$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa File: 9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa (raw, json) Hash identifier: 7R5TaGTdD7dMTbWidEcg44yz7OiBaiCeRZRo3Q9KSM8= Subject key identifier: 32:A9:CB:AE:80:05:A7:A8:A3:21:42:54:82:27:27:C7:83:AC:DD:0B Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 7FF49D2459BE32DADF704A04374A7982BD639FD4 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa Signing time: Fri 11 Jul 2025 15:00:21 +0000 ROA not before: Fri 11 Jul 2025 15:00:21 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:f4:9d:24:59:be:32:da:df:70:4a:04:37:4a:79:82:bd:63:9f:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jul 11 15:00:21 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=ec22eca56a352a941732c6e73ba4036a846bbe16b471772dab3e3632775dedce, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5d:51:68:40:c2:39:54:2d:10:ed:ce:07:7d: f6:ce:b4:ca:f8:66:d4:db:49:11:78:50:5a:83:a4: af:5b:7d:15:e3:dd:8f:ef:b9:33:78:cd:c0:6a:a1: a6:97:e4:15:a9:2d:47:62:d9:29:9b:16:4f:91:d4: 22:fb:19:a3:13:71:d0:d2:62:e7:25:6d:4c:ea:ae: 30:3c:26:52:9c:69:37:9e:40:e0:b4:65:d7:2a:7b: 0e:52:db:86:a7:40:a7:a0:a5:80:9e:62:b2:aa:4f: b1:b6:d5:1b:d0:48:33:fa:7c:c3:f8:14:fb:c7:1d: 43:0c:70:7d:63:88:82:bb:0c:f4:12:c0:f7:be:33: eb:37:3d:8a:cf:b3:ff:36:1a:00:7a:3c:8a:ea:ff: 66:0d:ae:8f:90:02:e2:04:62:cf:1f:e4:ce:0c:a9: 48:20:b3:46:1c:5d:e2:26:e8:72:2e:b4:a0:8f:f2: 9e:cc:7d:5b:8d:ba:b3:5a:9e:fd:78:05:87:a1:04: ab:d2:fe:b9:b3:1c:4b:ae:c9:28:eb:f9:12:91:bc: 5f:b6:f9:84:9c:03:13:02:49:5f:0b:64:2d:2a:bb: a4:d8:4d:23:6b:88:bb:bf:ce:ee:1c:5b:db:d8:b7: dc:2d:69:fc:97:c6:66:8c:33:37:69:27:86:04:0a: 29:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A9:CB:AE:80:05:A7:A8:A3:21:42:54:82:27:27:C7:83:AC:DD:0B X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.8.0/21 Signature Algorithm: sha256WithRSAEncryption 82:ec:df:b8:58:b5:6e:96:40:28:50:08:bb:b5:8f:33:3b:b4: 46:bd:4d:49:52:16:d2:c8:d3:e8:bb:c3:5d:dc:94:2f:e1:b5: e0:69:45:fb:ad:9e:12:b6:a9:88:b1:5f:36:36:f0:c3:81:e7: 4b:49:1c:c8:ba:0c:6d:bb:80:a0:9e:07:ce:60:2d:51:fb:99: b7:f1:cc:ff:22:aa:4f:f4:9a:e2:54:8f:10:0e:c0:05:6a:06: df:d1:6c:59:a0:c0:64:9f:b4:60:2f:83:40:0f:1f:3f:60:c9: 03:e5:37:69:0b:91:a3:7a:52:68:8a:1e:88:53:8f:7f:0a:02: 8c:b3:a8:01:1e:8c:3b:27:1e:7d:43:36:fd:5d:34:0f:1b:95: f6:81:5f:b0:0c:83:84:74:52:9b:bf:1f:65:d2:c7:fd:45:0a: c3:b6:e6:1f:6e:01:46:de:c4:da:4e:02:8f:5b:2b:cf:72:01: a8:82:f6:84:16:e6:1f:7b:a9:ab:31:98:65:e5:ba:55:2b:1f: 94:0b:f5:b1:a6:ac:0b:44:2e:1e:bb:41:7f:d0:0d:e0:67:af: 99:41:d2:02:ca:99:51:71:6d:ad:33:e6:d3:d3:c6:2a:d0:cb: bb:f9:ff:5f:99:d0:b7:c7:29:f1:db:b6:bc:a7:11:43:cc:44: b9:27:6e:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf/SdJFm+MtrfcEoEN0p5gr1jn9QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNzExMTUwMDIxWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzIyZWNhNTZhMzUyYTk0MTczMmM2ZTczYmE0MDM2YTg0 NmJiZTE2YjQ3MTc3MmRhYjNlMzYzMjc3NWRlZGNlMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsXVFoQMI5VC0Q7c4HffbOtMr4ZtTbSRF4UFqDpK9bfRXj 3Y/vuTN4zcBqoaaX5BWpLUdi2SmbFk+R1CL7GaMTcdDSYuclbUzqrjA8JlKcaTee QOC0Zdcqew5S24anQKegpYCeYrKqT7G21RvQSDP6fMP4FPvHHUMMcH1jiIK7DPQS wPe+M+s3PYrPs/82GgB6PIrq/2YNro+QAuIEYs8f5M4MqUggs0YcXeIm6HIutKCP 8p7MfVuNurNanv14BYehBKvS/rmzHEuuySjr+RKRvF+2+YScAxMCSV8LZC0qu6TY TSNriLu/zu4cW9vYt9wtafyXxmaMMzdpJ4YECinvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMqnLroAFp6ijIUJUgicnx4Os3QswHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzliZmRlOTRhLTFkOTUtNGRjZS1iMGIyLTcyNzE3MmY1ZTQ5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwgwDQYJKoZIhvcNAQELBQADggEBAILs37hYtW6WQChQCLu1jzM7tEa9 TUlSFtLI0+i7w13clC/hteBpRfutnhK2qYixXzY28MOB50tJHMi6DG27gKCeB85g LVH7mbfxzP8iqk/0muJUjxAOwAVqBt/RbFmgwGSftGAvg0APHz9gyQPlN2kLkaN6 UmiKHohTj38KAoyzqAEejDsnHn1DNv1dNA8blfaBX7AMg4R0Upu/H2XSx/1FCsO2 5h9uAUbexNpOAo9bK89yAaiC9oQW5h97qasxmGXlulUrH5QL9bGmrAtELh67QX/Q DeBnr5lB0gLKmVFxba0z5tPTxirQy7v5/1+Z0LfHKfHbtrynEUPMRLknbqU= -----END CERTIFICATE-----Generated at Mon Jul 21 23:22:36 2025 by rpki-client