$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa File: 59031a63-ea1a-4943-86ab-19221a23ca42.roa (raw, json) Hash identifier: Q6alZLbh7m22hU5vnmDn9iJkEfErcbGvGdRZ0sBMZoQ= Subject key identifier: BA:0F:43:1A:9F:9C:23:2A:4B:DA:53:9D:0C:D9:77:41:9C:D7:88:C9 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 685AB7898FE3029D931AEF019251C54B8AFBEF1E Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa Signing time: Tue 04 Nov 2025 00:00:37 +0000 ROA not before: Tue 04 Nov 2025 00:00:37 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:5a:b7:89:8f:e3:02:9d:93:1a:ef:01:92:51:c5:4b:8a:fb:ef:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Nov 4 00:00:37 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=0c94f77c3ce14646e20c4445ea1411a69e30bbe723a69fa9af413d425d2dd0d4, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:81:ff:c0:71:6d:5f:cf:fe:0a:a9:f4:19:89: f4:ab:dd:58:ed:86:a0:bb:bd:ab:52:44:bf:56:0e: 71:fb:c0:67:e6:23:e9:34:06:e8:84:23:53:56:f9: 8f:17:ae:15:87:29:10:e3:f5:55:78:9b:c6:07:c9: e6:4c:31:f7:28:3e:d7:d1:de:59:db:98:c2:60:a0: 22:11:fd:96:66:a5:17:bb:2b:ee:51:0f:7f:4e:00: 35:fb:de:0b:ba:63:ce:39:08:be:c2:4c:d5:5a:62: 84:3c:56:5d:9b:10:d7:0c:bc:dc:f0:cf:f2:b7:1c: 2c:c1:74:0e:40:84:e0:32:9c:44:dd:4b:87:68:ee: 0c:5c:dd:5f:a7:9b:28:b4:3e:6e:66:8c:d9:93:97: 9c:5e:04:77:c4:be:3e:86:c7:34:22:2e:6c:b9:29: 80:22:ab:a8:63:14:1f:e8:08:13:c1:fd:e4:19:c0: 79:f0:9a:cf:38:b4:51:88:7b:7d:98:c6:87:98:1c: 9a:d9:f4:78:d5:c2:b9:94:5d:32:03:8c:68:d7:56: a7:bc:1e:b2:82:6e:0a:40:e4:af:20:fb:fb:49:f6: 0b:f9:86:5d:93:5e:15:26:52:02:89:1a:a6:72:93: e7:1d:66:45:2d:7a:42:22:c0:e6:cd:ee:0f:3f:2f: 7e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:0F:43:1A:9F:9C:23:2A:4B:DA:53:9D:0C:D9:77:41:9C:D7:88:C9 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:8000::/39 Signature Algorithm: sha256WithRSAEncryption d4:65:47:ba:f6:b6:2a:ad:c0:05:1b:22:f4:77:69:c1:4d:95: ff:f6:8c:40:d2:a5:47:f9:5a:24:1c:f1:de:e1:8c:66:23:1e: 6e:1f:e0:23:7b:38:56:7a:ab:8d:66:c8:57:d7:0a:c7:1f:d1: e8:33:5d:d6:59:40:51:64:7a:4b:3d:99:39:da:bb:3f:ff:25: 63:de:1c:1d:6a:6e:45:2d:60:00:e5:45:32:9f:ff:2c:51:45: 77:d4:fa:84:e3:3e:1c:90:be:0e:b2:b3:de:0d:cb:0b:ae:4f: b5:f3:ff:5f:42:67:e6:d3:c7:9e:9e:e7:53:8a:c9:11:6f:07: 86:91:57:b8:44:91:68:7e:6f:73:c0:00:22:1e:d4:6d:3b:5c: 44:3f:6e:2a:9e:41:fc:f0:21:fa:c4:14:fc:aa:69:e0:e7:a4: d7:cf:84:ca:bc:e8:3f:64:57:55:cb:e3:03:7c:a6:12:64:fc: 5d:68:1a:69:26:c9:93:5f:69:ec:e4:6d:4e:1b:f4:11:0f:8d: e4:f7:c1:1c:1b:6b:d9:40:76:fa:05:23:26:c7:3b:36:57:71: fb:a4:16:cb:82:bd:40:fe:a3:e4:b2:cf:4f:e1:40:94:9f:a3: db:8b:28:36:20:0a:19:84:fd:0b:f3:71:f5:a5:28:24:cc:27: 70:e9:d0:fa -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaFq3iY/jAp2TGu8BklHFS4r77x4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUxMTA0MDAwMDM3WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzk0Zjc3YzNjZTE0NjQ2ZTIwYzQ0NDVlYTE0MTFhNjll MzBiYmU3MjNhNjlmYTlhZjQxM2Q0MjVkMmRkMGQ0MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5gf/AcW1fz/4KqfQZifSr3VjthqC7vatSRL9WDnH7wGfm I+k0BuiEI1NW+Y8XrhWHKRDj9VV4m8YHyeZMMfcoPtfR3lnbmMJgoCIR/ZZmpRe7 K+5RD39OADX73gu6Y845CL7CTNVaYoQ8Vl2bENcMvNzwz/K3HCzBdA5AhOAynETd S4do7gxc3V+nmyi0Pm5mjNmTl5xeBHfEvj6GxzQiLmy5KYAiq6hjFB/oCBPB/eQZ wHnwms84tFGIe32YxoeYHJrZ9HjVwrmUXTIDjGjXVqe8HrKCbgpA5K8g+/tJ9gv5 hl2TXhUmUgKJGqZyk+cdZkUtekIiwObN7g8/L35rAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUug9DGp+cIypL2lOdDNl3QZzXiMkwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzU5MDMxYTYzLWVhMWEtNDk0My04NmFiLTE5MjIxYTIzY2E0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AgDANBgkqhkiG9w0BAQsFAAOCAQEA1GVHuva2Kq3ABRsi9HdpwU2V //aMQNKlR/laJBzx3uGMZiMebh/gI3s4VnqrjWbIV9cKxx/R6DNd1llAUWR6Sz2Z Odq7P/8lY94cHWpuRS1gAOVFMp//LFFFd9T6hOM+HJC+DrKz3g3LC65PtfP/X0Jn 5tPHnp7nU4rJEW8HhpFXuESRaH5vc8AAIh7UbTtcRD9uKp5B/PAh+sQU/Kpp4Oek 18+EyrzoP2RXVcvjA3ymEmT8XWgaaSbJk19p7ORtThv0EQ+N5PfBHBtr2UB2+gUj Jsc7Nldx+6QWy4K9QP6j5LLPT+FAlJ+j24soNiAKGYT9C/Nx9aUoJMwncOnQ+g== -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:00 2025 by rpki-client