$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa File: 2f44b632-2720-4ef0-917c-4b1813ed903f.roa (raw, json) Hash identifier: IgqrmGv162msxaFxfqC30f/VLL6+mCLvqe1oKvvahrE= Subject key identifier: 79:3D:FC:50:40:FF:70:D2:24:60:D9:F0:40:24:D6:7C:91:E1:3C:0D Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 610B15F2745D88214720011D12F6AD3D28AA3C14 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa Signing time: Fri 11 Jul 2025 15:00:58 +0000 ROA not before: Fri 11 Jul 2025 15:00:58 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:0b:15:f2:74:5d:88:21:47:20:01:1d:12:f6:ad:3d:28:aa:3c:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jul 11 15:00:58 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=1046905b4806504d07cdcc7b31316c839d8cde2684f5efdbe40e4c2c9c7cce20, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:32:99:0e:25:60:49:46:6f:29:d2:c0:c1:5a: c9:14:14:c9:58:74:f6:68:15:1e:cb:f3:bd:48:73: 19:92:c2:40:2b:d5:73:9b:37:65:81:98:04:b5:a4: e1:97:d3:9b:12:3d:2d:d7:6a:3f:de:78:cd:5f:3f: 0b:25:28:35:25:3c:6e:a2:2f:48:04:16:e5:94:11: 0e:3a:32:d9:c6:05:5f:d5:a7:63:6a:21:05:f8:e1: a1:13:8c:c1:9c:ac:3e:07:31:48:46:c8:aa:26:02: 61:33:f0:7a:92:ef:85:cf:67:76:c3:65:35:83:00: a1:19:a9:21:23:ad:d6:fc:60:02:0d:a9:85:46:33: 60:cd:08:e6:e8:da:aa:e4:02:72:d0:d6:3c:e6:6e: 58:d2:1d:4e:da:9e:38:f9:15:99:2e:e3:55:f8:1f: 1d:3d:ca:30:d2:95:77:bb:25:cc:ad:59:56:f9:bd: 86:80:f5:62:e3:fb:08:41:44:73:f4:61:26:89:25: ba:4b:47:e2:16:4d:03:43:5d:8f:23:5f:ee:b8:bf: 32:5c:32:0c:8d:53:d6:f5:f3:1c:82:06:ec:85:55: 6e:78:39:8e:00:bd:43:22:51:2b:dc:c0:50:ed:65: 99:c7:23:6a:ed:d1:83:04:cb:29:1d:08:4e:f3:2d: ee:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:3D:FC:50:40:FF:70:D2:24:60:D9:F0:40:24:D6:7C:91:E1:3C:0D X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.64.0/18 Signature Algorithm: sha256WithRSAEncryption 73:8a:0d:49:ed:46:9b:1d:09:3f:73:7b:66:03:54:db:39:63: 43:83:14:66:55:a5:fd:bd:29:48:dc:a1:c7:df:68:c2:f5:f8: 50:7a:66:95:9a:95:29:dc:b2:ee:96:76:7f:0e:f1:d3:79:4f: 0c:b9:07:16:27:a1:d9:6d:79:0a:ca:65:1c:c3:97:54:26:86: 49:3e:de:0f:0f:58:3b:23:8e:e8:91:a1:8f:f4:19:76:30:6b: 35:92:6f:16:19:12:cd:39:19:5f:05:7a:7c:46:07:d4:36:71: 06:7c:ca:c2:95:96:07:a4:8f:70:82:8d:03:48:5c:5b:d6:4b: e1:67:7d:1a:cb:10:17:df:ad:0c:08:33:d9:73:7d:3d:72:34: 46:c2:5d:93:9d:1c:54:24:de:58:fc:a4:ab:61:62:50:01:52: d3:a7:e2:e9:f1:91:0b:3b:35:89:8c:88:87:1d:9d:09:ae:28: 1d:18:53:62:2e:fa:be:97:0c:09:bc:98:9d:6c:2f:11:d5:eb: e4:61:98:ef:19:6d:97:53:99:43:10:53:34:ea:95:e7:65:1c: b8:ad:15:cb:8d:36:08:de:de:af:61:41:14:ef:de:db:42:c2: 4f:4d:c5:ba:dd:8d:f4:52:7c:f7:ce:a9:ad:20:46:d8:9e:67: c3:de:48:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYQsV8nRdiCFHIAEdEvatPSiqPBQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNzExMTUwMDU4WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDQ2OTA1YjQ4MDY1MDRkMDdjZGNjN2IzMTMxNmM4Mzlk OGNkZTI2ODRmNWVmZGJlNDBlNGMyYzljN2NjZTIwMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7MpkOJWBJRm8p0sDBWskUFMlYdPZoFR7L871IcxmSwkAr 1XObN2WBmAS1pOGX05sSPS3Xaj/eeM1fPwslKDUlPG6iL0gEFuWUEQ46MtnGBV/V p2NqIQX44aETjMGcrD4HMUhGyKomAmEz8HqS74XPZ3bDZTWDAKEZqSEjrdb8YAIN qYVGM2DNCObo2qrkAnLQ1jzmbljSHU7anjj5FZku41X4Hx09yjDSlXe7JcytWVb5 vYaA9WLj+whBRHP0YSaJJbpLR+IWTQNDXY8jX+64vzJcMgyNU9b18xyCBuyFVW54 OY4AvUMiUSvcwFDtZZnHI2rt0YMEyykdCE7zLe4bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeT38UED/cNIkYNnwQCTWfJHhPA0wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzJmNDRiNjMyLTI3MjAtNGVmMC05MTdjLTRiMTgxM2VkOTAzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZgf0AwDQYJKoZIhvcNAQELBQADggEBAHOKDUntRpsdCT9ze2YDVNs5Y0OD FGZVpf29KUjcocffaML1+FB6ZpWalSncsu6Wdn8O8dN5Twy5BxYnodlteQrKZRzD l1Qmhkk+3g8PWDsjjuiRoY/0GXYwazWSbxYZEs05GV8FenxGB9Q2cQZ8ysKVlgek j3CCjQNIXFvWS+FnfRrLEBffrQwIM9lzfT1yNEbCXZOdHFQk3lj8pKthYlABUtOn 4unxkQs7NYmMiIcdnQmuKB0YU2Iu+r6XDAm8mJ1sLxHV6+RhmO8ZbZdTmUMQUzTq ledlHLitFcuNNgje3q9hQRTv3ttCwk9NxbrdjfRSfPfOqa0gRtieZ8PeSBk= -----END CERTIFICATE-----Generated at Mon Jul 21 23:19:29 2025 by rpki-client