$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa File: 8f960b0d-c291-490f-aff5-abe964221bd2.roa (raw, json) Hash identifier: oqThFPe48Y6g5txRyADrdIqjYzEnJtgdYcwLNQNhm44= Subject key identifier: 05:6C:5B:6B:F2:17:58:CA:B9:EB:68:C4:2B:21:14:43:8B:19:39:CF Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 3DD2E9836E0648F01248E9B2B0BDB663C6B4F185 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa Signing time: Tue 19 Aug 2025 00:40:13 +0000 ROA not before: Tue 19 Aug 2025 00:40:13 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:108:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:d2:e9:83:6e:06:48:f0:12:48:e9:b2:b0:bd:b6:63:c6:b4:f1:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Aug 19 00:40:13 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=4b06391a7781a3deee857ceab24d937f8173eb3535541d4faefc09888950ed9c, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f4:aa:e2:23:c9:b0:8d:88:2f:0b:de:36:99: 3b:a1:61:d9:e9:5d:1b:03:1f:2e:d6:d9:84:76:8f: 32:eb:fb:77:eb:76:5b:02:ee:98:c1:af:e8:04:61: 74:32:cf:99:e6:7b:4b:97:3b:3f:ff:8c:06:26:f7: eb:94:50:5d:37:02:30:41:fc:04:4f:c4:91:5f:5f: a5:24:d6:23:e7:4a:be:6c:49:1c:3f:0a:70:42:48: eb:a6:55:d0:48:d9:07:77:4c:ac:10:87:82:7f:f9: 77:c2:8c:a6:b0:6a:ae:95:28:99:90:66:20:ec:01: 14:3e:8e:cc:31:01:f7:f5:6c:00:2e:ff:a9:73:48: 70:44:39:13:a3:b9:50:5c:1e:ff:36:87:68:ee:f8: 42:18:5a:60:f5:47:6c:64:b7:0f:bc:2b:4a:51:8a: a5:a1:0d:12:cb:38:ab:23:05:7e:0a:bd:3f:23:40: 14:bf:b4:7f:06:e3:83:b4:88:87:6f:f9:26:4e:90: 2b:c3:23:d0:af:ad:fb:84:63:4d:f9:c5:63:27:91: ce:fd:87:28:08:2b:57:49:4f:11:fb:55:4f:4f:1c: 4f:7c:1e:8e:c9:2e:6e:9f:7d:8f:11:a6:36:4f:9b: 63:d3:fe:d0:e9:1b:ae:58:75:7a:3b:3e:f5:a1:8e: 95:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6C:5B:6B:F2:17:58:CA:B9:EB:68:C4:2B:21:14:43:8B:19:39:CF X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:7000::/44 Signature Algorithm: sha256WithRSAEncryption ad:84:c7:f0:5e:27:71:40:03:cb:d3:87:5e:25:8b:2b:a2:0d: cb:ac:a4:19:e6:71:f2:3f:b9:42:69:14:8e:65:e7:0a:d9:bb: aa:55:23:a5:88:8b:55:99:7c:b4:01:1f:3a:ff:e4:9a:79:4a: 7d:44:e1:67:8d:f1:13:af:aa:01:f9:66:eb:ff:e4:15:45:30: d8:9b:26:99:d4:10:bb:f4:4e:83:8e:a9:d2:41:01:2c:30:2d: 4e:9f:37:3b:fa:3a:32:c9:c4:05:d0:5e:85:bf:bb:ba:76:c5: ae:b8:2f:ca:5e:82:2a:a4:df:a0:36:b8:bd:99:f9:fa:d6:b0: 85:cc:41:d8:41:1c:8d:b9:66:f1:7e:f8:4b:75:a6:88:80:43: fe:6c:6e:6a:d2:8f:92:69:44:22:6a:7b:20:82:c6:90:a9:00: 44:44:94:19:a0:f0:bf:ab:cb:07:14:6b:9f:d2:46:83:69:4b: 6e:6b:ef:c8:5c:de:4b:de:f9:55:ee:ae:7c:5f:f6:c6:bc:cb: ff:a7:60:b6:00:3b:8d:da:84:08:c4:e3:b8:7c:42:a5:b6:f8: 36:65:92:48:f8:aa:7c:5d:04:9f:ea:05:b7:2e:c6:d4:3a:2e: 7b:b2:5d:8e:60:09:29:9c:c7:77:d9:d1:ec:d0:eb:1a:4b:bd: f6:8f:1b:e1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPdLpg24GSPASSOmysL22Y8a08YUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwODE5MDA0MDEzWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjA2MzkxYTc3ODFhM2RlZWU4NTdjZWFiMjRkOTM3Zjgx NzNlYjM1MzU1NDFkNGZhZWZjMDk4ODg5NTBlZDljMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC19KriI8mwjYgvC942mTuhYdnpXRsDHy7W2YR2jzLr+3fr dlsC7pjBr+gEYXQyz5nme0uXOz//jAYm9+uUUF03AjBB/ARPxJFfX6Uk1iPnSr5s SRw/CnBCSOumVdBI2Qd3TKwQh4J/+XfCjKawaq6VKJmQZiDsARQ+jswxAff1bAAu /6lzSHBEOROjuVBcHv82h2ju+EIYWmD1R2xktw+8K0pRiqWhDRLLOKsjBX4KvT8j QBS/tH8G44O0iIdv+SZOkCvDI9CvrfuEY035xWMnkc79hygIK1dJTxH7VU9PHE98 Ho7JLm6ffY8RpjZPm2PT/tDpG65YdXo7PvWhjpXXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBWxba/IXWMq562jEKyEUQ4sZOc8wHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzhmOTYwYjBkLWMyOTEtNDkwZi1hZmY1LWFiZTk2NDIyMWJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEIcAAwDQYJKoZIhvcNAQELBQADggEBAK2Ex/BeJ3FAA8vTh14liyui DcuspBnmcfI/uUJpFI5l5wrZu6pVI6WIi1WZfLQBHzr/5Jp5Sn1E4WeN8ROvqgH5 Zuv/5BVFMNibJpnUELv0ToOOqdJBASwwLU6fNzv6OjLJxAXQXoW/u7p2xa64L8pe giqk36A2uL2Z+frWsIXMQdhBHI25ZvF++Et1poiAQ/5sbmrSj5JpRCJqeyCCxpCp AERElBmg8L+rywcUa5/SRoNpS25r78hc3kve+VXurnxf9sa8y/+nYLYAO43ahAjE 47h8QqW2+DZlkkj4qnxdBJ/qBbcuxtQ6LnuyXY5gCSmcx3fZ0ezQ6xpLvfaPG+E= -----END CERTIFICATE-----Generated at Wed Aug 20 13:08:31 2025 by rpki-client