$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa File: a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa (raw, json) Hash identifier: UV7on+cyTpc7xK8RJy2qaUosLd4uB0K7vMXBp3YowD8= Subject key identifier: 57:F1:49:95:7B:31:2A:30:1A:FD:6F:21:65:50:0B:23:88:75:43:AA Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Certificate serial: 0FB73DB8232EF2462D26993C67F263E8C00FE163 Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa Signing time: Fri 11 Jul 2025 18:20:03 +0000 ROA not before: Fri 11 Jul 2025 18:20:03 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:c940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b7:3d:b8:23:2e:f2:46:2d:26:99:3c:67:f2:63:e8:c0:0f:e1:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Validity Not Before: Jul 11 18:20:03 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=3d73d59c2e9a3c99a940607be9a737fad32a4f814698a19d0bf7cfba1aa7733d, CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:58:3a:46:57:26:fe:e2:ad:63:db:13:0c:ce: 10:ed:a8:cf:45:b5:9d:2b:97:e5:da:72:86:31:85: fd:6a:34:9a:69:07:79:68:af:15:85:f7:df:5f:d6: 7f:6c:1d:76:a4:2e:5f:2b:a8:b8:05:bb:f3:ba:cd: 06:e2:bb:43:e8:83:62:8b:07:39:70:fa:81:f2:b8: 8d:eb:a9:28:50:fb:62:2f:df:90:36:c7:02:cb:3a: 36:16:d5:87:e8:16:da:1e:50:16:db:b0:48:d4:21: 08:1c:22:13:6d:f8:e8:57:ab:39:fa:3e:e7:db:c5: 55:63:b8:d7:0f:45:14:59:eb:b9:f9:b3:bc:e1:11: a9:07:7c:b8:01:1c:8a:c9:58:80:a2:59:87:9e:ce: b6:35:12:60:cb:c8:e7:c9:cc:1d:c5:6e:20:2c:19: 87:99:0d:37:f6:b9:a8:7d:4b:0d:b5:44:37:56:1a: 26:11:99:a6:74:b3:4f:c4:7c:0f:b4:ec:cc:e5:ef: 96:80:98:e8:7b:59:33:1d:e2:3c:de:5c:3d:73:a6: ad:92:a1:74:10:1c:88:f2:ed:62:a3:db:2a:76:30: c2:49:d3:02:d0:06:12:c6:32:94:67:a5:a7:97:14: 9e:ae:ea:68:fa:fe:70:b6:1e:9c:18:73:6c:d6:d2: da:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F1:49:95:7B:31:2A:30:1A:FD:6F:21:65:50:0B:23:88:75:43:AA X509v3 Authority Key Identifier: keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:c940::/32 Signature Algorithm: sha256WithRSAEncryption 51:0c:46:ff:64:90:c9:a9:53:c1:76:e3:ff:cf:90:0c:43:17: 17:b1:a4:83:1a:86:ca:a3:1c:de:11:9f:30:99:db:ee:c9:f5: 1d:95:1e:98:90:37:2c:05:66:0b:96:b5:e2:52:cb:76:dc:07: e9:b9:d1:c2:ac:56:19:80:13:ba:ee:22:89:91:08:74:34:75: e3:38:c4:2a:f8:ae:49:e0:f4:f5:ed:bc:0e:3b:ea:bf:f1:c4: a9:0c:05:3c:86:20:79:e8:a3:0e:bf:0d:6a:e6:de:1d:00:a4: 