$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa File: c686f937-000a-490a-846c-e2773b637b26.roa (raw, json) Hash identifier: rAP3jyFf8B725ShoThKoW+DzvZZD6hFoLW/7fWzG1tQ= Subject key identifier: 64:B8:76:54:7E:A9:85:0F:E7:F9:85:B6:99:0F:D8:CD:66:5B:89:4C Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 6DE5398FAB4C3F479376613662168675617789E0 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa Signing time: Tue 04 Nov 2025 00:00:38 +0000 ROA not before: Tue 04 Nov 2025 00:00:38 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:e5:39:8f:ab:4c:3f:47:93:76:61:36:62:16:86:75:61:77:89:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Nov 4 00:00:38 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=98fdad26e9fbefb3a114d1ecd3e4aa819706cfa3b783046094c970b313189539, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c6:a2:47:b6:9c:64:46:6e:10:55:41:80:63: 64:d5:af:35:ac:d7:60:93:13:01:f3:7d:7c:a7:23: 30:c1:45:58:f6:3c:bb:0d:e6:81:23:4d:e7:07:4e: c0:52:f8:2c:49:b6:50:7a:c6:c8:e4:db:0b:ee:ef: b0:79:72:93:2f:d9:56:d0:93:26:56:9b:3f:09:a0: 1d:34:a4:cf:56:d3:fe:ab:49:25:3a:05:6f:2f:ac: 21:78:cc:28:42:de:5b:06:c3:36:cc:23:9c:de:92: 32:b1:58:d1:00:9f:43:34:b7:70:b4:37:37:0e:13: 19:86:d7:b8:fa:e4:3d:13:cb:41:3e:5d:9b:15:8c: 76:86:d3:44:ce:46:a8:1e:2a:7c:30:92:44:29:94: 98:b3:72:01:5b:f8:49:9d:39:76:09:c9:67:a0:20: 99:98:27:f9:24:86:ff:0f:d3:c1:62:d7:1d:ee:f3: c3:fb:88:2a:30:ae:fc:ad:1b:dc:ef:c0:82:d8:7c: 81:b3:dd:c6:69:a2:b6:73:30:48:16:c1:22:2d:11: 8d:b1:b0:2b:6c:76:c4:86:29:a6:92:1b:b1:cd:a5: 1f:0c:37:ed:73:b0:e8:ad:76:ea:44:25:28:ea:6e: 58:97:ed:6d:d9:7a:0d:3b:d1:bf:47:e5:db:83:0a: fe:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B8:76:54:7E:A9:85:0F:E7:F9:85:B6:99:0F:D8:CD:66:5B:89:4C X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/32 Signature Algorithm: sha256WithRSAEncryption 14:da:67:49:d1:14:ff:67:f1:80:49:08:6f:78:b8:e8:e6:58: a1:3f:86:6e:5d:74:30:6e:7d:e0:7d:00:98:2c:e7:f2:4f:b5: b5:44:5d:97:a0:3d:f9:40:f5:b0:54:ae:18:8a:ee:1e:14:da: 57:51:ad:12:78:af:3a:32:1c:77:72:59:9f:93:4b:fd:1b:03: 7b:e8:6f:69:0d:cf:4b:f5:4e:1b:93:a0:44:b3:5c:38:44:6e: 5e:df:e6:23:6d:77:f5:3a:d0:ea:d9:9a:e2:28:44:a4:ce:a8: ba:04:08:c6:ec:bb:82:8e:f5:f1:19:46:96:5b:fa:9d:11:a5: 46:15:b8:c6:09:f3:66:22:46:f8:d1:3b:11:4b:ee:4d:71:8f: f2:01:9c:b1:ba:1c:48:c3:70:e7:e9:b4:f1:7c:5a:d4:fe:9a: c5:5b:77:80:14:2b:45:ac:a7:47:c8:ae:4a:9a:c0:eb:b2:60: 07:6d:3d:81:c4:7f:52:8e:6d:cf:12:09:4f:c8:d9:75:b9:c7: d0:ff:d1:7e:a2:9c:78:b3:79:af:98:fd:54:6a:56:ef:3e:22: d6:b3:08:be:2a:96:38:1e:50:dd:5b:cf:a0:e9:07:8e:06:19: 64:6e:98:58:55:62:9f:40:7c:7d:97:8a:bc:04:0b:95:59:0b: e9:2a:2e:04 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUbeU5j6tMP0eTdmE2YhaGdWF3ieAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUxMTA0MDAwMDM4WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OGZkYWQyNmU5ZmJlZmIzYTExNGQxZWNkM2U0YWE4MTk3 MDZjZmEzYjc4MzA0NjA5NGM5NzBiMzEzMTg5NTM5MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcxqJHtpxkRm4QVUGAY2TVrzWs12CTEwHzfXynIzDBRVj2 PLsN5oEjTecHTsBS+CxJtlB6xsjk2wvu77B5cpMv2VbQkyZWmz8JoB00pM9W0/6r SSU6BW8vrCF4zChC3lsGwzbMI5zekjKxWNEAn0M0t3C0NzcOExmG17j65D0Ty0E+ XZsVjHaG00TORqgeKnwwkkQplJizcgFb+EmdOXYJyWegIJmYJ/kkhv8P08Fi1x3u 88P7iCowrvytG9zvwILYfIGz3cZporZzMEgWwSItEY2xsCtsdsSGKaaSG7HNpR8M N+1zsOitdupEJSjqbliX7W3Zeg070b9H5duDCv7RAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUZLh2VH6phQ/n+YW2mQ/YzWZbiUwwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2M2ODZmOTM3LTAwMGEtNDkwYS04NDZjLWUyNzczYjYzN2IyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBg9AMA0GCSqGSIb3DQEBCwUAA4IBAQAU2mdJ0RT/Z/GASQhveLjo5lih P4ZuXXQwbn3gfQCYLOfyT7W1RF2XoD35QPWwVK4Yiu4eFNpXUa0SeK86Mhx3clmf k0v9GwN76G9pDc9L9U4bk6BEs1w4RG5e3+YjbXf1OtDq2ZriKESkzqi6BAjG7LuC jvXxGUaWW/qdEaVGFbjGCfNmIkb40TsRS+5NcY/yAZyxuhxIw3Dn6bTxfFrU/prF W3eAFCtFrKdHyK5KmsDrsmAHbT2BxH9Sjm3PEglPyNl1ucfQ/9F+opx4s3mvmP1U albvPiLWswi+KpY4HlDdW8+g6QeOBhlkbphYVWKfQHx9l4q8BAuVWQvpKi4E -----END CERTIFICATE-----Generated at Wed Nov 5 23:34:15 2025 by rpki-client