$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa File: ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa (raw, json) Hash identifier: vMDSWjiExHVS7eV7fgOkHNd1QNJGPF7FWdWjzapsd6I= Subject key identifier: F1:62:FF:08:66:60:A5:2A:15:4D:E4:61:F0:B0:54:C2:89:09:CA:3A Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 767094588EC676D99534AEA78910C93BEBE9CFE9 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa Signing time: Fri 11 Jul 2025 15:00:56 +0000 ROA not before: Fri 11 Jul 2025 15:00:56 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:70:94:58:8e:c6:76:d9:95:34:ae:a7:89:10:c9:3b:eb:e9:cf:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jul 11 15:00:56 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=59c60f502a89774365fdade2aeb27ffe64cd6008fd9e526984b738e7a01f1c74, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2a:e3:cd:29:c1:48:c9:16:d9:ec:da:09:17: 3a:68:5d:25:18:73:ea:5a:71:c8:fa:16:dd:d7:3a: 11:b6:72:3a:06:27:b0:8c:f8:23:40:8b:1b:dc:0f: c9:f8:98:fc:4b:f2:67:a1:63:9f:ec:1d:f2:c8:fd: e3:90:0e:37:aa:5b:a3:b9:54:08:a8:f3:f1:e7:12: b3:4e:15:4f:ee:44:9d:88:e3:9f:f9:45:1c:75:88: fd:4c:27:d5:2a:a2:ec:80:c5:4f:94:6a:42:31:1d: f7:7b:22:30:1f:e2:49:20:83:e1:d0:56:fe:a3:4c: 5b:0e:f4:19:3b:a8:cd:7f:5d:46:f2:5b:28:33:94: 43:7d:f5:c3:77:bc:ff:63:ad:be:f4:38:8f:e0:8e: b3:89:07:d1:41:a0:d6:53:12:98:41:d2:17:75:64: ba:f2:74:f8:1e:37:05:91:77:ff:df:39:e4:9d:08: 7d:89:46:50:68:a2:9d:2a:6b:65:bb:51:d8:32:0a: 7e:18:ac:3c:af:66:44:50:71:11:ba:6b:1e:c4:6a: f5:e5:92:7d:a7:25:24:34:a0:f5:73:9c:84:95:ad: 4f:d4:7a:c0:22:7f:1b:6a:e8:aa:30:55:d1:07:c4: 58:b2:61:63:ce:ce:bd:ae:fa:90:cc:68:b5:2c:3b: f0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:62:FF:08:66:60:A5:2A:15:4D:E4:61:F0:B0:54:C2:89:09:CA:3A X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.64.0/18 Signature Algorithm: sha256WithRSAEncryption 76:ec:37:c7:ee:b0:61:e1:70:d8:05:7d:4d:64:1a:41:20:75: 92:95:41:ea:ff:d0:4d:27:fc:0c:10:f9:f7:75:a2:25:17:49: 4e:b2:4a:d1:07:b0:7f:7f:fc:51:93:68:71:ec:f8:e9:0c:2b: 22:5b:be:74:32:2d:e6:10:3b:50:f1:86:75:84:6f:12:6f:e3: cd:96:77:2a:92:b1:0e:df:0d:e2:fd:a0:c8:7c:0c:b9:d7:ee: 0c:50:6b:45:69:4d:b5:51:53:b1:29:0f:c0:5d:51:b8:d8:fc: 3d:d7:f1:10:c8:fc:dd:1a:dd:05:6e:f8:88:64:c7:8f:54:9d: 08:03:63:1a:2b:56:55:de:da:a8:14:ba:a3:4b:1f:b2:84:eb: 25:81:89:1b:f7:c2:b6:19:dc:cc:15:31:c7:8b:9d:f9:c5:aa: 2e:df:19:bb:7e:2c:a5:95:6e:91:dc:8e:44:8d:ab:5c:0c:ba: d4:ed:b0:8b:d3:26:7e:01:a2:99:82:fb:c3:c2:47:b5:e1:17: 63:b0:73:b1:06:af:91:1c:10:98:00:87:57:48:19:e4:d8:ca: bc:00:0d:93:02:cd:40:86:ba:f0:5b:4b:60:21:a7:76:53:f6: a4:54:a9:69:3f:13:8d:8c:c5:9b:a0:1f:66:86:a5:07:5f:91: a7:1d:48:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdnCUWI7GdtmVNK6niRDJO+vpz+kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNzExMTUwMDU2WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OWM2MGY1MDJhODk3NzQzNjVmZGFkZTJhZWIyN2ZmZTY0 Y2Q2MDA4ZmQ5ZTUyNjk4NGI3MzhlN2EwMWYxYzc0MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEKuPNKcFIyRbZ7NoJFzpoXSUYc+paccj6Ft3XOhG2cjoG J7CM+CNAixvcD8n4mPxL8mehY5/sHfLI/eOQDjeqW6O5VAio8/HnErNOFU/uRJ2I 45/5RRx1iP1MJ9UqouyAxU+UakIxHfd7IjAf4kkgg+HQVv6jTFsO9Bk7qM1/XUby WygzlEN99cN3vP9jrb70OI/gjrOJB9FBoNZTEphB0hd1ZLrydPgeNwWRd//fOeSd CH2JRlBoop0qa2W7UdgyCn4YrDyvZkRQcRG6ax7EavXlkn2nJSQ0oPVznISVrU/U esAifxtq6KowVdEHxFiyYWPOzr2u+pDMaLUsO/A/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8WL/CGZgpSoVTeRh8LBUwokJyjowHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2NjYWE4OGM3LTA1NGItNGNlMS05MmU4LTYyZGQ5NDE3MThlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZgf0AwDQYJKoZIhvcNAQELBQADggEBAHbsN8fusGHhcNgFfU1kGkEgdZKV Qer/0E0n/AwQ+fd1oiUXSU6yStEHsH9//FGTaHHs+OkMKyJbvnQyLeYQO1DxhnWE bxJv482WdyqSsQ7fDeL9oMh8DLnX7gxQa0VpTbVRU7EpD8BdUbjY/D3X8RDI/N0a 3QVu+Ihkx49UnQgDYxorVlXe2qgUuqNLH7KE6yWBiRv3wrYZ3MwVMceLnfnFqi7f Gbt+LKWVbpHcjkSNq1wMutTtsIvTJn4BopmC+8PCR7XhF2Owc7EGr5EcEJgAh1dI GeTYyrwADZMCzUCGuvBbS2Ahp3ZT9qRUqWk/E42MxZugH2aGpQdfkacdSJQ= -----END CERTIFICATE-----Generated at Mon Jul 21 23:22:15 2025 by rpki-client