$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/a86c8ffa-34ab-4a01-8f63-86207fe44159.roa File: a86c8ffa-34ab-4a01-8f63-86207fe44159.roa (raw, json) Hash identifier: XPwmWhmtXu0gi7nB2F5wR51rF5Tzn3zHGadCh0+xGaE= Subject key identifier: 64:7C:43:79:22:F7:4E:53:22:AB:5E:19:B4:D4:9D:2C:51:F4:D0:78 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 6D85EA58D2BF3534982AA16964014862B7A91FE1 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/a86c8ffa-34ab-4a01-8f63-86207fe44159.roa Signing time: Fri 06 Jun 2025 00:20:10 +0000 ROA not before: Fri 06 Jun 2025 00:20:10 +0000 ROA not after: Fri 11 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:85:ea:58:d2:bf:35:34:98:2a:a1:69:64:01:48:62:b7:a9:1f:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Jun 6 00:20:10 2025 GMT Not After : Jul 11 23:59:59 2025 GMT Subject: serialNumber=e7609b840352153b3c50ca76a47c3e30c3b41abe7ccd807f59d0a23a446f81ff, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:31:a9:dc:78:9c:ac:57:fb:52:a9:b1:a1:af: b4:5d:16:1b:91:65:70:9b:1b:c9:a5:b7:de:28:eb: 49:bc:a9:1b:3e:2f:ab:c5:f5:34:76:3b:e1:99:02: c1:41:55:d3:85:c8:00:0a:a7:b5:f9:3e:56:f4:fa: 78:18:0a:7e:ee:8a:7c:cc:34:f8:e2:eb:15:51:62: 3a:9b:72:85:0e:07:80:77:24:ec:27:b5:f3:a0:b4: f0:60:6d:0a:51:30:68:62:30:2f:10:25:78:cd:5e: ec:06:2b:6d:ce:85:4e:1d:dc:a8:d9:67:7b:70:b9: a2:0d:bd:42:f1:67:8c:e3:40:f5:57:4d:2f:04:6e: 7c:02:91:8d:24:cd:93:be:60:b7:39:c9:6e:8b:00: e7:67:26:66:96:27:af:8d:06:9d:a0:49:74:66:87: d0:dc:69:c0:4f:57:f3:36:a6:83:44:f2:71:70:4c: 3a:42:ab:b9:b6:30:55:fb:ee:3b:9d:f7:17:81:2f: 16:0d:2b:75:af:87:a1:e4:89:12:2e:21:83:26:90: 04:5a:c1:25:82:b7:aa:ea:09:fa:dc:94:29:5d:ac: 37:37:4e:bd:4b:40:2c:a3:e8:d3:33:9e:83:ad:7b: 63:f2:b3:27:d8:34:d1:5a:16:7e:0f:82:78:28:d6: 6d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7C:43:79:22:F7:4E:53:22:AB:5E:19:B4:D4:9D:2C:51:F4:D0:78 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/a86c8ffa-34ab-4a01-8f63-86207fe44159.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/39 Signature Algorithm: sha256WithRSAEncryption 1d:d9:e8:f2:3d:3f:85:88:84:75:04:e0:a4:32:5c:8d:9d:6d: 12:d1:52:87:47:99:3e:df:e7:e4:e0:37:ff:00:a7:61:e8:9e: 77:10:84:9f:9f:aa:e5:00:f5:b0:c6:98:69:89:1b:02:3e:eb: 0a:7c:1e:a8:5e:7a:83:30:0e:9e:b8:00:9b:a9:8c:3f:27:f9: 3a:a5:ed:67:f2:a2:75:a4:4f:8d:ae:a2:4d:d5:fd:21:36:da: 11:7b:41:de:3b:a6:56:70:3d:1f:7c:c3:eb:d4:1c:25:55:36: 7d:0c:70:e3:2f:fd:ce:b1:e6:e9:ba:ff:8c:92:7c:b8:d9:02: f0:bf:44:71:03:cd:2e:be:76:23:e6:9a:2b:44:02:6a:db:13: 58:1c:a8:6b:dc:5a:da:ba:5a:09:f8:e0:ba:e8:0e:be:79:5e: 69:ec:58:2d:14:cd:c6:70:6d:5b:de:d5:28:a3:e5:45:ef:70: 73:38:a5:08:68:93:65:0c:75:b1:b6:2c:96:fb:51:9b:0f:dc: c1:28:f3:3e:5e:06:92:67:bc:b8:0b:d5:1e:1d:cb:fb:a4:58: 43:67:0d:f1:5a:18:06:a0:55:3b:1f:0d:ed:59:73:59:04:72: ce:ab:f6:dc:af:5e:06:f9:f6:45:6c:7f:b1:83:c9:a4:6c:c4: 7d:62:1a:16 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbYXqWNK/NTSYKqFpZAFIYrepH+EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNjA2MDAyMDEwWhcNMjUwNzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzYwOWI4NDAzNTIxNTNiM2M1MGNhNzZhNDdjM2UzMGMz YjQxYWJlN2NjZDgwN2Y1OWQwYTIzYTQ0NmY4MWZmMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQManceJysV/tSqbGhr7RdFhuRZXCbG8mlt94o60m8qRs+ L6vF9TR2O+GZAsFBVdOFyAAKp7X5Plb0+ngYCn7uinzMNPji6xVRYjqbcoUOB4B3 JOwntfOgtPBgbQpRMGhiMC8QJXjNXuwGK23OhU4d3KjZZ3twuaINvULxZ4zjQPVX TS8EbnwCkY0kzZO+YLc5yW6LAOdnJmaWJ6+NBp2gSXRmh9DcacBPV/M2poNE8nFw TDpCq7m2MFX77jud9xeBLxYNK3Wvh6HkiRIuIYMmkARawSWCt6rqCfrclCldrDc3 Tr1LQCyj6NMznoOte2PysyfYNNFaFn4Pgngo1m09AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZHxDeSL3TlMiq14ZtNSdLFH00HgwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2E4NmM4ZmZhLTM0YWItNGEwMS04ZjYzLTg2MjA3ZmU0NDE1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AADANBgkqhkiG9w0BAQsFAAOCAQEAHdno8j0/hYiEdQTgpDJcjZ1t EtFSh0eZPt/n5OA3/wCnYeiedxCEn5+q5QD1sMaYaYkbAj7rCnweqF56gzAOnrgA m6mMPyf5OqXtZ/KidaRPja6iTdX9ITbaEXtB3jumVnA9H3zD69QcJVU2fQxw4y/9 zrHm6br/jJJ8uNkC8L9EcQPNLr52I+aaK0QCatsTWByoa9xa2rpaCfjguugOvnle aexYLRTNxnBtW97VKKPlRe9wczilCGiTZQx1sbYslvtRmw/cwSjzPl4Gkme8uAvV Hh3L+6RYQ2cN8VoYBqBVOx8N7VlzWQRyzqv23K9eBvn2RWx/sYPJpGzEfWIaFg== -----END CERTIFICATE-----Generated at Sun Jun 8 00:45:49 2025 by rpki-client