$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa File: 943694fe-e278-4d76-b786-7df26f151dd9.roa (raw, json) Hash identifier: tDbCMNI2qh+Sps4JTkoNvMsbTNLhu07DvVYON/MkJjM= Subject key identifier: 55:29:69:86:8B:CA:E8:74:FF:FD:59:E1:54:A1:A6:F3:8D:20:A8:BD Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 265BC5BE32AA2B93DC51B12C2CCAD6DD872C301E Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa Signing time: Fri 31 Oct 2025 00:00:03 +0000 ROA not before: Fri 31 Oct 2025 00:00:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:5b:c5:be:32:aa:2b:93:dc:51:b1:2c:2c:ca:d6:dd:87:2c:30:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Oct 31 00:00:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=863169ea1bd6cd0ffd83691d8cf23ddfa72af8ac30700535bb75148e0e45a36b, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:74:98:a3:fe:fa:44:3a:da:ad:f1:e2:58:13: cd:69:2b:bc:57:29:43:7d:43:0a:d8:ba:4f:ec:9d: f6:fd:01:cf:ce:ae:f2:a2:ef:39:d7:62:c4:08:e2: 49:97:f5:e4:21:46:8d:52:ed:e5:d9:cd:95:b9:8f: c8:48:32:b7:29:49:4f:b7:b9:6f:bb:e6:cf:1e:68: de:ab:b2:09:d0:69:60:69:c3:6b:19:74:31:9f:db: 15:49:03:63:34:0b:2c:70:40:79:70:d8:d6:59:e7: 3f:5a:8b:c6:66:63:45:f2:03:67:64:e8:2b:61:c0: be:47:c2:ab:db:da:67:fb:30:58:c7:4e:ba:b9:9d: 3f:72:70:79:43:80:51:07:a9:48:25:a5:6f:2e:a3: cb:2e:8e:2a:62:b1:78:84:db:b4:b0:75:59:db:4a: b1:29:dc:5d:37:b9:b9:71:ee:4b:15:8f:54:86:88: fa:03:63:52:4e:f2:75:3d:76:56:6b:19:5e:7b:cc: 54:16:80:2e:8f:e8:10:48:2c:8e:dc:db:b9:4c:94: 37:ff:ae:bf:8d:c1:9f:4b:dd:66:00:8a:8d:24:2e: 91:ca:31:8e:a3:3c:99:7e:b1:02:95:54:8c:5a:85: 34:73:44:12:6e:24:fe:03:df:20:03:81:8b:96:90: f1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:29:69:86:8B:CA:E8:74:FF:FD:59:E1:54:A1:A6:F3:8D:20:A8:BD X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption 21:2f:1e:80:1a:48:d5:c2:b8:6b:24:93:b4:bb:5b:e9:ba:4e: 71:69:01:f8:26:80:f6:6a:11:83:49:46:20:7f:84:a7:de:59: 26:09:38:be:35:e2:dd:68:c3:05:1a:ba:2e:2d:c2:33:22:a4: ee:da:26:a3:07:45:51:e9:ce:b3:4c:7e:7b:03:20:53:ea:98: 33:44:32:9f:5d:75:09:a7:2a:3e:56:1a:4d:d8:52:a3:54:7d: e9:8c:47:a0:4a:d0:05:5e:6d:7e:16:d5:34:8d:86:e6:b7:ed: bc:db:37:2a:ea:12:a6:a5:54:6b:b7:aa:a5:57:5d:16:c1:76: ea:88:25:af:4f:fa:e0:ad:39:fe:90:be:88:44:9f:f1:75:f7: 11:a5:ce:9f:c6:fd:6c:df:08:7e:37:2d:41:e5:25:90:56:b6: e6:fd:eb:b8:c8:58:30:ff:c1:d2:5e:61:de:a9:51:2b:be:49: c5:71:de:10:09:9c:1a:70:fb:06:47:b2:13:a4:3b:5c:a1:d1: 37:d9:72:29:77:60:15:cf:4a:58:a9:f8:91:95:dc:36:22:41: de:29:24:70:f9:ee:ac:87:3a:c1:f9:b8:6c:6b:fe:35:9d:e3: 76:fd:e6:ba:42:93:5d:97:d5:01:e1:f6:06:0b:aa:01:ed:f2: 69:06:50:da -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJlvFvjKqK5PcUbEsLMrW3YcsMB4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUxMDMxMDAwMDAzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjMxNjllYTFiZDZjZDBmZmQ4MzY5MWQ4Y2YyM2RkZmE3 MmFmOGFjMzA3MDA1MzViYjc1MTQ4ZTBlNDVhMzZiMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1dJij/vpEOtqt8eJYE81pK7xXKUN9QwrYuk/snfb9Ac/O rvKi7znXYsQI4kmX9eQhRo1S7eXZzZW5j8hIMrcpSU+3uW+75s8eaN6rsgnQaWBp w2sZdDGf2xVJA2M0CyxwQHlw2NZZ5z9ai8ZmY0XyA2dk6CthwL5Hwqvb2mf7MFjH Trq5nT9ycHlDgFEHqUglpW8uo8sujipisXiE27SwdVnbSrEp3F03ublx7ksVj1SG iPoDY1JO8nU9dlZrGV57zFQWgC6P6BBILI7c27lMlDf/rr+NwZ9L3WYAio0kLpHK MY6jPJl+sQKVVIxahTRzRBJuJP4D3yADgYuWkPHhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVSlphovK6HT//VnhVKGm840gqL0wHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzk0MzY5NGZlLWUyNzgtNGQ3Ni1iNzg2LTdkZjI2ZjE1MWRkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBACEvHoAaSNXCuGskk7S7W+m6 TnFpAfgmgPZqEYNJRiB/hKfeWSYJOL414t1owwUaui4twjMipO7aJqMHRVHpzrNM fnsDIFPqmDNEMp9ddQmnKj5WGk3YUqNUfemMR6BK0AVebX4W1TSNhua37bzbNyrq EqalVGu3qqVXXRbBduqIJa9P+uCtOf6QvohEn/F19xGlzp/G/WzfCH43LUHlJZBW tub967jIWDD/wdJeYd6pUSu+ScVx3hAJnBpw+wZHshOkO1yh0TfZcil3YBXPSlip +JGV3DYiQd4pJHD57qyHOsH5uGxr/jWd43b95rpCk12X1QHh9gYLqgHt8mkGUNo= -----END CERTIFICATE-----Generated at Wed Nov 5 23:34:15 2025 by rpki-client