$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa File: 59031a63-ea1a-4943-86ab-19221a23ca42.roa (raw, json) Hash identifier: X4k3IIJqmLkP99Hoddpqp5SkoA3nsyHaInsQLSWgdK8= Subject key identifier: 9D:4D:A8:BD:B9:93:80:0D:3E:FC:DF:5F:3A:7B:C4:8B:85:1F:72:06 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 35620C7307F1CB5ED122F2A85EE9A7B9090731C3 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa Signing time: Sat 26 Jul 2025 00:20:19 +0000 ROA not before: Sat 26 Jul 2025 00:20:19 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:62:0c:73:07:f1:cb:5e:d1:22:f2:a8:5e:e9:a7:b9:09:07:31:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Jul 26 00:20:19 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=473b6b5168e9ddaf3d674800ba32caf473d45499368cf9f58b175bfbe760a3b4, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:a6:a1:64:53:fb:be:ae:29:77:3d:c9:c1:d7: e6:da:08:a1:df:5d:ed:45:b1:3d:e8:84:8b:1f:59: 9b:50:5c:16:62:92:00:cc:b8:8e:b4:4c:17:4f:6e: bf:15:57:b2:cf:56:df:4e:b2:e0:05:4b:2b:c2:28: b3:35:25:1a:fb:d0:87:9d:fa:20:d8:1d:b1:73:2a: 8e:b0:5f:a6:28:27:f1:da:51:5e:1e:07:db:09:8f: b9:28:ae:0a:6f:3c:09:b0:2d:ec:6a:72:52:ea:28: 89:dc:2f:52:37:71:41:dd:37:4a:1a:e8:01:eb:90: ca:e6:a6:02:a8:96:44:b9:9f:21:b2:ca:5d:2f:31: d3:38:d0:c0:29:c8:4e:93:cd:74:53:51:b8:8a:56: 7b:0b:0d:69:eb:6f:8d:0c:e7:4b:8c:71:20:87:5f: f2:f7:15:a0:91:e1:69:e5:1d:59:08:4f:22:c3:99: e5:98:97:e8:f4:8c:8c:11:f0:e0:d4:13:5e:95:df: cf:ad:7d:e5:2c:cf:94:bc:30:c5:2c:ba:d5:00:cb: 88:a0:20:68:12:34:54:b1:9c:ac:11:dd:19:0a:3f: 2c:53:b6:af:53:13:0b:b1:a9:f5:da:fb:95:ed:9e: 62:55:46:ff:67:d9:f1:70:de:b7:a6:df:a8:7b:76: a7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4D:A8:BD:B9:93:80:0D:3E:FC:DF:5F:3A:7B:C4:8B:85:1F:72:06 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:8000::/39 Signature Algorithm: sha256WithRSAEncryption 96:23:d2:5e:2e:7f:89:ed:bb:3e:b1:64:de:9a:0e:98:c4:3a: 5a:36:9f:88:52:2f:e1:5e:7c:2e:7d:e3:fc:85:1c:7a:33:f6: a4:60:e4:8a:af:9b:32:0c:2b:5b:69:13:6d:0a:3e:a8:54:6e: af:a7:17:db:4a:86:ec:0b:3c:e2:fa:f1:37:b0:fe:3e:48:5b: 96:ad:43:9a:02:36:48:55:dc:e4:a4:47:11:b5:f2:14:1c:a4: 65:38:65:54:72:0b:78:0c:36:70:c0:79:dd:7a:bb:5b:3f:59: 4d:f7:60:e1:a2:c0:02:22:96:60:5a:db:71:ac:5b:d2:1e:32: b2:94:9b:d3:4c:ca:48:bf:55:49:40:c5:39:2a:78:00:1c:29: c7:8c:2f:ef:93:83:2e:0e:47:12:82:e1:a5:72:6b:77:9a:c0: f7:ba:4c:96:18:ce:ab:4d:62:ec:9a:d6:a7:5e:d0:f9:d0:7c: b5:bf:cc:0f:1f:6d:fd:ba:22:76:b0:5e:c4:56:f2:ba:f0:f2: 23:7a:c4:f0:49:65:75:49:2f:ef:ac:47:51:1c:a1:68:dd:22: 0e:d1:2c:89:77:5c:1e:e0:af:68:70:e2:da:a0:08:c0:b1:59: 12:ee:06:fe:be:5e:bb:d7:0d:f9:3b:65:c7:fa:44:87:1a:65: 12:d7:df:e4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNWIMcwfxy17RIvKoXumnuQkHMcMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNzI2MDAyMDE5WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzNiNmI1MTY4ZTlkZGFmM2Q2NzQ4MDBiYTMyY2FmNDcz ZDQ1NDk5MzY4Y2Y5ZjU4YjE3NWJmYmU3NjBhM2I0MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDypqFkU/u+ril3PcnB1+baCKHfXe1FsT3ohIsfWZtQXBZi kgDMuI60TBdPbr8VV7LPVt9OsuAFSyvCKLM1JRr70Ied+iDYHbFzKo6wX6YoJ/Ha UV4eB9sJj7korgpvPAmwLexqclLqKIncL1I3cUHdN0oa6AHrkMrmpgKolkS5nyGy yl0vMdM40MApyE6TzXRTUbiKVnsLDWnrb40M50uMcSCHX/L3FaCR4WnlHVkITyLD meWYl+j0jIwR8ODUE16V38+tfeUsz5S8MMUsutUAy4igIGgSNFSxnKwR3RkKPyxT tq9TEwuxqfXa+5XtnmJVRv9n2fFw3rem36h7dqcpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnU2ovbmTgA0+/N9fOnvEi4UfcgYwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzU5MDMxYTYzLWVhMWEtNDk0My04NmFiLTE5MjIxYTIzY2E0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AgDANBgkqhkiG9w0BAQsFAAOCAQEAliPSXi5/ie27PrFk3poOmMQ6 WjafiFIv4V58Ln3j/IUcejP2pGDkiq+bMgwrW2kTbQo+qFRur6cX20qG7As84vrx N7D+Pkhblq1DmgI2SFXc5KRHEbXyFBykZThlVHILeAw2cMB53Xq7Wz9ZTfdg4aLA AiKWYFrbcaxb0h4yspSb00zKSL9VSUDFOSp4ABwpx4wv75ODLg5HEoLhpXJrd5rA 97pMlhjOq01i7JrWp17Q+dB8tb/MDx9t/boidrBexFbyuvDyI3rE8ElldUkv76xH URyhaN0iDtEsiXdcHuCvaHDi2qAIwLFZEu4G/r5eu9cN+Ttlx/pEhxplEtff5A== -----END CERTIFICATE-----Generated at Thu Aug 7 05:10:09 2025 by rpki-client