$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa File: 943694fe-e278-4d76-b786-7df26f151dd9.roa (raw, json) Hash identifier: 6C7L3TrfJW3/DPmg/fTHQ/pvGUnszS9chf1nUiPvm+w= Subject key identifier: 21:F0:CE:01:6F:8E:72:FE:DD:0D:C8:FF:42:AD:62:01:BE:5A:97:5A Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 2E595F74FD5C73F17C157DF8B29F3713A6A0DA2A Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa Signing time: Tue 09 Sep 2025 15:00:14 +0000 ROA not before: Tue 09 Sep 2025 15:00:14 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:59:5f:74:fd:5c:73:f1:7c:15:7d:f8:b2:9f:37:13:a6:a0:da:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Sep 9 15:00:14 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=65e958b099a4554e28e473debdb6f51678ed85ac5487b395baadccd32ae5cc36, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:fe:df:a2:4e:59:cf:c0:bd:4a:71:45:42:f9: bb:79:dc:0a:7b:aa:3c:91:f5:7f:4d:2f:cd:6d:41: 83:cc:10:7c:b6:2c:17:1a:4f:8b:24:47:8b:e1:bf: f0:30:f3:d6:a3:39:68:cf:7c:d1:57:a1:fd:4d:87: 57:39:ac:05:25:53:50:18:60:8c:9c:e1:15:0a:7b: 89:64:ad:7f:40:1d:74:4c:0b:54:e5:e2:c9:d6:aa: 39:a9:8b:ef:9f:3d:33:c1:13:1f:70:aa:a5:6f:8e: 20:22:8c:97:01:9e:ad:a6:b3:c0:0c:bd:80:5f:fc: 5f:ae:e4:5d:8c:eb:cd:8a:5f:4b:e9:69:fa:eb:34: 62:46:9c:65:81:e7:88:c3:66:d9:f0:a6:d1:12:30: b2:e1:09:b9:d0:4f:bc:bf:ba:5d:bb:d0:79:be:1f: 18:85:0a:bc:d3:20:46:41:b0:96:a2:2e:7b:2f:c3: f2:9f:24:f6:b5:69:4d:f3:1e:d5:30:1c:04:b5:b9: c0:82:83:15:38:f0:b0:ee:ce:b6:a6:33:4b:d6:2a: 11:31:a9:1a:e3:a6:5a:ae:78:5c:39:ea:b6:3c:9a: 6c:11:7b:05:7c:3e:29:2e:89:e3:53:01:b7:f4:66: 4c:1f:ea:92:49:a0:40:34:8f:93:20:a4:af:f0:3a: f3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F0:CE:01:6F:8E:72:FE:DD:0D:C8:FF:42:AD:62:01:BE:5A:97:5A X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption 14:e6:fc:17:0a:b0:b2:ab:a3:2f:70:61:92:2a:92:9c:52:62: 95:6d:0b:41:94:5d:e5:d9:0b:08:06:5a:eb:3f:49:61:79:ab: dd:d4:89:00:c7:ac:59:64:f9:2f:9b:70:6c:5a:a5:ea:b4:fd: 07:61:f8:bc:92:1e:53:0d:43:3d:40:8c:2f:80:e5:31:04:5f: cb:a5:7e:4c:9b:d8:80:1c:e1:59:cb:cd:2a:a9:90:ff:60:aa: 60:16:dc:d9:3c:d4:3e:cf:c1:4e:61:c0:5e:99:15:7f:a8:ba: 95:7b:e0:23:32:b5:6d:cb:50:f4:86:a8:00:46:db:3c:be:4e: 5a:c8:6f:f8:3c:90:b2:49:76:0a:2a:26:00:19:f3:6c:b9:b6: 84:ff:38:18:14:27:c8:c2:59:31:95:aa:40:d2:c1:e5:1e:2d: 0f:29:61:db:ef:90:ae:16:4f:5c:37:b8:74:14:49:6d:82:17: f2:86:1e:3b:6f:cf:b7:d7:2e:19:47:11:f4:cd:48:e5:33:8e: 72:5c:03:5f:b6:f4:a6:0d:2b:23:75:0c:66:a7:f0:e0:56:3b: 33:57:bd:81:2d:d2:ac:39:e0:b8:53:ca:75:5f:26:0f:82:6a: d0:4e:11:95:b0:42:56:f5:76:57:52:49:89:f4:2d:c7:fa:ba: d4:c4:f4:a1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULllfdP1cc/F8FX34sp83E6ag2iowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwOTA5MTUwMDE0WhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWU5NThiMDk5YTQ1NTRlMjhlNDczZGViZGI2ZjUxNjc4 ZWQ4NWFjNTQ4N2IzOTViYWFkY2NkMzJhZTVjYzM2MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT/t+iTlnPwL1KcUVC+bt53Ap7qjyR9X9NL81tQYPMEHy2 LBcaT4skR4vhv/Aw89ajOWjPfNFXof1Nh1c5rAUlU1AYYIyc4RUKe4lkrX9AHXRM C1Tl4snWqjmpi++fPTPBEx9wqqVvjiAijJcBnq2ms8AMvYBf/F+u5F2M682KX0vp afrrNGJGnGWB54jDZtnwptESMLLhCbnQT7y/ul270Hm+HxiFCrzTIEZBsJaiLnsv w/KfJPa1aU3zHtUwHAS1ucCCgxU48LDuzramM0vWKhExqRrjplqueFw56rY8mmwR ewV8PikuieNTAbf0Zkwf6pJJoEA0j5MgpK/wOvP1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIfDOAW+Ocv7dDcj/Qq1iAb5al1owHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzk0MzY5NGZlLWUyNzgtNGQ3Ni1iNzg2LTdkZjI2ZjE1MWRkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBABTm/BcKsLKroy9wYZIqkpxS YpVtC0GUXeXZCwgGWus/SWF5q93UiQDHrFlk+S+bcGxapeq0/Qdh+LySHlMNQz1A jC+A5TEEX8ulfkyb2IAc4VnLzSqpkP9gqmAW3Nk81D7PwU5hwF6ZFX+oupV74CMy tW3LUPSGqABG2zy+TlrIb/g8kLJJdgoqJgAZ82y5toT/OBgUJ8jCWTGVqkDSweUe LQ8pYdvvkK4WT1w3uHQUSW2CF/KGHjtvz7fXLhlHEfTNSOUzjnJcA1+29KYNKyN1 DGan8OBWOzNXvYEt0qw54LhTynVfJg+CatBOEZWwQlb1dldSSYn0Lcf6utTE9KE= -----END CERTIFICATE-----Generated at Fri Sep 19 16:28:47 2025 by rpki-client