 7b:96:c3:e7:0c:d0:9c:82:ce:da:5f:06:d8:5f:8e: e0:90:c9:4a:ba:80:73:42:ee:b4:8f:20:df:81:60: a5:52:9f:67:a0:5c:3b:c0:80:a6:4f:0f:e5:52:54: cc:59:04:5b:d8:a3:1e:8f:6f:e9:ac:18:15:5e:8c: e7:92:e1:b5:df:d2:66:9c:e4:f8:88:4d:f1:ba:80: 92:da:5f:4e:19:c4:b7:06:cb:a3:49:0e:c6:8b:9f: 77:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:CF:A9:8D:E7:57:92:EE:CC:66:96:D9:C1:ED:7D:69:B6:15:A7:20 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/39 Signature Algorithm: sha256WithRSAEncryption a5:ca:0e:57:a2:f2:8b:f5:5c:62:8b:22:32:1d:85:45:8a:a6: 4e:ac:e4:5a:c5:1e:44:6c:33:3f:1d:b8:af:2a:f9:4a:25:a2: e7:85:3a:d3:13:34:ab:3a:3d:d1:66:2b:9f:a0:31:29:2f:e8: 2b:45:41:76:d0:90:ce:6c:7e:1d:d6:55:65:4c:d9:75:fe:0e: bd:be:8f:b1:b3:f5:50:b3:e8:7c:da:51:3b:c9:ef:3c:5d:ee: dd:0a:cb:27:b9:41:a6:e5:bb:43:52:fa:15:51:76:e7:a6:c1: 31:5b:e8:3d:09:1d:70:72:e9:b6:30:b4:ca:7b:f1:a6:78:ac: 7b:02:e2:bc:40:af:f8:b5:41:ec:17:4f:c3:c5:e0:7f:7d:74: e3:c8:b4:53:06:d8:a0:e3:9c:f2:0b:82:6c:f3:7b:3c:c9:7b: b2:24:53:24:79:53:a5:fc:23:b1:e8:f9:c6:7a:fa:c2:51:4b: d6:2d:9c:c1:7e:24:66:19:e6:c8:46:c2:09:ae:56:85:e9:eb: 26:36:83:12:d5:8b:e3:3d:59:54:a9:c1:44:c4:38:11:1e:be: 83:27:e8:71:24:72:45:5c:95:c8:48:1d:8b:b3:5b:14:78:bf: 3c:72:7a:fa:78:d1:98:e7:82:16:9f:25:d2:d3:de:60:a4:01: 54:35:b5:cb -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUG03yi/G9z8u2V4ANkYoeracRkH0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNzAxMDAyMDI3WhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjM5NGI1YzcyMDhmYTkwYzFlYjMyYjc5NzBmMGUxZmY3 N2U4ZTNkZmQ0NTYwZWU5ZWNkNTMyZGNiZDMyMDMwMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5TmHs7SvWA+c4Oe4rLNEs+dazEMopkLEiFLfRPflVOz8r dlipkSNAGfdBLidIZIvJfmqOxlS3245qGnZ9BFIjGQPLFy4Cwd2ZVThZK+rhHc3C /pOgkvCANA5Ucnk+A7aofNJKoFfMfWNqwpdo6rVwu2EF1aAVD8a9jSAPGxNPeH5b DHugIG4ni47EO0TQYP7Bv+CY2m/HRlxdzDq+lCsfn6FMBHuWw+cM0JyCztpfBthf juCQyUq6gHNC7rSPIN+BYKVSn2egXDvAgKZPD+VSVMxZBFvYox6Pb+msGBVejOeS 4bXf0mac5PiITfG6gJLaX04ZxLcGy6NJDsaLn3frAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUx8+pjedXku7MZpbZwe19abYVpyAwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2Q5MDRmOTkzLTVjYTktNGJhZC04YzQ3LTJkMmM2ZWY1OGIyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AADANBgkqhkiG9w0BAQsFAAOCAQEApcoOV6Lyi/VcYosiMh2FRYqm TqzkWsUeRGwzPx24ryr5SiWi54U60xM0qzo90WYrn6AxKS/oK0VBdtCQzmx+HdZV ZUzZdf4Ovb6PsbP1ULPofNpRO8nvPF3u3QrLJ7lBpuW7Q1L6FVF256bBMVvoPQkd cHLptjC0ynvxpnisewLivECv+LVB7BdPw8Xgf31048i0UwbYoOOc8guCbPN7PMl7 siRTJHlTpfwjsej5xnr6wlFL1i2cwX4kZhnmyEbCCa5WhenrJjaDEtWL4z1ZVKnB RMQ4ER6+gyfocSRyRVyVyEgdi7NbFHi/PHJ6+njRmOeCFp8l0tPeYKQBVDW1yw== -----END CERTIFICATE-----Generated at Mon Jul 21 23:20:33 2025 by rpki-client