$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/85ecd0ef-6924-4522-bd48-1e263001901c.roa File: 85ecd0ef-6924-4522-bd48-1e263001901c.roa (raw, json) Hash identifier: cL0f1IyT2lHjGIyFwjfT+fWBjDfeHk7y05lLWbKtICo= Subject key identifier: F7:51:0C:3D:08:EC:43:55:36:C5:30:C3:5C:6D:1E:34:AE:50:56:21 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 69DEDE23344D4AC70FFCD5CA28BDE8407EE4E3F8 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/85ecd0ef-6924-4522-bd48-1e263001901c.roa Signing time: Fri 11 Jul 2025 15:00:23 +0000 ROA not before: Fri 11 Jul 2025 15:00:23 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:de:de:23:34:4d:4a:c7:0f:fc:d5:ca:28:bd:e8:40:7e:e4:e3:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jul 11 15:00:23 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=0a382b19dd0b90c5e541d609c79b1d66fa76ecb55f02cbe2145c35fc56160beb, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f9:86:9f:80:89:bd:a9:4e:44:4c:5f:5c:69: 1a:32:c9:86:84:2c:5e:8d:62:47:4c:c3:fa:ca:a9: 3a:ed:4d:ea:d1:bb:b6:14:ce:19:1f:c3:ef:2f:7c: 12:2d:80:4c:74:8a:a5:55:81:b6:2f:10:b3:b5:7b: d4:06:78:85:a2:1a:17:ca:e4:2c:1f:12:fe:91:c5: dd:87:c2:bb:ae:ae:40:b3:f8:fd:ad:5b:56:4a:78: 47:4f:38:d3:2d:c1:d0:39:6a:72:45:d0:40:2b:14: 23:db:a0:da:19:41:09:e7:fb:fd:d1:bb:77:fe:65: 5c:68:b3:21:dd:d2:06:f4:49:c9:d1:a8:24:b5:a9: 4e:47:b1:e8:f8:1a:1a:4e:ab:9f:a5:cd:5d:da:bc: 8e:1f:c8:74:10:c9:53:8d:3c:90:a2:e1:7e:3d:66: 02:4c:e9:94:47:d9:29:a0:5a:0f:33:16:03:11:4b: 91:49:1d:2e:f3:ec:a0:29:ac:73:c4:bd:09:e2:77: 0f:45:3e:f1:54:46:cd:2b:79:cf:84:e0:fb:d3:ac: 81:5f:d2:29:2c:01:7d:ac:9c:3e:ce:3a:21:c4:33: 97:52:a0:70:26:28:64:a5:b5:58:6d:30:c6:be:4c: bf:20:cc:33:71:8d:2f:c0:7a:08:4e:56:ac:ec:7c: 17:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:51:0C:3D:08:EC:43:55:36:C5:30:C3:5C:6D:1E:34:AE:50:56:21 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/85ecd0ef-6924-4522-bd48-1e263001901c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.1.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:bd:3e:32:49:ed:7f:26:c5:11:c3:16:68:1a:cf:18:f7:cc: bf:34:7f:00:78:a6:43:69:5f:ae:c7:ed:c0:2a:d4:34:a6:ee: df:fe:ce:00:93:50:56:0e:c0:4b:50:53:2e:79:1b:ee:83:ef: 5d:7e:62:26:28:bf:9d:21:3f:0e:ed:ad:ff:6d:86:37:d9:6f: 13:be:ab:d3:65:4b:39:7e:69:12:a4:60:2e:13:dd:8b:ef:a5: 7e:ac:8b:f0:66:b7:e3:6d:fb:77:e3:3e:c8:a2:18:16:fc:09: f5:f5:36:de:dd:7c:bd:15:56:85:18:64:88:8c:a7:61:ab:5b: 83:41:83:f5:bc:38:be:06:d9:33:91:b5:83:aa:d3:e9:55:d2: 27:ca:dd:38:4b:dc:24:de:2c:6e:5d:95:b4:9a:01:1d:83:d0: 43:6e:07:0d:09:2a:08:75:3b:19:0b:36:2b:f1:50:68:bd:84: 86:62:bd:58:c2:fe:31:d3:e1:b8:9b:02:1f:0f:29:47:03:d6: 48:e9:20:0d:9d:0a:6c:7b:b4:2a:5c:3b:f1:31:94:14:2b:c5: fb:be:89:17:4a:f0:a6:d5:14:33:a9:5a:5a:b6:5a:95:37:43: c1:f3:86:70:e7:9a:16:85:60:f6:de:86:0c:a8:b3:e2:84:9e: 0b:a3:55:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUad7eIzRNSscP/NXKKL3oQH7k4/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNzExMTUwMDIzWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTM4MmIxOWRkMGI5MGM1ZTU0MWQ2MDljNzliMWQ2NmZh NzZlY2I1NWYwMmNiZTIxNDVjMzVmYzU2MTYwYmViMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg+YafgIm9qU5ETF9caRoyyYaELF6NYkdMw/rKqTrtTerR u7YUzhkfw+8vfBItgEx0iqVVgbYvELO1e9QGeIWiGhfK5CwfEv6Rxd2HwruurkCz +P2tW1ZKeEdPONMtwdA5anJF0EArFCPboNoZQQnn+/3Ru3f+ZVxosyHd0gb0ScnR qCS1qU5Hsej4GhpOq5+lzV3avI4fyHQQyVONPJCi4X49ZgJM6ZRH2SmgWg8zFgMR S5FJHS7z7KAprHPEvQnidw9FPvFURs0rec+E4PvTrIFf0iksAX2snD7OOiHEM5dS oHAmKGSltVhtMMa+TL8gzDNxjS/AeghOVqzsfBd/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU91EMPQjsQ1U2xTDDXG0eNK5QViEwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1Lzg1ZWNkMGVmLTY5MjQtNDUyMi1iZDQ4LTFlMjYzMDAxOTAxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgfwEwDQYJKoZIhvcNAQELBQADggEBAEy9PjJJ7X8mxRHDFmgazxj3zL80 fwB4pkNpX67H7cAq1DSm7t/+zgCTUFYOwEtQUy55G+6D711+YiYov50hPw7trf9t hjfZbxO+q9NlSzl+aRKkYC4T3YvvpX6si/Bmt+Nt+3fjPsiiGBb8CfX1Nt7dfL0V VoUYZIiMp2GrW4NBg/W8OL4G2TORtYOq0+lV0ifK3ThL3CTeLG5dlbSaAR2D0ENu Bw0JKgh1OxkLNivxUGi9hIZivVjC/jHT4bibAh8PKUcD1kjpIA2dCmx7tCpcO/Ex lBQrxfu+iRdK8KbVFDOpWlq2WpU3Q8HzhnDnmhaFYPbehgyos+KEngujVRQ= -----END CERTIFICATE-----Generated at Fri Jul 25 05:19:53 2025 by rpki-client