$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/a86c8ffa-34ab-4a01-8f63-86207fe44159.roa File: a86c8ffa-34ab-4a01-8f63-86207fe44159.roa (raw, json) Hash identifier: VblAtRFJDH2s+816C2+q0IvZN/si8J2WVCWs5Jd01gg= Subject key identifier: 74:AA:06:EA:DC:60:DA:70:A6:F3:7E:AB:FB:7C:14:C0:1D:7F:9B:28 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 1B9EC4F45CF1087F86EAEE2254319A2660B7997D Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/a86c8ffa-34ab-4a01-8f63-86207fe44159.roa Signing time: Mon 15 Sep 2025 15:20:13 +0000 ROA not before: Mon 15 Sep 2025 15:20:13 +0000 ROA not after: Mon 20 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Sep 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:9e:c4:f4:5c:f1:08:7f:86:ea:ee:22:54:31:9a:26:60:b7:99:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Sep 15 15:20:13 2025 GMT Not After : Oct 20 23:59:59 2025 GMT Subject: serialNumber=3227ee7896deb76cdb3d238e9dcb418e17705e4c52d060e04bb3c076f21624b7, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fd:71:ca:0d:19:cc:02:05:42:db:5e:d2:36: 21:f2:96:4d:c4:51:5e:b4:a8:dd:2c:71:e8:45:d7: d7:43:ad:6b:38:cc:39:0d:69:76:3c:44:1b:a3:a3: 15:e9:8b:9b:7e:50:84:fa:ed:ee:a1:9f:26:84:ec: ff:04:da:b7:1c:e9:9f:08:4e:41:f4:e4:56:13:67: 6d:b2:be:0b:65:6c:c6:78:f4:87:80:c0:d2:dc:f9: da:90:55:f1:11:23:47:a0:b3:6c:fc:af:9e:5a:dd: 6c:76:ec:be:be:3f:83:9b:a7:fb:46:85:e4:76:fc: 96:5f:9d:99:2a:12:eb:c3:39:fc:f6:45:fd:85:49: 6c:12:24:bb:37:cd:24:cf:27:1e:76:46:33:da:ca: 5f:63:a9:fb:d3:c4:b1:fd:62:6f:df:fa:f7:ab:57: dc:b0:e0:ff:2b:b5:6a:ea:64:b3:39:12:c9:4c:4e: f3:13:74:ea:e5:50:73:cc:8e:54:60:b5:c9:34:61: 84:b0:d3:fd:32:99:b6:e8:e9:94:1d:af:d4:1b:8f: dc:96:47:81:c9:6b:38:6d:de:39:86:47:95:69:dd: a9:00:f5:72:09:00:96:c9:67:ac:78:a2:52:6f:27: b7:4c:00:45:d2:12:32:37:0f:b5:65:08:a1:12:fa: 4d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:AA:06:EA:DC:60:DA:70:A6:F3:7E:AB:FB:7C:14:C0:1D:7F:9B:28 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/a86c8ffa-34ab-4a01-8f63-86207fe44159.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/39 Signature Algorithm: sha256WithRSAEncryption 7c:1b:7c:97:37:de:3b:92:a9:b5:d4:f3:9d:1f:bf:eb:11:e2: a6:61:73:d3:12:a8:64:ea:05:0f:92:38:55:1b:29:d8:22:0e: e6:2a:9b:83:17:09:3d:eb:25:d7:78:8c:29:0a:87:70:ba:b9: af:d6:4b:9b:ad:ac:22:86:d7:1b:81:ed:01:ad:c7:d7:f6:51: 1f:6c:de:f1:cc:c6:5e:31:66:8c:d7:c8:b6:1e:df:fd:a4:0f: f5:19:74:cb:32:1e:96:ac:23:af:54:4c:b5:df:4e:c8:01:8c: f3:6a:fc:4c:5c:51:10:66:52:4d:56:06:e9:7d:4d:28:fd:af: e2:7b:dc:f2:5f:4f:7a:1b:96:d2:a6:72:08:b5:25:ec:52:57: 8d:3b:5d:ac:39:74:68:7f:a6:93:25:78:3c:7b:84:93:64:65: 0c:a6:32:c2:e9:be:52:ce:43:d4:88:5c:4a:b8:ee:35:da:10: 56:c6:fd:56:3e:e0:28:4f:51:24:b8:d6:d8:8d:cd:45:95:80: 83:a6:f2:f9:b9:e4:e1:3f:d7:11:d3:e7:f5:2b:46:76:39:e5: c2:bc:4d:b3:1d:c0:35:93:7f:7c:e1:4f:9c:ac:1d:c8:10:01: 3f:a8:ec:19:08:b6:53:1d:28:e0:9f:77:2b:18:9f:26:44:1f: 6e:83:a0:88 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUG57E9FzxCH+G6u4iVDGaJmC3mX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwOTE1MTUyMDEzWhcNMjUxMDIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjI3ZWU3ODk2ZGViNzZjZGIzZDIzOGU5ZGNiNDE4ZTE3 NzA1ZTRjNTJkMDYwZTA0YmIzYzA3NmYyMTYyNGI3MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX/XHKDRnMAgVC217SNiHylk3EUV60qN0scehF19dDrWs4 zDkNaXY8RBujoxXpi5t+UIT67e6hnyaE7P8E2rcc6Z8ITkH05FYTZ22yvgtlbMZ4 9IeAwNLc+dqQVfERI0egs2z8r55a3Wx27L6+P4Obp/tGheR2/JZfnZkqEuvDOfz2 Rf2FSWwSJLs3zSTPJx52RjPayl9jqfvTxLH9Ym/f+verV9yw4P8rtWrqZLM5EslM TvMTdOrlUHPMjlRgtck0YYSw0/0ymbbo6ZQdr9Qbj9yWR4HJazht3jmGR5Vp3akA 9XIJAJbJZ6x4olJvJ7dMAEXSEjI3D7VlCKES+k05AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUdKoG6txg2nCm836r+3wUwB1/mygwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2E4NmM4ZmZhLTM0YWItNGEwMS04ZjYzLTg2MjA3ZmU0NDE1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AADANBgkqhkiG9w0BAQsFAAOCAQEAfBt8lzfeO5KptdTznR+/6xHi pmFz0xKoZOoFD5I4VRsp2CIO5iqbgxcJPesl13iMKQqHcLq5r9ZLm62sIobXG4Ht Aa3H1/ZRH2ze8czGXjFmjNfIth7f/aQP9Rl0yzIelqwjr1RMtd9OyAGM82r8TFxR EGZSTVYG6X1NKP2v4nvc8l9PehuW0qZyCLUl7FJXjTtdrDl0aH+mkyV4PHuEk2Rl DKYywum+Us5D1IhcSrjuNdoQVsb9Vj7gKE9RJLjW2I3NRZWAg6by+bnk4T/XEdPn 9StGdjnlwrxNsx3ANZN/fOFPnKwdyBABP6jsGQi2Ux0o4J93KxifJkQfboOgiA== -----END CERTIFICATE-----Generated at Fri Sep 19 23:03:20 2025 by rpki-client