$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/59b3a7d6-26d4-4809-9bb6-54d8eaf87cf1.roa File: 59b3a7d6-26d4-4809-9bb6-54d8eaf87cf1.roa (raw, json) Hash identifier: eQRcDEfovDcRsj8dLehP13imJBo/5vhz1nQURsednmU= Subject key identifier: C0:C8:09:1D:C3:87:66:D5:7F:40:DA:56:1C:E9:CB:C2:50:AE:7E:14 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 093973549A43C737E624A21865F50D741D0B7B24 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/59b3a7d6-26d4-4809-9bb6-54d8eaf87cf1.roa Signing time: Fri 11 Jul 2025 15:00:28 +0000 ROA not before: Fri 11 Jul 2025 15:00:28 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:39:73:54:9a:43:c7:37:e6:24:a2:18:65:f5:0d:74:1d:0b:7b:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jul 11 15:00:28 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=ce542a303b257fd962fc782f28a1685ca034da66adb2f8c300778a0d405ea46a, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:47:56:c8:00:ed:0e:1e:52:bd:1e:be:22:80: 54:6b:c1:15:ef:04:9f:ba:f1:24:43:57:dc:65:dd: a1:5e:a1:f7:b0:93:fa:af:97:7a:be:0f:5b:8c:c3: 33:3f:cb:97:d3:7e:7e:ef:0e:6b:a5:c3:18:32:15: a7:b2:a2:54:32:a3:5f:7b:81:15:77:7c:7e:81:86: 37:e5:70:41:32:43:6d:54:0a:06:62:fd:a1:d0:2f: 3d:f2:e0:c7:6c:32:10:4a:be:31:9e:68:c1:f7:db: e3:dc:ee:ff:3f:82:6e:b2:7b:b7:f7:b0:6d:79:c9: 30:c5:03:15:69:0a:e1:a6:6c:6f:d3:21:18:8c:6a: cb:57:64:05:66:b1:de:15:b3:4c:06:5c:17:f3:07: 7f:39:20:08:fd:9a:fa:6e:7f:6b:5e:7a:0a:4f:6e: 01:8d:8d:6f:3e:de:f2:a6:ba:46:96:a4:64:94:cc: 1f:d5:ef:d0:3d:5c:4f:1a:7b:59:f5:b3:a0:b1:59: be:12:35:37:5a:08:2e:cd:25:e4:8a:32:e6:ae:ee: 96:7c:65:8b:f2:f2:c7:e8:86:f3:30:3d:10:28:b6: 80:30:18:a7:1d:b6:e4:d3:62:83:de:b3:8d:9c:8f: 49:fc:33:b8:5e:57:ad:54:ad:44:cb:18:9f:e2:38: c2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:C8:09:1D:C3:87:66:D5:7F:40:DA:56:1C:E9:CB:C2:50:AE:7E:14 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/59b3a7d6-26d4-4809-9bb6-54d8eaf87cf1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 86:06:cd:c8:63:e4:13:24:1c:67:2e:03:15:53:44:98:a1:f7: ad:d0:65:35:28:10:17:7a:ff:e0:4d:a7:07:dd:6f:73:75:2f: cb:84:82:1f:43:5c:d1:e3:64:f9:9a:ec:05:b7:dc:83:a1:39: c5:69:57:5a:58:85:31:11:8c:6a:ef:05:2e:22:6d:f8:79:13: 5e:52:9a:a3:9c:74:8d:a6:49:f5:db:01:62:41:e7:a1:0a:55: 1f:65:c5:01:40:03:6b:87:76:85:86:db:b1:00:a7:9f:9d:38: 2f:96:26:f6:8d:b4:18:8d:b5:48:ac:c6:6e:92:91:c8:ff:9e: 13:51:bf:59:5b:ac:a6:f9:78:59:53:0c:7a:b3:e3:07:7c:88: b9:cd:d7:58:86:c5:a9:72:39:4b:de:85:b8:cb:15:31:50:e9: 70:32:01:45:81:12:e6:f3:dc:62:f4:7c:b6:44:62:41:b0:2e: 0b:3d:60:a8:3b:5b:fd:46:06:45:10:f0:63:22:d4:27:e2:e6: b2:5f:f4:4c:76:ac:65:f7:c4:9f:a2:7e:a6:5a:40:d9:96:f3: 63:36:dc:ed:00:e9:4a:f3:10:e9:50:af:5f:7a:71:58:e7:07: aa:c3:ce:4b:77:40:42:3e:cd:92:c7:af:61:a5:68:02:77:10: b8:4a:f6:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCTlzVJpDxzfmJKIYZfUNdB0LeyQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNzExMTUwMDI4WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTU0MmEzMDNiMjU3ZmQ5NjJmYzc4MmYyOGExNjg1Y2Ew MzRkYTY2YWRiMmY4YzMwMDc3OGEwZDQwNWVhNDZhMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqR1bIAO0OHlK9Hr4igFRrwRXvBJ+68SRDV9xl3aFeofew k/qvl3q+D1uMwzM/y5fTfn7vDmulwxgyFaeyolQyo197gRV3fH6BhjflcEEyQ21U CgZi/aHQLz3y4MdsMhBKvjGeaMH32+Pc7v8/gm6ye7f3sG15yTDFAxVpCuGmbG/T IRiMastXZAVmsd4Vs0wGXBfzB385IAj9mvpuf2teegpPbgGNjW8+3vKmukaWpGSU zB/V79A9XE8ae1n1s6CxWb4SNTdaCC7NJeSKMuau7pZ8ZYvy8sfohvMwPRAotoAw GKcdtuTTYoPes42cj0n8M7heV61UrUTLGJ/iOMLNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwMgJHcOHZtV/QNpWHOnLwlCufhQwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzU5YjNhN2Q2LTI2ZDQtNDgwOS05YmI2LTU0ZDhlYWY4N2NmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBAIYGzchj5BMkHGcuAxVTRJih963Q ZTUoEBd6/+BNpwfdb3N1L8uEgh9DXNHjZPma7AW33IOhOcVpV1pYhTERjGrvBS4i bfh5E15SmqOcdI2mSfXbAWJB56EKVR9lxQFAA2uHdoWG27EAp5+dOC+WJvaNtBiN tUisxm6Skcj/nhNRv1lbrKb5eFlTDHqz4wd8iLnN11iGxalyOUvehbjLFTFQ6XAy AUWBEubz3GL0fLZEYkGwLgs9YKg7W/1GBkUQ8GMi1Cfi5rJf9Ex2rGX3xJ+ifqZa QNmW82M23O0A6UrzEOlQr196cVjnB6rDzkt3QEI+zZLHr2GlaAJ3ELhK9nI= -----END CERTIFICATE-----Generated at Tue Jul 22 04:26:39 2025 by rpki-client