$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa File: 254b4192-a38e-41eb-a28b-d01a7ee37964.roa (raw, json) Hash identifier: 7yD/m8k5yEPT8h1Ngctm27HM9QvRcdkGJMZd1fvXE3o= Subject key identifier: 43:1A:30:84:48:EB:2B:1E:BC:80:2D:6B:7A:33:98:A6:41:9A:F3:32 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 741F43020EB8A94611234354101456C8D7342BCE Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa Signing time: Tue 19 Aug 2025 00:40:13 +0000 ROA not before: Tue 19 Aug 2025 00:40:13 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:108:d000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:1f:43:02:0e:b8:a9:46:11:23:43:54:10:14:56:c8:d7:34:2b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Aug 19 00:40:13 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=a7857608f133fc8c69131beeac370b5de37fd1ec8cfe04ba130ce63c3c421659, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ac:d9:e4:39:fb:5e:c6:1a:cb:4b:fd:09:f1: 13:9e:f1:f5:ac:ad:2d:75:7f:c1:6c:ac:ab:44:58: 66:ea:e6:8b:42:56:7c:8f:07:55:a2:c5:27:f2:ae: ff:80:3f:9b:ba:9d:1a:f5:1a:26:a6:86:c5:ec:f4: 00:f9:18:27:7b:a7:79:b4:2b:f4:44:23:2a:35:90: 1f:16:08:b4:41:10:b2:b6:48:3c:c9:78:5f:23:d7: fb:2c:66:98:da:81:10:5e:b4:9b:de:d1:4d:b4:08: b0:6a:83:02:c2:21:46:e9:3e:e1:9c:b0:04:60:56: 5c:84:99:62:68:4b:01:a8:3c:c7:0e:0f:3c:c9:32: 40:f3:08:9a:1a:37:56:28:7d:c9:75:1c:3d:64:e2: c7:62:ba:fc:e2:73:d9:27:77:fc:f9:49:1f:7c:fd: 4f:9c:a1:0f:d1:f6:60:8f:84:40:a5:6c:8f:4e:d6: c8:67:a3:27:f4:86:d1:f5:08:3a:e2:b5:d2:f0:e6: eb:6a:ca:37:34:99:99:52:c1:64:04:90:e0:f6:85: 8d:98:3d:18:f6:fc:24:35:28:e3:da:ed:f7:98:00: cb:02:85:63:f1:bb:cc:db:65:d0:22:92:a3:2f:75: 05:e5:ab:6a:e1:d8:5a:14:69:fb:a0:19:6e:16:54: 7f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:1A:30:84:48:EB:2B:1E:BC:80:2D:6B:7A:33:98:A6:41:9A:F3:32 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:d000::/44 Signature Algorithm: sha256WithRSAEncryption 4d:91:42:6d:c3:a8:4e:d5:d6:5b:ec:06:07:a5:e7:c0:a5:0e: fe:1d:c2:bf:16:96:e2:3e:d5:d4:2a:72:bb:6c:52:58:83:36: eb:9f:1f:14:ce:35:e5:8a:c5:8a:4e:2a:49:53:b9:fd:61:b3: fe:09:09:65:b6:c0:c2:eb:dc:7c:1e:dc:04:cd:ef:bf:17:af: 8c:98:4b:e2:0f:90:c3:0c:a6:2a:23:fc:fb:d8:0d:4a:d3:b8: 9f:9e:d6:81:85:48:37:54:6d:ef:ab:59:5e:d9:56:a7:c4:14: ee:76:37:27:5b:13:dc:e8:49:f6:52:24:c9:4b:fc:1e:db:10: 66:c6:8a:9e:a7:b8:9a:12:5a:40:13:58:88:e6:c2:2b:8f:fd: 24:2b:0d:57:f1:ae:4a:6e:cc:e0:db:6d:1f:59:b3:af:f7:2e: 69:ca:32:2b:4d:26:fa:81:b6:1b:33:d4:7e:22:84:e8:5c:be: de:3b:3b:fe:8a:2d:b4:b9:57:8a:fc:45:48:c4:fb:92:ea:1c: 1e:b1:59:e3:85:66:db:b7:db:a1:b9:80:be:53:be:2a:75:fd: b2:7d:27:27:32:2f:06:84:dc:63:ef:96:4f:8f:f0:a1:f2:3d: c4:a5:48:e7:db:16:09:d4:eb:c0:5d:0f:0c:a6:92:d3:5f:91: 7e:72:8a:ad -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdB9DAg64qUYRI0NUEBRWyNc0K84wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwODE5MDA0MDEzWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzg1NzYwOGYxMzNmYzhjNjkxMzFiZWVhYzM3MGI1ZGUz N2ZkMWVjOGNmZTA0YmExMzBjZTYzYzNjNDIxNjU5MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0rNnkOftexhrLS/0J8ROe8fWsrS11f8FsrKtEWGbq5otC VnyPB1WixSfyrv+AP5u6nRr1GiamhsXs9AD5GCd7p3m0K/REIyo1kB8WCLRBELK2 SDzJeF8j1/ssZpjagRBetJve0U20CLBqgwLCIUbpPuGcsARgVlyEmWJoSwGoPMcO DzzJMkDzCJoaN1Yofcl1HD1k4sdiuvzic9knd/z5SR98/U+coQ/R9mCPhEClbI9O 1shnoyf0htH1CDritdLw5utqyjc0mZlSwWQEkOD2hY2YPRj2/CQ1KOPa7feYAMsC hWPxu8zbZdAikqMvdQXlq2rh2FoUafugGW4WVH/vAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQxowhEjrKx68gC1rejOYpkGa8zIwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzI1NGI0MTkyLWEzOGUtNDFlYi1hMjhiLWQwMWE3ZWUzNzk2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEI0AAwDQYJKoZIhvcNAQELBQADggEBAE2RQm3DqE7V1lvsBgel58Cl Dv4dwr8WluI+1dQqcrtsUliDNuufHxTONeWKxYpOKklTuf1hs/4JCWW2wMLr3Hwe 3ATN778Xr4yYS+IPkMMMpioj/PvYDUrTuJ+e1oGFSDdUbe+rWV7ZVqfEFO52Nydb E9zoSfZSJMlL/B7bEGbGip6nuJoSWkATWIjmwiuP/SQrDVfxrkpuzODbbR9Zs6/3 LmnKMitNJvqBthsz1H4ihOhcvt47O/6KLbS5V4r8RUjE+5LqHB6xWeOFZtu326G5 gL5Tvip1/bJ9JycyLwaE3GPvlk+P8KHyPcSlSOfbFgnU68BdDwymktNfkX5yiq0= -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:12 2025 by rpki-client