59:3f:23:28:fe:2b:3c:79:31:5c:51:35:09:92:02:8b:51:82: a2:b3:bd:fd:78:a4:63:f6:4e:c3:74:7b:89:4f:b1:8b:a3:40: 30:94:35:88:53:70:14:6f:9a:54:ae:35:d5:1c:15:24:96:ca: fd:3a:1d:85:76:94:02:7f:4a:e1:90:37:a4:c4:a8:89:d1:39: a7:35:28:70:42:5a:13:64:f0:9f:4a:47:f7:28:9e:1f:62:43: 37:84:e8:be:28:a0:15:79:d2:58:e9:f2:34:e4:72:e0:c3:e5: 18:b9:5d:bd:7c:9e:9d:ab:41:71:69:a0:45:3d:f6:22:42:c1: 73:94:61:20:f3:2b:4b:f7:27:bc:3c:4f:b1:d2:28:da:39:0f: f8:28:e9:61 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUD7c9uCMu8kYtJpk8Z/Jj6MAP4WMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmY5Yjk4NWIwZmU1ZGVmMDliOTk0ZjhjZjYwYmFkOGM5 MDI5YzAwNjU3NzUwYjIyNjcwHhcNMjUwNzExMTgyMDAzWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDczZDU5YzJlOWEzYzk5YTk0MDYwN2JlOWE3MzdmYWQz MmE0ZjgxNDY5OGExOWQwYmY3Y2ZiYTFhYTc3MzNkMS0wKwYDVQQDEyQxNWYxNjgz YS1jMGMyLTQyNjYtOWE5Ni1lY2Y5ZWJhMzIzOWMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJWDpGVyb+4q1j2xMMzhDtqM9FtZ0rl+XacoYxhf1qNJpp B3lorxWF999f1n9sHXakLl8rqLgFu/O6zQbiu0Pog2KLBzlw+oHyuI3rqShQ+2Iv 35A2xwLLOjYW1YfoFtoeUBbbsEjUIQgcIhNt+OhXqzn6PufbxVVjuNcPRRRZ67n5 s7zhEakHfLgBHIrJWICiWYeezrY1EmDLyOfJzB3FbiAsGYeZDTf2uah9Sw21RDdW GiYRmaZ0s0/EfA+07Mzl75aAmOh7WTMd4jzeXD1zpq2SoXQQHIjy7WKj2yp2MMJJ 0wLQBhLGMpRnpaeXFJ6u6mj6/nC2HpwYc2zW0tpPAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUV/FJlXsxKjAa/W8hZVALI4h1Q6owHwYDVR0jBBgwFoAUbcpl0HFNfvJW kLwJE9NU26yJKl4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83Mjc2YjJmYS01 NDhkLTQ5NzAtODMxNC04ZDczOTQ1YzM0ZDgvNmY5Yjk4NWIwZmU1ZGVmMDliOTk0 ZjhjZjYwYmFkOGM5MDI5YzAwNjU3NzUwYjIyNjcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjNmNmI2ODgtY2ZmNC00MDJmLTk3ZDUtMDJm NmYxODg2YjdlL2E4ZmY5MzM3LTIxZDgtNGQ1ZS1iOTg4LWQxYTk4M2Q3M2FlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2IzZjZiNjg4LWNmZjQtNDAyZi05N2Q1 LTAyZjZmMTg4NmI3ZS81ZDd3bTVsUGpQWUxyWXlRS2NBR1YzVUxJbWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBclAMA0GCSqGSIb3DQEBCwUAA4IBAQBRDEb/ZJDJqVPBduP/z5AMQxcX saSDGobKoxzeEZ8wmdvuyfUdlR6YkDcsBWYLlrXiUst23AfpudHCrFYZgBO67iKJ kQh0NHXjOMQq+K5J4PT17bwOO+q/8cSpDAU8hiB56KMOvw1q5t4dAKRZPyMo/is8 eTFcUTUJkgKLUYKis739eKRj9k7DdHuJT7GLo0AwlDWIU3AUb5pUrjXVHBUklsr9 Oh2FdpQCf0rhkDekxKiJ0TmnNShwQloTZPCfSkf3KJ4fYkM3hOi+KKAVedJY6fI0 5HLgw+UYuV29fJ6dq0FxaaBFPfYiQsFzlGEg8ytL9ye8PE+x0ijaOQ/4KOlh -----END CERTIFICATE-----Generated at Mon Jul 21 23:22:58 2025 by rpki-client