$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa File: 9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa (raw, json) Hash identifier: eGCGsN5i+Lxc9E/F+IH3s9HFW2Os8e+bBoKuOTdzBM0= Subject key identifier: 58:F0:D0:4B:DE:D0:7B:03:E3:53:54:CB:7D:3F:75:1A:EC:DC:F2:F4 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 3146846B75074FF33478F8678C44C6CEA85E272D Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa Signing time: Fri 11 Jul 2025 15:00:28 +0000 ROA not before: Fri 11 Jul 2025 15:00:28 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:46:84:6b:75:07:4f:f3:34:78:f8:67:8c:44:c6:ce:a8:5e:27:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jul 11 15:00:28 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=0bbdc04bf1630a46d896456251a3016fd0f5110c0962f4040452776856342c5b, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2d:74:2a:c0:f2:09:86:2f:1f:45:f7:09:ef: 88:5f:63:79:28:db:4c:38:c1:83:50:79:08:04:a3: 62:1b:ba:86:b7:17:ff:23:0e:bb:c4:f0:6c:fc:68: 97:ec:62:16:e1:ef:8a:df:7e:5a:9f:f1:47:a0:b1: 4b:b4:bf:7a:8e:f5:f4:47:8e:fb:29:cd:3c:ee:cc: 09:c4:15:ba:e4:95:87:c1:f6:c6:93:97:ed:8f:18: 41:ec:b2:0f:3b:b5:2c:1a:e6:48:56:21:97:f3:a6: 10:c5:f3:94:25:bc:4b:0e:83:6e:96:88:cc:3e:f3: 62:34:f8:28:d5:81:7f:86:ef:ce:ff:8c:20:07:f2: 3a:89:8e:5b:f4:cc:62:a8:91:58:f1:e1:91:2e:ba: ff:b2:86:ec:b9:d9:4e:8f:44:27:e3:85:06:62:8c: e3:4c:34:86:06:c2:81:13:33:b2:5c:61:91:57:64: d1:27:2d:63:7f:d2:b1:e9:13:5a:6f:18:ab:db:c6: 13:39:ca:e5:0b:2d:48:68:71:88:d9:0c:a1:cd:9f: c0:6e:a4:e8:9a:36:32:01:0e:0d:3a:79:c2:4c:ea: b5:2b:54:9b:5d:13:04:39:19:40:91:ed:e0:8a:54: b9:9e:a6:9f:00:5a:6f:f3:00:f0:e1:33:86:bd:b7: e3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F0:D0:4B:DE:D0:7B:03:E3:53:54:CB:7D:3F:75:1A:EC:DC:F2:F4 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.2.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:65:b6:6e:8a:c2:b7:5c:c5:47:2b:80:38:35:e9:d1:e0:94: 40:10:66:71:2f:99:44:77:0c:6a:a6:05:4f:14:4a:fd:fd:bf: 80:33:aa:a4:28:d4:ce:b5:bc:3c:43:c3:0a:f6:16:e0:3b:62: 19:0b:2d:59:d6:2d:2f:c6:37:e4:b6:bf:a6:00:61:70:85:24: 2a:a6:9a:eb:e4:fe:0c:e2:00:6f:e8:2d:b0:5b:6f:69:10:9b: 62:d7:30:83:5a:7d:73:62:65:f7:49:75:2b:c7:6f:30:41:0b: af:64:4e:93:56:83:29:8c:22:8e:ac:d6:d6:6a:ae:da:f6:40: 4f:93:23:1d:bf:29:b5:04:3d:8a:50:35:a7:6b:65:50:68:88: 4f:6d:09:24:47:ca:ec:df:cb:27:40:10:d2:fa:30:88:a1:cc: f8:0e:bf:a1:e8:63:ce:60:e6:ae:81:96:db:f2:91:50:15:0c: db:6d:bc:5f:28:8b:63:86:7a:95:9e:50:a2:72:d8:97:db:cd: ed:8e:4d:15:34:40:02:f2:04:c2:2c:ea:4d:f5:36:0f:ba:ae: 11:f7:e8:07:2e:8d:73:23:a0:06:fd:04:54:0a:96:ac:71:d4: 4b:85:00:08:2a:2d:4b:4b:d8:c3:87:2e:e4:dc:55:a4:59:cd: c6:f2:77:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMUaEa3UHT/M0ePhnjETGzqheJy0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNzExMTUwMDI4WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmJkYzA0YmYxNjMwYTQ2ZDg5NjQ1NjI1MWEzMDE2ZmQw ZjUxMTBjMDk2MmY0MDQwNDUyNzc2ODU2MzQyYzViMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjLXQqwPIJhi8fRfcJ74hfY3ko20w4wYNQeQgEo2Ibuoa3 F/8jDrvE8Gz8aJfsYhbh74rfflqf8UegsUu0v3qO9fRHjvspzTzuzAnEFbrklYfB 9saTl+2PGEHssg87tSwa5khWIZfzphDF85QlvEsOg26WiMw+82I0+CjVgX+G787/ jCAH8jqJjlv0zGKokVjx4ZEuuv+yhuy52U6PRCfjhQZijONMNIYGwoETM7JcYZFX ZNEnLWN/0rHpE1pvGKvbxhM5yuULLUhocYjZDKHNn8BupOiaNjIBDg06ecJM6rUr VJtdEwQ5GUCR7eCKVLmepp8AWm/zAPDhM4a9t+PHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWPDQS97QewPjU1TLfT91Guzc8vQwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzllMWU0N2UwLTNiMmYtNDFhYy04MGFkLTliMDhkNDM1M2ZkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgfwIwDQYJKoZIhvcNAQELBQADggEBAG9ltm6KwrdcxUcrgDg16dHglEAQ ZnEvmUR3DGqmBU8USv39v4AzqqQo1M61vDxDwwr2FuA7YhkLLVnWLS/GN+S2v6YA YXCFJCqmmuvk/gziAG/oLbBbb2kQm2LXMINafXNiZfdJdSvHbzBBC69kTpNWgymM Io6s1tZqrtr2QE+TIx2/KbUEPYpQNadrZVBoiE9tCSRHyuzfyydAENL6MIihzPgO v6HoY85g5q6BltvykVAVDNttvF8oi2OGepWeUKJy2Jfbze2OTRU0QALyBMIs6k31 Ng+6rhH36AcujXMjoAb9BFQKlqxx1EuFAAgqLUtL2MOHLuTcVaRZzcbyd9w= -----END CERTIFICATE-----Generated at Mon Jul 21 23:24:59 2025 by rpki-client