$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa File: 254b4192-a38e-41eb-a28b-d01a7ee37964.roa (raw, json) Hash identifier: LM6B0/t+XXLSr3nhC7mdLJ635qOPdhBi5KiGLKjyVEc= Subject key identifier: 9C:10:60:4A:7A:23:1A:3D:AD:F1:A2:AC:CC:33:85:4B:0C:5A:86:53 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 1B84ED5CE1D84B4477C8BD108F05C519E7DFBE68 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa Signing time: Sat 13 Sep 2025 00:50:12 +0000 ROA not before: Sat 13 Sep 2025 00:50:12 +0000 ROA not after: Sat 18 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:108:d000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:84:ed:5c:e1:d8:4b:44:77:c8:bd:10:8f:05:c5:19:e7:df:be:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Sep 13 00:50:12 2025 GMT Not After : Oct 18 23:59:59 2025 GMT Subject: serialNumber=e36215b58249fe40d883ced560bf57de755a5d63c4eb0d0a876d74f40ce277cb, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c3:cb:54:1a:6c:ce:48:1c:ad:14:97:8a:aa: dd:73:81:b3:e9:f8:32:e4:13:e8:f1:da:f2:bc:6f: 86:ce:63:6f:1d:15:42:4e:f0:98:3b:e2:ed:4e:6a: f9:0d:6b:20:0f:c6:80:06:04:61:df:3d:e3:e9:09: 61:fe:be:9d:24:a8:5e:9c:02:3c:90:0d:50:72:d3: 68:34:a7:01:d9:11:96:03:b6:97:df:51:88:d8:b1: 0a:57:af:12:08:a8:0c:a3:c3:fb:a6:4a:ff:93:1c: 6a:a4:90:20:09:a1:9e:c9:89:f0:d4:37:08:9c:7f: 71:81:92:04:6c:4e:2f:69:67:42:c5:67:a0:62:44: e0:a8:fc:04:fb:ee:59:fd:90:d5:a7:ce:91:37:23: da:03:dd:65:e6:16:60:6e:cb:ed:e2:ba:77:dc:2d: a8:03:86:ad:a6:f5:a6:a2:39:eb:a6:31:13:1d:03: f9:9d:50:9b:68:97:53:be:0e:5d:fa:3d:b9:3a:5a: da:81:67:1d:b0:c5:31:2d:3b:7a:22:0d:d4:18:bc: 51:db:db:8a:be:fd:c8:15:cf:77:cf:f4:69:c7:41: 91:53:94:d6:e5:ef:fc:d8:b9:32:73:7e:f9:4f:64: c3:f0:c1:e5:38:0c:ed:79:b4:47:0b:22:a6:8e:fb: 53:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:10:60:4A:7A:23:1A:3D:AD:F1:A2:AC:CC:33:85:4B:0C:5A:86:53 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:d000::/44 Signature Algorithm: sha256WithRSAEncryption 22:81:d2:b6:70:e1:38:42:36:1b:b8:38:c9:d3:b3:60:55:ba: 21:ee:b4:42:4b:77:2e:af:a7:9b:cf:d7:9d:d6:c0:54:7c:36: 4c:b6:a6:89:c7:19:99:f5:6e:0f:d1:cb:c9:d1:da:d7:ee:58: f3:e1:d4:56:67:e6:55:0f:58:c6:c8:5a:62:9c:63:3e:be:57: 3d:3b:24:e7:d2:61:39:d6:57:c0:45:42:44:e6:d2:57:3e:8f: 92:d7:5e:25:fc:55:94:04:22:84:e2:e5:ff:56:66:97:e9:25: 97:01:35:5a:25:b5:ee:01:e9:f9:bd:c2:3b:31:00:d7:c4:02: 97:8c:cc:19:ac:80:12:86:29:49:43:34:0b:71:bc:89:9e:37: 3e:3e:73:d4:25:48:87:29:00:c3:d0:39:3a:bc:ce:e5:b5:0e: bb:f9:3b:37:92:1b:76:97:c5:43:f3:94:2b:bb:49:fb:a3:12: ff:c0:5f:4e:3c:47:63:09:23:44:16:1e:63:07:55:e9:d8:42: 96:a0:fa:ba:16:ed:e6:eb:45:7a:2b:9d:ff:7d:cf:58:0d:ab: a8:2d:1c:bc:17:f0:8a:b8:6d:41:f2:f7:b0:cc:5a:54:b8:7b: 10:4b:0e:d9:d3:75:df:4a:4f:c8:b7:66:f3:f0:ac:88:67:87: 50:7f:27:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG4TtXOHYS0R3yL0QjwXFGeffvmgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwOTEzMDA1MDEyWhcNMjUxMDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzYyMTViNTgyNDlmZTQwZDg4M2NlZDU2MGJmNTdkZTc1 NWE1ZDYzYzRlYjBkMGE4NzZkNzRmNDBjZTI3N2NiMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6w8tUGmzOSBytFJeKqt1zgbPp+DLkE+jx2vK8b4bOY28d FUJO8Jg74u1OavkNayAPxoAGBGHfPePpCWH+vp0kqF6cAjyQDVBy02g0pwHZEZYD tpffUYjYsQpXrxIIqAyjw/umSv+THGqkkCAJoZ7JifDUNwicf3GBkgRsTi9pZ0LF Z6BiROCo/AT77ln9kNWnzpE3I9oD3WXmFmBuy+3iunfcLagDhq2m9aaiOeumMRMd A/mdUJtol1O+Dl36Pbk6WtqBZx2wxTEtO3oiDdQYvFHb24q+/cgVz3fP9GnHQZFT lNbl7/zYuTJzfvlPZMPwweU4DO15tEcLIqaO+1MXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnBBgSnojGj2t8aKszDOFSwxahlMwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzI1NGI0MTkyLWEzOGUtNDFlYi1hMjhiLWQwMWE3ZWUzNzk2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEI0AAwDQYJKoZIhvcNAQELBQADggEBACKB0rZw4ThCNhu4OMnTs2BV uiHutEJLdy6vp5vP153WwFR8Nky2ponHGZn1bg/Ry8nR2tfuWPPh1FZn5lUPWMbI WmKcYz6+Vz07JOfSYTnWV8BFQkTm0lc+j5LXXiX8VZQEIoTi5f9WZpfpJZcBNVol te4B6fm9wjsxANfEApeMzBmsgBKGKUlDNAtxvImeNz4+c9QlSIcpAMPQOTq8zuW1 Drv5OzeSG3aXxUPzlCu7SfujEv/AX048R2MJI0QWHmMHVenYQpag+roW7ebrRXor nf99z1gNq6gtHLwX8Iq4bUHy97DMWlS4exBLDtnTdd9KT8i3ZvPwrIhnh1B/J2Y= -----END CERTIFICATE-----Generated at Wed Sep 17 21:48:13 2025 by rpki-client