$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/20cde4dc-81ed-4d96-a8e5-159a6cdc0767.roa File: 20cde4dc-81ed-4d96-a8e5-159a6cdc0767.roa (raw, json) Hash identifier: G07RmvAylQd6QGBpIQYOupjb65Fj083xxMib7oavaak= Subject key identifier: DA:88:E6:69:07:82:B6:82:4A:4E:09:D7:4D:9A:FB:A2:91:9E:8B:04 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 0DC9EF408C0A5F6926A35AD0753C49EAF17154BC Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/20cde4dc-81ed-4d96-a8e5-159a6cdc0767.roa Signing time: Fri 11 Jul 2025 15:00:26 +0000 ROA not before: Fri 11 Jul 2025 15:00:26 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:c9:ef:40:8c:0a:5f:69:26:a3:5a:d0:75:3c:49:ea:f1:71:54:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jul 11 15:00:26 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=f7207b5020b40845f17a0b8d70ccbaab8157a361976bf0e806975ce11f6392f3, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:de:25:11:42:9b:b6:f1:fd:5c:2c:71:f1:5a: 6b:8f:96:6c:c6:db:8d:00:bd:89:3a:92:36:31:10: 9e:94:3f:23:45:63:94:3a:25:f3:9f:49:24:85:09: 0e:94:90:ed:57:fd:9a:6f:f1:29:1f:4d:5f:60:ec: 43:59:60:43:88:28:81:0f:26:04:fe:fd:f2:4b:26: e5:bc:dd:d1:05:c3:2e:fb:4f:63:28:64:2c:90:1f: 8a:f4:0c:94:bb:a0:52:c3:4f:49:0f:6d:e2:09:85: fd:88:80:6c:36:cd:7a:3e:3d:b3:1a:f4:81:f4:c1: ca:1b:d0:e6:79:6f:0e:43:3b:5e:ef:69:a8:1e:ef: 55:3d:a2:c3:6e:ed:42:51:d9:e0:d5:3b:76:13:bf: 12:a0:c4:6e:33:c9:bd:24:0f:60:c4:d6:ee:bc:4c: 58:fe:c4:5c:51:fd:dd:b3:04:bc:51:77:44:74:18: 32:17:34:99:31:55:5b:7e:e4:cf:45:79:bc:45:60: 59:5f:ab:0f:fe:f5:fe:4c:8b:92:be:13:08:21:76: 7e:23:89:a2:1e:9d:36:e8:64:55:cb:e8:f2:53:f6: a8:b3:d5:4d:e1:08:ce:24:72:41:95:06:5d:98:c8: 91:64:13:7c:6f:ee:9f:67:c4:0f:61:6c:a1:40:00: ed:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:88:E6:69:07:82:B6:82:4A:4E:09:D7:4D:9A:FB:A2:91:9E:8B:04 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/20cde4dc-81ed-4d96-a8e5-159a6cdc0767.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.2.0/23 Signature Algorithm: sha256WithRSAEncryption 49:23:2f:2d:2d:b7:27:ec:da:f7:cc:da:d3:b8:59:3a:11:23: f4:3c:48:d4:aa:5e:0d:6c:3c:87:3b:ff:3a:67:3e:74:ca:4c: 17:34:ea:ee:1d:d7:65:60:a3:dd:8f:df:0d:2b:87:b2:36:0c: b7:c4:8d:5a:ab:3f:85:3f:1b:69:dd:67:b4:09:b9:06:49:96: 5a:da:a2:11:da:aa:00:7d:db:e9:65:cc:81:04:46:9c:d6:4d: ff:6b:06:2a:ae:16:20:64:69:9e:89:30:25:43:96:3b:40:4a: 12:9d:bd:bd:39:5c:57:ff:37:76:a6:58:bc:8f:93:a4:37:9e: fb:05:5d:f3:c1:7e:68:4f:3c:b1:c3:73:7c:32:37:68:22:aa: 89:4b:75:83:ef:ed:bc:84:62:c3:24:6a:b8:e8:d3:1a:f7:ad: 7d:30:93:66:51:48:c1:6e:d5:28:0e:2d:7b:9d:15:b8:bf:39: 87:39:6a:a1:76:a4:2d:3c:ae:9e:c9:f8:dc:28:af:2b:f7:c7: 9f:ec:8a:37:db:44:da:4f:8e:40:95:87:6f:6b:78:11:c5:66: c3:99:7b:07:67:9e:34:75:83:4a:57:8b:07:db:2b:97:55:a8: 65:f1:0b:d1:16:ae:a6:af:4a:fb:1c:33:45:82:8a:3c:d9:2e: 9a:84:c6:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDcnvQIwKX2kmo1rQdTxJ6vFxVLwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNzExMTUwMDI2WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzIwN2I1MDIwYjQwODQ1ZjE3YTBiOGQ3MGNjYmFhYjgx NTdhMzYxOTc2YmYwZTgwNjk3NWNlMTFmNjM5MmYzMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn3iURQpu28f1cLHHxWmuPlmzG240AvYk6kjYxEJ6UPyNF Y5Q6JfOfSSSFCQ6UkO1X/Zpv8SkfTV9g7ENZYEOIKIEPJgT+/fJLJuW83dEFwy77 T2MoZCyQH4r0DJS7oFLDT0kPbeIJhf2IgGw2zXo+PbMa9IH0wcob0OZ5bw5DO17v aage71U9osNu7UJR2eDVO3YTvxKgxG4zyb0kD2DE1u68TFj+xFxR/d2zBLxRd0R0 GDIXNJkxVVt+5M9FebxFYFlfqw/+9f5Mi5K+Ewghdn4jiaIenTboZFXL6PJT9qiz 1U3hCM4kckGVBl2YyJFkE3xv7p9nxA9hbKFAAO1RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2ojmaQeCtoJKTgnXTZr7opGeiwQwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzIwY2RlNGRjLTgxZWQtNGQ5Ni1hOGU1LTE1OWE2Y2RjMDc2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgfwIwDQYJKoZIhvcNAQELBQADggEBAEkjLy0ttyfs2vfM2tO4WToRI/Q8 SNSqXg1sPIc7/zpnPnTKTBc06u4d12Vgo92P3w0rh7I2DLfEjVqrP4U/G2ndZ7QJ uQZJllraohHaqgB92+llzIEERpzWTf9rBiquFiBkaZ6JMCVDljtAShKdvb05XFf/ N3amWLyPk6Q3nvsFXfPBfmhPPLHDc3wyN2giqolLdYPv7byEYsMkarjo0xr3rX0w k2ZRSMFu1SgOLXudFbi/OYc5aqF2pC08rp7J+Nworyv3x5/sijfbRNpPjkCVh29r eBHFZsOZewdnnjR1g0pXiwfbK5dVqGXxC9EWrqavSvscM0WCijzZLpqExvc= -----END CERTIFICATE-----Generated at Mon Jul 21 23:22:51 2025 by rpki-client