$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/91a27594-a038-483a-a558-a5377f4d266f.roa File: 91a27594-a038-483a-a558-a5377f4d266f.roa (raw, json) Hash identifier: 9rN2tqOSzqAGOwF6wYyfLmiDSBV5l03jkMdjBnJwxSM= Subject key identifier: 47:7B:35:CC:13:9A:1B:93:4A:30:C7:79:75:E0:F8:5B:FD:E6:B0:BE Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 60BDA43CDAE8C21DD57D47AAFD9A3BFA9CB51BA7 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/91a27594-a038-483a-a558-a5377f4d266f.roa Signing time: Tue 09 Sep 2025 15:00:15 +0000 ROA not before: Tue 09 Sep 2025 15:00:15 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:bd:a4:3c:da:e8:c2:1d:d5:7d:47:aa:fd:9a:3b:fa:9c:b5:1b:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Sep 9 15:00:15 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=beb75e794fe03d9728a7a7df5b90bee3f698c81eaa52ea60df368d53c8a91e24, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8a:c0:eb:2a:d3:fc:1e:8f:71:e8:0e:0f:8a: e4:46:3b:48:a6:7a:f8:d1:72:be:44:80:e8:fb:8f: 6d:b0:d8:a6:4f:05:20:d0:09:38:6a:c0:a9:d9:40: da:ac:f7:a3:15:62:e9:bb:8b:d4:4f:08:1e:f4:2c: 26:dd:0a:19:d8:0a:bf:00:14:b6:23:0a:ae:b4:8e: d5:3e:07:c3:0a:aa:66:63:4d:40:39:f6:11:fd:f5: fb:fa:48:f2:a2:e8:70:46:4b:d6:bf:e3:27:18:e2: 9c:dd:3b:b3:3e:ee:c7:89:3d:1a:2a:4f:91:37:53: 4a:4f:45:87:2d:6a:70:85:40:17:a2:18:52:6c:ce: 87:8d:2d:ba:6d:a4:49:f1:14:65:10:4c:03:b3:28: 9c:5e:e3:80:ff:06:fb:a5:42:34:68:16:e5:91:66: 51:aa:9e:28:2d:12:ba:a8:3d:20:e7:d6:79:d7:4a: 0b:cf:19:55:f4:8f:2c:55:f1:57:52:e2:d4:2e:00: 1e:75:15:eb:b1:5f:a2:03:1d:9d:1e:97:3c:17:41: e7:4b:af:71:10:26:20:ad:9a:99:39:6c:62:f3:60: c0:97:88:e9:2c:15:16:d4:8c:ed:28:6e:17:43:e5: d3:11:11:dc:3b:ce:9f:0b:53:48:d8:3a:3f:7a:6e: 95:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7B:35:CC:13:9A:1B:93:4A:30:C7:79:75:E0:F8:5B:FD:E6:B0:BE X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/91a27594-a038-483a-a558-a5377f4d266f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffc::/48 Signature Algorithm: sha256WithRSAEncryption 97:7a:02:9f:0c:f9:4c:fc:7c:75:6e:71:a3:13:f8:9f:2e:7f: 56:d7:6b:8e:e8:2a:a7:14:e2:3a:cc:0a:ba:5d:b4:51:c7:d3: 63:ff:6a:92:86:4c:a6:fd:eb:ff:23:88:fd:68:1c:09:bb:ce: b4:91:f5:42:29:28:99:7b:60:31:0a:3e:7e:ce:3d:d6:68:74: ea:ca:ce:10:c9:ac:9b:02:5f:95:7b:ba:11:ba:7a:31:c6:74: da:23:e1:a5:bd:d8:83:81:19:78:48:06:30:7c:8c:0d:cd:75: ed:17:1b:0e:3b:e6:80:0c:37:02:de:fa:ed:53:ef:49:36:5f: 3b:8d:5e:f9:1b:c5:5e:44:2d:c0:c3:8e:54:d9:3f:a6:7c:5a: 3c:71:bb:04:fc:17:92:04:c5:ed:39:2f:86:f7:9e:df:70:10: a8:e4:ec:c9:d1:66:71:97:c2:29:cb:68:0b:58:bf:f4:92:0b: 6b:88:0b:bb:04:15:da:96:e4:bd:a1:ab:83:4e:72:07:b9:b2: 30:84:57:6e:8d:db:4e:05:5e:1f:79:1f:f9:60:26:c3:67:7b: 83:28:72:e4:cb:94:8a:2c:20:10:a6:d6:fd:99:98:e5:e9:6c: 25:0e:55:db:7c:c9:ea:f3:dd:41:47:57:2d:16:58:df:eb:88: 99:31:79:0e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYL2kPNrowh3VfUeq/Zo7+py1G6cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwOTA5MTUwMDE1WhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWI3NWU3OTRmZTAzZDk3MjhhN2E3ZGY1YjkwYmVlM2Y2 OThjODFlYWE1MmVhNjBkZjM2OGQ1M2M4YTkxZTI0MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiisDrKtP8Ho9x6A4PiuRGO0imevjRcr5EgOj7j22w2KZP BSDQCThqwKnZQNqs96MVYum7i9RPCB70LCbdChnYCr8AFLYjCq60jtU+B8MKqmZj TUA59hH99fv6SPKi6HBGS9a/4ycY4pzdO7M+7seJPRoqT5E3U0pPRYctanCFQBei GFJszoeNLbptpEnxFGUQTAOzKJxe44D/BvulQjRoFuWRZlGqnigtErqoPSDn1nnX SgvPGVX0jyxV8VdS4tQuAB51FeuxX6IDHZ0elzwXQedLr3EQJiCtmpk5bGLzYMCX iOksFRbUjO0obhdD5dMREdw7zp8LU0jYOj96bpWTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUR3s1zBOaG5NKMMd5deD4W/3msL4wHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzkxYTI3NTk0LWEwMzgtNDgzYS1hNTU4LWE1Mzc3ZjRkMjY2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//wwDQYJKoZIhvcNAQELBQADggEBAJd6Ap8M+Uz8fHVucaMT+J8u f1bXa47oKqcU4jrMCrpdtFHH02P/apKGTKb96/8jiP1oHAm7zrSR9UIpKJl7YDEK Pn7OPdZodOrKzhDJrJsCX5V7uhG6ejHGdNoj4aW92IOBGXhIBjB8jA3Nde0XGw47 5oAMNwLe+u1T70k2XzuNXvkbxV5ELcDDjlTZP6Z8WjxxuwT8F5IExe05L4b3nt9w EKjk7MnRZnGXwinLaAtYv/SSC2uIC7sEFdqW5L2hq4NOcge5sjCEV26N204FXh95 H/lgJsNne4MocuTLlIosIBCm1v2ZmOXpbCUOVdt8yerz3UFHVy0WWN/riJkxeQ4= -----END CERTIFICATE-----Generated at Fri Sep 19 13:35:28 2025 by rpki-client